Skip to content

chore(deps): bump svgo from 3.3.2 to 3.3.3#561

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/svgo-3.3.3
Open

chore(deps): bump svgo from 3.3.2 to 3.3.3#561
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/svgo-3.3.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 5, 2026
edited
Loading

Bumps svgo from 3.3.2 to 3.3.3.

Release notes

Sourced from svgo's releases.

v3.3.3

What's Changed

Dependencies

  • Migrates from our unsupported fork of sax (@​trysound/sax) to the upstream version of sax (sax).

Bug Fixes

  • No longer throws error when encountering comments in DTD.

Metrics

Before and after of the browser bundle of each respective version:

v3.3.2 v3.3.3 Delta
svgo.browser.js 910.9 kB 912.9 kB ⬆️ 2 kB

Support

SVGO v3 is not officially supported, please consider upgrading to SVGO v4 instead. We've backported this fix as there are security implications, but there is no commitment to do this for more complex changes in future.

Consider reading our Migration Guide from v3 to v4 which should ease the process.

Commits

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Mar 5, 2026

Labels

The following labels could not be found: dependabot. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 5, 2026
@dependabot dependabot bot requested a review from a team as a code owner March 5, 2026 00:39
@dependabot dependabot bot requested review from main-kun and removed request for a team March 5, 2026 00:39
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 5, 2026
@yc-ui-bot
Copy link
Copy Markdown
Contributor

yc-ui-bot commented Mar 5, 2026

Visual Tests Report is ready.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/svgo-3.3.3 branch from 11ef56b to 9c7df99 Compare March 19, 2026 11:33
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/svgo-3.3.3 branch 2 times, most recently from 711809d to 8ba2683 Compare April 1, 2026 12:54
@dependabot
chore(deps): bump svgo from 3.3.2 to 3.3.3
23f13d5 
Bumps [svgo](https://github.com/svg/svgo) from 3.3.2 to 3.3.3.
- [Release notes](https://github.com/svg/svgo/releases)
- [Commits](svg/svgo@v3.3.2...v3.3.3)

---
updated-dependencies:
- dependency-name: svgo
  dependency-version: 3.3.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/svgo-3.3.3 branch from 8ba2683 to 23f13d5 Compare April 2, 2026 13:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@main-kun main-kun Awaiting requested review from main-kun main-kun is a code owner automatically assigned from diplodoc-platform/team

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@yc-ui-bot