Skip to content

Chore(deps): bump entities from 4.5.0 to 8.0.0#2024

Merged
svelderrainruiz merged 1 commit into
developfrom
dependabot/npm_and_yarn/entities-8.0.0
Apr 20, 2026
Merged

Chore(deps): bump entities from 4.5.0 to 8.0.0#2024
svelderrainruiz merged 1 commit into
developfrom
dependabot/npm_and_yarn/entities-8.0.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 29, 2026
edited
Loading

Bumps entities from 4.5.0 to 8.0.0.

Release notes

Sourced from entities's releases.

v8.0.0

What's Changed

  • BREAKING CHANGE: entities is now ESM-only fb55/entities#2183
    • BREAKING: Update engines to node >= 20.19.0
      • Update tsconfig: target es2022
    • BREAKING: Remove deprecated functions & polyfills
  • Use shared eslint config fb55/entities#2157

Full Changelog: fb55/entities@v7.0.1...v8.0.0

v7.0.1

What's Changed

Full Changelog: fb55/entities@v7.0.0...v7.0.1

v7.0.0

No changes in public API; a lot of internals changed though, for faster encoding & decoding and reduced memory usage.

Improvements

Reduced length of the encoded trie by 21% for HTML (from 15,242 words (uint16) to 12075), by:

  • Adding a semicolon flag on value nodes, which means semicolons don't have to be encoded anymore.
  • Compacting dict keys: two keys are now stored in each word, instead of one
  • Compacting runs of 3 or more characters: successive characters are now also stored as two characters per word

Also reduces the size of the encoded table by 32% (after the previous change) by encoding it as base64.

Encodes the encode trie as a string, with a simple parser turning it into the previous structure on load. This leads to a 44% decrease in file size (from 24,034 to 13,392 bytes).

Uses bitmaps to replace regex when looking for ASCII code points that should be replaced with entities. Leads to a ~1.6x speed up for encodeHTML.

Miscellaneous

... (truncated)

Commits
  • 2322ee7 8.0.0
  • 601b001 refactor!: ESM-only (#2183)
  • f888e4c chore(deps): Bump github/codeql-action from 4.32.6 to 4.33.0 (#2182)
  • 0c36a4d chore(deps-dev): Bump typescript-eslint from 8.57.0 to 8.57.1 (#2181)
  • 556e3f4 chore: Remove Tidelift funding information (#2180)
  • ea1b8f4 chore(deps-dev): Bump @​feedic/eslint-config from 0.2.3 to 0.3.1 (#2179)
  • 0d19be8 chore(deps-dev): Bump @​biomejs/biome from 2.4.6 to 2.4.7 (#2178)
  • 12cfc04 chore(deps-dev): Bump @​vitest/coverage-v8 from 4.0.18 to 4.1.0 (#2177)
  • 96f7cc7 chore(deps-dev): Bump @​types/node from 25.4.0 to 25.5.0 (#2175)
  • 6610169 chore(deps-dev): Bump typescript-eslint from 8.56.1 to 8.57.0 (#2174)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for entities since your current version.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 29, 2026
@dependabot dependabot Bot requested a review from svelderrainruiz as a code owner March 29, 2026 07:25
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 29, 2026
@dependabot
Chore(deps): bump entities from 4.5.0 to 8.0.0
d4dfb87 
Bumps [entities](https://github.com/fb55/entities) from 4.5.0 to 8.0.0.
- [Release notes](https://github.com/fb55/entities/releases)
- [Commits](fb55/entities@v4.5.0...v8.0.0)

---
updated-dependencies:
- dependency-name: entities
  dependency-version: 8.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/entities-8.0.0 branch from 8f5feb6 to d4dfb87 Compare April 6, 2026 04:24
@svelderrainruiz svelderrainruiz added this pull request to the merge queue Apr 20, 2026
Merged via the queue into develop with commit 1611da2 Apr 20, 2026
46 of 47 checks passed
@svelderrainruiz svelderrainruiz deleted the dependabot/npm_and_yarn/entities-8.0.0 branch April 20, 2026 04:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@svelderrainruiz svelderrainruiz Awaiting requested review from svelderrainruiz svelderrainruiz is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@svelderrainruiz