Released 3/14/2022
Bugfixes:
- Fixed an issue with
.type()where click events could be fired on the
incorrect target element because the target focus changed within a key-down
event handler callback. Fixed in
#20525. - Fixed a regression in 9.5.0 where ANSI
colors were not removed from the FireFox warning message about the
chromeWebSecurityconfiguration option having no effect on the Firefox
browser. Fixes #20496. - Updates were made to the pre-release build setup such that Cypress will use a
unique cache folder for each
pre-release installation
on a machine. This removes the need to runcypress clear cachebefore
installing a new pre-release version of Cypress or before installing a new
released version of Cypress after a pre-release version had been installed.
Addressed in #20296.
Misc:
- Updates were made to explicitly disable the
Origin-Agent-Clusterheader for
proxied responses to ensuredocument.domaincan continue to be set with
Chrome v106+. This was necessary because Chrome is planning to make
document.domainimmutable
in v106+ to relax the same-origin policy by interpreting the
Origin-Agent-Clusterastrue, whereas it is currently interpreted as
false. Addresses
#20147.
Dependency Updates:
- Upgraded
url-parsedependency from1.5.6to1.5.9to address these NVD
security vulnerabilities,
CVE-2022-0639,
CVE-2022-0686 and
CVE-2022-0691. Addressed in
#20386 and
#20439.