The GitHub Actions job "Required Checks" on texera.git/gh-readonly-queue/main/pr-5810-5e4a8d98f12c4340a19222e200ea448b18abf8ce has failed. Run started by GitHub user aglinxinyuan (triggered by aglinxinyuan).
Head commit for run: b794f6c9cb4080381e813c0c183a26fb009ca9a3 / dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> chore(deps): bump @angular/compiler from 21.2.10 to 21.2.17 in /frontend (#5810) Bumps [@angular/compiler](https://github.com/angular/angular/tree/HEAD/packages/compiler) from 21.2.10 to 21.2.17. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/angular/angular/releases";>@angular/compiler's releases</a>.</em></p> <blockquote> <h2>21.2.17</h2> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/86a56dc279e71159d09a073a3cb138f49131995b";><img src="https://img.shields.io/badge/86a56dc279-fix-green"; alt="fix - 86a56dc279" /></a></td> <td>Limits date format string length</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/d846326b071e0a4ab090e068d934b182926c6b15";><img src="https://img.shields.io/badge/d846326b07-fix-green"; alt="fix - d846326b07" /></a></td> <td>skip transfer cache for uncacheable HTTP traffic</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/bc55749698ce3917160cd8e9f7108f3c5d1c0b32";><img src="https://img.shields.io/badge/bc55749698-fix-green"; alt="fix - bc55749698" /></a></td> <td>use cryptographically secure SHA-256 for transfer cache key generation</td> </tr> </tbody> </table> <h3>compiler</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/dc9c99636d3471ed5a3c5cda54b95f604cd2b9a4";><img src="https://img.shields.io/badge/dc9c99636d-fix-green"; alt="fix - dc9c99636d" /></a></td> <td>sanitize two-way properties</td> </tr> </tbody> </table> <h3>core</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/152306113760e13196653699b42046d9f4129a37";><img src="https://img.shields.io/badge/1523061137-fix-green"; alt="fix - 1523061137" /></a></td> <td>harden TransferState restoration against DOM clobbering</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/88832c84f8a3cd88d80adcde539a6f91a1f30b74";><img src="https://img.shields.io/badge/88832c84f8-fix-green"; alt="fix - 88832c84f8" /></a></td> <td>validate lowercase SVG animation attribute names (<a href="https://github.com/angular/angular/tree/HEAD/packages/compiler/issues/69269";>#69269</a>)</td> </tr> </tbody> </table> <h3>http</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/bcb1b7ea2575b140f7bf202ad4f779e402cd6094";><img src="https://img.shields.io/badge/bcb1b7ea25-fix-green"; alt="fix - bcb1b7ea25" /></a></td> <td>preserve empty referrer option in HttpRequest</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/a810a319d10a8254307eb8f0598e7a888ce09ec0";><img src="https://img.shields.io/badge/a810a319d1-fix-green"; alt="fix - a810a319d1" /></a></td> <td>Rejects non-HTTP(S) URLs in JSONP requests</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/e245d40c4d05665ab4814c594b8e0849b6e88a2d";><img src="https://img.shields.io/badge/e245d40c4d-fix-green"; alt="fix - e245d40c4d" /></a></td> <td>skip transfer cache for fetch credentialed requests</td> </tr> </tbody> </table> <h3>platform-server</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/35510746b7d6b5c3de41de04c0586fc286c9e748";><img src="https://img.shields.io/badge/35510746b7-fix-green"; alt="fix - 35510746b7" /></a></td> <td>harden platform location origin validation during SSR</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/13fb0afe93b45e3c2383969f70d3ee1f0146ecfb";><img src="https://img.shields.io/badge/13fb0afe93-refactor-yellow"; alt="refactor - 13fb0afe93" /></a></td> <td>deprecate ServerXhr (<a href="https://github.com/angular/angular/tree/HEAD/packages/compiler/issues/69255";>#69255</a>)</td> </tr> </tbody> </table> <h3>service-worker</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/b9d29381bb4442164b19d9b7e0baa147a7b25629";><img src="https://img.shields.io/badge/b9d29381bb-fix-green"; alt="fix - b9d29381bb" /></a></td> <td>Strips sensitive headers on cross-origin redirects</td> </tr> </tbody> </table> <h2>Deprecations</h2> <h3>platform-server</h3> <ul> <li>XHR support in <code>@angular/platform-server</code> is deprecated. Use standard <code>fetch</code> APIs instead.</li> </ul> <h2>21.2.16</h2> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/f6d8e642b0b215d2f9dbf1060abd24348c6cbf66";><img src="https://img.shields.io/badge/f6d8e642b0-fix-green"; alt="fix - f6d8e642b0" /></a></td> <td>only strip a literal /index.html suffix from URLs</td> </tr> </tbody> </table> <h3>compiler</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/ae1c8a1f7a7f1d4832da3b22e3763864fa5ff098";><img src="https://img.shields.io/badge/ae1c8a1f7a-fix-green"; alt="fix - ae1c8a1f7a" /></a></td> <td>move projection attributes into constants</td> </tr> </tbody> </table> <h3>core</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/3fd6897a67fd6acdc01fcde0452a98c3e0f81e21";><img src="https://img.shields.io/badge/3fd6897a67-fix-green"; alt="fix - 3fd6897a67" /></a></td> <td>harden inherit definition feature against polluted prototypes</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/7e38336dc73e14d98cc6465f54e1b7d6271facb2";><img src="https://img.shields.io/badge/7e38336dc7-fix-green"; alt="fix - 7e38336dc7" /></a></td> <td>use Object.create(null) for LOCALE_DATA as a hardening measure</td> </tr> </tbody> </table> <h3>platform-server</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/angular/angular/blob/main/CHANGELOG.md";>@angular/compiler's changelog</a>.</em></p> <blockquote> <h1>21.2.17 (2026-06-10)</h1> <h2>Deprecations</h2> <h3>platform-server</h3> <ul> <li>XHR support in <code>@angular/platform-server</code> is deprecated. Use standard <code>fetch</code> APIs instead.</li> </ul> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/86a56dc279e71159d09a073a3cb138f49131995b";>86a56dc279</a></td> <td>fix</td> <td>Limits date format string length</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/d846326b071e0a4ab090e068d934b182926c6b15";>d846326b07</a></td> <td>fix</td> <td>skip transfer cache for uncacheable HTTP traffic</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/bc55749698ce3917160cd8e9f7108f3c5d1c0b32";>bc55749698</a></td> <td>fix</td> <td>use cryptographically secure SHA-256 for transfer cache key generation</td> </tr> </tbody> </table> <h3>compiler</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/dc9c99636d3471ed5a3c5cda54b95f604cd2b9a4";>dc9c99636d</a></td> <td>fix</td> <td>sanitize two-way properties</td> </tr> </tbody> </table> <h3>core</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/152306113760e13196653699b42046d9f4129a37";>1523061137</a></td> <td>fix</td> <td>harden TransferState restoration against DOM clobbering</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/88832c84f8a3cd88d80adcde539a6f91a1f30b74";>88832c84f8</a></td> <td>fix</td> <td>validate lowercase SVG animation attribute names (<a href="https://redirect.github.com/angular/angular/pull/69269";>#69269</a>)</td> </tr> </tbody> </table> <h3>http</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/bcb1b7ea2575b140f7bf202ad4f779e402cd6094";>bcb1b7ea25</a></td> <td>fix</td> <td>preserve empty referrer option in HttpRequest</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/a810a319d10a8254307eb8f0598e7a888ce09ec0";>a810a319d1</a></td> <td>fix</td> <td>Rejects non-HTTP(S) URLs in JSONP requests</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/e245d40c4d05665ab4814c594b8e0849b6e88a2d";>e245d40c4d</a></td> <td>fix</td> <td>skip transfer cache for fetch credentialed requests</td> </tr> </tbody> </table> <h3>platform-server</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/35510746b7d6b5c3de41de04c0586fc286c9e748";>35510746b7</a></td> <td>fix</td> <td>harden platform location origin validation during SSR</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/13fb0afe93b45e3c2383969f70d3ee1f0146ecfb";>13fb0afe93</a></td> <td>refactor</td> <td>deprecate ServerXhr (<a href="https://redirect.github.com/angular/angular/pull/69255";>#69255</a>)</td> </tr> </tbody> </table> <h3>service-worker</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/b9d29381bb4442164b19d9b7e0baa147a7b25629";>b9d29381bb</a></td> <td>fix</td> <td>Strips sensitive headers on cross-origin redirects</td> </tr> </tbody> </table> <!-- raw HTML omitted --> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h1>20.3.25 (2026-06-10)</h1> <h2>Deprecations</h2> <h3>platform-server</h3> <ul> <li>XHR support in <code>@angular/platform-server</code> is deprecated. Use standard <code>fetch</code> APIs instead.</li> </ul> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/9f443bc24c79dca998c9434d1e235dc19dc29bba";>9f443bc24c</a></td> <td>fix</td> <td>Limits date format string length</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/566ad05f20732c38855353c3e73771ef9a34dadc";>566ad05f20</a></td> <td>fix</td> <td>skip transfer cache for uncacheable HTTP traffic</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/1a62130a6bb313e4441f005e480768a360c71be5";>1a62130a6b</a></td> <td>fix</td> <td>use cryptographically secure SHA-256 for transfer cache key generation</td> </tr> </tbody> </table> <h3>compiler</h3> <p>| Commit | Type | Description |</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/angular/angular/commit/dc9c99636d3471ed5a3c5cda54b95f604cd2b9a4";><code>dc9c996</code></a> fix(compiler): sanitize two-way properties</li> <li><a href="https://github.com/angular/angular/commit/ae1c8a1f7a7f1d4832da3b22e3763864fa5ff098";><code>ae1c8a1</code></a> fix(compiler): move projection attributes into constants</li> <li><a href="https://github.com/angular/angular/commit/eb1cbbf2eb5833219a367a61c04eb07aaa36cc29";><code>eb1cbbf</code></a> fix(compiler): prevent namespaced SVG <style> elements from being stripped</li> <li><a href="https://github.com/angular/angular/commit/29ceeffd40a2250eb51ac34af22d49e85b878922";><code>29ceeff</code></a> docs: fix typos in source code comments</li> <li><a href="https://github.com/angular/angular/commit/782e01594e2ad9134c7385dcf3b518101b23ccab";><code>782e015</code></a> fix(compiler): strip namespaced SVG script elements during template compilati...</li> <li><a href="https://github.com/angular/angular/commit/ff12fe55ace5e861ba261afb4c0480ff3c40a192";><code>ff12fe5</code></a> fix(core): normalize tag names in runtime i18n attribute security context loo...</li> <li><a href="https://github.com/angular/angular/commit/0b07f47bd6598ae6bd5b75a375e2c817a3c0f243";><code>0b07f47</code></a> fix(compiler): normalize tag names with custom namespaces in DomElementSchema...</li> <li><a href="https://github.com/angular/angular/commit/cc1378d54bd93f3882d732261be8e66720eb71b2";><code>cc1378d</code></a> fix(compiler): sanitize dynamic href and xlink:href bindings on SVG a element...</li> <li><a href="https://github.com/angular/angular/commit/daaf32937fd5c46e411b26f7c082613716fe9550";><code>daaf329</code></a> fix(core): support prefix-insensitive DOM schema lookups and compile-time i18...</li> <li><a href="https://github.com/angular/angular/commit/68282dff9f9ef46540cca4bd38fc1ab739c8a783";><code>68282df</code></a> fix(compiler): strip namespaced SVG script elements during template compilation</li> <li>Additional commits viewable in <a href="https://github.com/angular/angular/commits/v21.2.17/packages/compiler";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/texera/network/alerts). </details> --------- Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Xinyuan Lin <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Xinyuan Lin <[email protected]> Report URL: https://github.com/apache/texera/actions/runs/27854441298 With regards, GitHub Actions via GitBox
