-
Notifications
You must be signed in to change notification settings - Fork 4.8k
Permalink
Choose a base ref
{{ refName }}
default
Choose a head ref
{{ refName }}
default
Comparing changes
Choose two branches to see what’s changed or to start a new pull request.
If you need to, you can also or
learn more about diff comparisons.
Open a pull request
Create a new pull request by comparing changes across two branches. If you need to, you can also .
Learn more about diff comparisons here.
base repository: parallax/jsPDF
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v4.1.0
Could not load branches
Nothing to show
Loading
Could not load tags
Nothing to show
{{ refName }}
default
Loading
...
head repository: parallax/jsPDF
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v4.2.1
Could not load branches
Nothing to show
Loading
Could not load tags
Nothing to show
{{ refName }}
default
Loading
- 11 commits
- 113 files changed
- 9 contributors
Commits on Feb 4, 2026
-
Configuration menu - View commit details
-
Copy full SHA for 3b92c7d - Browse repository at this point
Copy the full SHA 3b92c7dView commit details
Commits on Feb 9, 2026
-
fix: upgrade @babel/runtime from 7.28.4 to 7.28.6 (#3954)
Snyk has created this PR to upgrade @babel/runtime from 7.28.4 to 7.28.6. See this package in npm: @babel/runtime See this project in Snyk: https://app.snyk.io/org/mrrio/project/50515eb1-b03b-4f42-9f17-cce1a33d5d1a?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 885a777 - Browse repository at this point
Copy the full SHA 885a777View commit details
Commits on Feb 19, 2026
-
* fix * fix * add regression tests and revert dist changes * prettier --------- Co-authored-by: Lukas Holländer <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 71ad2db - Browse repository at this point
Copy the full SHA 71ad2dbView commit details -
Configuration menu - View commit details
-
Copy full SHA for 2e5e156 - Browse repository at this point
Copy the full SHA 2e5e156View commit details -
* Sanitize JavaScript input in addJS function Sanitize input JavaScript to prevent errors with parentheses. * don't escape already escaped parentheses, add test cases --------- Co-authored-by: Lukas Holländer <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 56b46d4 - Browse repository at this point
Copy the full SHA 56b46d4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 7af912c - Browse repository at this point
Copy the full SHA 7af912cView commit details
Commits on Mar 2, 2026
-
Bump rollup from 2.79.2 to 2.80.0 (#3960)
Bumps [rollup](https://github.com/rollup/rollup) from 2.79.2 to 2.80.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/v2.80.0/CHANGELOG.md) - [Commits](rollup/rollup@v2.79.2...v2.80.0) --- updated-dependencies: - dependency-name: rollup dependency-version: 2.80.0 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Configuration menu - View commit details
-
Copy full SHA for 42ac890 - Browse repository at this point
Copy the full SHA 42ac890View commit details
Commits on Mar 3, 2026
-
Bump minimatch from 3.1.2 to 3.1.5 (#3961)
Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.1.2 to 3.1.5. - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.1.2...v3.1.5) --- updated-dependencies: - dependency-name: minimatch dependency-version: 3.1.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Lukas Holländer <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for b1607a9 - Browse repository at this point
Copy the full SHA b1607a9View commit details
Commits on Mar 17, 2026
-
* Fix popup rendering for new window outputs * Encode filename in data URI, add edge case tests - Encode options.filename in datauristring to prevent data URI structure corruption via semicolons/commas - Add tests: SRI on default pdfobject URL, data URI filename encoding, malicious pdfJsUrl attribute injection attempt * Fix SRI test: split into default and custom URL cases The previous test claimed to cover both default and custom URL paths but only checked the default. Now split into two separate tests that each verify what they claim. --------- Co-authored-by: Doruk <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 87a40bb - Browse repository at this point
Copy the full SHA 87a40bbView commit details -
* Fix FreeText annotation style string escaping * Remove dist artifacts from FreeText fix PR * Harden FreeText color: add hex validation, fix double #, expand tests - Validate color as hex pattern (3-8 hex chars), fallback to 000000 for non-hex input as defense-in-depth alongside pdfEscape - Strip leading # before concatenation to prevent double ## in output - Add tests: injection rejection, backslash bypass, valid hex colors, double # prevention, non-hex fallback * Update freetext.pdf reference for double # fix The reference file had color:##ff0000 (double #) which was a pre-existing bug. Now that we strip the leading # before concatenation, the output is color:#ff0000 and the reference must match. * Revert "Update freetext.pdf reference for double # fix" This reverts commit b6139558ededb872a663f62898d68f0f2d35bde5. * Revert "Harden FreeText color: add hex validation, fix double #, expand tests" This reverts commit 0b8baf967c5089ec40f0a86c3d59cb47fcc0823e. --------- Co-authored-by: Doruk <[email protected]> Co-authored-by: Lukas Holländer <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 4155c48 - Browse repository at this point
Copy the full SHA 4155c48View commit details -
Configuration menu - View commit details
-
Copy full SHA for 4562ce8 - Browse repository at this point
Copy the full SHA 4562ce8View commit details
Loading
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff v4.1.0...v4.2.1