[Snyk] Upgrade sass from 1.49.9 to 1.52.3

[snyk-bot]

Snyk has created this PR to upgrade sass from 1.49.9 to 1.52.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 9 versions ahead of your current version.
• The recommended version was released a month ago, on 2022-06-08.

Release notes

Package name: sass

• 1.52.3 - 2022-06-08
  

  To install Sass 1.52.3, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

  Changes

  • Fix crash when trailing loud comments (/* ... */) appear twice in a row across two different imports which themselves imported the same file each.

  See the full changelog for changes in earlier releases.

• 1.52.2 - 2022-06-03
  

  To install Sass 1.52.2, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

  Changes

  • Preserve location of trailing loud comments (/* ... */) instead of pushing the comment to the next line.

  See the full changelog for changes in earlier releases.

• 1.52.1 - 2022-05-20
  

  To install Sass 1.52.1, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

  Changes

  Command Line Interface

  • Fix a bug where --watch mode would close immediately in TTY mode. This was caused by our change to close --watch when stdin was closed outside of TTY mode, which has been reverted for now while we work on a fix.

  See the full changelog for changes in earlier releases.

• 1.52.0 - 2022-05-20
  

  To install Sass 1.52.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

  Changes

  • Add support for arbitrary modifiers at the end of plain CSS imports, in addition to the existing supports() and media queries. Sass now allows any sequence of identifiers of functions after the URL of an import for forwards compatibility with future additions to the CSS spec.

  • Fix an issue where source locations tracked through variable references could potentially become incorrect.

  • Fix a bug where a loud comment in the source can break the source map when embedding the sources, when using the command-line interface or the legacy JS API.

  JS API

  • SassNumber.assertUnit() and SassNumber.assertNoUnits() now correctly return the number called on when it passes the assertion.

  See the full changelog for changes in earlier releases.

• 1.51.0 - 2022-04-26
  

  To install Sass 1.51.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

  Changes

  • Potentially breaking change: Change the order of maps returned by map.deep-merge() to match those returned by map.merge(). All keys that appeared in the first map will now be listed first in the same order they appeared in that map, followed by any new keys added from the second map.

  • Improve the string output of some AST nodes in error messages.

  See the full changelog for changes in earlier releases.

• 1.50.1 - 2022-04-19
• 1.50.0 - 2022-04-07
• 1.49.11 - 2022-04-01
• 1.49.10 - 2022-03-30
• 1.49.9 - 2022-02-24

from sass GitHub release notes

Commit messages

Package name: sass

• ae6275e fix serializing loud comment crash when importing the same file twice in a row (#1713)
• 44c2966 Add changelog for PR #849 about preserving trailing loud comment location (#1709)
• 1faf81c Fix #417 preserve the location of trailing loud comments (#849)
• cb74cc4 Run qemu in tmpfs (#1707)
• 46c2c9b Remove unused methods (#1702)
• e69d903 Mention Jest globals differ from Node globals jestjs/jest#2549 in the README (#1700)
• d17f70f Revert "Abort sass if stdin is closed when watching (#1411)" (#1699)
• 561fe25 Use "dart pub publish" instead of "pub publish" (#1698)
• fa0d2fb Add support for arbitrary modifiers after @ import (#1695)
• b19b3b1 Fix assertUnit and assertNoUnits (#1686)
• 2e7db70 Add documentation for using it with Docker (#1684)
• 1e211d6 Escape the source map URL before using it in a CSS comment (#1676)
• 7004d49 Fix the tracking of variable nodes for scopes (#1681)
• 0c24114 Update the order of maps returned by map.deep-merge() (#1680)
• 6eed6eb Fix the string representations of the Sass AST (#1682)
• fbd450b Cut a release (#1671)
• 3dbb552 Add a changelog entry for Treat null importer as noOp if url is not a file: url sass/dart-sass-embedded#83 and Set a FileSystemImporter if custom importer is not given for legacy API sass/embedded-host-node#128 (#1668)
• 039f2ad Add support for :where() (#1662)
• c7ab426 Abort sass if stdin is closed when watching (#1411)
• db85276 Update the changelog for Cannot read properties of undefined (reading 'url') sass/embedded-host-node#120 (#1663)
• d7d3f8f Cut a release (#1659)
• 6652001 Stop simplifying calculations in supports (#1653)
• 55157a5 Deploy linux arm64 release to github (#1643)
• 85ca0b2 Remove dead code in the stylesheet parser (#1640)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs