[Snyk] Upgrade codemirror from 5.55.0 to 5.58.2

[snyk-bot]

Snyk has created this PR to upgrade codemirror from 5.55.0 to 5.58.2.

:sparkles: Snyk has automatically assigned this pull request, [set who gets assigned](https://app.snyk.io/org/matt-glich/project/68c430b8-d893-4852-b149-4f6ef86c6808/settings/integration?utm_source=github&utm_medium=upgrade-pr/settings/integration).

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 5 versions ahead of your current version.
• The recommended version was released a month ago, on 2020-10-23.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CODEMIRROR-1016937	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: codemirror

• 5.58.2 - 2020-10-23
  No content.
• 5.58.1 - 2020-09-23
  

  Version 5.58.1

  Bug fixes

  placeholder addon: Remove arrow function that ended up in the code.

• 5.58.0 - 2020-09-21
  

  Version 5.58.0

  Bug fixes

  Make backspace delete by code point, not glyph.

  Suppress flickering focus outline when clicking on scrollbars in Chrome.

  Fix a bug that prevented attributes added via markText from showing up unless the span also had some other styling.

  Suppress cut and paste context menu entries in readonly editors in Chrome.

  placeholder addon: Update placeholder visibility during composition.

  New features

  Make it less cumbersome to style new lint message types.

  vim bindings: Support black hole register, gn and gN

• 5.57.0 - 2020-08-20
  

  Version 5.57.0

  Bug fixes

  Fix issue that broke binding the macOS Command key.

  comment addon: Keep selection in front of inserted markers when adding a block comment.

  css mode: Recognize more properties and value names.

  annotatescrollbar addon: Don't hide matches in collapsed content.

  New features

  vim bindings: Support tag text objects in xml and html modes.

• 5.56.0 - 2020-07-20
  

  Version 5.56.0

  Bug fixes

  Line-wise pasting was fixed on Chrome Windows.

  wast mode: Follow standard changes.

  soy mode: Support import expressions, template type, and loop indices.

  sql-hint addon: Improve handling of double quotes.

  New features

  show-hint addon: New option scrollMargin to control how many options are visible beyond the selected one.

  hardwrap addon: New option forceBreak to disable breaking of words that are longer than a line.

• 5.55.0 - 2020-06-21
  

  Version 5.55.0

  Bug fixes

  The editor no longer overrides the rendering of zero-width joiners (allowing combined emoji to be shown).

  vim bindings: Fix an issue where the vim-mode-change event was fired twice.

  javascript mode: Only allow -->-style comments at the start of a line.

  julia mode: Improve indentation.

  pascal mode: Recognize curly bracket comments.

  runmode addon: Further sync up the implementation of the standalone and node variants with the regular library.

  New features

  loadmode addon: Allow overriding the way the addon constructs filenames and loads modules.

from codemirror GitHub release notes

Commit messages

Package name: codemirror

• 23b7a99 Add WebAssembly to meta
• 212bafa [stylus mode] Recognize "url-prefix" token properly
• 9885241 [javascript mode] Don't indent in template strings
• 9caacec [sparql mode] Improve parsing of IRI atoms
• 55d0333 [javascript mode] Fix potentially-exponential regexp
• cdb228a Fix horizontal scrolling-into-view with non-fixed gutters
• 1cb6de2 Fix doc/releases.html copy-paste mistake
• 719a912 Fixes #6402. Adds option to turn off highlighting of non-standard CSS properties
• 8bc57f7 Remove link to gitter room
• fdc2de3 [tern demo] Use unpkg, now that the URL structure of ternjs.net changed
• 58c5534 Fixes #6331. Backticks are stripped from SQL query words before comparison
• f3dde7c [julia mode] Fix infinite recursion
• 1c60749 Mark version 5.58.1
• ca046d7 [placeholder addon] Fix composition handling
• c74a1ca Fix use of ES6 in addon
• 76590dc Mark version 5.58.0
• 7b63084 Update placeholder visibility during composition
• 66a96a5 Set the readonly attribute on the hidden textarea when the editor is read-only
• 376c0d9 [lint addon] Put error CSS after warning
• 18aa69e [lint addon] Use separate CSS classes for common lint styles
• db719a2 Fix drawing of marked text with only attributes
• b6da8bf Add vim emulation support for `gn` and `gN`.
• fd2e322 Suppress focus outline for scrollbar elements
• 2250b4a Fix bug causing a deleted editor to continue believing it had focus

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

👩‍💻 Set who automatically gets assigned

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs