Bump bootstrap-select from 1.13.5 to 1.13.6

[dependabot]

Bumps bootstrap-select from 1.13.5 to 1.13.6.

Release notes

Sourced from bootstrap-select's releases.

v1.13.6

Bug Fixes

• #1321: remove extra files from bower release
• #1665: performance improvements
• #1832: use on and trigger event handlers instead of click and change shorthand
• #2078: Elements in an input group below a selectpicker have a higher z-index, causing them to appear above the opened menu
• #2150: Live search discards the first typed character
• #2163: Cannot read property 'top' of undefined (ensure container exists)
• #2166: Sub options display separately instead of as 1 list
• #2187: move bulk of logic into a setTimeout for faster page load
• #2189: Empty select refresh error "Cannot read property 'classList' of undefined"
• #2198: "Cannot read property '0' of undefined" when dropupAuto is false and the select is at the bottom of the page
• #2199: Escaped tags parsed as non-escaped in title and data-content
• #2202: always update menu size after updates to live search
• #2206: Map file for minified js version does not work correctly
• #2210: An extra divider is added if an optgroup is the last visible element and there are hidden options after it
• #2217: The bottom divider of an optgroup disappears when searching and one of the options in the optgroup is hidden

Security

• #2199: Fixed an XSS vulnerability with data-content, data-subtext, and title options. Implemented a new HTML sanitizer for data-content.

Compare this release with the previous one.

Changelog

Sourced from bootstrap-select's changelog.

v1.13.6 (2019-03-08)

Bug Fixes

• #1321: remove extra files from bower release
• #1665: performance improvements
• #1832: use on and trigger event handlers instead of click and change shorthand
• #2078: Elements in an input group below a selectpicker have a higher z-index, causing them to appear above the opened menu
• #2150: Live search discards the first typed character
• #2163: Cannot read property 'top' of undefined (ensure container exists)
• #2166: Sub options display separately instead of as 1 list
• #2187: move bulk of logic into a setTimeout for faster page load
• #2189: Empty select refresh error "Cannot read property 'classList' of undefined"
• #2198: "Cannot read property '0' of undefined" when dropupAuto is false and the select is at the bottom of the page
• #2199: Escaped tags parsed as non-escaped in title and data-content
• #2202: always update menu size after updates to live search
• #2206: Map file for minified js version does not work correctly
• #2210: An extra divider is added if an optgroup is the last visible element and there are hidden options after it
• #2217: The bottom divider of an optgroup disappears when searching and one of the options in the optgroup is hidden

Security

• #2199: Fixed an XSS vulnerability with data-content, data-subtext, and title options. Implemented a new HTML sanitizer for data-content.

#1321: snapappointments/bootstrap-select#1321 #1665: snapappointments/bootstrap-select#1665 #1832: snapappointments/bootstrap-select#1832 #2078: snapappointments/bootstrap-select#2078 #2150: snapappointments/bootstrap-select#2150 #2163: snapappointments/bootstrap-select#2163 #2166: snapappointments/bootstrap-select#2166 #2187: snapappointments/bootstrap-select#2187 #2189: snapappointments/bootstrap-select#2189 #2198: snapappointments/bootstrap-select#2198 #2199: snapappointments/bootstrap-select#2199 #2202: snapappointments/bootstrap-select#2202 #2206: snapappointments/bootstrap-select#2206 #2210: snapappointments/bootstrap-select#2210 #2217: snapappointments/bootstrap-select#2217 #2199: snapappointments/bootstrap-select#2199

---

Commits

• 728c4c6 release v1.13.6
• 7e23313 fix version detection prefix for CDN
• 1f9b6a3 fix license link
• ef9cc20 switch to jsDelivr as default CDN recommendation due to issues with CDNJS not...
• f60ed01 update changelog
• f6867ac remove extra files from bower release (#1321)
• 715457a add silvio's ads back to examples page
• 62af45a update changelog
• 1b503b9 include information about sanitizer in docs
• 21c7ccd build js
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.