dependabot[bot] opened a new pull request, #35409: URL: https://github.com/apache/superset/pull/35409
Bumps [jsdom](https://github.com/jsdom/jsdom) from 26.0.0 to 27.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/jsdom/jsdom/releases";>jsdom's releases</a>.</em></p> <blockquote> <h2>Version 27.0.0</h2> <h3>Changes since 26.1.0</h3> <ul> <li>Node.js v20 is now the minimum supported version.</li> <li>Added a variety of event constructors, even though we do not implement their associated specifications or ever fire them: <code>BeforeUnloadEvent</code>, <code>BlobEvent</code>, <code>DeviceMotionEvent</code> (omitting <code>requestPermission()</code>), <code>DeviceOrientationEvent</code> (omitting <code>requestPermission()</code>), <code>PointerEvent</code>, <code>PromiseRejectionEvent</code>, and <code>TransitionEvent</code>.</li> <li>Added <code>movementX</code> and <code>movementY</code> to <code>MouseEvent</code>. (These are from the <a href="https://w3c.github.io/pointerlock/";>Pointer Lock</a> specification, the rest of which is not implemented.)</li> <li>Added <code>customElements.getName()</code>. (mash-graz)</li> <li>Updated the <a href="https://github.com/jsdom/jsdom/blob/ab384d4e381eb6bb99ade4146698d35167b54837/README.md#virtual-consoles";>virtual console</a>: <ul> <li><code>"jsdomError"</code> events are now documented, with specific <code>type</code> properties and other properties that depend on the type.</li> <li><code>sendTo()</code> was renamed to <code>forwardTo()</code>.</li> <li>The <code>jsdomErrors</code> option to <code>forwardTo()</code> can be used to control which errors are sent to the Node.js console. This replaces the previous <code>omitJSDOMErrors</code> boolean option.</li> <li><code>"jsdomError"</code>s for failed <code>XMLHttpRequest</code> fetches are no longer emitted.</li> <li>The values that are printed when forwarding <code>"jsdomError"</code>s to the Node.js console are streamlined.</li> </ul> </li> <li>Switched our CSS selector engine from <a href="https://www.npmjs.com/nwsapi";><code>nwsapi</code></a> to <a href="https://www.npmjs.com/package/@asamuzakjp/dom-selector";><code>@asamuzakjp/dom-selector</code></a>, closing over 20 selector-related bugs.</li> <li>Upgraded <a href="https://www.npmjs.com/package/tough-cookie";><code>tough-cookie</code></a>, which now considers URLs like <code>http://localhost/</code> to be secure contexts (per <a href="https://w3c.github.io/webappsec-secure-contexts/#is-origin-trustworthy";>the spec</a>), and thus will return <code>Secure</code>-flagged cookies for such URLs. (colincasey)</li> <li>Upgraded <a href="https://github.com/jsdom/cssstyle";><code>cssstyle</code></a>, which brings along many improvements and fixes to the <code>CSSStyleDeclaration</code> object and its properties.</li> <li>Updated the user agent stylesheet to be derived from the HTML Standard, instead of from an old revision of Chromium.</li> <li>Changed <code>element.click()</code> to fire a <code>PointerEvent</code> instead of a <code>MouseEvent</code>.</li> <li>Changed certain events to be passive by default.</li> <li>Changed the <code><input></code> element's <code>pattern=""</code> attribute to use the <code>v</code> regular expression flag, instead of <code>u</code>.</li> <li>Fixed many specification conformance issues with the <code>Window</code> object, including named properties and changing various data properties to accessor properties.</li> <li>Fixed <code>document.createEvent()</code> to accept a more correct set of event names.</li> <li>Fixed the <code>ElementInternals</code> accessibility getters and setters. (They were introduced in v23.1.0, but due to inadequate test coverage never actually worked.)</li> <li>Fixed using <code>Object.defineProperty()</code> on certain objects, such as <code>HTMLSelectElement</code> instances.</li> <li>Fixed <code>jsdom.reconfigure({ url })</code> not updating <code>document.baseURI</code> or properties derived from it. (This regressed in v26.1.0.)</li> <li>Fixed CSS system colors, as well as the <code>initial</code>, <code>inherit</code>, and <code>unset</code> keywords, to resolve correctly. (asamuzaK)</li> <li>Fixed CSS <code>display</code> style resolution. (asamuzaK)</li> </ul> <h3>Changes since 27.0.0-beta.3</h3> <ul> <li>Upgraded <code>cssstyle</code>, which brings along various CSS parsing fixes.</li> </ul> <h2>Version 27.0.0-beta.3</h2> <ul> <li>Breaking change: upgraded <code>tough-cookie</code>, which now considers URLs like <code>http://localhost/</code> to be secure contexts (per <a href="https://w3c.github.io/webappsec-secure-contexts/#is-origin-trustworthy";>the spec</a>), and thus will return <code>Secure</code>-flagged cookies for such URLs. (colincasey)</li> <li>Added <code>customElements.getName()</code>. (mash-graz)</li> <li>Changed the <code><input></code> element's <code>pattern=""</code> attribute to use the <code>v</code> regular expression flag, instead of <code>u</code>.</li> <li>Fixed <code>jsdom.reconfigure({ url })</code> not updating <code>document.baseURI</code> or properties derived from it. This regressed in v26.1.0.</li> <li>Fixed CSS system colors, as well as the <code>initial</code>, <code>inherit</code>, and <code>unset</code> keywords, to resolve correctly. This is especially important since the change in v27.0.0-beta.1 to use system colors in the user agent stylesheet. (asamuzaK)</li> <li>Fixed CSS <code>background</code> property parsing and serialization. (asamuzaK)</li> <li>Fixed CSS color parsing and serialization inside of gradients. (asamuzaK)</li> <li>Fixed CSS <code>display</code> style resolution. (asamuzaK)</li> <li>Upgraded <code>@asamuzakjp/dom-selector</code>, which notably fixed repeated use of the <code>:scope</code> selector. (asamuzaK)</li> </ul> <h2>Version 27.0.0-beta.2</h2> <p>Significantly improved specification conformance for the <code>Window</code> object, including named properties and changing various data properties to accessor properties. This is not likely to be breaking, but since it's a complex change to such a core object, we're happy to do another beta testing release with this included before graduating the v27 line to stable.</p> <p>Additionally, updated <a href="https://github.com/jsdom/cssstyle";><code>cssstyle</code></a> to v4.4.0, which brings along various conformance fixes to the <code>CSSStyleDeclaration</code> object and its properties.</p> <h2>Version 27.0.0-beta.1</h2> <p>Breaking changes:</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/jsdom/jsdom/blob/main/Changelog.md";>jsdom's changelog</a>.</em></p> <blockquote> <h2>27.0.0</h2> <h3>Changes since 26.1.0</h3> <ul> <li>Node.js v20 is now the minimum supported version.</li> <li>Added a variety of event constructors, even though we do not implement their associated specifications or ever fire them: <code>BeforeUnloadEvent</code>, <code>BlobEvent</code>, <code>DeviceMotionEvent</code> (omitting <code>requestPermission()</code>), <code>DeviceOrientationEvent</code> (omitting <code>requestPermission()</code>), <code>PointerEvent</code>, <code>PromiseRejectionEvent</code>, and <code>TransitionEvent</code>.</li> <li>Added <code>movementX</code> and <code>movementY</code> to <code>MouseEvent</code>. (These are from the <a href="https://w3c.github.io/pointerlock/";>Pointer Lock</a> specification, the rest of which is not implemented.)</li> <li>Added <code>customElements.getName()</code>. (mash-graz)</li> <li>Updated the <a href="https://github.com/jsdom/jsdom/blob/ab384d4e381eb6bb99ade4146698d35167b54837/README.md#virtual-consoles";>virtual console</a>: <ul> <li><code>"jsdomError"</code> events are now documented, with specific <code>type</code> properties and other properties that depend on the type.</li> <li><code>sendTo()</code> was renamed to <code>forwardTo()</code>.</li> <li>The <code>jsdomErrors</code> option to <code>forwardTo()</code> can be used to control which errors are sent to the Node.js console. This replaces the previous <code>omitJSDOMErrors</code> boolean option.</li> <li><code>"jsdomError"</code>s for failed <code>XMLHttpRequest</code> fetches are no longer emitted.</li> <li>The values that are printed when forwarding <code>"jsdomError"</code>s to the Node.js console are streamlined.</li> </ul> </li> <li>Switched our CSS selector engine from <a href="https://www.npmjs.com/nwsapi";><code>nwsapi</code></a> to <a href="https://www.npmjs.com/package/@asamuzakjp/dom-selector";><code>@asamuzakjp/dom-selector</code></a>, closing over 20 selector-related bugs.</li> <li>Upgraded <a href="https://www.npmjs.com/package/tough-cookie";><code>tough-cookie</code></a>, which now considers URLs like <code>http://localhost/</code> to be secure contexts (per <a href="https://w3c.github.io/webappsec-secure-contexts/#is-origin-trustworthy";>the spec</a>), and thus will return <code>Secure</code>-flagged cookies for such URLs. (colincasey)</li> <li>Upgraded <a href="https://github.com/jsdom/cssstyle";><code>cssstyle</code></a>, which brings along many improvements and fixes to the <code>CSSStyleDeclaration</code> object and its properties.</li> <li>Updated the user agent stylesheet to be derived from the HTML Standard, instead of from an old revision of Chromium.</li> <li>Changed <code>element.click()</code> to fire a <code>PointerEvent</code> instead of a <code>MouseEvent</code>.</li> <li>Changed certain events to be passive by default.</li> <li>Changed the <code><input></code> element's <code>pattern=""</code> attribute to use the <code>v</code> regular expression flag, instead of <code>u</code>.</li> <li>Fixed many specification conformance issues with the <code>Window</code> object, including named properties and changing various data properties to accessor properties.</li> <li>Fixed <code>document.createEvent()</code> to accept a more correct set of event names.</li> <li>Fixed the <code>ElementInternals</code> accessibility getters and setters. (They were introduced in v23.1.0, but due to inadequate test coverage never actually worked.)</li> <li>Fixed using <code>Object.defineProperty()</code> on certain objects, such as <code>HTMLSelectElement</code> instances.</li> <li>Fixed <code>jsdom.reconfigure({ url })</code> not updating <code>document.baseURI</code> or properties derived from it. (This regressed in v26.1.0.)</li> <li>Fixed CSS system colors, as well as the <code>initial</code>, <code>inherit</code>, and <code>unset</code> keywords, to resolve correctly. (asamuzaK)</li> <li>Fixed CSS <code>display</code> style resolution. (asamuzaK)</li> </ul> <h3>Changes since 27.0.0-beta.3</h3> <ul> <li>Upgraded <code>cssstyle</code>, which brings along various CSS parsing fixes.</li> </ul> <h2>27.0.0-beta.3</h2> <ul> <li>Breaking change: upgraded <code>tough-cookie</code>, which now considers URLs like <code>http://localhost/</code> to be secure contexts (per <a href="https://w3c.github.io/webappsec-secure-contexts/#is-origin-trustworthy";>the spec</a>), and thus will return <code>Secure</code>-flagged cookies for such URLs. (colincasey)</li> <li>Added <code>customElements.getName()</code>. (mash-graz)</li> <li>Changed the <code><input></code> element's <code>pattern=""</code> attribute to use the <code>v</code> regular expression flag, instead of <code>u</code>.</li> <li>Fixed <code>jsdom.reconfigure({ url })</code> not updating <code>document.baseURI</code> or properties derived from it. This regressed in v26.1.0.</li> <li>Fixed CSS system colors, as well as the <code>initial</code>, <code>inherit</code>, and <code>unset</code> keywords, to resolve correctly. This is especially important since the change in v27.0.0-beta.1 to use system colors in the user agent stylesheet. (asamuzaK)</li> <li>Fixed CSS <code>background</code> property parsing and serialization. (asamuzaK)</li> <li>Fixed CSS color parsing and serialization inside of gradients. (asamuzaK)</li> <li>Fixed CSS <code>display</code> style resolution. (asamuzaK)</li> <li>Upgraded <code>@asamuzakjp/dom-selector</code>, which notably fixed repeated use of the <code>:scope</code> selector. (asamuzaK)</li> </ul> <h2>27.0.0-beta.2</h2> <p>Significantly improved specification conformance for the <code>Window</code> object, including named properties and changing various data properties to accessor properties. This is not likely to be breaking, but since it's a complex change to such a core object, we're happy to do another beta testing release with this included before graduating the v27 line to stable.</p> <p>Additionally, updated <a href="https://github.com/jsdom/cssstyle";><code>cssstyle</code></a> to v4.4.0, which brings along various conformance fixes to the <code>CSSStyleDeclaration</code> object and its properties.</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jsdom/jsdom/commit/f2a505d5b8a91d8deb29847b2b028c334aec53df";><code>f2a505d</code></a> Version 27.0.0</li> <li><a href="https://github.com/jsdom/jsdom/commit/ab384d4e381eb6bb99ade4146698d35167b54837";><code>ab384d4</code></a> Update dependencies and dev dependencies</li> <li><a href="https://github.com/jsdom/jsdom/commit/ff31107eea10a85d6934701d5dc557e28122d69a";><code>ff31107</code></a> Add passing :nth-child() in shadow DOM regresssion test</li> <li><a href="https://github.com/jsdom/jsdom/commit/4e92a8e7722b49f71fac0214301bcc2621d1fdc2";><code>4e92a8e</code></a> Add passing :scope() in :not() regression test</li> <li><a href="https://github.com/jsdom/jsdom/commit/c3d69402eb9b8c5ce135f760a8e87aff989daca9";><code>c3d6940</code></a> Version 27.0.0-beta.3</li> <li><a href="https://github.com/jsdom/jsdom/commit/8073baecb4a6f288713c953bea3c7776f8c29d01";><code>8073bae</code></a> Use "v" instead of "u" for the pattern="" attribute</li> <li><a href="https://github.com/jsdom/jsdom/commit/d77ffd040cdf2ac0d0bbaf52edb5e544f225b037";><code>d77ffd0</code></a> Implement customElements.getName()</li> <li><a href="https://github.com/jsdom/jsdom/commit/ac385f9484e8f24d1c354f3083a25a7b80cf4866";><code>ac385f9</code></a> Fix reconfigure() not updating base URL caches</li> <li><a href="https://github.com/jsdom/jsdom/commit/3ccd5dea4878e1d7964b35d90049086995149881";><code>3ccd5de</code></a> Update tough-cookie to v6</li> <li><a href="https://github.com/jsdom/jsdom/commit/c2de8bd1553e5ca50823a7fa5be385947d7f6dba";><code>c2de8bd</code></a> Address CSS regressions in v27 beta</li> <li>Additional commits viewable in <a href="https://github.com/jsdom/jsdom/compare/26.0.0...27.0.0";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
