Compare commits

...

42 Commits

Author SHA1 Message Date
Bardi Harborow c82919e897 Remove link to translation associated with supply chain attack
This commit removes a link from our documentation to a Mandarin Chinese (Simplified) translation of our documentation which is hosted on a sub-domain of the `bootcss.com` domain previously involved in the `polyfill.io` supply chain attack.
2025-12-27 11:19:55 -08:00
dependabot[bot] 4449c7465e Build(deps): Bump the github-actions group across 1 directory with 4 updates (#41961)
Bumps the github-actions group with 4 updates in the / directory: [github/codeql-action](https://github.com/github/codeql-action), [streetsidesoftware/cspell-action](https://github.com/streetsidesoftware/cspell-action), [actions-cool/issues-helper](https://github.com/actions-cool/issues-helper) and [actions/upload-artifact](https://github.com/actions/upload-artifact).


Updates `github/codeql-action` from 4.31.7 to 4.31.9
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/cf1bb45a277cb3c205638b2cd5c984db1c46a412...5d4e8d1aca955e8d8589aabd499c5cae939e33c7)

Updates `streetsidesoftware/cspell-action` from 8.0.0 to 8.1.1
- [Release notes](https://github.com/streetsidesoftware/cspell-action/releases)
- [Changelog](https://github.com/streetsidesoftware/cspell-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/streetsidesoftware/cspell-action/compare/3294df585d3d639e30f3bc019cb11940b9866e95...e5a858a18b7e0b56e0342b1dcad796308b7341a2)

Updates `actions-cool/issues-helper` from 3.7.3 to 3.7.4
- [Release notes](https://github.com/actions-cool/issues-helper/releases)
- [Changelog](https://github.com/actions-cool/issues-helper/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions-cool/issues-helper/compare/3809910bc12872edc9b8132f122069ac16cd16ee...d1d51fccf39469b5458203b1369060db0ff0c0db)

Updates `actions/upload-artifact` from 5.0.0 to 6.0.0
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/330a01c490aca151604b8cf639adc76d48f6c5d4...b7c566a772e6b6bfb58ed0dc250532a479d7789f)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.31.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: streetsidesoftware/cspell-action
  dependency-version: 8.1.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions-cool/issues-helper
  dependency-version: 3.7.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/upload-artifact
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-20 15:02:08 +01:00
Julien Déramond 93920fe842 Remove volar-service-emmet version override
This error came from @astrojs/check version 0.9.5. More context at withastro/astro#14544.
2025-12-20 14:56:39 +01:00
Julien Déramond 02d8ed85e4 Bump dependencies
- @astrojs/check                ^0.9.5  →    ^0.9.6
- @astrojs/markdown-remark      ^6.3.9  →   ^6.3.10
- @astrojs/mdx                 ^4.3.12  →   ^4.3.13
- astro                        ^5.16.0  →   ^5.16.6
- autoprefixer                ^10.4.22  →  ^10.4.23
- find-unused-sass-variables    ^6.1.0  →    ^6.1.1
- jasmine                      ^5.12.0  →   ^5.13.0
- prettier                      ^3.6.2  →    ^3.7.4
- rollup                       ^4.53.3  →   ^4.54.0
- sass-true                    ^10.0.0  →   ^10.1.0
- stylelint                   ^16.26.0  →  ^16.26.1
- zod                          ^4.1.13  →    ^4.2.1
2025-12-20 14:50:51 +01:00
dependabot[bot] e170268b3c Build(deps): Bump the github-actions group across 1 directory with 4 updates (#41912)
Bumps the github-actions group with 4 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [actions/setup-node](https://github.com/actions/setup-node), [github/codeql-action](https://github.com/github/codeql-action) and [actions-cool/issues-helper](https://github.com/actions-cool/issues-helper).


Updates `actions/checkout` from 6.0.0 to 6.0.1
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3...8e8c483db84b4bee98b60c0593521ed34d9990e8)

Updates `actions/setup-node` from 6.0.0 to 6.1.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/2028fbc5c25fe9cf00d9f06a71cc4710d4507903...395ad3262231945c25e8478fd5baf05154b1d79f)

Updates `github/codeql-action` from 4.31.5 to 4.31.7
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/fdbfb4d2750291e159f0156def62b853c2798ca2...cf1bb45a277cb3c205638b2cd5c984db1c46a412)

Updates `actions-cool/issues-helper` from 3.7.2 to 3.7.3
- [Release notes](https://github.com/actions-cool/issues-helper/releases)
- [Changelog](https://github.com/actions-cool/issues-helper/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions-cool/issues-helper/compare/9861779a695cf1898bd984c727f685f351cfc372...3809910bc12872edc9b8132f122069ac16cd16ee)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/setup-node
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: 4.31.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions-cool/issues-helper
  dependency-version: 3.7.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-09 20:51:17 +01:00
Mark Otto e9cd061528 Add incident response plan documentation (#41905)
This document outlines the incident response plan for Bootstrap maintainers, detailing procedures for managing security and operational incidents, roles, responsibilities, and communication protocols.
2025-12-03 09:18:05 -08:00
Julien Déramond f29a71b1cf Build(deps-dev): Bump dependencies
- vnu-jar  25.11.20  →  25.11.25
- zod       ^4.1.12  →   ^4.1.13
2025-11-25 18:30:11 +01:00
dependabot[bot] 481bf7ece2 Build(deps): Bump the github-actions group with 2 updates (#41886)
Bumps the github-actions group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/checkout` from 5.0.1 to 6.0.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/93cb6efe18208431cddfb8368fd83d5badbf9bfd...1af3b93b6815bc44a9784bd300feb67ff0d1eeb3)

Updates `github/codeql-action` from 4.31.3 to 4.31.5
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/014f16e7ab1402f30e7c3329d33797e7948572db...fdbfb4d2750291e159f0156def62b853c2798ca2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: 4.31.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-25 18:28:06 +01:00
Julien Déramond c577685708 Build(deps): Bump dependencies
- @astrojs/mdx   ^4.3.11  →   ^4.3.12
- astro          ^5.15.9  →   ^5.16.0
- rollup         ^4.53.2  →   ^4.53.3
- sass-true       ^9.0.0  →   ^10.0.0
- stylelint     ^16.25.0  →  ^16.26.0
- vnu-jar       25.11.17  →  25.11.20
2025-11-22 08:42:05 +01:00
Julien Déramond 61b0bab5c2 Build(deps-dev): Bump dependencies
- @astrojs/markdown-remark   ^6.3.8  →   ^6.3.9
- @astrojs/mdx              ^4.3.10  →  ^4.3.11
- astro                     ^5.15.8  →  ^5.15.9
2025-11-18 18:41:50 +01:00
dependabot[bot] 05fc0c7f37 Build(deps): Bump the github-actions group with 3 updates (#41878)
Bumps the github-actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [github/codeql-action](https://github.com/github/codeql-action) and [coverallsapp/github-action](https://github.com/coverallsapp/github-action).


Updates `actions/checkout` from 5.0.0 to 5.0.1
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/08c6903cd8c0fde910a37f88322edcfb5dd907a8...93cb6efe18208431cddfb8368fd83d5badbf9bfd)

Updates `github/codeql-action` from 4.31.2 to 4.31.3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/0499de31b99561a6d14a36a5f662c2a54f91beee...014f16e7ab1402f30e7c3329d33797e7948572db)

Updates `coverallsapp/github-action` from 2.3.6 to 2.3.7
- [Release notes](https://github.com/coverallsapp/github-action/releases)
- [Commits](https://github.com/coverallsapp/github-action/compare/648a8eb78e6d50909eff900e4ec85cab4524a45b...5cbfd81b66ca5d10c19b062c04de0199c215fb6e)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 5.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: 4.31.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: coverallsapp/github-action
  dependency-version: 2.3.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-18 18:39:20 +01:00
Julien Déramond c9e83a12b5 Build(deps-dev): Bump vnu-jar from 25.11.8 to 25.11.17 2025-11-17 18:27:33 +01:00
Julien Déramond 6f4d51f6ea Build(deps-dev): Bump dependencies
- astro   ^5.15.6  →  ^5.15.8
- globby  ^15.0.0  →  ^16.0.0
2025-11-15 18:02:18 +01:00
Julien Déramond 35858ff363 Build(deps-dev): Bump dependencies
- astro    ^5.15.5  →  ^5.15.6
 - js-yaml   ^4.1.0  →   ^4.1.1
2025-11-14 07:01:47 +01:00
Julien Déramond b4a1d28dc9 Build(deps-dev): Bump nodemon from 3.1.10 to 3.1.11 2025-11-12 09:37:24 +01:00
dependabot[bot] 25b6ac90ee Build(deps): Bump the github-actions group with 2 updates (#41865)
Bumps the github-actions group with 2 updates: [streetsidesoftware/cspell-action](https://github.com/streetsidesoftware/cspell-action) and [actions-cool/issues-helper](https://github.com/actions-cool/issues-helper).


Updates `streetsidesoftware/cspell-action` from 7.2.1 to 8.0.0
- [Release notes](https://github.com/streetsidesoftware/cspell-action/releases)
- [Changelog](https://github.com/streetsidesoftware/cspell-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/streetsidesoftware/cspell-action/compare/76c6f6d52abd57f4bcab5f3fde1bbd4f19a99eb0...3294df585d3d639e30f3bc019cb11940b9866e95)

Updates `actions-cool/issues-helper` from 3.7.1 to 3.7.2
- [Release notes](https://github.com/actions-cool/issues-helper/releases)
- [Changelog](https://github.com/actions-cool/issues-helper/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions-cool/issues-helper/compare/564cd9b1baacd7a9cd634e8039a149901ee5f600...9861779a695cf1898bd984c727f685f351cfc372)

---
updated-dependencies:
- dependency-name: streetsidesoftware/cspell-action
  dependency-version: 8.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions-cool/issues-helper
  dependency-version: 3.7.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-11 12:10:20 +01:00
Julien Déramond 1ce39817bd Build(deps-dev): Bump dependencies
- astro          ^5.15.4  →   ^5.15.5
- autoprefixer  ^10.4.21  →  ^10.4.22
2025-11-11 08:17:51 +01:00
Julien Déramond c38c6cb6c2 Build(deps-dev): Bump rollup from 4.53.1 to 4.53.2 2025-11-10 19:45:48 +01:00
Shakil Shahadat b7122f155f Docs: update <meta> viewport MDN link in Getting Started > Introduction page (#41861) 2025-11-08 14:53:13 +01:00
Julien Déramond 14672e570c Build(deps-dev): Bump dependencies
- rollup   ^4.52.5  →  ^4.53.1
- vnu-jar  25.11.7  →  25.11.8
2025-11-08 06:06:18 +01:00
Julien Déramond 90baf94dac Build(deps-dev): Bump dependencies
- @astrojs/mdx   ^4.3.9  →  ^4.3.10
- astro         ^5.15.3  →  ^5.15.4
- terser        ^5.44.0  →  ^5.44.1
- vnu-jar       25.11.4  →  25.11.7
2025-11-07 08:15:24 +01:00
Julien Déramond 9214b595a7 Build(deps-dev): Bump vnu-jar from 25.11.2 to 25.11.4 2025-11-05 06:52:38 +01:00
dependabot[bot] fe76cb3ccb Build(deps): Bump the github-actions group with 3 updates (#41848)
Bumps the github-actions group with 3 updates: [github/codeql-action](https://github.com/github/codeql-action), [JustinBeckwith/linkinator-action](https://github.com/justinbeckwith/linkinator-action) and [actions-cool/issues-helper](https://github.com/actions-cool/issues-helper).


Updates `github/codeql-action` from 4.31.0 to 4.31.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/4e94bd11f71e507f7f87df81788dff88d1dacbfb...0499de31b99561a6d14a36a5f662c2a54f91beee)

Updates `JustinBeckwith/linkinator-action` from 2.1 to 2.3
- [Release notes](https://github.com/justinbeckwith/linkinator-action/releases)
- [Changelog](https://github.com/JustinBeckwith/linkinator-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/justinbeckwith/linkinator-action/compare/cf305c16947ba91077d8a51fa2cbe155cd60f455...af984b9f30f63e796ae2ea5be5e07cb587f1bbd9)

Updates `actions-cool/issues-helper` from 3.6.3 to 3.7.1
- [Release notes](https://github.com/actions-cool/issues-helper/releases)
- [Changelog](https://github.com/actions-cool/issues-helper/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions-cool/issues-helper/compare/45d75b6cf72bf4f254be6230cb887ad002702491...564cd9b1baacd7a9cd634e8039a149901ee5f600)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.31.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: JustinBeckwith/linkinator-action
  dependency-version: '2.3'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions-cool/issues-helper
  dependency-version: 3.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-05 06:50:42 +01:00
Julien Déramond 8bbe4018ba Build(deps-dev): Bump vnu-jar from 25.11.1 to 25.11.2 2025-11-02 09:35:22 +01:00
Julien Déramond 6ad25a7102 Build(deps-dev): Bump vnu-jar from 24.10.17 to 25.11.1 2025-11-01 11:09:11 +01:00
Julien Déramond 12b3f76cc4 Build(deps-dev): Bump dependencies
- @rollup/plugin-commonjs  ^28.0.9  →  ^29.0.0
- astro                    ^5.15.2  →  ^5.15.3
2025-10-31 07:02:45 +01:00
Julien Déramond 815af314f3 Build(deps-dev): Bump @rollup/plugin-replace from 6.0.2 to 6.0.3 2025-10-29 18:19:18 +01:00
Julien Déramond 26badb2f6b Build(deps-dev): Bump dependencies
- @astrojs/mdx   ^4.3.8  →   ^4.3.9
- astro         ^5.15.1  →  ^5.15.2
2025-10-28 18:15:33 +01:00
dependabot[bot] a79f4911ba Build(deps): Bump the github-actions group across 1 directory with 5 updates (#41840)
Bumps the github-actions group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/setup-node](https://github.com/actions/setup-node) | `5.0.0` | `6.0.0` |
| [github/codeql-action](https://github.com/github/codeql-action) | `3.30.6` | `4.31.0` |
| [streetsidesoftware/cspell-action](https://github.com/streetsidesoftware/cspell-action) | `7.2.0` | `7.2.1` |
| [JustinBeckwith/linkinator-action](https://github.com/justinbeckwith/linkinator-action) | `1.11.0` | `2.1` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.6.2` | `5.0.0` |



Updates `actions/setup-node` from 5.0.0 to 6.0.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/a0853c24544627f65ddf259abe73b1d18a591444...2028fbc5c25fe9cf00d9f06a71cc4710d4507903)

Updates `github/codeql-action` from 3.30.6 to 4.31.0
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/64d10c13136e1c5bce3e5fbde8d4906eeaafc885...4e94bd11f71e507f7f87df81788dff88d1dacbfb)

Updates `streetsidesoftware/cspell-action` from 7.2.0 to 7.2.1
- [Release notes](https://github.com/streetsidesoftware/cspell-action/releases)
- [Changelog](https://github.com/streetsidesoftware/cspell-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/streetsidesoftware/cspell-action/compare/dcd03dc3e8a59ec2e360d0c62db517baa0b4bb6d...76c6f6d52abd57f4bcab5f3fde1bbd4f19a99eb0)

Updates `JustinBeckwith/linkinator-action` from 1.11.0 to 2.1
- [Release notes](https://github.com/justinbeckwith/linkinator-action/releases)
- [Changelog](https://github.com/JustinBeckwith/linkinator-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/justinbeckwith/linkinator-action/compare/3d5ba091319fa7b0ac14703761eebb7d100e6f6d...cf305c16947ba91077d8a51fa2cbe155cd60f455)

Updates `actions/upload-artifact` from 4.6.2 to 5.0.0
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/ea165f8d65b6e75b540449e92b4886f43607fa02...330a01c490aca151604b8cf639adc76d48f6c5d4)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: 4.31.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: streetsidesoftware/cspell-action
  dependency-version: 7.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: JustinBeckwith/linkinator-action
  dependency-version: '2.1'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/upload-artifact
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-26 19:41:30 +01:00
Julien Déramond cfe66330e8 Overrides volar-service-emmet version to fix linting issues
This error comes from @astrojs/check version 0.9.5. More context at https://github.com/withastro/astro/issues/14544.
2025-10-26 19:31:46 +01:00
Julien Déramond ecee5a7765 Build(deps-dev): Bump dependencies
- @astrojs/check                ^0.9.4  →   ^0.9.5
- @astrojs/mdx                  ^4.3.7  →   ^4.3.8
- @babel/core                  ^7.28.4  →  ^7.28.5
- @babel/preset-env            ^7.28.3  →  ^7.28.5
- @rollup/plugin-babel          ^6.0.4  →   ^6.1.0
- @rollup/plugin-commonjs      ^28.0.6  →  ^28.0.9
- @rollup/plugin-node-resolve  ^16.0.2  →  ^16.0.3
- astro                        ^5.14.4  →  ^5.15.1
- rollup                       ^4.52.4  →  ^4.52.5
2025-10-26 18:57:46 +01:00
Julien Déramond 8f3d0580a3 Build(deps-dev): Bump astro from 5.14.3 to 5.14.4 2025-10-12 19:39:58 +02:00
Julien Déramond 19a4bab36d Build(deps-dev): Bump dependencies
- @astrojs/markdown-remark   ^6.3.7  →   ^6.3.8
 - @astrojs/mdx               ^4.3.6  →   ^4.3.7
 - astro                     ^5.14.1  →  ^5.14.3
2025-10-10 06:59:35 +02:00
Julien Déramond 88a78a6958 Build(deps-dev): Bump dependencies
- @rollup/plugin-node-resolve  ^16.0.1  →  ^16.0.2
- astro-auto-import             ^0.4.4  →   ^0.4.5
- jasmine                      ^5.11.0  →  ^5.12.0
- zod                          ^4.1.11  →  ^4.1.12
2025-10-07 20:49:40 +02:00
dependabot[bot] 8afa30c52b Build(deps): Bump the github-actions group with 2 updates (#41798)
Bumps the github-actions group with 2 updates: [github/codeql-action](https://github.com/github/codeql-action) and [ossf/scorecard-action](https://github.com/ossf/scorecard-action).


Updates `github/codeql-action` from 3.30.5 to 3.30.6
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/3599b3baa15b485a2e49ef411a7a4bb2452e7f93...64d10c13136e1c5bce3e5fbde8d4906eeaafc885)

Updates `ossf/scorecard-action` from 2.4.2 to 2.4.3
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/05b42c624433fc40578a4040d5cf5e36ddca8cde...4eaacf0543bb3f2c246792bd56e8cdeffafb205a)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 3.30.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: ossf/scorecard-action
  dependency-version: 2.4.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-07 17:25:14 +02:00
Julien Déramond ddf5853c7b Build(deps-dev): Bump dependencies
- rollup      ^4.52.3  →   ^4.52.4
- stylelint  ^16.24.0  →  ^16.25.0
2025-10-04 09:02:05 +02:00
dependabot[bot] 4189b3075c Build(deps): Bump github/codeql-action in the github-actions group (#41782)
Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 3.30.3 to 3.30.5
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/192325c86100d080feab897ff886c34abd4c83a3...3599b3baa15b485a2e49ef411a7a4bb2452e7f93)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 3.30.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-30 18:01:50 +02:00
Julien Déramond 8cd02aabd1 Build(deps-dev): Bump dependencies (#41780)
- cross-env  ^10.0.0  →  ^10.1.0
- globby     ^14.1.0  →  ^15.0.0
2025-09-29 21:59:14 +02:00
Julien Déramond 380a1d738b chore(deps-dev): bump dependencies
- astro    ^5.13.11  →  ^5.14.1
- jasmine   ^5.10.0  →  ^5.11.0
- rollup    ^4.52.2  →  ^4.52.3
2025-09-27 11:31:05 +02:00
Julien Déramond 0458e76ec1 Build(deps-dev): Bump astro from 5.13.10 to 5.13.11 2025-09-24 22:08:35 +02:00
Julien Déramond 21d19a9a6a Build(deps-dev): Bump rollup from 4.52.0 to 4.52.2 2025-09-23 20:01:25 +02:00
Julien Déramond 6772c8ccbe Build(deps-dev): Bump dependencies
- @astrojs/markdown-remark   ^6.3.6  →    ^6.3.7
- @astrojs/mdx               ^4.3.5  →    ^4.3.6
- astro                     ^5.13.9  →  ^5.13.10
- zod                        ^4.1.9  →   ^4.1.11
2025-09-22 20:54:26 +02:00
21 changed files with 1666 additions and 1373 deletions
+162
View File
@@ -0,0 +1,162 @@
# Incident response plan
This document describes how the Bootstrap maintainers respond to and manage security or operational incidents affecting the project, its website, or its distributed releases. This plan is public to promote transparency and community trust. Operational details (e.g., private contacts, credentials, or internal coordination tools) are maintained separately in the maintainers private documentation.
---
## 1. Purpose & Scope
This plan defines how Bootstrap maintainers will:
- Identify, triage, and manage security or integrity incidents affecting project code, releases, or infrastructure.
- Communicate with the community and downstream consumers during and after an incident.
- Record lessons learned and update processes to reduce future risk.
It applies to:
- The Bootstrap source code, documentation, and build pipelines.
- Release artifacts (npm, CDN, GitHub releases).
- The main website ([https://getbootstrap.com](https://getbootstrap.com)).
- Any official Bootstrap GitHub organization infrastructure.
It does **not** cover unrelated third-party forks or integrations.
---
## 2. Definitions
- **Incident**: Any event that could compromise the confidentiality, integrity, or availability of Bootstrap code, releases, or users. Examples include:
- A discovered security vulnerability.
- A compromised GitHub account or CI/CD token.
- A malicious dependency or injected code in a release.
- Website defacement or unauthorized modification of documentation.
- Leaked secrets related to the project infrastructure.
- **Incident Commander (IC)**: The maintainer responsible for coordinating the overall response.
---
## 3. Roles & Responsibilities
| Role | Responsibilities |
|------|-------------------|
| **Incident Commander (IC)** | Coordinate the response, assign tasks, ensure timely communication. |
| **Security Maintainers** | Triage reported vulnerabilities, assess impact, create fixes, handle embargoes. |
| **Infrastructure Lead** | Manage CI/CD, website, and release infrastructure. |
| **Communications Lead** | Manage public announcements, blog posts, and social updates. |
| **Contributors & Community** | Promptly report suspected security issues and follow responsible disclosure guidelines. |
In practice, Bootstraps core team fulfills these roles collectively, assigning an IC on a per-incident basis.
---
## 4. Incident workflow
### 4.1 Detection & Reporting
- All security issues should be **privately reported** via the contact method in [`SECURITY.md`](../SECURITY.md) or through GitHubs Security Advisory mechanism.
- Maintainers also monitor:
- Automated dependency scanners (e.g., Dependabot, npm audit).
- GitHub notifications and vulnerability alerts.
- Community channels for suspicious activity.
### 4.2 Initial triage
Upon receiving a report:
1. A maintainer acknowledges receipt within 3 business days (or sooner, when possible).
Bootstrap is maintained by a small volunteer team; response times may vary slightly outside normal working hours.
2. The IC assesses severity and impact:
- **Critical:** immediate compromise of release infrastructure or code integrity.
- **High:** exploitable vulnerability in distributed assets.
- **Medium:** minor vulnerability or low-likelihood attack vector.
- **Low:** informational, no direct risk.
3. If confirmed as an incident, the IC opens a private coordination channel for maintainers and begins containment.
### 4.3 Containment & Eradication
- Revoke or rotate any affected credentials.
- Disable compromised infrastructure or build pipelines if necessary.
- Patch affected branches or dependencies.
- Verify integrity of artifacts and releases.
### 4.4 Communication
- Keep the reporting party informed (when applicable).
- For major incidents, the Communications Lead drafts a public advisory describing:
- What happened
- What was impacted
- How users can verify or mitigate
- What actions were taken
- Communications occur after containment to avoid amplifying risk.
Public disclosures are posted via:
- GitHub Security Advisory if appropriate
- [blog.getbootstrap.com/](https://blog.getbootstrap.com/)
- [Bootstrap GitHub discussions](https://github.com/orgs/twbs/discussions)
- [@getbootstrap](https://x.com/getbootstrap) on X (formerly Twitter) for critical security notices.
### 4.5 Recovery
- Validate all systems and releases are secure.
- Resume normal operations.
- Tag patched releases and notify affected users.
### 4.6 Post-incident review
Within two weeks after resolution:
- Conduct an internal debrief.
- Record:
- Root cause
- What worked / what didnt
- Remediation steps
- Documentation or automation updates needed
- Summarize lessons learned in the private maintainers wiki (with optional public summary if appropriate).
---
## 5. Severity levels & Response targets
| Severity | Example | Target response (volunteer team) |
|-----------|----------|----------------------------------|
| **Critical** | Compromised release, stolen signing keys | Acknowledge ≤ 24h (best effort), containment ≤ 48h, fix ideally ≤ 14d |
| **High** | Vulnerability enabling arbitrary code execution | Acknowledge ≤ 3 business days, fix ideally ≤ 1421d |
| **Medium** | XSS or content injection on docs site | Acknowledge ≤ 5 business days, fix in next release cycle |
| **Low** | Minor issue with limited risk | Acknowledge ≤ 7 business days, fix as scheduled |
**Note:** Timelines represent good-faith targets for a small volunteer core team, not hard SLAs. The maintainers will always prioritize public safety and transparency, even if timing varies.
---
## 6. Public disclosure principles
Bootstrap follows a responsible disclosure approach:
- Work privately with reporters and affected parties before publishing details.
- Never name reporters without consent.
- Coordinate embargo periods with downstream consumers when needed.
- Publish advisories only after patches or mitigations are available.
---
## 7. Communication Channels
| Purpose | Channel |
|----------|----------|
| Private reporting | Email address in [`SECURITY.md`](./SECURITY.md) or GitHub advisory form |
| General updates | [blog.getbootstrap.com/](https://blog.getbootstrap.com/) blog |
| Security advisories | GitHub Security Advisory dashboard |
| Social alerts | [@getbootstrap](https://x.com/getbootstrap) |
| GitHub discussion alerts | [github.com/orgs/twbs/discussions](https://github.com/orgs/twbs/discussions) |
---
## 8. Plan Maintenance
This plan is reviewed at least annually or after any major incident. Changes are approved by the Core Team and recorded in Git history.
---
_The Bootstrap maintainers are committed to transparency, user trust, and continuous improvement in our security and response practices._
+2 -2
View File
@@ -22,12 +22,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Set up Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
with:
node-version: "${{ env.NODE }}"
cache: npm
+2 -2
View File
@@ -20,12 +20,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Set up Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
with:
node-version: "${{ env.NODE }}"
cache: npm
@@ -22,7 +22,7 @@ jobs:
pull-requests: write
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
+4 -4
View File
@@ -24,21 +24,21 @@ jobs:
steps:
- name: Checkout repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Initialize CodeQL
uses: github/codeql-action/init@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
uses: github/codeql-action/init@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
with:
config-file: ./.github/codeql/codeql-config.yml
languages: "javascript"
queries: +security-and-quality
- name: Autobuild
uses: github/codeql-action/autobuild@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
uses: github/codeql-action/autobuild@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
uses: github/codeql-action/analyze@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
with:
category: "/language:javascript"
+2 -2
View File
@@ -23,12 +23,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Run cspell
uses: streetsidesoftware/cspell-action@dcd03dc3e8a59ec2e360d0c62db517baa0b4bb6d # v7.2.0
uses: streetsidesoftware/cspell-action@e5a858a18b7e0b56e0342b1dcad796308b7341a2 # v8.1.1
with:
config: ".cspell.json"
files: "**/*.{md,mdx}"
+2 -2
View File
@@ -20,12 +20,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Set up Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
with:
node-version: "${{ env.NODE }}"
cache: npm
+3 -3
View File
@@ -20,12 +20,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Set up Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
with:
node-version: "${{ env.NODE }}"
cache: npm
@@ -42,7 +42,7 @@ jobs:
run: npm run docs-vnu
- name: Run linkinator
uses: JustinBeckwith/linkinator-action@3d5ba091319fa7b0ac14703761eebb7d100e6f6d # v1.11.0
uses: JustinBeckwith/linkinator-action@af984b9f30f63e796ae2ea5be5e07cb587f1bbd9 # v2.3
with:
paths: _site
recurse: true
+1 -1
View File
@@ -17,7 +17,7 @@ jobs:
if: github.repository == 'twbs/bootstrap'
steps:
- name: awaiting reply
uses: actions-cool/issues-helper@45d75b6cf72bf4f254be6230cb887ad002702491 # v3.6.3
uses: actions-cool/issues-helper@d1d51fccf39469b5458203b1369060db0ff0c0db # v3.7.4
with:
actions: "close-issues"
labels: "awaiting-reply"
+1 -1
View File
@@ -18,7 +18,7 @@ jobs:
steps:
- name: awaiting reply
if: github.event.label.name == 'needs-example'
uses: actions-cool/issues-helper@45d75b6cf72bf4f254be6230cb887ad002702491 # v3.6.3
uses: actions-cool/issues-helper@d1d51fccf39469b5458203b1369060db0ff0c0db # v3.7.4
with:
actions: "create-comment"
token: ${{ secrets.GITHUB_TOKEN }}
+3 -3
View File
@@ -25,12 +25,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Set up Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
with:
node-version: ${{ env.NODE }}
cache: npm
@@ -45,7 +45,7 @@ jobs:
run: npm run js-test
- name: Run Coveralls
uses: coverallsapp/github-action@648a8eb78e6d50909eff900e4ec85cab4524a45b # v2.3.6
uses: coverallsapp/github-action@5cbfd81b66ca5d10c19b062c04de0199c215fb6e # v2.3.7
if: ${{ !github.event.repository.fork }}
with:
github-token: "${{ secrets.GITHUB_TOKEN }}"
+2 -2
View File
@@ -20,12 +20,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Set up Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
with:
node-version: "${{ env.NODE }}"
cache: npm
+2 -2
View File
@@ -20,12 +20,12 @@ jobs:
steps:
- name: Clone repository
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: Set up Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
with:
node-version: "${{ env.NODE }}"
+1 -1
View File
@@ -14,7 +14,7 @@ jobs:
env:
GITHUB_REF_NAME: ${{ github.ref_name }}
steps:
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
- uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
+4 -4
View File
@@ -34,12 +34,12 @@ jobs:
steps:
- name: "Checkout code"
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
with:
persist-credentials: false
- name: "Run analysis"
uses: ossf/scorecard-action@05b42c624433fc40578a4040d5cf5e36ddca8cde # v2.4.2
uses: ossf/scorecard-action@4eaacf0543bb3f2c246792bd56e8cdeffafb205a # v2.4.3
with:
results_file: results.sarif
results_format: sarif
@@ -64,7 +64,7 @@ jobs:
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
# format to the repository Actions tab.
- name: "Upload artifact"
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
with:
name: SARIF file
path: results.sarif
@@ -73,6 +73,6 @@ jobs:
# Upload the results to GitHub's code scanning dashboard (optional).
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
- name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
uses: github/codeql-action/upload-sarif@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
with:
sarif_file: results.sarif
+1440 -1304
View File
File diff suppressed because it is too large Load Diff
+26 -26
View File
@@ -84,7 +84,7 @@
"docs-serve": "npm run astro-dev",
"docs-serve-only": "npx sirv-cli _site --port 9001",
"lockfile-lint": "lockfile-lint --allowed-hosts npm --allowed-schemes https: --empty-hostname false --type npm --path package-lock.json",
"update-deps": "ncu -u -x @docsearch/js,eslint,eslint-config-xo,eslint-plugin-unicorn,karma-browserstack-launcher,karma-rollup-preprocessor,sass",
"update-deps": "ncu -u -x @docsearch/js,eslint,eslint-config-xo,eslint-plugin-unicorn,karma-browserstack-launcher,karma-rollup-preprocessor,sass,vnu-jar",
"release": "npm-run-all dist release-sri docs-build release-zip*",
"release-sri": "node build/generate-sri.mjs",
"release-version": "node build/change-version.mjs",
@@ -108,47 +108,47 @@
"@popperjs/core": "^2.11.8"
},
"devDependencies": {
"@astrojs/check": "^0.9.4",
"@astrojs/markdown-remark": "^6.3.6",
"@astrojs/mdx": "^4.3.5",
"@astrojs/check": "^0.9.6",
"@astrojs/markdown-remark": "^6.3.10",
"@astrojs/mdx": "^4.3.13",
"@astrojs/prism": "^3.3.0",
"@astrojs/sitemap": "^3.6.0",
"@babel/cli": "^7.28.3",
"@babel/core": "^7.28.4",
"@babel/preset-env": "^7.28.3",
"@babel/core": "^7.28.5",
"@babel/preset-env": "^7.28.5",
"@docsearch/js": "^3.9.0",
"@popperjs/core": "^2.11.8",
"@rollup/plugin-babel": "^6.0.4",
"@rollup/plugin-commonjs": "^28.0.6",
"@rollup/plugin-node-resolve": "^16.0.1",
"@rollup/plugin-replace": "^6.0.2",
"@rollup/plugin-babel": "^6.1.0",
"@rollup/plugin-commonjs": "^29.0.0",
"@rollup/plugin-node-resolve": "^16.0.3",
"@rollup/plugin-replace": "^6.0.3",
"@stackblitz/sdk": "^1.11.0",
"@types/js-yaml": "^4.0.9",
"@types/mime": "^4.0.0",
"@types/prismjs": "^1.26.5",
"astro": "^5.13.9",
"astro-auto-import": "^0.4.4",
"autoprefixer": "^10.4.21",
"astro": "^5.16.6",
"astro-auto-import": "^0.4.5",
"autoprefixer": "^10.4.23",
"bundlewatch": "^0.4.1",
"clean-css-cli": "^5.6.3",
"clipboard": "^2.0.11",
"cross-env": "^10.0.0",
"cross-env": "^10.1.0",
"eslint": "8.57.1",
"eslint-config-xo": "0.45.0",
"eslint-plugin-html": "^8.1.3",
"eslint-plugin-import": "^2.32.0",
"eslint-plugin-markdown": "^5.1.0",
"eslint-plugin-unicorn": "56.0.1",
"find-unused-sass-variables": "^6.1.0",
"find-unused-sass-variables": "^6.1.1",
"github-slugger": "^2.0.0",
"globby": "^14.1.0",
"globby": "^16.0.0",
"hammer-simulator": "0.0.1",
"htmlparser2": "^10.0.0",
"image-size": "^2.0.2",
"ip": "^2.0.1",
"jasmine": "^5.10.0",
"jasmine": "^5.13.0",
"jquery": "^3.7.1",
"js-yaml": "^4.1.0",
"js-yaml": "^4.1.1",
"karma": "^6.4.4",
"karma-browserstack-launcher": "1.4.0",
"karma-chrome-launcher": "^3.2.0",
@@ -160,27 +160,27 @@
"karma-rollup-preprocessor": "7.0.7",
"lockfile-lint": "^4.14.1",
"mime": "^4.1.0",
"nodemon": "^3.1.10",
"nodemon": "^3.1.11",
"npm-run-all2": "^8.0.4",
"postcss": "^8.5.6",
"postcss-cli": "^11.0.1",
"prettier": "^3.6.2",
"prettier": "^3.7.4",
"prettier-plugin-astro": "^0.14.1",
"rehype-autolink-headings": "^7.1.0",
"remark": "^15.0.1",
"remark-html": "^16.0.1",
"rollup": "^4.52.0",
"rollup": "^4.54.0",
"rollup-plugin-istanbul": "^5.0.0",
"rtlcss": "^4.3.0",
"sass": "1.78.0",
"sass-true": "^9.0.0",
"sass-true": "^10.1.0",
"shelljs": "^0.10.0",
"stylelint": "^16.24.0",
"stylelint": "^16.26.1",
"stylelint-config-twbs-bootstrap": "^16.1.0",
"terser": "^5.44.0",
"terser": "^5.44.1",
"unist-util-visit": "^5.0.0",
"vnu-jar": "24.10.17",
"zod": "^4.1.9"
"vnu-jar": "25.11.25",
"zod": "^4.2.1"
},
"files": [
"dist/{css,js}/*.{css,js,map}",
+3 -3
View File
@@ -11,11 +11,11 @@
--#{$prefix}table-bg: #{$background};
--#{$prefix}table-border-color: #{$table-border-color};
--#{$prefix}table-striped-bg: #{$striped-bg};
--#{$prefix}table-striped-color: #{color-contrast($striped-bg)};
--#{$prefix}table-striped-color: #{color-contrast($striped-bg)}; // stylelint-disable-line scss/dollar-variable-no-missing-interpolation
--#{$prefix}table-active-bg: #{$active-bg};
--#{$prefix}table-active-color: #{color-contrast($active-bg)};
--#{$prefix}table-active-color: #{color-contrast($active-bg)}; // stylelint-disable-line scss/dollar-variable-no-missing-interpolation
--#{$prefix}table-hover-bg: #{$hover-bg};
--#{$prefix}table-hover-color: #{color-contrast($hover-bg)};
--#{$prefix}table-hover-color: #{color-contrast($hover-bg)}; // stylelint-disable-line scss/dollar-variable-no-missing-interpolation
color: var(--#{$prefix}table-color);
border-color: var(--#{$prefix}table-border-color);
-5
View File
@@ -3,11 +3,6 @@
description: Bootstrap 5 繁體中文手冊
url: https://bootstrap5.hexschool.com/
- name: Simplified Chinese
code: zh-CN
description: Bootstrap 5 中文文档
url: https://v5.bootcss.com/
- name: Japanese
code: ja
description: Bootstrap 5 日本語リファレンス
@@ -14,7 +14,7 @@ Get started by including Bootstraps production-ready CSS and JavaScript via C
<br/>
1. **Create a new `index.html` file in your project root.** Include the `<meta name="viewport">` tag as well for [proper responsive behavior](https://developer.mozilla.org/en-US/docs/Web/HTML/Viewport_meta_tag) in mobile devices.
1. **Create a new `index.html` file in your project root.** Include the `<meta name="viewport">` tag as well for [proper responsive behavior](https://developer.mozilla.org/en-US/docs/Web/HTML/Reference/Elements/meta/name/viewport) in mobile devices.
```html
<!doctype html>
+4 -4
View File
@@ -12,8 +12,8 @@ $bd-callout-variants: info, warning, danger !default;
--bd-purple: #{$bd-purple};
--bd-violet: #{$bd-violet};
--bd-accent: #{$bd-accent};
--bd-violet-rgb: #{to-rgb($bd-violet)};
--bd-accent-rgb: #{to-rgb($bd-accent)};
--bd-violet-rgb: #{to-rgb($bd-violet)}; // stylelint-disable-line scss/dollar-variable-no-missing-interpolation
--bd-accent-rgb: #{to-rgb($bd-accent)}; // stylelint-disable-line scss/dollar-variable-no-missing-interpolation
--bd-pink-rgb: #{to-rgb($pink-500)};
--bd-teal-rgb: #{to-rgb($teal-500)};
--bd-violet-bg: var(--bd-violet);
@@ -25,10 +25,10 @@ $bd-callout-variants: info, warning, danger !default;
}
@include color-mode(dark, true) {
--bd-violet: #{mix($bd-violet, $white, 75%)};
--bd-violet: #{mix($bd-violet, $white, 75%)}; // stylelint-disable-line scss/dollar-variable-no-missing-interpolation
--bd-violet-bg: #{$bd-violet};
--bd-toc-color: var(--#{$prefix}emphasis-color);
--bd-sidebar-link-bg: rgba(#{to-rgb(mix($bd-violet, $black, 75%))}, .5);
--bd-sidebar-link-bg: rgba(#{to-rgb(mix($bd-violet, $black, 75%))}, .5); // stylelint-disable-line scss/dollar-variable-no-missing-interpolation
--bd-callout-link: #{to-rgb($blue-300)};
--bd-callout-code-color: #{$pink-300};
--bd-pre-bg: #{adjust-color($gray-900, $lightness: -2.5%)}; // stylelint-disable-line scss/at-function-named-arguments