WordPress.org

Make WordPress Core

Opened 6 weeks ago

Last modified 23 hours ago

#50564 new defect (bug)

Update jQuery step two

Reported by: azaozz Owned by:
Milestone: 5.6 Priority: normal
Severity: normal Version:
Component: External Libraries Keywords: early needs-patch
Focuses: javascript Cc:

Description (last modified by desrosj)

Follow up from #37110.

Update to latest jQuery, latest jQuery Migrate, latest jQuery UI.

This ticket represents step 2 in the following roadmap for updating jQuery to 3.x in Core: https://make.wordpress.org/core/2020/06/29/updating-jquery-version-shipped-with-wordpress/

Change History (3)

#1 @desrosj
3 weeks ago

  • Description modified (diff)
  • Keywords needs-patch added

Adding the blog post on Make Core to the ticket description for full context.

#2 @mgol
23 hours ago

One thing that may be important here - while we (the jQuery Core team) generally try to follow semver right now and only do breaking changes in major releases, we had to do a breaking change in 3.5 to resolve a security issue. Details on that change are included in the 3.5 upgrade guide: https://jquery.com/upgrade-guide/3.5/.

Note that Migrate will not automatically restore previous behavior here as we prefer Migrate to not reintroduce security issues by default. If this upgrade is too much for you to do at once, you can call:

jQuery.UNSAFE_restoreLegacyHtmlPrefilter();

to restore the older insecure behavior, as indicated in the upgrade guide. This is a Migrate API so it's only available if you load a new enough Migrate version.

You can then plan to remove this call in a future version.

Last edited 23 hours ago by mgol (previous) (diff)

This ticket was mentioned in Slack in #core by mgol. View the logs.


23 hours ago

Note: See TracTickets for help on using tickets.