[Snyk] Upgrade bootstrap from 5.2.3 to 5.3.3

[ZeroXClem]

Snyk has created this PR to upgrade bootstrap from 5.2.3 to 5.3.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.

• The recommended version was released on 6 months ago.

Release notes

Package name: bootstrap

• 5.3.3 - 2024-02-20
  

  Highlights

  • Fixed a breaking change introduced with color modes where it was required to manually import variables-dark.scss when building Bootstrap with Sass. Now, _variables.scss will automatically import _variables-dark.scss. If you were already importing _variables-dark.scss manually, you should keep doing it as it won't break anything and will be the way to go in v6.
  • Fixed a regression in the selector engine that wasn't able to handle multiple IDs anymore.

  Color modes

  • Badges now use the .text-bg-* text utilities to be certain that the text is always readable (especially when the customized colors are different in light and dark modes).
  • Fixed our color-modes.js script to handle the case where the OS is set to light mode and the auto color mode is used on the website. If you copied the script from our docs, you should apply this change to your own script.
  • Fixed color schemes description in the color modes documentation to show that color-scheme() only accept light and dark values as parameters.

  Miscellaneous

  • Allowed <dl>, <dt> and <dd> in the sanitizer.
  • Dropped evenly items distribution for modal and offcanvas headers.
  • Fixed the accordion CSS selectors to avoid inheritance issues when nesting accordions.
  • Fixed the focus box-shadow for the validation stated form controls.
  • Fixed the focus ring on focused checked buttons.
  • Fixed the product example mobile navbar toggler.
  • Changed the RTL processing of carousel control icons.

  ---

  🎨 CSS

  • #37508: Use child combinators to avoid inheriting parent accordion's flush styles
  • #38719: Fix focus box-shadow for validation stated form-controls
  • #38884: fix border-radius on radio-switch
  • #39294: Tests: update navbar in visual modal test
  • #39373: refactor css: modal and offcanvas header spacing
  • #39380: Fix Sass compilation breaking change in v5.3
  • #39387: docs: fix typo
  • #39411: Optimize the accordion icon
  • #39497: Fix a typo
  • #39536: Changed RTL processing of carousel control icons
  • #39560: Drop --bs-accordion-btn-focus-border-color and deprecate $accordion-button-focus-border-color
  • #39595: CSS: Fix the focus ring on focused checked buttons

  ☕️ JavaScript

  • #39201: Selector Engine: fix multiple IDs
  • #39224: Fix edge case in color-mode.js
  • #39376: Allow dl, dt and dd in sanitizer

  📖 Docs

  • #39200: Typo Fix
  • #39214: Doc: use .text-bg-{color} for all badges
  • #39246: Docs: fix for example code blocks have unnecessary 30px right-margin
  • #39249: Doc: consistent rendering of 'Heads up!' callouts
  • #39281: Fix getOrCreateInstance() doc example
  • #39293: Update background.md
  • #39304: Doc: add expanded accordion explanation
  • #39320: Drop .table-light from table foot example
  • #39340: Doc: add dispose() to Offcanvas methods
  • #39378: Docs: fix sentence in modal
  • #39417: Fix color schemes description in Sass customization documentation
  • #39418: Docs: change vite config path import in vite guide
  • #39435: Docs: add shift-color() usage example in sass customization page
  • #39458: Docs: enhance .card-img-* description
  • #39503: Minor image compression improvements
  • #39519: Docs: use consistent HTML elements in Utilities -> Background page
  • #39520: Docs: drop unused .theme-icon class
  • #39528: docs: clean up example.html
  • #39537: Docs: fix desc around deprecated Sass mixins for alerts and list groups
  • #39539: Update links on get-started page
  • #39592: Update vite.md
  • #39604: Fix typo in 'media-breakpoint-between' in migration docs
  • #39617: Docs: add missing comma in native font stack code source in Content -> Reboot
  • #39663: updated table to be responsive

  🛠 Examples

  • #39657: Fix product example mobile navbar toggler
  • #39585: Docs: Add missing type="button" to Cheatsheet nav buttons

  🏭 Tests

  • #39294: Tests: update navbar in visual modal test

  🧰 Misc

  • #39096: CI: stop running coveralls in forks
  • #39501: CI: switch to Node.js 20

  📦 Dependencies

  • Updated numerous devDependencies
• 5.3.2 - 2023-09-14
  

  Highlights

  • Passing a percentage unit to the global abs() is deprecated since Dart Sass v1.65.0. It resulted in a deprecation warning when compiling Bootstrap with Dart Sass. This has been fixed internally by changing the values passed to the divide() function. The divide() function has not been fixed itself so that we can keep supporting node-sass cross-compatibility. In v6, this won't be an issue as we plan to drop support for node-sass.
  • Using multiple ids in a collapse target wasn't working anymore and has been fixed.

  Color modes

  • Increased color contrast of form range track background in light and dark modes.
  • Fixed table state rendering for color modes with a focus on the striped table in dark mode to increase color contrast.
  • Allow <mark> color customization for color modes.

  Docs

  • Added alternative CDNs section in Getting started -> Download.
  • Added Discord and Bootstrap subreddit links in README and Getting started -> Introduction:
    • Discord maintained by the community
    • Bootstrap subreddit

  ---

  🎨 CSS

  • #38816: Use box-shadow CSS variables shadow utilities
  • #38955: Fix radios looking like ellipse on responsive mode
  • #38976: Use box-shadow CSS vars instead of Sass vars in assets and variables
  • #39030: Fix dart-sass deprecation warning
  • #39033: Color mode: fix table state rendering
  • #39095: Make form range track background more contrasted
  • #39119: New Sass var $btn-link-focus-shadow-rgb to allow customization
  • #39141: New Sass variable to handle <mark> dark mode bg color

  ☕️ JavaScript

  • #38989: Collapse: Fix multiple ids calls
  • #39046: Dropdown: reuse variable

  📖 Docs

  • #38873: Discord reddit bootstrap
  • #38970: docs: add BootstrapVueNext to docs
  • #38977: Docs: Add missing form elements in focusable elements
  • #38978: Docs: Fix popover template role error
  • #38995: introduction: drop details element
  • #39037: Further improve image compression with oxipng and the latest jpegoptim
  • #39054: Docs: Remove incorrect mention of .left- and .right- utilities from migration guide
  • #39060: Migration: add back v5.0.0 heading
  • #39145: Docs: add warning callout to add a workaround when jsDelivr is not available
  • #39177: Fix: make theme selector tick icon visible when active in examples layout
  • #39179: download: Reword CDN paragraph

  🛠 Examples

  • #38994: examples: update 3rd-party packages
  • #39086: Correct grammar error in examples/starter-template

  🌎 Accessibility

  • #38978: Docs: Fix popover template role error
  • #39095: Make form range track background more contrasted

  🧰 Misc

  • #38983: Improve change-version script
  • #38984: Convert build scripts to ESM
  • #39021: CI: update permissions for calibreapp-image-actions.yml

  📦 Dependencies

  • Updated numerous devDependencies
• 5.3.1 - 2023-07-26
  

  Highlights

  • Color modes:
    • Increased color contrast for dark mode by replacing $gray-500 with $gray-300 for the body color
    • Added our color mode switcher JavaScript to our examples ZIP download
  • Components:
    • Improved disabled styling for all .nav-links, providing .disabled and :disabled for use with anchors and buttons
    • Add support for Home and End keys for navigating tabs by keyboard
    • Added some basic styling to toggle buttons when no modifier class is present
    • Fixed carousel colors in dark mode
  • Forms:
    • Fixed floating label disabled text color
  • Utilities:
    • .text-bg-* utilities now use CSS variables
  • Sass:
    • Add new $navbar-dark-icon-color Sass variable
    • Removed duplicate $alert Sass variables
    • Added a new variable for $vr-border-width to customize the vertical rule helper width
  • Documentation:
    • Added search to our homepage
    • Improved responsive behavior on Dashboard example
    • Improved dark mode rendering of Cheatsheet examples

  ---

  🎨 CSS

  • #38913: Floating labels: fix disabled with text inside
  • #38772: .text-bg-* helpers now use theme CSS variables
  • #38886: New Sass variable to change vertical rule width
  • #38851: Fix Sass properties order for newer stylelint-config-recess-order
  • #38815: Increase contrast in dark-mode (#38525)
  • #38774: Generalize disabled nav links CSS rules
  • #38673: Add $navbar-dark-icon-color
  • #38674: Remove duplicate $alert-*-scale Sass vars

  ☕️ JavaScript

  • #38498: Support Home and End keys in tabs

  📖 Docs

  • #38958: Examples: improve spinner buttons accessibility
  • #38947: Fix postcss plugin options
  • #38885: Docs: Update float responsive examples
  • #38946: Docs: remove v4 reference on homepage
  • #38948: Fix some typos in Customize > Sass doc
  • #38840: Docs: fix carousel carousel colors of carousel examples in dark mode
  • #38604: Add dropdown alignment options to button group example
  • #38894: Docs: add blank target and noopener rel to footer external links
  • #38902: Fix tooltip generated markup documentation
  • #38883: Docs: Fix incorrect class name on migration guide
  • #38708: add a base class style display for toggle buttons
  • #38827: Docs: add missing aria-disabled='true' to disabled anchors
  • #38844: Fix for text-reset example class name
  • #38838: JS/SCSS shortcodes: Add new feature to remove nested calls inside.
  • #38850: Add docs search to homepage
  • #38872: Docs: Improve Text Alignment Example
  • #38865: Fix custom-radio class name on migration guide
  • #38786: Explicitly add missing opacity-0 helper class example for clarity.
  • #38707: Update bottom border on dark navbar example
  • #38726: Update flex utilities link in navs docs
  • #38734: Minor fixes for Docs Versions page
  • #38745: Fix stack examples
  • #38751: Docs (tooltips): Fix "them" typo in markup section
  • #38688: Fix missing word issue on nav-tabs page
  • #38681: Docs: consistency between custom buttons, popovers and tooltips
  • #38600: collate distribution interval
  • #38632: docs(spinners): improve buttons examples accessibility
  • #38583: Docs: add more details on accessibility tips
  • #38554: Doc: fix 'Events' JS example
  • #38592: docs(forms): switch to aria-describedby
  • #38542: Use .d-none instead of inline styling
  • #38616: Add 'Issues assignment' section to the Contributing Guidelines
  • #38528: Adding a link to clearfix
  • #38538: Update Sass docs to mention compiling and including
  • #38623: Fix disabled element tooltip StackBlitz

  🛠 Examples

  • #38958: Examples: improve spinner buttons accessibility
  • #38952: dashboard: fix offcanvas md display
  • #38840: Docs: fix carousel carousel colors of carousel examples in dark mode
  • #38905: Fix dark mode rendering of Cheatsheet examples
  • #38711: Fix link colors in Sidebars example

  🌎 Accessibility

  • #38958: Examples: improve spinner buttons accessibility
  • #38498: Support Home and End keys in tabs
  • #38827: Docs: add missing aria-disabled='true' to disabled anchors
  • #38850: Add docs search to homepage
  • #38774: Generalize disabled nav links CSS rules
  • #38632: docs(spinners): improve buttons examples accessibility
  • #38583: Docs: add more details on accessibility tips
  • #38592: docs(forms): switch to aria-describedby

  🧰 Misc

  • #38747: Add color-modes.js to bootstrap-x.y.z-examples.zip

  📦 Dependencies

  • Updated numerous devDependencies
• 5.3.0 - 2023-05-30
  

  Release v5.3.0 (#38657)

  * Bump version to 5.3.0

  * Dist

• 5.3.0-alpha3 - 2023-04-03
  
  • Fixed wrong interpolated variables with node-sass/Hugo.
  • Added a check for interpolated variables to catch compilation errors with Node Sass when using Sass variables in calc() functions.
  • Started using --bs-border-radius variables across more components.
  • Added .d-inline-grid utility class.
  • Fixed .tooltip-inner placement when using variations in fallbackPlacements.
  • Fix selectors for dark mode carousel overrides when compiling with $color-mode-type: media-query.
  • Updated the styling of floating labels when "floated" to include a background-color to help with multiple lines of text in textareas. This also fixes the colors when form elements are disabled in floating forms.
  • Updated RFS to v10.0.0.

  Full Changelog: v5.3.0-alpha2...v5.3.0-alpha3

• 5.3.0-alpha2 - 2023-03-24
  

  🚀 Features

  • #33126: Add .nav-underline modifier class
  • #37762: Add new link utilities, icon link helper, and update colored link helpers
  • #38199: Docs: Better scroll

  🎨 CSS

  • #33125: Focus ring helper and utilities
  • #33126: Add .nav-underline modifier class
  • #35857: Add dark mode support
  • #36029: Add SCSS testing of the utilities API
  • #36143: Fix Android Chrome input date dimensions

[codesandbox]

Review or Edit in CodeSandbox

Open the branch in Web Editor • VS Code • Insiders

Open Preview

[coderabbitai]

Important

Review skipped

Ignore keyword(s) in the title.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.