Skip to content

Bump jstoxml from 6.0.1 to 7.0.1#430

Merged
github-actions[bot] merged 2 commits intomainfrom
dependabot/npm_and_yarn/jstoxml-7.0.1
Jul 4, 2025
Merged

Bump jstoxml from 6.0.1 to 7.0.1#430
github-actions[bot] merged 2 commits intomainfrom
dependabot/npm_and_yarn/jstoxml-7.0.1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 15, 2025
edited
Loading

Bumps jstoxml from 6.0.1 to 7.0.1.

Release notes

Sourced from jstoxml's releases.

v7.0.1

What's Changed

Full Changelog: davidcalhoun/jstoxml@v6.0.1...v7.0.1

Changelog

Sourced from jstoxml's changelog.

Changelog

Version 7.0.0

  • BREAKING: Convert all output to module format, deprecate UMD (CommonJS, window global) and minified export. Users will now need to use this via import { toXML } from 'jstoxml'; (module import)

Version 6.0.0

  • BREAKING: dependency updates

Version 5.0.0

  • BREAKING: dependency updates

Version 3.2.0

  • new config option selfCloseTags added which is used as an easier global setting to enable/disable self-closing tags.

Version 3.1.0

  • config option contentMap can now be passed to transform any XML content. For instance, if you want <a>null</a> to instead appear as <a></a> you pass in contentMap: (content) => { return content === null ? '' : content }
  • fixed an issue with improper line breaks and indenting with null content

Version 3.0.0

  • BREAKING CHANGE: config option attributesFilter has been renamed attributeReplacements
  • BREAKING CHANGE: config option filter has been renamed contentReplacements
  • CDATA blocks are now untouched (no HTML entity replacements) and unindented (#56)
  • true attribute values can now be outputted by setting config option attributeExplicitTrue: true (#57)
  • attributes can now be filtered out by supplying a custom function to the new config option attributeFilter. For instance, to remove null attribute values from the output, you can supply the config option attributeFilter: (key, val) => val === null (#58 and #10)
  • devDependencies: migrated from babel-eslint to @babel/eslint-parser, migrated from uglify-es to uglify-js

Version 2.2.0

  • Initial support for XML comments (#47)

Version 2.1.1

  • Fix for #48 (various 0-depth issues, bad "is output start" logic)

Version 2.0.0 (breaking)

  • New: automatic entity escaping for &, <, and > characters. In addition, quotes " in attributes are also escaped (see #41). Prior to this, users had to provide their own filter manually. Note that jstoxml makes an effort not to escape entities that appear to have already been encoded, to prevent double-encoding issues.
    • E.g. toXML({ foo: '1 < 2 & 2 > 1' }); // -> "<foo>1 &lt; 2 &amp; 2 &gt; 1</foo>"
    • To restore the default behavior from v1.x.x, simply pass in false to filter and attributesFilter options: toXML({ foo: '1 < 2 & 2 > 1' }, { filter: false, attributesFilter: false }); // -> "<foo>1 < 2 & 2 > 1</foo>"

Version 1.6.9

  • fix for #40. Previously top-level objects and arrays were concatenated without proper line breaks.

... (truncated)

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 15, 2025
@github-actions github-actions bot enabled auto-merge April 15, 2025 00:49
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/jstoxml-7.0.1 branch from c5a7dda to fe5ce11 Compare April 15, 2025 00:53
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/jstoxml-7.0.1 branch 4 times, most recently from 073cf3d to ca6469b Compare April 29, 2025 01:02
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/jstoxml-7.0.1 branch 7 times, most recently from 91d5faf to e404248 Compare May 13, 2025 00:30
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/jstoxml-7.0.1 branch 2 times, most recently from 911dc44 to 491d82e Compare May 15, 2025 00:20
@Amndeep7 Amndeep7 added dependencies Pull requests that update a dependency file and removed dependencies Pull requests that update a dependency file labels Jul 4, 2025
@Amndeep7
Copy link
Contributor

Amndeep7 commented Jul 4, 2025

@dependabot rebase

@dependabot
Bump jstoxml from 6.0.1 to 7.0.1
4380121 
Bumps [jstoxml](https://github.com/davidcalhoun/jstoxml) from 6.0.1 to 7.0.1.
- [Release notes](https://github.com/davidcalhoun/jstoxml/releases)
- [Changelog](https://github.com/davidcalhoun/jstoxml/blob/main/CHANGELOG.md)
- [Commits](davidcalhoun/jstoxml@v6.0.1...v7.0.1)

---
updated-dependencies:
- dependency-name: jstoxml
  dependency-version: 7.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/jstoxml-7.0.1 branch from 491d82e to 4380121 Compare July 4, 2025 20:12
@github-actions github-actions bot merged commit c84e694 into main Jul 4, 2025
3 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/jstoxml-7.0.1 branch July 4, 2025 22:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Amndeep7