[Snyk] Upgrade html-react-parser from 0.4.7 to 0.14.3

[nickmeyer]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade html-react-parser from 0.4.7 to 0.14.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 27 versions ahead of your current version.
• The recommended version was released 3 years ago, on 2020-12-12.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-610226	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1023599	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Information Exposure SNYK-JS-NODEFETCH-2342118	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Denial of Service SNYK-JS-NODEFETCH-674311	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1072471	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: html-react-parser

• 0.14.3 - 2020-12-12
  

  0.14.3 (2020-12-12)

  Bug Fixes

  • dom-to-react: transform style to object for Web Components (83efbce), closes #188
• 0.14.2 - 2020-11-23
  

  0.14.2 (2020-11-23)

  Refactor

  • replace cssToJs with style-to-js & remove camelCase (a980df4)
• 0.14.1 - 2020-11-03
  

  0.14.1 (2020-11-03)

  Build System

  • package: add react v17 to peerDependencies (7fa27b0)
• 0.14.0 - 2020-09-11
  

  0.14.0 (2020-09-11)

  Features

  • export attributesToProps (00fbef2)
  • update readme (76f8b0c)
• 0.13.0 - 2020-06-07
  

  0.13.0 (2020-06-07)

  Features

  • dom-to-react: add option trim that skips whitespace nodes (413eaa0)
  • index: type trim in HTMLReactParserOptions (be71b13)
• 0.12.0 - 2020-06-04
  

  0.12.0 (2020-06-04)

  Features

  • index: add htmlparser2 type to HTMLReactParserOptions (81f74fb)
  • index: add options.htmlparser2 (c4ecf64)
• 0.11.1 - 2020-06-03
  

  0.11.1 (2020-06-03)

  Performance Improvements

  • index: return empty array if first argument is empty string (7f61f97)
• 0.11.0 - 2020-06-02
  

  0.11.0 (2020-06-02)

  Features

  • package: upgrade [email protected] (d30bfdc)
• 0.10.5 - 2020-05-26
  

  0.10.5 (2020-05-26)

  Tests

  • html-to-react: tidy and organize tests in html-to-react.js (8dfbfe0)

  Build System

  • package: add missing peerDependency typescript (91fb693)
  • package: upgrade devDependencies (b2dc83b)
  • rollup: upgrade rollup, consolidate config, remove cross-env (55b2b4e)
• 0.10.4 - 2020-05-25
  

  0.10.4 (2020-05-25)

  Tests

  • attributes-to-props: test that CSS comment is not parsed (0c27987)
  • dom-to-react: tidy tests and add case for single node replace (452f6be)
  • tidy tests, replace assert.equal with assert.strictEqual (ef04eff)
• 0.10.3 - 2020-03-28
• 0.10.2 - 2020-03-13
• 0.10.1 - 2020-02-08
• 0.10.0 - 2019-11-09
• 0.9.2 - 2019-11-04
• 0.9.1 - 2019-07-09
• 0.9.0 - 2019-07-09
• 0.8.1 - 2019-07-03
• 0.8.0 - 2019-06-24
• 0.7.1 - 2019-05-27
• 0.7.0 - 2019-04-05
• 0.6.4 - 2019-03-29
• 0.6.3 - 2019-03-19
• 0.6.2 - 2019-03-07
• 0.6.1 - 2019-01-03
• 0.6.0 - 2018-12-17
• 0.5.0 - 2018-12-16
• 0.4.7 - 2018-09-14

from html-react-parser GitHub release notes

Commit messages

Package name: html-react-parser

• 7f7695b chore(release): 0.14.3
• 8dbfc13 Merge pull request Add support for "today" when using date filter harttle/liquidjs#193 from remarkablemark/fix/web-components-style
• 83efbce fix(dom-to-react): transform style to object for Web Components
• 2afcf15 Merge pull request Add json filter for debugging objects? harttle/liquidjs#192 from remarkablemark/refactor/dom-to-react
• e35be8e test(dom-to-react): add test cases for text, comment, and doctype
• 6d31abc refactor(dom-to-react): rename `shouldPassAttributesUnaltered`
• d76c68c refactor(dom-to-react): require `react` on top and tidy JSDoc
• 42317c7 Merge pull request fix: keep orignal order if inputs are nil for caseInsensitiveCmp harttle/liquidjs#191 from remarkablemark/test/refactor
• e4bf975 test: refactor html and svg data to their own files and folder
• fb90b8f test(index): refactor HTMLReactParser tests to snapshots
• 60f009e test: rename test/html-to-react.test.js -> test/index.test.js
• 4594798 test(html-to-react): refactor tests for HTMLReactParser
• 92582a8 test(dom-to-react): update custom element with style snapshot
• d4aa3c3 Merge pull request fix: add funding entry to show up in npm fund command harttle/liquidjs#190 from remarkablemark/ci/github-actions
• 5245c3e docs(readme): replace Travis CI with workflow status badge
• 56d1a64 ci(github): rename workflow to `build`
• 04b7243 ci(travis): remove .travis.yml
• 59d9b95 ci(github): add Node.js workflow using GitHub Actions
• aedb453 Merge pull request Update index.html harttle/liquidjs#187 from remarkablemark/refactor/utilities
• 7c209cb refactor(utilities): create `setStyleProp` helper from `styleToJS`
• 774c38e test(attributes-to-props): add test when first argument is undefined
• d42bf5f Merge pull request [Regression v9] Comparison operator with no space after first operand is always false harttle/liquidjs#186 from remarkablemark/build/devDependencies
• ebb1816 build(package): upgrade devDependencies
• d290fad Merge pull request Define global objects which can be accessed by render tag  harttle/liquidjs#185 from remarkablemark/test/helpers

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs