Commits · e73d1a82e25986728c96ef731768af19605fb960 · 孙灵跃 Leon Sun / coopwire-hypothesis

19 Nov, 2019 7 commits
- Merge pull request #1510 from hypothesis/remove-unused-styles · e73d1a82
  Lyza Gardner authored Nov 19, 2019
```
Remove (some) deprecated SCSS color variables
```
  e73d1a82
- Remove completely unused color variables · 613e92f7
  Lyza Danger Gardner authored Nov 19, 2019
```
`$color-cardinal` and `$gray-lightest` have no references in existing
SCSS
```
  613e92f7
- Remove `$color-silver` SCSS color variable · 328f5be2
  Lyza Danger Gardner authored Nov 19, 2019
```
Also remove now-unused utility class for cancel buttons—this pattern
is only used in one place and may be on the way out in general.
```
  328f5be2
- Remove `$color-silver-chalice` SCSS color variable · 36865dbb
  Lyza Danger Gardner authored Nov 19, 2019
```
Sub with `$grey-4`, which is identical (`#a6a6a6`). Part of consolidating
CSS colors.
```
  36865dbb
- Remove `$color-seashell` SCSS color variable · f24eca2c
  Lyza Danger Gardner authored Nov 19, 2019
```
Sub with `$grey-1`, which is virtually identical (`$color-seashell` was
`#f1f1f1`, `$grey-1` is `#f2f2f2`. Part of consolidating CSS colors.
```
  f24eca2c
- Merge pull request #1477 from hypothesis/observe-element-size · d9abd85d
  Robert Knight authored Nov 19, 2019
```
Convert excerpt to Preact (1/n) - Add a utility to observe element size changes
```
  d9abd85d
- Merge pull request #1479 from hypothesis/annotator-toolbar-focus-ring · 73e0e81a
  Robert Knight authored Nov 19, 2019
```
Show focus ring on annotator toolbar buttons when using keyboard focus
```
  73e0e81a
18 Nov, 2019 19 commits

Merge pull request #1506 from hypothesis/dependabot/npm_and_yarn/https-proxy-agent-2.2.4 · 8080cf5b
Robert Knight authored Nov 18, 2019
```
[Security] Bump https-proxy-agent from 2.2.2 to 2.2.4
```
8080cf5b
Merge pull request #1474 from hypothesis/faster-partial-tests · 6d09ac3f
Robert Knight authored Nov 18, 2019
```
Reduce test startup time when running a subset of tests
```
6d09ac3f

[Security] Bump https-proxy-agent from 2.2.2 to 2.2.4 · b5e07e79

dependabot-preview[bot] authored Nov 18, 2019

Bumps [https-proxy-agent](https://github.com/TooTallNate/node-https-proxy-agent) from 2.2.2 to 2.2.4. **This update includes security fixes.**
- [Release notes](https://github.com/TooTallNate/node-https-proxy-agent/releases)
- [Commits](https://github.com/TooTallNate/node-https-proxy-agent/compare/2.2.2...2.2.4)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

b5e07e79

Merge pull request #1498 from hypothesis/dependabot/npm_and_yarn/fetch-mock-8.0.0 · b6ca3898
Robert Knight authored Nov 18, 2019
```
Bump fetch-mock from 6.5.2 to 8.0.0
```
b6ca3898

Use the CommonJS entry point for fetch-mock · 8df60d32

Robert Knight authored Nov 18, 2019

The entry point for fetch-mock v8 is an ES module which Browserify does
not support natively. Therefore use the CommonJS entry point as
described at http://www.wheresrhys.co.uk/fetch-mock/#usageimporting.

8df60d32

Merge pull request #1502 from hypothesis/dependabot/npm_and_yarn/enzyme-adapter-preact-pure-2.2.0 · d59a80ee
dependabot-preview[bot] authored Nov 18, 2019

d59a80ee
Merge pull request #1499 from hypothesis/dependabot/npm_and_yarn/npm-packlist-2.0.1 · 19e68c8f
Robert Knight authored Nov 18, 2019
```
Bump npm-packlist from 1.4.6 to 2.0.1
```
19e68c8f
Merge pull request #1501 from hypothesis/dependabot/npm_and_yarn/sentry/browser-5.9.0 · 4a315d14
Robert Knight authored Nov 18, 2019
```
Bump @sentry/browser from 5.7.1 to 5.9.0
```
4a315d14
Merge pull request #1503 from hypothesis/dependabot/npm_and_yarn/sass-1.23.6 · f4bb4dcf
Robert Knight authored Nov 18, 2019
```
Bump sass from 1.23.3 to 1.23.6
```
f4bb4dcf
Merge pull request #1481 from hypothesis/dependabot/npm_and_yarn/commander-4.0.1 · a83c5a5e
Robert Knight authored Nov 18, 2019
```
Bump commander from 3.0.2 to 4.0.1
```
a83c5a5e

Bump sass from 1.23.3 to 1.23.6 · f236745f

dependabot-preview[bot] authored Nov 18, 2019

Bumps [sass](https://github.com/sass/dart-sass) from 1.23.3 to 1.23.6.
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sass/dart-sass/compare/1.23.3...1.23.6)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

f236745f

Merge pull request #1500 from hypothesis/dependabot/npm_and_yarn/aws-sdk-2.573.0 · 971e6870
dependabot-preview[bot] authored Nov 18, 2019

971e6870
Merge pull request #1497 from hypothesis/dependabot/npm_and_yarn/octokit/rest-16.35.0 · 3f413bba
dependabot-preview[bot] authored Nov 18, 2019

3f413bba

Bump enzyme-adapter-preact-pure from 2.1.0 to 2.2.0 · 0ad05ef5

dependabot-preview[bot] authored Nov 18, 2019

Bumps [enzyme-adapter-preact-pure](https://github.com/preactjs/enzyme-adapter-preact-pure) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/preactjs/enzyme-adapter-preact-pure/releases)
- [Changelog](https://github.com/preactjs/enzyme-adapter-preact-pure/blob/master/CHANGELOG.md)
- [Commits](https://github.com/preactjs/enzyme-adapter-preact-pure/compare/v2.1.0...v2.2.0)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

0ad05ef5

Bump @sentry/browser from 5.7.1 to 5.9.0 · a6e59be5

dependabot-preview[bot] authored Nov 18, 2019

Bumps [@sentry/browser](https://github.com/getsentry/sentry-javascript) from 5.7.1 to 5.9.0.
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getsentry/sentry-javascript/compare/5.7.1...5.9.0)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

a6e59be5

Bump aws-sdk from 2.556.0 to 2.573.0 · 42fbd125

dependabot-preview[bot] authored Nov 18, 2019

Bumps [aws-sdk](https://github.com/aws/aws-sdk-js) from 2.556.0 to 2.573.0.
- [Release notes](https://github.com/aws/aws-sdk-js/releases)
- [Changelog](https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js/compare/v2.556.0...v2.573.0)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

42fbd125

Bump npm-packlist from 1.4.6 to 2.0.1 · 6b96b87f

dependabot-preview[bot] authored Nov 18, 2019

Bumps [npm-packlist](https://github.com/npm/npm-packlist) from 1.4.6 to 2.0.1.
- [Release notes](https://github.com/npm/npm-packlist/releases)
- [Commits](https://github.com/npm/npm-packlist/compare/v1.4.6...v2.0.1)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

6b96b87f

Bump fetch-mock from 6.5.2 to 8.0.0 · be96df45

dependabot-preview[bot] authored Nov 18, 2019

Bumps [fetch-mock](https://github.com/wheresrhys/fetch-mock) from 6.5.2 to 8.0.0.
- [Release notes](https://github.com/wheresrhys/fetch-mock/releases)
- [Commits](https://github.com/wheresrhys/fetch-mock/compare/v6.5.2...v8.0.0)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

be96df45

Bump @octokit/rest from 16.34.0 to 16.35.0 · 7e4ef3d4

dependabot-preview[bot] authored Nov 18, 2019

Bumps [@octokit/rest](https://github.com/octokit/rest.js) from 16.34.0 to 16.35.0.
- [Release notes](https://github.com/octokit/rest.js/releases)
- [Commits](https://github.com/octokit/rest.js/compare/v16.34.0...v16.35.0)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

7e4ef3d4

15 Nov, 2019 5 commits
- Merge pull request #1493 from hypothesis/rpc-server-actions · 70749111
  Kyle Keating authored Nov 15, 2019
```
Add changeFocusModeUser action
```
  70749111
- Add changeFocusModeUser action · 6551b4b5
  Kyle Keating authored Nov 11, 2019
```
- Edit `cross-origin-rpc.js` server to be able to call actions.
- Add registerMethods rpc whitelist mapping function
```
  6551b4b5
- Merge pull request #1494 from hypothesis/use-element-should-close-hook · e9400300
  Lyza Gardner authored Nov 15, 2019
```
Add hook to tell an element to close if interactions happen outside of it
```
  e9400300
- Prototype a hook to handle “close” interactions on document · 6b4daba5
  Lyza Danger Gardner authored Nov 07, 2019
  
  6b4daba5
- Merge pull request #1495 from hypothesis/patch-fix-split-null-bug · 080f0161
  Lyza Gardner authored Nov 15, 2019
```
Prevent errors arising from applying private permissions to anonymous annotations
```
  080f0161
14 Nov, 2019 1 commit

Prevent errors arising from applying private permissions to anonymous annotations · 8ca4773b

Lyza Danger Gardner authored Nov 14, 2019

As a convenience, the app retains the last permissions level used by a user when publishing an annotation. For example, if a user creates and saves and annotation that is set to “only me”/private, the app stashes that as a pseudo-preference in `localStorage` and the next time a user creates a new annotation, that will be the default permissions level applied to it. This makes it easier to create several subsequent annotations that have the same permissions/sharing setting.

There is a bug in this approach, however, which before this patch happened when:

* A Hypothesis user creates an annotation and sets the permissions to “private” (only me) and saves the annotation successfully to the `h` service, then;
* The Hypothesis user logs out, then;
* The same person in the same browser (now an anonymous user from Hypothesis’ perspective) selects some text and clicks “annotate., then;
* The user is shown an error message that they must log in to create annotations: they click “Log In”

Before this fix, the user then would see an error “Cannot read property ‘split’ of null” in an error flash and the login process would not successfully complete. The only workaround was to reload the browser window and try again.

After this fix, the user will not see an error after the sequence detailed above and the login process will complete.

This fix is achieved by preventing the app from attempting to apply default permissions of “only me”/private when no `userid` is available. Doing so creates corrupted permissions on the annotation which throw `TypeError`s when later iterated over.

There are several further fixes necessary to fully clean up this situation, but this patches over the immediate user-visible bug.

Fixes https://github.com/hypothesis/client/issues/1221

8ca4773b

13 Nov, 2019 3 commits
- Merge pull request #1489 from hypothesis/dependabot/npm_and_yarn/autoprefixer-9.7.1 · 4c100fae
  Hannah Stepanek authored Nov 13, 2019
```
Bump autoprefixer from 9.7.0 to 9.7.1
```
  4c100fae
- Merge pull request #1492 from hypothesis/top-bar-cleanup · bf727705
  Lyza Gardner authored Nov 13, 2019
```
Clean up `TopBar`: CSS, ARIA
```
  bf727705
- Improve consistency of (S)CSS and ARIA attributes · 01ab37e1
  Lyza Danger Gardner authored Nov 11, 2019
  
  01ab37e1
12 Nov, 2019 5 commits
- Merge pull request #1480 from hypothesis/copy-version-details · 246ac93c
  Lyza Gardner authored Nov 12, 2019
```
Add Copy-version-details to help panel; tighten design/layout
```
  246ac93c
- Merge pull request #1487 from hypothesis/dependabot/npm_and_yarn/showdown-1.9.1 · e7fbacf5
  Hannah Stepanek authored Nov 12, 2019
```
Bump showdown from 1.9.0 to 1.9.1
```
  e7fbacf5
- Merge pull request #1485 from hypothesis/dependabot/npm_and_yarn/sass-1.23.3 · 5cb19f9a
  Hannah Stepanek authored Nov 12, 2019
```
Bump sass from 1.23.1 to 1.23.3
```
  5cb19f9a
- Merge pull request #1486 from hypothesis/dependabot/npm_and_yarn/preact-10.0.5 · 983717b8
  Hannah Stepanek authored Nov 12, 2019
```
Bump preact from 10.0.4 to 10.0.5
```
  983717b8
- Bump preact from 10.0.4 to 10.0.5 · 43378a20
  dependabot-preview[bot] authored Nov 12, 2019
```
Bumps [preact](https://github.com/preactjs/preact) from 10.0.4 to 10.0.5.
- [Release notes](https://github.com/preactjs/preact/releases)
- [Commits](https://github.com/preactjs/preact/compare/10.0.4...10.0.5)
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
```
  43378a20