[Snyk] Upgrade codemirror from 5.41.0 to 5.54.0

[snyk-bot]

Snyk has created this PR to upgrade codemirror from 5.41.0 to 5.54.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 20 versions ahead of your current version.
• The recommended version was released a month ago, on 2020-05-20.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CODEMIRROR-569611	No Known Exploit

Release notes

Package name: codemirror

• 5.54.0 - 2020-05-20
  

  Version 5.54.0

  Bug fixes

  Improve support for having focus inside in-editor widgets in contenteditable-mode.

  Fix issue where the scroll position could jump when clicking on a selection in Chrome.

  python mode: Better format string support.

  javascript mode: Improve parsing of private properties and class fields.

  matchbrackets addon: Disable highlighting when the editor doesn't have focus.

  New features

  runmode addon: Properly support for cross-line lookahead.

  vim bindings: Allow Ex-Commands with non-word names.

  gfm mode: Add a fencedCodeBlockDefaultMode option.

• 5.53.2 - 2020-04-21
  

  Version 5.53.2

  Bug fixes

  show-hint addon: Fix a regression that broke completion picking.

• 5.53.0 - 2020-04-21
  

  Version 5.53.0

  Bug fixes

  Fix a bug where the editor layout could remain confused after a call to refresh when line wrapping was enabled.

  dialog addon: Don't close dialogs when the document window loses focus.

  merge addon: Compensate for editor top position when aligning lines.

  vim bindings: Improve EOL handling.

  emacs bindings: Include default keymap as a fallback.

  julia mode: Fix an infinite loop bug.

  show-hint addon: Scroll cursor into view when picking a completion.

  New features

  New option: screenReaderLabel to add a label to the editor.

  New mode: wast.

• 5.52.2 - 2020-03-20
  

  Version 5.52.2

  Bug fixes

  Fix selection management in contenteditable mode when the editor doesn't have focus.

  Fix a bug that would cause the editor to get confused about the visible viewport in some situations in line-wrapping mode.

  markdown mode: Don't treat single dashes as setext header markers.

  zenburn theme: Make sure background styles take precedence over default styles.

  css mode: Recognize a number of new properties.

• 5.52.0 - 2020-02-20
  

  Version 5.52.0

  Bug fixes

  Fix a bug in handling of bidi text with Arabic numbers in a right-to-left editor.

  Fix a crash when combining file drop with a "beforeChange" filter.

  Prevent issue when passing negative coordinates to scrollTo.

  New features

  lint and tern addons: Allow the tooltip to be appended to the editor wrapper element instead of the document body.

• 5.51.0 - 2020-01-20
  

  Version 5.51.0

  Bug fixes

  Fix the behavior of the home and end keys when direction is set to "rtl".

  When dropping multiple files, don't abort the drop of the valid files when there's an invalid or binary file among them.

  Make sure clearHistory clears the history in all linked docs with a shared history.

  vim bindings: Fix behavior of ' and ` marks, fix R in visual mode.

  New features

  vim bindings: Support gi, gI, and gJ`.

• 5.50.2 - 2020-01-01
  

  Version 5.50.2

  Bug fixes

  Fix bug that broke removal of line widgets.

• 5.50.0 - 2019-12-20
  

  Version 5.50.0

  Bug fixes

  Make Shift-Delete to cut work on Firefox.

  closetag addon: Properly handle self-closing tags.

  handlebars mode: Fix triple-brace support.

  searchcursor addon: Support mathing $ in reverse regexp search.

  panel addon: Don't get confused by changing panel sizes.

  javascript-hint addon: Complete variables defined in outer scopes.

  sublime bindings: Make by-subword motion more consistent with Sublime Text.

  julia mode: Don't break on zero-prefixed integers.

  elm mode: Sync with upstream version.

  sql mode: Support Postgres-style backslash-escaped string literals.

  New features

  Add a className option to addLineWidget.

  foldcode addon: Allow fold widgets to be functions, to dynamically create fold markers.

  New themes: ayu-dark and ayu-mirage.

• 5.49.2 - 2019-10-21
  

  Version 5.49.2

  Bug fixes

  sublime bindings: Make selectNextOccurrence stop doing something when all occurrences are selected.

  continuecomment addon: Respect indentWithTabs option.

  foldgutter addon: Optimize by reusing DOM when possible.

  markdown mode: Don't reset inline styles at the start of a continued list item line.

  clike mode: Add a configuration for Objective-C++.

• 5.49.0 - 2019-09-20
  

  Version 5.49.0

  Bug fixes

  octave mode: Don't mark common punctuation as error.

  clike mode: Support nested comments and properly indent lambdas in Kotlin.

  foldgutter and annotatescrollbar addons: Optimize use of setTimeout/clearTimeout.

  New features

  New themes: moxer, material-darker, material-palenight, material-ocean.

  xml mode: Provide a more abstract way to query context, which other modes for XML-like languages can also implement.

• 5.48.4 - 2019-08-19
• 5.48.2 - 2019-07-19
• 5.48.0 - 2019-06-20
• 5.47.0 - 2019-05-21
• 5.46.0 - 2019-04-22
• 5.45.0 - 2019-03-20
• 5.44.0 - 2019-02-21
• 5.43.0 - 2019-01-21
• 5.42.2 - 2018-12-21
• 5.42.0 - 2018-11-20
• 5.41.0 - 2018-10-25

from codemirror GitHub release notes

Commit messages

Package name: codemirror

• a5497d1 Mark version 5.54.0
• 4377c08 [gfm mode] add fencedCodeBlockDefaultMode option
• e56014c [soy mode] Fix bug with "map" in type name
• 8facd90 [vim] Allow Ex-Commands with non-word names
• 25e7a32 [match-highlighter] Fix issue in highlighting non-alphanumeric tokens
• b6ac63e Proper escaping of \s
• 890cb6b [javascript mode] Fix a runaway regexp
• 0884405 [runmode addon] Add support for lookahead
• a810aee [mode/meta] Remove unwanted space in TiddlyWiki mode name
• 8e260c2 [dart mode] Add `late` and `required` keywords, `Null` and `Never` types
• 0de283c [tcl mode] Add # as a lineComment
• 2e841f6 Add a sponsors section to the website
• 632f30b Increase size of scrollbar-hack gap
• a9774d9 [javascript operator] Properly implement optional chaining operator
• b6a75e5 [matchbrackets addon] Disable highlighting when the editor isn't focused
• c41dec1 Also ignore clipboard events inside widgets in contenteditable input mode
• dfa4bda [runmode standalone] Add support for globalThis
• 6890f98 Don't mess with the selection when refocusing a text field
• a67ed9a [javascript mode] Allow class fields in non-TS mode
• 46f2723 [javascript mode] Add support for private properties
• 0b64369 Disable scroll workaround in start-drag handler for Safari
• ad54953 [vim bindings] Remove a duplicate entry in defaultExCommandMap
• e8c0a77 Disable scroll-on-focus in drag focus kludge
• 64e4504 [python mode] Somewhat improve handling of format specs in format strings

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs