Skip to content

Development strapi v5#1424

Merged
Robbert merged 154 commits into
mainfrom
development-strapi-v5
Jul 2, 2026
Merged

Development strapi v5#1424
Robbert merged 154 commits into
mainfrom
development-strapi-v5

Conversation

@AliKdhim87

Copy link
Copy Markdown
Collaborator

No description provided.

@AliKdhim87 AliKdhim87 requested review from Robbert and bddjong April 28, 2026 09:57
@vercel

vercel Bot commented Apr 28, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
cms-frameless-io Ready Ready Preview, Comment Jun 29, 2026 2:24pm
strapi-overige-objecten-api Ready Ready Preview, Comment Jun 29, 2026 2:24pm
strapi-pdc-frontend Ready Ready Preview, Comment Jun 29, 2026 2:24pm

Request Review

this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
this plugin was a proof of concept

this plugin supports only Strapi v4, and since we are migrating to Strapi v5, we need to remove it.
- fix the eslint formate
- migrate to pnpm
- migrate to nodejs v24
- fix the eslint-formate
- migrate to pnpm
- migrate to NodeJS v24
- fix the eslint-formate
- migrate to pnpm
- migrate to NodeJS v24
- fix the eslint-formate
- migrate to pnpm
- migrate to NodeJS v24
- fix the eslint-formate
- migrate to pnpm
- migrate to NodeJS v24
> Note this is a proof of concept package. This package will moved to another repo in different PR
> Note this is a proof of concept app. This app will moved to another repo in different PR
Marwa and others added 28 commits June 9, 2026 15:52
The lodash was also missing in the package.json dependencies, which caused issues when running the project.
Replacing it with es-toolkit, which is a smaller library that provides similar functionality, should resolve the issue and reduce the bundle size.
… lockfile

pnpm dlx turbo without a version specifier downloads whatever turbo version
is available at build time, which can differ from the project's installed
turbo@2.8.13. The version mismatch caused turbo prune --docker to generate
a pruned pnpm-lock.yaml missing the react-loading-skeleton@3.3.1(react@19.2.6)
snapshot entry, making pnpm install --frozen-lockfile fail in the deps stage.

Pinning to turbo@2.8.13 ensures the same lockfile pruning behavior in Docker
as locally.
Prevents execution of prepare/postinstall scripts (e.g. Husky) during
the runtime image build. This avoids failures caused by missing dev
dependencies in the production stage when installing with --prod.
…ndencies

- Upgrade next to >=13.5.9 to fix middleware authorization bypass (GHSA-f82v-jwr5-mffw)
- Upgrade vitest to >=2.1.9 to fix potential remote code execution issue (GHSA-9crc-q9x8-hgqq)
- Upgrade handlebars to >=4.7.9 via dependency chain to fix AST injection vulnerability (GHSA-2w6w-674q-4c4q)
- Override sanitize-html to patched version (2.17.4) to mitigate XSS vulnerability (GHSA-rpr9-rxv7-x643)
- Reduce critical vulnerabilities reported by audit
- Improve overall dependency security posture across monorepo
This make it easier to compare the published and draft versions of a page, and also removes the need to clear preview mode when you want to view the published version of a page.
…tion as the abstract source

- Replace catalogiMeta.abstract with metaTags.description as the abstract source
- Replace axios with @frameless/utils fetchData for consistent error handling
    and remove axios as a dependency
- Add GraphQL codegen (@graphql-codegen/cli + client-preset) with codegen.ts
    and move the query to src/queries.ts
- Rename operation to getSamenwerkendeCatalogiFetch to generate
    GetSamenwerkendeCatalogiFetchQuery type
- Export generic ScProduct type from @frameless/samenwerkende-catalogi so
    convertJsonToXML no longer depends on Strapi field names
- Add mapper.ts to translate GetSamenwerkendeCatalogiFetchQuery → ScProduct
    as the single place to update when Strapi's schema changes
- Add defaults.ts with fallback spatial/authority values
- Validate STRAPI_PRIVATE_URL and FRONTEND_PUBLIC_URL at startup with clear
    error messages instead of a cryptic TypeError
@sonarqubecloud

Copy link
Copy Markdown

Quality Gate Failed Quality Gate failed

Failed conditions
3 Security Hotspots
52.8% Duplication on New Code (required ≤ 3%)
C Security Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants