Skip to content

Bump jquery from 3.3.1 to 3.6.0

Lisa Dudley requested to merge dependabot/npm_and_yarn/jquery-3.6.0 into master

Created by: dependabot[bot]

Bumps jquery from 3.3.1 to 3.6.0.

Release notes

Sourced from jquery's releases.

jQuery 3.6.0 Released!

https://blog.jquery.com/2021/03/02/jquery-3-6-0-released/

jQuery 3.5.0 Released!

See the blog post: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/ and the upgrade guide: https://jquery.com/upgrade-guide/3.5/

NOTE: Despite being a minor release, this update includes a breaking change that we had to make to fix a security issue ( CVE-2020-11022). Please follow the blog post & the upgrade guide for more details.

Commits
  • 0cc1ad6 3.6.0
  • aed59da Release: remove the need to install grunt globally
  • 8606ce4 Release: update version to 3.6.0-pre
  • 8b50fbe Release: drop the need for npm as a local dependency
  • a21a4b2 Release: upgrade release dependencies
  • c208deb Release: update AUTHORS.txt
  • 1654874 Selector: Update Sizzle from 2.3.5 to 2.3.6
  • f8bdb12 Support: ensure display is set to block for the support div (#4844)
  • 627c573 Build: Rename master to main across the repository
  • 15b62a2 Deferred: Rename master to primary
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Merge request reports