[Snyk] Upgrade @codemirror/view from 6.39.4 to 6.39.7#36
Conversation
Snyk has created this PR to upgrade @codemirror/view from 6.39.4 to 6.39.7. See this package in npm: @codemirror/view See this project in Snyk: https://app.snyk.io/org/smsdao/project/ffeb0825-db09-4184-b290-ff207397c5a2?utm_source=github&utm_medium=referral&page=upgrade-pr
|
📢 New Pull Request Ready for Review Title: [Snyk] Upgrade @codemirror/view from 6.39.4 to 6.39.7 Please review when you have a chance! 🚀 |
There was a problem hiding this comment.
Pull request overview
This PR upgrades the @codemirror/view package from version 6.39.4 to 6.39.7 to incorporate three bug fixes released between December 22-24, 2025. The upgrade addresses issues related to text composition, widget reuse/updates, and newline insertion behavior.
Changes:
- Updated
@codemirror/viewdependency from ^6.22.0 to ^6.39.7 in package.json - Updated corresponding package-lock.json entries with new version, resolved URL, and integrity hash
Reviewed changes
Copilot reviewed 1 out of 2 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| package.json | Bumps @codemirror/view version constraint to ^6.39.7 |
| package-lock.json | Updates lockfile with resolved version 6.39.7 and new integrity hash |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| "@codemirror/lang-rust": "^6.0.1", | ||
| "@codemirror/state": "^6.3.1", | ||
| "@codemirror/view": "^6.22.0", | ||
| "@codemirror/view": "^6.39.7", |
There was a problem hiding this comment.
The version jump from ^6.22.0 to ^6.39.7 represents a significant change (17 minor versions). While the caret (^) allows automatic minor updates, this large jump may introduce behavioral changes beyond the bug fixes mentioned. Consider reviewing the full changelog between 6.22.0 and 6.39.7 to ensure no breaking changes or new behaviors affect the Editor component in src/components/Editor.tsx, which relies on EditorView.
| "@codemirror/view": "^6.39.7", | |
| "@codemirror/view": "6.22.0", |
Snyk has created this PR to upgrade @codemirror/view from 6.39.4 to 6.39.7.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 3 versions ahead of your current version.
The recommended version was released 23 days ago.
Release notes
Package name: @codemirror/view
-
6.39.7 - 2025-12-24
-
6.39.6 - 2025-12-23
-
6.39.5 - 2025-12-22
-
6.39.4 - 2025-12-12
from @codemirror/view GitHub release notesBug fixes
Fix a bug that could sometimes cause the document to become mangled during composition.
Bug fixes
Fix an issue when composing on the boundary of a decoration, where the text after the composition would get garbled.
Bug fixes
Fix an issue where replaced widgets alone on a line weren't reused and didn't get their
updateDOMmethod called.Fix a bug where, when selecting full lines at the end of the document and inserting a character on Chrome, an inappropriate extra newline was inserted.
Bug fixes
Fix a bug where paste events handlers on Chrome could fail to run when pasting on a blank line.
Fix a regression causing the native cursor to get stuck before block widgets with side>0.
Fix a crash in content DOM building after a block widget.
Fix a bug in
posAtCoordsthat would in some circumstances make it return positions on the wrong side of a block widget.Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: