• 7efb22a 1.2.6
• ef88b93 security notice for additional prototype pollution issue
• c2b9819 isConstructorOrProto adapted from PR
• bc8ecee test from prototype pollution PR
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• f299b52 Bump to v4.17.21
• c4847eb Improve performance of toNumber, trim and trimEnd on large input strings
• 3469357 Prevent command injection through _.template's variable option
• ded9bc6 Bump to v4.17.20.
• 63150ef Documentation fixes.
• 00f0f62 test.js: Remove trailing comma.
• 846e434 Temporarily use a custom fork of lodash-cli.
• 5d046f3 Re-enable Travis tests on 4.17 branch.
• aa816b3 Remove /npm-package.
• See full diff in compare view

This version was pushed to npm by bnjmnt4n, a new releaser for lodash since your current version.

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• ebdf849 1.3.4
• ac57872 move all allocUnsafes to allocs for easier maintenance
• c64c950 1.3.3
• 0598ba1 fix .. in encodingLength
• 010aedb 1.3.2
• 0d0d593 backport encodingLength fix to v1
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

v20211201.0.0

Compare Source

v1.0.147

Compare Source

• Add serde::de::value::EnumAccessDeserializer which transforms an EnumAccess into a Deserializer (#​2305)

v1.0.146

Compare Source

• Allow internally tagged newtype variant to contain unit (#​2303, thanks @​tage64)

v1.0.147

Compare Source

• Add serde::de::value::EnumAccessDeserializer which transforms an EnumAccess into a Deserializer (#​2305)

v1.0.146

Compare Source

• Allow internally tagged newtype variant to contain unit (#​2303, thanks @​tage64)

v3.1.0

Compare Source

• Use @​actions/core saveState and getState
• Add github-server-url input

v3.3.0

Compare Source

What's Changed

• Implement branch list using callbacks from exec function by @​cory-miller in https://github.com/actions/checkout/pull/1045
• Add in explicit reference to private checkout options by @​vanZeben in https://github.com/actions/checkout/pull/1050
• Fix comment typos (that got added in #​770) by @​lurch in https://github.com/actions/checkout/pull/1057

New Contributors

• @​vanZeben made their first contribution in https://github.com/actions/checkout/pull/1050
• @​lurch made their first contribution in https://github.com/actions/checkout/pull/1057

Full Changelog: https://github.com/actions/checkout/compare/v3.2.0...v3.3.0

v3.2.0

Compare Source

What's Changed

• Add GitHub Action to perform release by @​rentziass in https://github.com/actions/checkout/pull/942
• Fix status badge by @​ScottBrenner in https://github.com/actions/checkout/pull/967
• Replace datadog/squid with ubuntu/squid Docker image by @​cory-miller in https://github.com/actions/checkout/pull/1002
• Wrap pipeline commands for submoduleForeach in quotes by @​jokreliable in https://github.com/actions/checkout/pull/964
• Update @​actions/io to 1.1.2 by @​cory-miller in https://github.com/actions/checkout/pull/1029
• Upgrading version to 3.2.0 by @​vmjoseph in https://github.com/actions/checkout/pull/1039

New Contributors

• @​ScottBrenner made their first contribution in https://github.com/actions/checkout/pull/967
• @​cory-miller made their first contribution in https://github.com/actions/checkout/pull/1002
• @​jokreliable made their first contribution in https://github.com/actions/checkout/pull/964
• @​vmjoseph made their first contribution in https://github.com/actions/checkout/pull/1039

Full Changelog: https://github.com/actions/checkout/compare/v3.1.0...v3.2.0

v1.0.152

Compare Source

• Documentation improvements

v1.0.151

Compare Source

• Update serde::{ser,de}::StdError to re-export core::error::Error when serde is built with feature="std" off and feature="unstable" on (#​2344)

v1.0.150

Compare Source

• Relax some trait bounds from the Serialize impl of HashMap and BTreeMap (#​2334)
• Enable Serialize and Deserialize impls of std::sync::atomic types on more platforms (#​2337, thanks @​badboy)

v1.0.149

Compare Source

• Relax some trait bounds from the Serialize impl of BinaryHeap, BTreeSet, and HashSet (#​2333, thanks @​jonasbb)

v1.0.148

Compare Source

• Support remote derive for generic types that have private fields (#​2327)

v1.0.152

Compare Source

• Documentation improvements

v1.0.151

Compare Source

• Update serde::{ser,de}::StdError to re-export core::error::Error when serde is built with feature="std" off and feature="unstable" on (#​2344)

v1.0.150

Compare Source

• Relax some trait bounds from the Serialize impl of HashMap and BTreeMap (#​2334)
• Enable Serialize and Deserialize impls of std::sync::atomic types on more platforms (#​2337, thanks @​badboy)

v1.0.149

Compare Source

• Relax some trait bounds from the Serialize impl of BinaryHeap, BTreeSet, and HashSet (#​2333, thanks @​jonasbb)

v1.0.148

Compare Source

• Support remote derive for generic types that have private fields (#​2327)

v0.20.0

Compare Source

Changelog

• 🛠 Fixes

  • Fix onsubmit event type in docs. [@​Allan, #​2926]
  • Fix issues with tuples in closing tag. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2886]
  • Fix checked property being reset. [@​WorldSEnder, #​2907]
  • Fix VList Stream in SSR. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2801]
  • Fixed NodeRef not being implicitly cloned with components. [@​wdcocq, #​2775]
  • Attributes: Fix apply_diff_index_maps. [[@​Dietmar Maurer](https://github.com/Dietmar Maurer), #​2653]
  • Fix bubbling of events originating in shadow dom. [@​WorldSEnder, #​2627]
  • Fix some Hook edge cases. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2592]
  • Fix issue with node refs and hydration. [@​WorldSEnder, #​2597]
  • Fix macro hygiene issues. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2585]
  • Fix casing of dynamic tags. [@​WorldSEnder, #​2578]
  • Automatically convert closure to callback for component properties. [[@​Finn Bear](https://github.com/Finn Bear), #​2554]
  • Fix a problem with NodeRefs and VTags, ref. [@​WorldSEnder, #​2279]
  • Fix defaulted type parameter.. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2284]
  • Use Ref::filter_map if rustc is later than 1.63. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2904]
  • Evaluate props in the order they're defined. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2887]
  • Context: Avoid storing a copy of children. [[@​Dietmar Maurer](https://github.com/Dietmar Maurer), #​2885]
  • Various improvements to Classes, oriented around reducing allocations. [[@​Nathan West](https://github.com/Nathan West), #​2870]
  • Resume Suspension upon unmount. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2874]
  • Make fn update() re-render the component by default. [[@​Cecile Tonglet](https://github.com/Cecile Tonglet), #​2786]
  • Do not detach child elements if parent element is about to be detached. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2420]
  • remove some unsafes by using atomics. [@​WorldSEnder, #​2186]
  • use_prepared_state & use_transitive_state. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2650]
  • Silence some warnings from derive(Properties). [@​WorldSEnder, #​2266]
  • onsubmit should be a SubmitEvent. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2816]

• ⚡️ Features

  • Add VNode::from_html_unchecked. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2842]
  • Make Yew lints opt-in. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2882]
  • Allow skipping a callback when reforming. [[@​Jens Reimann](https://github.com/Jens Reimann), #​2864]
  • Polled SSR Stream. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2824]
  • Add send_stream method for Scope. [@​laizy, #​2619]
  • Allow functions returning unit in use_effect. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2849]
  • Configurable Runtime. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2772]
  • Pinned Channels. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2811]
  • Bind to properties instead of attributes by default. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2819]
  • Convert nightly from a feature flag to a compiler flag. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2827]
  • Reduce SSR Buffers in VList. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2826]
  • Allow keywords after dash in element and attribute names. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2820]
  • Replace custom logging by tracing. [@​WorldSEnder, #​2814]
  • Implement sleep and interval for Yew Platform. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2784]
  • Remove component NodeRef. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2783]
  • Prepared States dependency should be Reference Counted. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2769]
  • Document features automatically.. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2780]
  • Streamed SSR Response. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2697]
  • Nightly features. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2743]
  • Allow VNode props to be converted to Children.. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2749]
  • Redo derive(Properties), take 2. [@​WorldSEnder, #​2729]
  • Callback::reform() should return Callback<T, OUT>. [@​orzogc, #​2719]
  • Span hygiene and editor UX. [@​WorldSEnder, #​2702]
  • Block props update during hydration. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2665]
  • Point to callback_future in callback docs. [@​Shadlock0133, #​2674]
  • Change access to VList children to a wrapper. [@​WorldSEnder, #​2673]
  • Partially undo #​2673, different approach for the DerefMut impl of VList. [@​WorldSEnder, #​2692]
  • Rework a bunch of cfg(feature) flags to be more principled. [@​WorldSEnder, #​2666]
  • Delay Hydration second render until all assistive nodes have been removed. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2629]
  • Allow to consume deps in use_callback. [[@​Jet Li](https://github.com/Jet Li), #​2617]
  • Add use_future hook to make consuming futures as suspense easier. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2609]
  • Add the ability to use non-literal string as attribute names. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2593]
  • Introduce a dedicated use_force_update hook. [@​WorldSEnder, #​2586]
  • Impl ImplicitClone for Rc where T: Sized. [@​Nano, #​2594]
  • SSR Hydration. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2552]
  • Add use_callback hook. [[@​Jet Li](https://github.com/Jet Li), #​2566]
  • Introduce additional information in SSR artifact to facilitate Hydration. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2540]
  • Scoped event handlers. [@​WorldSEnder, #​2510]
  • An ever Increasing Component ID. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2537]
  • Prevents Fallback UI from becoming suspended. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2532]
  • #[cfg(feature = "render")] and yew::Renderer. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2498]
  • Introduce explicit internal datastructures modeling dom state. [@​WorldSEnder, #​2330]
  • Improve AnyScope API. [[@​Aaron Erhardt](https://github.com/Aaron Erhardt), #​2445]
  • Automatic Message Batching. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2421]
  • Add Other variant to the ListenerKind. [[@​Alexander Mescheryakov](https://github.com/Alexander Mescheryakov), #​2417]
  • Function Components & Hooks V2. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2401]
  • Add ContextHandle in yew::prelude. [[@​Anuvrat Singh](https://github.com/Anuvrat Singh), #​2372]
  • Separate scheduler rendered call from create and render. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2374]
  • Update to edition 2021. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2354]
  • Server-side Rendering (without hydration). [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2335]
  • Make BaseComponent Sealed.. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2359]
  • Remove start_app_as_body.. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2346]
  • Bump minimal supported rust version (MSRV) to 1.56. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2334]
  • Suspense Support. [[@​Kaede Hoshikawa](https://github.com/Kaede Hoshikawa), #​2212]
  • make layout testing code public. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2310]
  • Refactor and simplify Callback. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2301]
  • Add pending event listener on the VTag. [[@​Alexander Mescheryakov](https://github.com/Alexander Mescheryakov), #​2300]
  • constify VList::new. [[@​Alexander Mescheryakov](https://github.com/Alexander Mescheryakov), #​2293]
  • Allow function_component creation based on function name. [[@​Muhammad Hamza](https://github.com/Muhammad Hamza), #​2292]
  • Implement IntoPropValue for Rc. [[@​Zachary Stewart](https://github.com/Zachary Stewart), #​2285]
  • Raw field names in property structs. [@​WorldSEnder, #​2273]

Cargo.toml

• log 0.4.17
• serde 1.0.147
• serde_derive 1.0.147
• wasm-bindgen 0.2.83
• wasm-logger 0.2.0
• yew 0.19.3
• gloo-storage 0.2.2
• web-sys 0.3.60
• wasm-bindgen-test 0.3.33

.gitpod.Dockerfile

• chweicki/gitpod-rust-workspace 0.1.3

.github/workflows/build.yml

• actions/checkout v3.1.0
• redhat-actions/buildah-build v2

.github/workflows/check.yml

• actions/checkout v3
• actions-rs/toolchain v1

.github/workflows/codeql-analysis.yml

• actions/checkout v3
• github/codeql-action v2
• github/codeql-action v2
• github/codeql-action v2

.github/workflows/release.yml

• actions/checkout v3.1.0
• actions-rs/toolchain v1
• actions/upload-artifact v3
• actions/checkout v3
• ncipollo/semantic-version-action v1
• sigstore/cosign-installer b6757d8360bb6b9803c38b68e8cb7442baaf7eb5
• redhat-actions/podman-login v1
• actions/download-artifact v3
• redhat-actions/buildah-build v2
• redhat-actions/push-to-registry v2
• actions/checkout v3
• actions/download-artifact v3
• JamesIves/github-pages-deploy-action v4.4.1

.github/workflows/semgrep.yml

• actions/checkout v3
• returntocorp/semgrep-action v1