Skip to content

Bump uswds from 2.11.1 to 2.11.2

Bucknell, Mary S. requested to merge dependabot/npm_and_yarn/uswds-2.11.2 into master

Created by: dependabot-preview[bot]

Bumps uswds from 2.11.1 to 2.11.2.

Release notes

Sourced from uswds's releases.

2.11.2

What's new in USWDS 2.11.2

Bugfixes

Checked radio buttons remain checked in disabled state. Now the visual checked state of a checked checkbox does not change if that element is later disabled. (uswds/uswds#4160)

Fixed incorrect variable usage ($theme-site-max-width). We updated our docs and settings to remove the $theme-site-max-width variable, which was in the docs and in the settings, but not in the code itself. In its place, use $theme-grid-container-max-width. $theme-site-max-width is marked for deprecation. (uswds/uswds-site#1198)

Added missing Summary Box package. Now you can add a Summary Box package to your project with packages/usa-summary-box. (uswds/uswds#4162)

Fixed unstyled button styling. We updated and strengthened the styling of unstyled buttons to prevent any unwanted style leakage from conventional buttons, especially is used in conjunction with usa-button--hover and usa-button--active classes. Thanks @​aduth! (uswds/uswds#4077)

Fixed color of active parents in the side navigation. We fixed a regression where the parent items in the side navigation no longer received the primary color. Thanks @​asarazor! (uswds/uswds#4163)

Fixed the size of some of our icons. The view box on some or our icons was 20px instead of 24px. We updated these icons to use the proper view box. This may result in small changes to the display of icons, but will result in a more consistent placement and appearance across all icons in our icon set. (uswds/uswds#4139)

Swapped thumb icons in our sprite for consistency. We replaced thumb_down_off_alt with thumb_down_off in our icon sprite for consistency with its thumb_up pair. (uswds/uswds#4139)

Removed duplicate eye icon. Removes remove_red_eye icon from usa-icons and sprite. Use of visibility instead. (uswds/uswds#4139)

Dependencies and security

dependency old new
lodash.debounce 4.0.7 REMOVED
@​babel/preset-env 7.12.10 7.13.15
@​frctl/fractal 1.5.4 1.5.6
@​frctl/nunjucks 2.0.8 2.0.10
@​types/node 14.14.13 14.14.43
autoprefixer 10.1.0 10.2.5
axe-core 4.1.1 4.2.0
eslint 7.14.0 7.25.0
eslint-config-prettier 7.0.0 7.2.0
gulp-replace 1.0.0 1.1.1
handlebars 4.7.6 4.7.7
jsdom 16.4.0 16.5.3
mocha 8.2.1. 8.3.2
mq-polyfill 1.1.8
node-notifier 9.0.0 9.0.1
postcss 8.2.1 8.2.13
postcss-csso 5.0.0 5.0.1
sass 1.29.0 1.32.11
sinon 9.2.2 9.2.4
snyk 1.557.0 1.570.0
stylelint-prettier 1.1.2 1.2.0
stylelint-scss 3.18.0 3.19.0
typescript 4.1.3 4.2.4

... (truncated)

Commits
  • de44902 Merge pull request #4169 from uswds/release-2.11.2
  • c92b052 Create uswds-2.11.2-zip-hash.txt
  • ab988ae 2.11.2
  • 8f28cd7 Merge pull request #4173 from uswds/dw-final-2.11.2-updates
  • 0110001 Revert "Use release 2.12.0 because of small — possibly breaking — changes"
  • 75d974f Use release 2.12.0 because of small — possibly breaking — changes
  • c3c54ed Reorganize and use !default for deprecated vars
  • 11144be Update _notifications.scss
  • 30c1444 Update refs to 2.11.2
  • f1b18aa Update dependencies
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Merge request reports