[Snyk] Upgrade vue from 2.5.22 to 2.6.11

[snyk-bot]

Snyk has created this PR to upgrade vue from 2.5.22 to 2.6.11.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 15 versions ahead of your current version.
• The recommended version was released 7 months ago, on 2019-12-13.

Release notes

Package name: vue

• 2.6.11 - 2019-12-13
  

  Security Fixes

  • Bump vue-server-renderer's dependency of serialize-javascript to 2.1.2

  Bug Fixes

  • types: fix prop constructor type inference (#10779) 4821149, closes #10779
  • fix function expression regex (#9922) 569b728, closes #9922 #9920
  • compiler: Remove the warning for valid v-slot value (#9917) 085d188, closes #9917
  • types: fix global namespace declaration for UMD bundle (#9912) ab50e8e, closes #9912
• 2.6.10 - 2019-03-20
  

  Bug Fixes

  • codegen: support named function expression in v-on (#9709) 3433ba5, closes #9709 #9707
  • core: cleanup timeouts for async components (#9649) 02d21c2, closes #9649 #9648
  • core: only unset dom prop when not present f11449d, closes #9650
  • core: use window.performance for compatibility in JSDOM (#9700) 653c74e, closes #9700 #9698
  • scheduler: revert timeStamp check 22790b2, closes #9729 #9632
  • slots: fix slots not updating when passing down normal slots as $scopedSlots ebc1893, closes #9699
  • types: allow using functions on the PropTypes (#9733) df4af4b, closes #9733 #9692
  • types: support string type for style in VNode data (#9728) 982d5a4, closes #9728 #9727
• 2.6.9 - 2019-03-14
  

  Bug Fixes

  • event timeStamp check for Qt 7591b9d, closes #9681
  • should consider presence of normal slots when caching normalized scoped slots 9313cf9, closes #9644
  • should not swallow user catch on rejected promise in methods 7186940, closes #9694
  • should use fallback for scoped slots with single falsy v-if 781c705, closes #9658
  • ssr: not push non-async css files into map (#9677) d282400, closes #9677
  • v-bind object should be overridable by single bindings (#9653) 0b57380, closes #9653 #9641
  • compiler: whitespace: 'condense' should honor pre tag as well (#9660) f1bdd7f, closes #9660
  • scheduler: fix getNow check in IE9 (#9647) da77d6a, closes #9647 #9632
  • scheduler: getNow detection can randomly fail (#9667) ef2a380, closes #9667
  • ssr: fix nested async functional componet rendering (#9673) 8082d2f, closes #9673 #9643
  • transition: fix appear check for transition wrapper components (#9668) 4de4649, closes #9668
• 2.6.8 - 2019-03-01
  Read more
• 2.6.7 - 2019-02-21
  Read more
• 2.6.6 - 2019-02-12
  Read more
• 2.6.5 - 2019-02-11
  Read more
• 2.6.4 - 2019-02-08
  Read more
• 2.6.3 - 2019-02-06
  Read more
• 2.6.2 - 2019-02-05
  Read more
• 2.6.1 - 2019-02-04
• 2.6.0 - 2019-02-04
• 2.6.0-beta.3 - 2019-01-30
• 2.6.0-beta.2 - 2019-01-26
• 2.6.0-beta.1 - 2019-01-16
• 2.5.22 - 2019-01-11

from vue GitHub release notes

Commit messages

Package name: vue

• ec78fc8 build: release 2.6.11
• a98048f build: build 2.6.11
• fc41f91 chore: update yarn.lock
• 70429c3 build(deps-dev): bump serialize-javascript from 1.3.0 to 2.1.2 (#10914)
• 9fbd416 chore: update sponsors [ci skip] (#10896)
• a974022 chore: update backers [ci skip] (#10895)
• 6b4c0f9 chore: typo in comment
• fd0eaf9 chore: update sponsors [ci skip] (#10841)
• 2c6a827 chore: update sponsors [ci skip] (#10821)
• f796ab4 chore: update sponsors [ci skip] (#10800)
• 276c082 chore: update backers [ci skip] (#10799)
• 4821149 fix(types): fix prop constructor type inference (#10779)
• 9f5563c chore: update sponsors [ci skip]
• b805a19 build(deps-dev): bump lodash.template from 4.4.0 to 4.5.0 (#10636)
• bd47e5b build(deps-dev): bump lodash from 4.17.11 to 4.17.13 (#10635)
• fd42082 build(deps): bump ecstatic from 3.3.0 to 3.3.2 (#10634)
• fa55a20 build(deps): bump handlebars from 4.0.12 to 4.4.3 (#10633)
• d1164f1 chore: Fastcoding Inc broken icon [ci skip] (#10638)
• 3c90820 build(deps): bump js-yaml from 3.12.1 to 3.13.1 (#10632)
• 3bc7322 build(deps): bump mixin-deep from 1.3.1 to 1.3.2 (#10631)
• 0645fe6 build(deps): bump eslint-utils from 1.3.1 to 1.4.2 (#10630)
• b885e1e chore: update sponsors [ci skip] (#10750)
• d7d8ff0 chore: fix typo in `next-tick.js` comment (#10607)
• e8ca21f chore: fix sponsor link

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs