Skip to content

[Snyk] Upgrade antd from 5.17.3 to 5.28.1 #629

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
riz-hossain wants to merge 1 commit into
base: dev
Choose a base branch
from
Open

[Snyk] Upgrade antd from 5.17.3 to 5.28.1 #629

riz-hossain wants to merge 1 commit into from

Conversation

@riz-hossain
Copy link
Contributor

@riz-hossain riz-hossain commented Dec 7, 2025

snyk-top-banner

Snyk has created this PR to upgrade antd from 5.17.3 to 5.28.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 70 versions ahead of your current version.

  • The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-BABELRUNTIME-10044504		 452 Proof of Concept
Release notes
Package name: antd
  • 5.28.1 - 2025-11-11
    • Carousel
    • 🐞 Fix Descriptions where content style wrongly used labelStyle. #55572 @ li-jia-nan
    • 💄 Adjust the height of the Select component to 32px when variant="underlined". #55607 @ ustcfury
    • 💄 When the underlined property is enabled for the Input component, the border color changes on mouse hover. #55609 @ ustcfury
    • 🛠 Flex gap prop support number type. #55591 @ ayangweb
    • 🌐 Add missing TimePicker translations for locales: ar_EG, en_GB, gl_ES, bg_BG, ca_ES, cs_CZ, el_GR, es_ES, eu_ES, fi_FI, he_IL, hu_HU, is_IS, kn_IN, kmr_IQ, lv_LV, mk_MK, mn_MN, ms_MY, pl_PL, pt_BR, pt_PT, ro_RO, sk_SK, sl_SI, sv_SE, ta_IN, th_TH, zh_TW, et_EE. #55656 @ li-jia-nan
    • Carousel
    • 🐞 修复 Popconfirm 在 actionFn 出错时未重置 ref 的问题。#55519 @ Taoister39
    • 🐞 修复 Descriptions 组件内容样式错误使用 labelStyle 的问题。#55572 @ li-jia-nan
    • 💄 修正 underlined 变体的 Select 组件高度为 32px。#55607 @ ustcfury
    • 💄 为 underlined 变体的 Input 组件补全 hover 边框颜色样式。#55609 @ ustcfury
    • 🛠 Flex gap 属性支持 number 类型。#55591 @ ayangweb
    • 🌐 补充 TimePicker 多语言翻译,覆盖以下语言:ar_EG、en_GB、gl_ES、bg_BG、ca_ES、cs_CZ、el_GR、es_ES、eu_ES、fi_FI、he_IL、hu_HU、is_IS、kn_IN、kmr_IQ、lv_LV、mk_MK、mn_MN、ms_MY、pl_PL、pt_BR、pt_PT、ro_RO、sk_SK、sl_SI、sv_SE、ta_IN、th_TH、zh_TW、et_EE。#55656 @ li-jia-nan
  • 5.28.0 - 2025-11-01
    • 🆕 Drawer supports closable.placement prop to specify the position of the close button. #54067 @ davidhsing
    • 🆕 Image component supports fallback global configuration. #54702 @ Jiyur
    • 🆕 QRCode component supports boostLevel prop. #55063 @ li-jia-nan
    • 🆕 Splitter supports onCollapse prop. #54673 @ ug-hero
    • 🆕 Statistic displays animation effect by default when set to loading. #55398 @ afc163
    • 🆕 TreeSelect supports global configuration for switcher icon. #54821 @ Jiyur
    • Segmented
      • 💄 Segmented theme variable itemSelectedBg supports background gradient. #55391 @ zancheng
      • 🐞 Fix Segmented abnormal animation after React DevTools upgrade. #55438 @ afc163
    • 🐞 Fix Tree and Transfer components disabled inheritance issue. #54831 @ cactuser-Lu
    • 🐞 Fix Tree.DirectoryTree defaultExpandAll not working when fieldNames is defined. #55420 @ Wxh16144
    • Upload
    • 💄 Notification supports configuring background color token. #54802 @ thinkasany
    • 💄 Pagination supports modifying the text color of active items through itemActiveColor and itemActiveColorHover tokens. #55195 @ Renderz
    • 🐞 Fix Select, DatePicker, TreeSelect, Cascader and other components not showing default suffix icon when suffixIcon is configured as undefined. #54790 @ EmilyyyLiu
    • 🐞 Fix Mentions component not inheriting disabled from external Form. #54829 @ EmilyyyLiu
    • 🐞 Fix Watermark component crashing when wrapping Modal with modalRender. #55435 @ ug-hero
    • 🗑 Input component deprecates addonAfter and addonBefore props, use Space.Compact instead. #55315 @ EmilyyyLiu
    • 🤖 Row component gutter prop supports string type definition. #54628 @ ug-hero
    • 🆕 Drawer 支持 closable.placement 属性,用于指定关闭按钮的位置。#54067 @ davidhsing
    • 🆕 Image 组件支持 fallback 全局配置。#54702 @ Jiyur
    • 🆕 QRCode 组件支持 boostLevel 属性。#55063 @ li-jia-nan
    • 🆕 Splitter 支持 onCollapse 属性。#54673 @ ug-hero
    • 🆕 Statistic 设置为 loading 时默认展现动画效果。#55398 @ afc163
    • 🆕 TreeSelect 支持切换器图标的全局配置。#54821 @ Jiyur
    • Segmented
      • 💄 Segmented 的主题变量 itemSelectedBg 支持背景渐变。#55391 @ zancheng
      • 🐞 修复 Segmented 切换动画总是从第一项移动闪烁的问题。#55438 @ afc163
    • 🐞 修复 Tree 和 Transfer 组件的 disabled 继承问题。#54831 @ cactuser-Lu
    • 🐞 修复 Tree.DirectoryTree 定义 fieldNamesdefaultExpandAll 不生效的问题。#55420 @ Wxh16144
    • Upload
    • 💄 Notification 支持配置背景颜色的 token。#54802 @ thinkasany
    • 💄 Pagination 支持通过 itemActiveColoritemActiveColorHover token 修改高亮项的文字颜色。#55195 @ Renderz
    • 🐞 修复 Select、DatePicker、TreeSelect、Cascader 等组件 suffixIcon 配置值为 undefined 时没有默认后缀图标的问题。#54790 @ EmilyyyLiu
    • 🐞 修复 Mentions 组件没有继承外部 Form 的 disabled 的问题。#54829 @ EmilyyyLiu
    • 🐞 修复 Watermark 组件内包裹 Modal 使用 modalRender 会导致崩溃的问题。#55435 @ ug-hero
    • 🗑 Input 组件废弃 addonAfteraddonBefore 属性,使用 Space.Compact 替换。#55315 @ EmilyyyLiu
    • 🤖 Row 组件 gutter 属性支持 string 类型定义。#54628 @ ug-hero
  • 5.27.6 - 2025-10-20
    • Table
      • 🐞 Fix Table pagination.align is not working. #55316
      • 🛠 Add Table missing useMemo capability to spinProps. #55344
    • 🛠 Refactor Modal useMemo of ConfirmDialog to resolve useMemo invalid where Object.values ​​generates a new array. #55376
    • TypeScript
      • 🤖 Add ConfigProvider the Window type definition in getTargetContainer of . #55313
      • 🤖 Add ConfigProvider the ShadowRoot type definition in getTargetContainer and getPopupContainer. #55278 @ leshalv
      • 🤖 Improve Modal type definition. #55371
    • Table
      • 🐞 修复 Table pagination.align 属性失效的问题。#55316
      • 🛠 补充 Table 中 spinProps 的 useMemo 缺失能力。#55344
    • 🛠 重构 Modal 中 ConfirmDialog 的 useMemo,以解决 Object.values 生成新数组导致 useMemo 失效的问题。#55376
    • TypeScript
      • 🤖 补充 ConfigProvider getTargetContainerWindow 类型定义。#55313
      • 🤖 补充 ConfigProvider 的 getTargetContainergetPopupContainerShadowRoot 类型定义。#55278 @ leshalv
      • 🤖 优化 Modal 中类型定义。#55371
  • 5.27.5 - 2025-10-14
    • 🐞 Fix Tour positioning when the target is a Table with fixed headers. #55124 @ afc163
    • 💄 Fix Card body extra padding when adding gap style. #54974 @ QdabuliuQ
    • 💄 Fix DatePicker design token for text color. #55065 @ 765477020
    • 💄 Fix List overflow problem when bordered. #55075 @ Jiyur
    • ⌨️ Fix Modal.confirm aria-labelledby accessibility attribute missing problem. #55266 @ Jiyur
    • ⚡️ Improve Cascader rendering for loading icon. #55285 @ li-jia-nan
    • TypeScript
    • 🐞 修复 Tour 指定 target 为 Table 固定列头时定位错误的问题。#55124 @ afc163
    • 💄 修复 Card body 增加 gap 样式时有多余 padding 的问题。#54974 @ QdabuliuQ
    • 💄 修复 DatePicker 文本颜色 token 错误的问题。#55065 @ 765477020
    • 💄 修复 List 启用边框时会内容溢出的问题。#55075 @ Jiyur
    • ⌨️ 修复 Modal.confirm 缺失 aria-labelledby 可访问性属性的问题。#55266 @ Jiyur
    • ⚡️ 优化 Cascader 加载中图标的渲染。#55285 @ li-jia-nan
    • TypeScript
  • 5.27.4 - 2025-09-17
  • 5.27.3 - 2025-09-05
  • 5.27.2 - 2025-09-02
  • 5.27.1 - 2025-08-19
  • 5.27.0 - 2025-08-11
  • 5.26.7 - 2025-07-29
  • 5.26.6 - 2025-07-20
  • 5.26.5 - 2025-07-15
  • 5.26.4 - 2025-07-07
  • 5.26.3 - 2025-06-30
  • 5.26.2 - 2025-06-24
  • 5.26.1 - 2025-06-16
  • 5.26.0 - 2025-06-10
  • 5.26.0-alpha.0 - 2025-06-03
  • 5.25.4 - 2025-05-31
  • 5.25.3 - 2025-05-26
  • 5.25.2 - 2025-05-19
  • 5.25.1 - 2025-05-09
  • 5.25.0 - 2025-05-07
  • 5.24.9 - 2025-04-29
  • 5.24.8 - 2025-04-21
  • 5.24.7 - 2025-04-14
  • 5.24.6 - 2025-04-01
  • 5.24.5 - 2025-03-24
  • 5.24.4 - 2025-03-17
  • 5.24.3 - 2025-03-05
  • 5.24.2 - 2025-02-24
  • 5.24.1 - 2025-02-17
  • 5.24.0 - 2025-02-11
  • 5.23.4 - 2025-02-05
  • 5.23.3 - 2025-01-28
  • 5.23.2 - 2025-01-20
  • 5.23.1 - 2025-01-13
  • 5.23.0 - 2025-01-06
  • 5.22.7 - 2024-12-27
  • 5.22.6 - 2024-12-23
  • 5.22.5 - 2024-12-14
  • 5.22.4 - 2024-12-09
  • 5.22.3 - 2024-12-02
  • 5.22.2 - 2024-11-20
  • 5.22.1 - 2024-11-13
  • 5.22.0 - 2024-11-11
  • 5.21.6 - 2024-10-28
  • 5.21.5 - 2024-10-21
  • 5.21.4 - 2024-10-14
  • 5.21.3 - 2024-10-09
  • 5.21.2 - 2024-09-30
  • 5.21.1 - 2024-09-25
  • 5.21.0 - 2024-09-22
  • 5.20.6 - 2024-09-09
  • 5.20.5 - 2024-09-03
  • 5.20.4 - 2024-09-02
  • 5.20.3 - 2024-08-26
  • 5.20.2 - 2024-08-19
  • 5.20.1 - 2024-08-11
  • 5.20.0 - 2024-08-03
  • 5.19.4 - 2024-07-30
  • 5.19.3 - 2024-07-19
  • 5.19.2 - 2024-07-15
  • 5.19.1 - 2024-07-05
  • 5.19.0 - 2024-07-01
  • 5.18.3 - 2024-06-19
  • 5.18.2 - 2024-06-17
  • 5.18.1 - 2024-06-12
  • 5.18.0 - 2024-06-03
  • 5.17.4 - 2024-05-27
  • 5.17.3 - 2024-05-19
from antd GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade antd from 5.17.3 to 5.28.1
761cd28 
Snyk has created this PR to upgrade antd from 5.17.3 to 5.28.1.

See this package in npm:
antd

See this project in Snyk:
https://app.snyk.io/org/riz-hossain/project/eb74bd9b-54f5-483b-9647-80e018767a3d?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@riz-hossain @snyk-bot