# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
Commensurate with the update of this repository to "design-to-code" all packages have been udpated. This means the following packages are now changed:
- `@microsoft/fast-tooling` -> `@microsoft/design-to-code`
- `@microsoft/fast-tooling-react` -> `@microsoft/design-to-code-react`
- `@microsoft/fast-tooling-wasm` -> `@microsoft/design-to-code-wasm`
### 🎫 Issues
<!---
List and link relevant issues here using the keyword "closes"
if this PR will close an issue, eg. closes#411
-->
#223
## 👩💻 Reviewer Notes
<!---
Provide some notes for reviewers to help them provide targeted feedback and testing.
-->
Check for any missed instances of FAST Tooling, fast-tooling etc.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
## ⏭ Next Steps
<!---
If there is relevant follow-up work to this PR, please list any existing issues or provide brief descriptions of what you would like to do next.
-->
- Publish packages
Bumps [workspace-tools](https://github.com/microsoft/workspace-tools) and [beachball](https://github.com/microsoft/beachball). These dependencies needed to be updated together.
Updates `workspace-tools` from 0.16.2 to 0.26.3
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/microsoft/workspace-tools/blob/master/CHANGELOG.md">workspace-tools's changelog</a>.</em></p>
<blockquote>
<h2>0.26.3</h2>
<p>Fri, 12 Aug 2022 05:32:10 GMT</p>
<h3>Patches</h3>
<ul>
<li>Fix listAllTrackedFiles if there are no tracked files' (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>0.26.2</h2>
<p>Fri, 12 Aug 2022 01:57:26 GMT</p>
<h3>Patches</h3>
<ul>
<li>Add cleanup functions for addGitObserver (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>0.26.1</h2>
<p>Mon, 08 Aug 2022 22:44:02 GMT</p>
<h3>Patches</h3>
<ul>
<li>Add missing type exports (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>0.26.0</h2>
<p>Thu, 04 Aug 2022 21:47:46 GMT</p>
<h3>Minor changes</h3>
<ul>
<li>Use ES2019 output (compatible with Node 14) (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h3>Patches</h3>
<ul>
<li>Gracefully handle not having a package.json at git root (<a href="mailto:boabdelm@microsoft.com">boabdelm@microsoft.com</a>)</li>
</ul>
<h2>0.25.4</h2>
<p>Thu, 04 Aug 2022 08:01:48 GMT</p>
<h3>Patches</h3>
<ul>
<li>Switch from multimatch to micromatch (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>0.25.3</h2>
<p>Wed, 03 Aug 2022 08:01:34 GMT</p>
<h3>Patches</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="69f8d38b81"><code>69f8d38</code></a> applying package updates</li>
<li><a href="8fed2362e2"><code>8fed236</code></a> Fix listAllTrackedFiles if there are no tracked files</li>
<li><a href="addac47344"><code>addac47</code></a> Update devDependency beachball to v2.30.0 (<a href="https://github-redirect.dependabot.com/microsoft/workspace-tools/issues/166">#166</a>)</li>
<li><a href="7435d92f02"><code>7435d92</code></a> applying package updates</li>
<li><a href="35fa36c25d"><code>35fa36c</code></a> Add cleanup functions for addGitObserver (<a href="https://github-redirect.dependabot.com/microsoft/workspace-tools/issues/167">#167</a>)</li>
<li><a href="6c5e7ab4d0"><code>6c5e7ab</code></a> Add debug logging for docs release</li>
<li><a href="4926249af5"><code>4926249</code></a> applying package updates</li>
<li><a href="b277a94dc6"><code>b277a94</code></a> fix update docs step name</li>
<li><a href="ac7fb3d861"><code>ac7fb3d</code></a> fix update docs step name</li>
<li><a href="946f762341"><code>946f762</code></a> add docs to release pipeline</li>
<li>Additional commits viewable in <a href="https://github.com/microsoft/workspace-tools/compare/workspace-tools_v0.16.2...workspace-tools_v0.26.3">compare view</a></li>
</ul>
</details>
<br />
Updates `beachball` from 2.16.0 to 2.30.1
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/microsoft/beachball/blob/master/CHANGELOG.md">beachball's changelog</a>.</em></p>
<blockquote>
<h2>2.30.1</h2>
<p>Wed, 17 Aug 2022 08:02:47 GMT</p>
<h3>Patches</h3>
<ul>
<li>Error on duplicate package names in different workspaces (for a monorepo with multiple workspaces) (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>2.30.0</h2>
<p>Thu, 11 Aug 2022 21:13:57 GMT</p>
<h3>Minor changes</h3>
<ul>
<li>Use ES2019 output (compatible with Node 12+) (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h3>Patches</h3>
<ul>
<li>Exit publishing early if only invalid change files are present (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>2.29.1</h2>
<p>Thu, 11 Aug 2022 21:09:34 GMT</p>
<h3>Patches</h3>
<ul>
<li>Improve auth error handling and other logs during publishing, and use the npm helper everywhere (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Rename file <code>monorepo/utils.ts</code> to <code>monorepo/isPathIncluded.ts</code> (no API change) (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Add verbose logs about determining changed packages (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Fix calculation of changed packages on Windows (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>2.29.0</h2>
<p>Wed, 10 Aug 2022 08:03:11 GMT</p>
<h3>Minor changes</h3>
<ul>
<li>Update typescript to 4.3 (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h3>Patches</h3>
<ul>
<li>Always use console.log not process.stdout for logging (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Moving non essential and retried commands to git from gitFailFast (<a href="mailto:viditganpi10@gmail.com">viditganpi10@gmail.com</a>)</li>
</ul>
<h2>2.28.0</h2>
<p>Tue, 09 Aug 2022 06:34:24 GMT</p>
<h3>Minor changes</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="b22545ec6b"><code>b22545e</code></a> applying package updates</li>
<li><a href="402d76de4d"><code>402d76d</code></a> Update devDependency <code>@types/lodash</code> to v4.14.183 (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/760">#760</a>)</li>
<li><a href="761b0caa94"><code>761b0ca</code></a> Run E2E tests in parallel (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/758">#758</a>)</li>
<li><a href="6f777d98c7"><code>6f777d9</code></a> Fix logic to error on duplicate package names and add test (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/761">#761</a>)</li>
<li><a href="0db5f35043"><code>0db5f35</code></a> Multi-workspace tests: replace remaining "repo" usage with "workspace"</li>
<li><a href="6b18554e8a"><code>6b18554</code></a> Unify test repository fixtures and make customization easier (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/754">#754</a>)</li>
<li><a href="03a1332b11"><code>03a1332</code></a> Error on duplicate package names (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/759">#759</a>)</li>
<li><a href="6c8a9089f8"><code>6c8a908</code></a> applying package updates</li>
<li><a href="af775b9289"><code>af775b9</code></a> Change "MonoRepo" to "Monorepo" in tests to match more common casing</li>
<li><a href="89664388e9"><code>8966438</code></a> Rename "multi-monorepo" tests to "multi-workspace"</li>
<li>Additional commits viewable in <a href="https://github.com/microsoft/beachball/compare/beachball_v2.16.0...beachball_v2.30.1">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/design-to-code/network/alerts).
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jane Chu <7559015+janechu@users.noreply.github.com>
Bumps [parse-path](https://github.com/IonicaBizau/parse-path) and [beachball](https://github.com/microsoft/beachball). These dependencies needed to be updated together.
Updates `parse-path` from 4.0.4 to 5.0.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/IonicaBizau/parse-path/releases">parse-path's releases</a>.</em></p>
<blockquote>
<h2>5.0.0</h2>
<h3><code>parse-path</code> 5.0.0</h3>
<p>⭐ This is a major release of <code>parse-path</code>! ⭐</p>
<h4>Breaking changes</h4>
<ul>
<li><code>parse-path</code> will not parse <code>git@...</code> ssh URLs anymore. Use <code>parse-url</code> for that.</li>
<li>If the input url has a trailing slash, the trailing slash will be added in the <code>pathname</code> too.</li>
<li>The <code>port</code> field is a string. By default empty.</li>
<li>Added the <code>password</code> field (default: <code>""</code>)</li>
<li>The resource may contain the <code>port</code> in it (e.g. <code>resource: "domain.com:4200"</code>).</li>
</ul>
<h4>Features</h4>
<ul>
<li>Faster</li>
<li>More secure</li>
<li>Cleaner codebase</li>
</ul>
<p>Any questions, suggestions, contributions are always welcome! 😊</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="f2b79ca482"><code>f2b79ca</code></a> Updated docs</li>
<li><a href="4ebc6eda86"><code>4ebc6ed</code></a> ⬆️ 5.0.0 🎉</li>
<li><a href="01cd545bf9"><code>01cd545</code></a> 📝</li>
<li><a href="dd2141a853"><code>dd2141a</code></a> Docs</li>
<li><a href="624c19e466"><code>624c19e</code></a> Empty password</li>
<li><a href="d974ff8d65"><code>d974ff8</code></a> ⬆️ 5.0.0 🎉</li>
<li><a href="f9ad8856a3"><code>f9ad885</code></a> Refactor the codebase to make it more secure</li>
<li>See full diff in <a href="https://github.com/IonicaBizau/parse-path/compare/4.0.4...5.0.0">compare view</a></li>
</ul>
</details>
<br />
Updates `beachball` from 2.16.0 to 2.30.1
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/microsoft/beachball/blob/master/CHANGELOG.md">beachball's changelog</a>.</em></p>
<blockquote>
<h2>2.30.1</h2>
<p>Wed, 17 Aug 2022 08:02:47 GMT</p>
<h3>Patches</h3>
<ul>
<li>Error on duplicate package names in different workspaces (for a monorepo with multiple workspaces) (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>2.30.0</h2>
<p>Thu, 11 Aug 2022 21:13:57 GMT</p>
<h3>Minor changes</h3>
<ul>
<li>Use ES2019 output (compatible with Node 12+) (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h3>Patches</h3>
<ul>
<li>Exit publishing early if only invalid change files are present (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>2.29.1</h2>
<p>Thu, 11 Aug 2022 21:09:34 GMT</p>
<h3>Patches</h3>
<ul>
<li>Improve auth error handling and other logs during publishing, and use the npm helper everywhere (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Rename file <code>monorepo/utils.ts</code> to <code>monorepo/isPathIncluded.ts</code> (no API change) (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Add verbose logs about determining changed packages (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Fix calculation of changed packages on Windows (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h2>2.29.0</h2>
<p>Wed, 10 Aug 2022 08:03:11 GMT</p>
<h3>Minor changes</h3>
<ul>
<li>Update typescript to 4.3 (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
</ul>
<h3>Patches</h3>
<ul>
<li>Always use console.log not process.stdout for logging (<a href="mailto:elcraig@microsoft.com">elcraig@microsoft.com</a>)</li>
<li>Moving non essential and retried commands to git from gitFailFast (<a href="mailto:viditganpi10@gmail.com">viditganpi10@gmail.com</a>)</li>
</ul>
<h2>2.28.0</h2>
<p>Tue, 09 Aug 2022 06:34:24 GMT</p>
<h3>Minor changes</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="b22545ec6b"><code>b22545e</code></a> applying package updates</li>
<li><a href="402d76de4d"><code>402d76d</code></a> Update devDependency <code>@types/lodash</code> to v4.14.183 (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/760">#760</a>)</li>
<li><a href="761b0caa94"><code>761b0ca</code></a> Run E2E tests in parallel (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/758">#758</a>)</li>
<li><a href="6f777d98c7"><code>6f777d9</code></a> Fix logic to error on duplicate package names and add test (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/761">#761</a>)</li>
<li><a href="0db5f35043"><code>0db5f35</code></a> Multi-workspace tests: replace remaining "repo" usage with "workspace"</li>
<li><a href="6b18554e8a"><code>6b18554</code></a> Unify test repository fixtures and make customization easier (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/754">#754</a>)</li>
<li><a href="03a1332b11"><code>03a1332</code></a> Error on duplicate package names (<a href="https://github-redirect.dependabot.com/microsoft/beachball/issues/759">#759</a>)</li>
<li><a href="6c8a9089f8"><code>6c8a908</code></a> applying package updates</li>
<li><a href="af775b9289"><code>af775b9</code></a> Change "MonoRepo" to "Monorepo" in tests to match more common casing</li>
<li><a href="89664388e9"><code>8966438</code></a> Rename "multi-monorepo" tests to "multi-workspace"</li>
<li>Additional commits viewable in <a href="https://github.com/microsoft/beachball/compare/beachball_v2.16.0...beachball_v2.30.1">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/design-to-code/network/alerts).
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jane Chu <7559015+janechu@users.noreply.github.com>
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change adds a deprecation warning at the top of the published package README files and points to what will be the new names of these packages. This is inline with the repository rename change.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [ ] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
## ⏭ Next Steps
<!---
If there is relevant follow-up work to this PR, please list any existing issues or provide brief descriptions of what you would like to do next.
-->
- Rename packages and update documentation
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change comes after the repository has been updated to "Design to Code" and aligns all documentation to refer to this naming update.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [ ] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
## ⏭ Next Steps
<!---
If there is relevant follow-up work to this PR, please list any existing issues or provide brief descriptions of what you would like to do next.
-->
- Adding a final deprecation bump for packages before they are renamed
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change updates the documentation for the `Form` react component and the `MessageSystem` as well as adding supporting documentation for the data formats used by the `MessageSystem`.
## 👩💻 Reviewer Notes
<!---
Provide some notes for reviewers to help them provide targeted feedback and testing.
-->
A few stylistic tweaks had to be made for the content to sit on the page correctly, these will be applied to the FAST CLI as well to maintain consistency.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [ ] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change cleans up some styling with pre and code blocks and puts them more inline with the docusaurus style used by FAST. This also fixes an issue where the sub docs folder was not getting ignored.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [ ] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change:
- Updates the prettier version
- Adds asset to json imports showing up because of updated typescript
- Update some incorrect meta information on the documentation site
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change adds the docs folder files to the gitignore, except the README for ease of local development. It also adds a GitHub workflow to trigger against `main` branch merges (and manual triggers) that will release of the documentation site.
This should be merged after #212
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This PR adds the documentation site into the `main` branch. In future, `gh-pages` branch will be used for the generated site.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
Small text update to correct the grammar expected for the change files.
# Pull Request
## 📖 Description
This PR adds file extensions to all relative import / export paths. This work enables NodeJS to correctly resolve the modules using ES module resolution.
<!--- Provide some background and a description of your work. -->
### 🎫 Issues
<!---
List and link relevant issues here using the keyword "closes"
if this PR will close an issue, eg. closes#411
-->
## 👩💻 Reviewer Notes
<!---
Provide some notes for reviewers to help them provide targeted feedback and testing.
-->
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [ ] I have tested my changes.
- [ ] I have updated the project documentation to reflect my changes.
## ⏭ Next Steps
<!---
If there is relevant follow-up work to this PR, please list any existing issues or provide brief descriptions of what you would like to do next.
-->
Co-authored-by: Jane Chu <7559015+janechu@users.noreply.github.com>
Co-authored-by: nicholasrice <nicholasrice@users.noreply.github.com>
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21.
<details>
<summary>Commits</summary>
<ul>
<li><a href="f299b52f39"><code>f299b52</code></a> Bump to v4.17.21</li>
<li><a href="c4847ebe7d"><code>c4847eb</code></a> Improve performance of <code>toNumber</code>, <code>trim</code> and <code>trimEnd</code> on large input strings</li>
<li><a href="3469357cff"><code>3469357</code></a> Prevent command injection through <code>_.template</code>'s <code>variable</code> option</li>
<li><a href="ded9bc6658"><code>ded9bc6</code></a> Bump to v4.17.20.</li>
<li><a href="63150ef764"><code>63150ef</code></a> Documentation fixes.</li>
<li><a href="00f0f62a97"><code>00f0f62</code></a> test.js: Remove trailing comma.</li>
<li><a href="846e434c7a"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li>
<li><a href="5d046f39cb"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li>
<li><a href="aa816b36d4"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li>
<li><a href="d7fbc52ee0"><code>d7fbc52</code></a> Bump to v4.17.19</li>
<li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.21">compare view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash-es since your current version.</p>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/fast-tooling/network/alerts).
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jane Chu <7559015+janechu@users.noreply.github.com>
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6.
<details>
<summary>Commits</summary>
<ul>
<li><a href="7efb22a518"><code>7efb22a</code></a> 1.2.6</li>
<li><a href="ef88b9325f"><code>ef88b93</code></a> security notice for additional prototype pollution issue</li>
<li><a href="c2b981977f"><code>c2b9819</code></a> isConstructorOrProto adapted from PR</li>
<li><a href="bc8ecee438"><code>bc8ecee</code></a> test from prototype pollution PR</li>
<li>See full diff in <a href="https://github.com/substack/minimist/compare/1.2.5...1.2.6">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/fast-tooling/network/alerts).
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
The build gate must pass for `gh-pages` branch, this update adds that branch to the workflow file.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [ ] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
## ⏭ Next Steps
<!---
If there is relevant follow-up work to this PR, please list any existing issues or provide brief descriptions of what you would like to do next.
-->
- Merge this change into the `gh-pages` branch
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.5.3 to 1.5.7.
<details>
<summary>Commits</summary>
<ul>
<li><a href="8b3f5f2c88"><code>8b3f5f2</code></a> 1.5.7</li>
<li><a href="ef45a13553"><code>ef45a13</code></a> [fix] Readd the empty userinfo to <code>url.href</code> (<a href="https://github-redirect.dependabot.com/unshiftio/url-parse/issues/226">#226</a>)</li>
<li><a href="88df234685"><code>88df234</code></a> [doc] Add soft deprecation notice</li>
<li><a href="78e9f2f412"><code>78e9f2f</code></a> [security] Fix nits</li>
<li><a href="e6fa43422c"><code>e6fa434</code></a> [security] Add credits for incorrect handling of userinfo vulnerability</li>
<li><a href="4c9fa234c0"><code>4c9fa23</code></a> 1.5.6</li>
<li><a href="7b0b8a6671"><code>7b0b8a6</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/unshiftio/url-parse/issues/223">#223</a> from unshiftio/fix/at-sign-handling-in-userinfo</li>
<li><a href="e4a5807d95"><code>e4a5807</code></a> 1.5.5</li>
<li><a href="193b44baf3"><code>193b44b</code></a> [minor] Simplify whitespace regex</li>
<li><a href="319851bf1c"><code>319851b</code></a> [fix] Remove CR, HT, and LF</li>
<li>Additional commits viewable in <a href="https://github.com/unshiftio/url-parse/compare/1.5.3...1.5.7">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/fast-tooling/network/alerts).
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jane Chu <7559015+janechu@users.noreply.github.com>
Bumps [engine.io](https://github.com/socketio/engine.io) from 4.1.1 to 4.1.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/socketio/engine.io/releases">engine.io's releases</a>.</em></p>
<blockquote>
<h2>4.1.2</h2>
<p>⚠️ This release contains an important security fix ⚠️</p>
<p>A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:</p>
<blockquote>
<p>RangeError: Invalid WebSocket frame: RSV2 and RSV3 must be clear
at Receiver.getInfo (/.../node_modules/ws/lib/receiver.js:176:14)
at Receiver.startLoop (/.../node_modules/ws/lib/receiver.js:136:22)
at Receiver._write (/.../node_modules/ws/lib/receiver.js:83:10)
at writeOrBuffer (internal/streams/writable.js:358:12)</p>
</blockquote>
<p>This bug was introduced by <a href="f3c291fa61">this commit</a>, included in <code>engine.io@4.0.0</code>, so previous releases are not impacted.</p>
<p>Thanks to Marcus Wejderot from Mevisio for the responsible disclosure.</p>
<h3>Bug Fixes</h3>
<ul>
<li>properly handle invalid data sent by a malicious websocket client (<a href="a70800d7e9">a70800d</a>)</li>
</ul>
<h4>Links</h4>
<ul>
<li>Diff: <a href="https://github.com/socketio/engine.io/compare/4.1.1...4.1.2">https://github.com/socketio/engine.io/compare/4.1.1...4.1.2</a></li>
<li>Client release: -</li>
<li>ws version: <a href="https://github.com/websockets/ws/releases/tag/7.4.2">~7.4.2</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/socketio/engine.io/blob/4.1.2/CHANGELOG.md">engine.io's changelog</a>.</em></p>
<blockquote>
<h2><a href="https://github.com/socketio/engine.io/compare/4.1.1...4.1.2">4.1.2</a> (2022-01-11)</h2>
<p>⚠️ This release contains an important security fix ⚠️</p>
<p>A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:</p>
<blockquote>
<p>RangeError: Invalid WebSocket frame: RSV2 and RSV3 must be clear
at Receiver.getInfo (/.../node_modules/ws/lib/receiver.js:176:14)
at Receiver.startLoop (/.../node_modules/ws/lib/receiver.js:136:22)
at Receiver._write (/.../node_modules/ws/lib/receiver.js:83:10)
at writeOrBuffer (internal/streams/writable.js:358:12)</p>
</blockquote>
<p>This bug was introduced by <a href="f3c291fa61">this commit</a>, included in <code>engine.io@4.0.0</code>, so previous releases are not impacted.</p>
<p>Thanks to Marcus Wejderot from Mevisio for the responsible disclosure.</p>
<h3>Bug Fixes</h3>
<ul>
<li>properly handle invalid data sent by a malicious websocket client (<a href="a70800d7e9">a70800d</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="c6315af448"><code>c6315af</code></a> chore(release): 4.1.2</li>
<li><a href="a70800d7e9"><code>a70800d</code></a> fix: properly handle invalid data sent by a malicious websocket client</li>
<li>See full diff in <a href="https://github.com/socketio/engine.io/compare/4.1.1...4.1.2">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/fast-tooling/network/alerts).
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jane Chu <7559015+janechu@users.noreply.github.com>
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change updates documentation around feature branches to specifically target the beachball config during branch creation.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.4 to 1.14.8.
<details>
<summary>Commits</summary>
<ul>
<li><a href="3d81dc3237"><code>3d81dc3</code></a> Release version 1.14.8 of the npm package.</li>
<li><a href="62e546a99c"><code>62e546a</code></a> Drop confidential headers across schemes.</li>
<li><a href="2ede36d7c6"><code>2ede36d</code></a> Release version 1.14.7 of the npm package.</li>
<li><a href="8b347cbcef"><code>8b347cb</code></a> Drop Cookie header across domains.</li>
<li><a href="6f5029ae1a"><code>6f5029a</code></a> Release version 1.14.6 of the npm package.</li>
<li><a href="af706bee57"><code>af706be</code></a> Ignore null headers.</li>
<li><a href="d01ab7a5c5"><code>d01ab7a</code></a> Release version 1.14.5 of the npm package.</li>
<li><a href="40052ea8aa"><code>40052ea</code></a> Make compatible with Node 17.</li>
<li><a href="86f7572f93"><code>86f7572</code></a> Fix: clear internal timer on request abort to avoid leakage</li>
<li><a href="2e1eaf0218"><code>2e1eaf0</code></a> Keep Authorization header on subdomain redirects.</li>
<li>Additional commits viewable in <a href="https://github.com/follow-redirects/follow-redirects/compare/v1.14.4...v1.14.8">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/fast-tooling/network/alerts).
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jane Chu <7559015+janechu@users.noreply.github.com>
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change adds documentation for the naming and creation of branches.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [ ] I have tested my changes.
- [x] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change updates the following:
- Allows a previous data message for an update to include removal of strings when it is the root level data type
- Allows remove to include a dictionary ID
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [x] I have added tests for my changes.
- [x] I have tested my changes.
- [ ] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This fix checks to see if a single click is on the current elements dictionary ID while it is in inline editing mode. If it is, it will ignore the single click.
## 👩💻 Reviewer Notes
<!---
Provide some notes for reviewers to help them provide targeted feedback and testing.
-->
This could use some manual testing vis a vis the automatically deployed site.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [ ] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This change allows the propagation of keyDown events so that the Shortcuts service can capture all keyDown events.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [ ] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
The previous fix addressed one issue with custom messages in the HTML Render, but there was a further attempt at processing custom messages on the HTML Render Layer. Additionally, the HTML Render was attempting to set the dataDictionary when a custom message was sent so the logic to understand when a message is one that needs attention has been moved to the parent if block.
## 👩💻 Reviewer Notes
<!---
Provide some notes for reviewers to help them provide targeted feedback and testing.
-->
This was checked using `npm link`. It appears to work correctly with no more runtime errors.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [ ] I have updated the project documentation to reflect my changes.
# Pull Request
## 📖 Description
<!--- Provide some background and a description of your work. -->
This PR fixes an issue where if a custom message was sent without an action property it would error.
## ✅ Checklist
### General
<!--- Review the list and put an x in the boxes that apply. -->
- [ ] I have added tests for my changes.
- [x] I have tested my changes.
- [ ] I have updated the project documentation to reflect my changes.
dependabot[bot]
FAST DevOps
Jane Chu
Nicholas Rice
William Wagner