[Snyk] Upgrade braintree-web-drop-in from 1.33.1 to 1.42.0

[TheAutisticTechie]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade braintree-web-drop-in from 1.33.1 to 1.42.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 20 versions ahead of your current version.
• The recommended version was released a month ago, on 2024-01-08.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Cross-site Scripting (XSS) SNYK-JS-BRAINTREESANITIZEURL-3330766	484/1000 Why? Has a fix available, CVSS 5.4	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: braintree-web-drop-in

• 1.42.0 - 2024-01-08
  
  • Apple Pay
    • Add error message prompting the customer to click the Apple Pay button when requestPaymentMethod is called.
  • 3D Secure
    • Fix issue where paymentMethodRequestable event would fire before 3DS challenge has been completed. (closes #805)
  • Update braintree-web to 3.99.0
• 1.41.0 - 2023-12-05
  
  • Update braintree-web to 3.97.4
  • Accessibility improvements
    • Add aria-hidden attribute to generic card icon
    • Add aria-required attribute to Hosted Fields
  • Update browser-detection to v1.17.1
  • Update Google Pay CSP Directives
  • Updated Apple Pay logo to scale correctly
• 1.40.2 - 2023-08-17
  
  • Fix issue where some assets for the Drop-In would not load from the CDN
• 1.40.1 - 2023-08-17
  
  • Update braintree-web to 3.97.1
• 1.40.0 - 2023-08-14
  
  • Add CA compliance notice of collection
  • Venmo: add error message prompting the customer to click the Venmo button when requestPaymentMethod is called. (closes #845)
• 1.39.1 - 2023-07-27
  
  • Update braintree-web to v3.96.1
• 1.39.0 - 2023-07-13
  
  • Update braintree-web to v3.96.0
• 1.38.1 - 2023-06-15
  
  • Fix issue where clearSelectedPaymentMethod does not navigate back to the initial view unless we are in the methods view (Issue #883)
  • Add alert role to error message divs beneath card inputs. (Issue #845)
• 1.38.0 - 2023-05-30
  
  • Fix issue where supportedCardBrands overrides were incorrectly showing images for hidden card brands
• 1.37.0 - 2023-05-09
  
  • Drop dependency on promise-polyfill
  • Drop dependency on @ braintree/class-list
  • Update braintree-web to 3.94.0
• 1.36.1 - 2023-03-31
• 1.36.0 - 2023-03-09
• 1.35.0 - 2023-03-01
• 1.34.0 - 2023-01-24
• 1.33.7 - 2022-11-14
• 1.33.6 - 2022-11-08
• 1.33.5 - 2022-11-04
• 1.33.4 - 2022-08-12
• 1.33.3 - 2022-07-25
• 1.33.2 - 2022-05-27
• 1.33.1 - 2022-04-07

from braintree-web-drop-in GitHub release notes

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs