Skip to content

Upgrade vega package to latest with vega-tooltip resolved to the latest version #5825

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
kmcgrady merged 1 commit into from
Dec 7, 2022
Merged

Upgrade vega package to latest with vega-tooltip resolved to the latest version #5825

kmcgrady merged 1 commit into from
Dec 7, 2022

Conversation

@kmcgrady
Copy link
Collaborator

@kmcgrady kmcgrady commented Dec 7, 2022
edited
Loading

📚 Context

vega-tooltip had an issue with unsafe-inline for a Content Security Policy (See vega/vega-tooltip#714). This sets the resolution for vega-tooltip to ensure the latest version is used.

(We considered upgrading vega, but there were too many additional versions of d3 downloaded and we can save that for a specific project.)

  • What kind of change does this PR introduce?

    • Other, please describe: part bug fix/part feature to better support CSPs

🧪 Testing Done

No testing is needed beyond what we currently available. Our e2e tests will verify the output of the charts remain the same. See the following folders in the snapshots directory.

  • st_arrow_altair_chart.spec.js
  • st_arrow_vega_lite_chart.spec.js
  • st_arrow_bar_chart.spec.js
  • st_arrow_line_chart.spec.js
  • st_arrow_area_chart.spec.js

Contribution License Agreement

By submitting this pull request you agree that all contributions to this project are made under the Apache 2.0 license.

@kmcgrady kmcgrady added the security-assessment-completed Security assessment has been completed for PR label Dec 7, 2022
mayagbarnes
mayagbarnes approved these changes Dec 7, 2022
View reviewed changes
Copy link
Collaborator

@mayagbarnes mayagbarnes left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🎉

@kmcgrady kmcgrady merged commit 7ec02a1 into streamlit:develop Dec 7, 2022
@kmcgrady kmcgrady deleted the fix/vega-tooltip branch December 7, 2022 20:40
tconkling added a commit that referenced this pull request Dec 20, 2022
@tconkling
Merge branch 'develop' into feature/ReleaseCacheV2
981a619 
* develop:
  Change workers balancing logic for e2e tests to always cover all specs (#5865)
  Up version to 1.16.0 (#5852)
  Stop installing pip-tools (#5854)
  Add eslint no relative import paths plugin to pre commit hooks (#5839)
  Docs: move note to `experimental_allow_widgets` param description (#5843)
  Update element docstrings for colored text support (#5831)
  Add remark-directive plugin (Support for colored text in markdown) (#5774)
  Teach WebsocketConnection how to wait on an external auth token (#5728)
  Turn on streamlit theme for altair and plotly (#5796)
  Fix markdown headers spacing (#5829)
  Update error message and docstring in st.map (#5792)
  Remove unnecessarily methods from DeltaGenerator (#5824)
  Resolve vega-tooltip to later version (#5825)
  Easter Egg (#5817)
  Update Exception Layout to avoid overflow (#5700)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mayagbarnes mayagbarnes mayagbarnes approved these changes

@vdonato vdonato Awaiting requested review from vdonato

@AnOctopus AnOctopus Awaiting requested review from AnOctopus

+1 more reviewer

@tconkling tconkling tconkling approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

security-assessment-completed Security assessment has been completed for PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kmcgrady @tconkling @mayagbarnes