Bump the npm_and_yarn group across 1 directory with 3 updates

[dependabot]

Bumps the npm_and_yarn group with 3 updates in the / directory: mathjax, tinymce and tar.

Updates mathjax from 2.7.9 to 3.0.0

Release notes

Sourced from mathjax's releases.

MathJax v3.0.0

After over two years of development, the MathJax team is pleased to announce the official release of MathJax 3.0.0!

This version is a complete rewrite of MathJax from the ground up using modern programming techniques, including Typescript, ES6 modules, Promises, and more.

Please see the What's New in v3.0 section of the documentation for details about the new version 3.0.0.

Please see the Upgrading from v2 instructions for details about what is and isn't in version 3, and how to upgrade your site from version 2. Note in particular that there is a configuration converter that can help you move from version 2 to version 3.

See the documentation for details about how to use MathJax.

See the MathJax Source Repository for the source code for versions 3.

There are two repositories that contain examples of using MathJax, one for web pages, and one for use with node on a server:

• MathJax Web Examples
• MathJax Node Examples

Please use the MathJax Issue Tracker to report problems in version 3 of MathJax.

Commits

• a043a3f Merge branch 'develop' into master
• 8aec7fe Merge branch 'v3.0.0' into develop
• c926ed8 Add the component files for v3.0.0
• c2d67b1 Update travis login
• 57e8da8 Update README to use jsdelivr
• ba664a9 Fix name of main for node require
• c1bef19 Add file list to package.json and remove .npmignore (whitelist rather than bl...
• 0a76025 Add file list to package.json and remove .npmignore (whitelist rather than bl...
• 9059d43 Fix scripts to work with updated MathJax-src repository
• b5a9d51 Update the size-reduction instructions in the read-me file
• Additional commits viewable in compare view

Updates tinymce from 5.10.9 to 7.2.0

Changelog

Sourced from tinymce's changelog.

7.2.0 - 2024-06-19

Added

• Added options.debug API that logs the initial raw editor options to console. #TINY-10605
• Added referrerpolicy as a valid attribute for an iframe element. #TINY-10374
• New onInit and stretched properties to the HtmlPanel dialog component. #TINY-10900
• Added support for querying the state of the mceTogglePlainTextPaste command. #TINY-10938
• Added for option to dialog label components to improve accessibility. The value must be another component on the same dialog. #TINY-10971

Improved

• Dialog slider components now emit an onChange event when using arrow keys. #TINY-10428
• Accessibility for element path buttons, added tooltip to describe the button and removed incorrect aria-level attribute. #TINY-10891
• Improve merging of inserted inline elements by removing nodes with redundant inheritable styles. #TINY-10869
• Improved Find & Replace dialog accessibility by changing placeholders to labels. #TINY-10871

Changed

• Replaced tiny branding logo with Build with TinyMCE text and logo. #TINY-11001

Fixed

• Deleting in a div with preceeding br elements would sometimes throw errors. #TINY-10840
• autoresize_bottom_margin was not reliably applied in some situations. #TINY-10793
• Fixed cases where adding a newline around a br, table or img would not move the cursor to a new line. #TINY-10384
• Focusing on contenteditable="true" element when using editable_root: false and inline mode causing selection to be shifted. #TINY-10820
• Corrected the role attribute on listbox dialog components to combobox when there are no nested menu items. #TINY-10807
• HTML entities that were double decoded in noscript elements caused an XSS vulnerability. #TINY-11019
• It was possible to inject XSS HTML that was not matching the regexp when using the noneditable_regexp option. #TINY-11022

7.1.2 - 2024-06-05

Fixed

• CSS color values set to transparent were incorrectly converted to '#000000`. #TINY-10916

7.1.1 - 2024-05-22

Fixed

• Insert/Edit image dialog lost focus after the image upload completed. #TINY-10885
• Deleting into a list from a paragraph that has an img tag could cause extra inline styles to be added. #TINY-10892
• Resolved an issue where emojis configured with the emojiimages database were not loading correctly due to a broken CDN. #TINY-10878
• Iframes in dialogs were not rendering rounded borders correctly. #TINY-10901
• Autocompleter possible values are no longer capped at a length of 10. #TINY-10942

7.1.0 - 2024-05-08

Added

• Parser support for math elements. #TINY-10809
• New math-equation icon. #TINY-10804

Improved

• Included itemprop, itemscope and itemtype as valid HTML5 attributes in the core schema. #TINY-9932
• Notification accessibility improvements: added tooltips, keyboard navigation and shortcut to focus on notifications. #TINY-6925

... (truncated)

Commits

• 754e390 TINY-10860: Prepare for 7.2 release (#9715)
• a9fb858 TINY-11019 & TINY-11022: Fixed issues with noscript encoding and noneditable_...
• 3fae00c TINY-10807: Use role="combobox" for flat ListBox components (#9665)
• e7ef3b6 TINY-10871: replace placeholders with labels in Find & Replace dialog (#9689)
• 6ce11b6 TINY-10936: Merge release to main (#9685)
• 5fa376a TINY-11001: Replaced tiny branding logo (#9683)
• c42efc2 TINY-10938: Added query command for paste as plaintext status. (#9651)
• 70cff12 TINY-10971: introduce optional label for property (#9681)
• 054671e TINY-10891: Add tooltips to element path (#9676)
• 465fbbe TINY-10869: Improve merging inserted nested inline elements (#9658)
• Additional commits viewable in compare view

Updates tar from 7.5.7 to 7.5.9

Commits

• 1f0c2c9 7.5.9
• fbb0851 build minified version as default export
• 6b8eba0 7.5.8
• 2cb1120 fix(unpack): improve UnpackSync symlink error "into" path accuracy
• d18e4e1 fix: do not write linkpaths through symlinks
• See full diff in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for tar since your current version.

Install script changes

This version adds prepare script that runs during installation. Review the package contents before updating.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[AngelFQC]

@dependabot recreate