[Snyk] Upgrade vue from 2.5.16 to 2.6.12 #3

snyk-bot · 2021-06-08T19:40:34Z

Snyk has created this PR to upgrade vue from 2.5.16 to 2.6.12.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 24 versions ahead of your current version.
The recommended version was released 10 months ago, on 2020-08-20.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Cross-site Scripting (XSS) npm:vue:20180802	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: vue

2.6.12 - 2020-08-20
build: release 2.6.12
2.6.11 - 2019-12-13
Security Fixes
- Bump vue-server-renderer's dependency of serialize-javascript to 2.1.2
Bug Fixes
- types: fix prop constructor type inference (#10779) 4821149, closes #10779
- fix function expression regex (#9922) 569b728, closes #9922 #9920
- compiler: Remove the warning for valid v-slot value (#9917) 085d188, closes #9917
- types: fix global namespace declaration for UMD bundle (#9912) ab50e8e, closes #9912
2.6.10 - 2019-03-20
Bug Fixes
- codegen: support named function expression in v-on (#9709) 3433ba5, closes #9709 #9707
- core: cleanup timeouts for async components (#9649) 02d21c2, closes #9649 #9648
- core: only unset dom prop when not present f11449d, closes #9650
- core: use window.performance for compatibility in JSDOM (#9700) 653c74e, closes #9700 #9698
- scheduler: revert timeStamp check 22790b2, closes #9729 #9632
- slots: fix slots not updating when passing down normal slots as $scopedSlots ebc1893, closes #9699
- types: allow using functions on the PropTypes (#9733) df4af4b, closes #9733 #9692
- types: support string type for style in VNode data (#9728) 982d5a4, closes #9728 #9727
2.6.9 - 2019-03-14
Bug Fixes
- event timeStamp check for Qt 7591b9d, closes #9681
- should consider presence of normal slots when caching normalized scoped slots 9313cf9, closes #9644
- should not swallow user catch on rejected promise in methods 7186940, closes #9694
- should use fallback for scoped slots with single falsy v-if 781c705, closes #9658
- ssr: not push non-async css files into map (#9677) d282400, closes #9677
- v-bind object should be overridable by single bindings (#9653) 0b57380, closes #9653 #9641
- compiler: whitespace: 'condense' should honor pre tag as well (#9660) f1bdd7f, closes #9660
- scheduler: fix getNow check in IE9 (#9647) da77d6a, closes #9647 #9632
- scheduler: getNow detection can randomly fail (#9667) ef2a380, closes #9667
- ssr: fix nested async functional componet rendering (#9673) 8082d2f, closes #9673 #9643
- transition: fix appear check for transition wrapper components (#9668) 4de4649, closes #9668
2.6.8 - 2019-03-01
Read more
2.6.7 - 2019-02-21
Read more
2.6.6 - 2019-02-12
Read more
2.6.5 - 2019-02-11
Read more
2.6.4 - 2019-02-08
2.6.3 - 2019-02-06
2.6.2 - 2019-02-05
2.6.1 - 2019-02-04
2.6.0 - 2019-02-04
2.6.0-beta.3 - 2019-01-30
2.6.0-beta.2 - 2019-01-26
2.6.0-beta.1 - 2019-01-16
2.5.22 - 2019-01-11
2.5.21 - 2018-12-11
2.5.20 - 2018-12-10
2.5.19 - 2018-12-09
2.5.18 - 2018-12-07
2.5.18-beta.0 - 2018-12-02
2.5.17 - 2018-08-01
2.5.17-beta.0 - 2018-03-23
2.5.16 - 2018-03-13