9de62e0d0f
## Description - Fix XSS issue by upgrading packages such that the `serialize-javascript` dependency resolves to `v6.0.2` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/376 - Fix XSS issue by upgrading `esbuild` to `v0.25.1` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/367 - Fix vite vulnerability by upgrading `vite` to `v6.2.1` (this is a major version upgrade and effects the `storybook` package) Fixes https://github.com/appsmithorg/appsmith/security/dependabot/364 Fixes https://github.com/appsmithorg/appsmith/security/dependabot/334 Fixes https://github.com/appsmithorg/appsmith/security/dependabot/336 - Fixes TinyMCE XSS vulnerabilities by upgrading `tinymce` to `v7.7.1` and `tinymce-react` to `v6.0.0` (Major version upgrade) Fixes https://github.com/appsmithorg/appsmith/security/dependabot/347 Fixes https://github.com/appsmithorg/appsmith/security/dependabot/348 Fixes https://github.com/appsmithorg/appsmith/security/dependabot/290 - Fix vulnerability in `webpack` by upgrading to `v5.98.0` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/324 - Fix vulnerability in `@sentry/browser` by upgrading `@sentry/react` to `v7.120.3` (Major version upgrade) _Note: [`Severity` enum has been deprecated](https://docs.sentry.io/platforms/javascript/migration/v7-to-v8/#removal-of-severity-enum)_ Fixes https://github.com/appsmithorg/appsmith/security/dependabot/345 - Fix vulnerability in `axios` by upgrading to `v1.8.3` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/391 - Fix vulnerability in `@babel/runtime` by upgrading to `v7.26.10` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/393 - Fix vulnerability in `@babel/helper` by upgrading `@babel/core` to `v7.26.10` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/392 - Fix vulnerability in `prismjs` by upgrading to `v1.30.0` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/390 - Fix vulnerability in `cookie` by upgrading to `v0.7.0` Fixes https://github.com/appsmithorg/appsmith/security/dependabot/346 ## Automation /ok-to-test tags="@tag.All" ### 🔍 Cypress test results <!-- This is an auto-generated comment: Cypress test results --> > [!TIP] > 🟢 🟢 🟢 All cypress tests have passed! 🎉 🎉 🎉 > Workflow run: <https://github.com/appsmithorg/appsmith/actions/runs/13967528524> > Commit: 6a36c9755e7df9e22c1c109876c127b963127a71 > <a href="https://internal.appsmith.com/app/cypress-dashboard/rundetails-65890b3c81d7400d08fa9ee5?branch=master&workflowId=13967528524&attempt=1" target="_blank">Cypress dashboard</a>. > Tags: `@tag.All` > Spec: > <hr>Thu, 20 Mar 2025 12:03:08 UTC <!-- end of auto-generated comment: Cypress test results --> ## Communication Should the DevRel and Marketing teams inform users about this change? - [ ] Yes - [x] No <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit ## Summary by CodeRabbit - **New Features** - Enhanced the text editor experience by introducing quick markdown-style shortcuts for headings, lists, and quotes. - **Chores** - Upgraded numerous underlying libraries and tools for improved performance and stability. - Streamlined error logging by refining how errors are categorized and reported. - Improved accessibility by updating element selectors to use `aria-label` attributes. <!-- end of auto-generated comment: release notes by coderabbit.ai --> |
||
|---|---|---|
| .. | ||
| e2e | ||
| fixtures | ||
| locators | ||
| patches | ||
| plugins | ||
| scripts | ||
| snapshots/Regression/ClientSide | ||
| support | ||
| .eslintrc.json | ||
| apply-patches.js | ||
| Dockerfile | ||
| index.ts | ||
| init-mssql-dump-for-test.sql | ||
| init-mysql-dump-for-test.sql | ||
| init-pg-dump-for-test.sql | ||
| limited-tests.txt | ||
| setup-test-ci.sh | ||
| tags.js | ||
| test.sh | ||
| tsconfig.json | ||
| xataadd.sh | ||
| xatadel.sh | ||