[Snyk] Upgrade bootstrap from 3.4.1 to 5.3.6

[nerdy-tech-com-gitub]

Snyk has created this PR to upgrade bootstrap from 3.4.1 to 5.3.6.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 53 versions ahead of your current version.

• The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CROSSSPAWN-8303230	67	Proof of Concept
	Denial of Service (DoS) SNYK-JS-HTTPPROXYMIDDLEWARE-8229906	67	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-8482416	67	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-BOOTSTRAP-7444593	67	Proof of Concept
	Cross-site Scripting SNYK-JS-BOOTSTRAP-7444617	67	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	67	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	67	No Known Exploit
	Always-Incorrect Control Flow Implementation SNYK-JS-HTTPPROXYMIDDLEWARE-9691387	67	No Known Exploit
	Improper Check for Unusual or Exceptional Conditions SNYK-JS-HTTPPROXYMIDDLEWARE-9691389	67	No Known Exploit
	Improper Input Validation SNYK-JS-NANOID-8492085	67	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-BOOTSTRAP-10176066	67	Proof of Concept

Release notes

Package name: bootstrap

• 5.3.6 - 2025-05-05
  

  Highlights

  • Ported the docs from Hugo to Astro for our own sanity!
  • Added usage docs for Accordion JavaScript
  • Prevent .visually-hidden overflowing children to become focusable
  • Limit .card-group selectors to immediate children to fix some inheritance issues

  Changes

  • docs: update readme to include bun install by @ Electroid in #41277
  • Docs: fix specification for getInstance by @ fulldecent in #41297
  • Mention npm install and npm run dist in CONTRIBUTING.md by @ mdo in #41340
  • docs: add Sass deprecations notice in docs by @ MaxLardenois in #41283
  • docs: Better indicate include options in sass setup. by @ Kelketek in #41143
  • docs: add 'skeleton loaders' to loading placeholders description by @ MohamadSalman11 in #41177
  • Update offcanvas.md To Mention Adding data-bs-target for Close Buttons in Offcanvas Components by @ ASchoe311 in #41325
  • Limit selectors in .card-group to immediate children to fix border-radius bug by @ mscdex in #41298
  • Docs: add Border radius section for Input group by @ TommasoAllegretti in #40776
  • Docs: use 'i.e.' instead of 'e.g.' in Floating Labels example description by @ julien-deramond in #41364
  • Docs: move Cheatsheet RTL example to the RTL category by @ julien-deramond in #41282
  • Doc: fix blockquote mismatch by @ viniciusvts in #41295
  • Removed broken translation links by @ MasterPuffin in #41359
  • Docs: migration from Hugo to Astro by @ julien-deramond in #41251
  • Update devDependencies by @ julien-deramond in #41383
  • Bump image-size from 1.0.2 to 2.0.2 by @ julien-deramond in #41384
  • Add switch attribute to docs for switch checkbox by @ mdo in #41396
  • Add private comment to BaseComponent Class by @ MohamadSalman11 in #41254
  • Alternate for #41142, disabled list group items by @ mdo in #41397
  • Docs: add Usage section with JavaScript guide for Accordion component by @ TommasoAllegretti in #40768
  • Attempt to return focus explicitly to dropdown trigger by @ mdo in #41365
  • Fix typos and code indentation in Forms > Checks and radios by @ julien-deramond in #41399
  • chore: Spell check .md and .mdx files. by @ Jason3S in #41398
  • Remove files configuration from .cspell.json by @ julien-deramond in #41400
  • Docs: Remove unneeded Twitter/X metatags (as it uses Open Graph for title/description and image) by @ coliff in #41408
  • Move _isShown() method to private section by @ MohamadSalman11 in #41220
  • Removed line break between // Private comment and method by @ MohamadSalman11 in #41218
  • remove link to sunset resource on accessibility.mdx by @ crgrafton in #41418
  • docs(pagination): put current page on link element for a11y by @ MarkoOleksiyenko in #41154
  • Update devDependencies and regenerate package-lock.json by @ julien-deramond in #41425
  • Prevent .visually-hidden overflowing children to become focusable by @ ffoodd in #41286
  • Add docs release prep script by @ mdo in #41435
  • Release v5.3.6 by @ mdo in #41406

  New Contributors

  • @ Electroid made their first contribution in #41277
  • @ MaxLardenois made their first contribution in #41283
  • @ Kelketek made their first contribution in #41143
  • @ ASchoe311 made their first contribution in #41325
  • @ mscdex made their first contribution in #41298
  • @ viniciusvts made their first contribution in #41295
  • @ MasterPuffin made their first contribution in #41359
  • @ Jason3S made their first contribution in #41398
  • @ crgrafton made their first contribution in #41418

  Full Changelog: v5.3.5...v5.3.6

• 5.3.5 - 2025-04-04
  

  Hot fix for a regression from upstream in Autoprefixer.

  What's Changed

  • Fix floating labels rendering on Firefox by @ julien-deramond in #41347
  • Bump to v5.3.5 by @ mdo in #41348

  Full Changelog: v5.3.4...v5.3.5

• 5.3.4 - 2025-04-03
  

  Changes

  • #40888: Dependabot: switch to grouped updates

  🚀 Features

  • #41299: Typo fixed
  • #41187: Docs: mention removal of util.js in migration guide
  • #41228: Docs: Simplify ids for checks, radios and switches
  • #41150: Update fixtureId to FIXTURE_ID for consistency
  • #40965: Docs: Use <article> element for example cards
  • #40932: Docs: add ngx-bootstrap to JavaScript frameworks list
  • #40790: Docs: Drop .grid where it shouldn't be used
  • #40821: Docs: precise how to add new .order-* classes in 'Layout > Columns'
  • #40914: Docs: drop useless .justify-content-start class in homepage
  • #40876: Remove unneeded flexbug workaround
  • #40870: Docs: Update modal min-height inline style
  • #40844: Docs: Remove mention about Safari's limited support flexbox gap
  • #40620: Docs: minor accessibility improvements for Examples
  • #40619: Docs: Fix a minor accessibility issue (checkout example missing h1)
  • #40577: Docs: Add main element to Cheatsheet Examples
  • #39815: Docs: drop unused .bi-exclamation-triangle-fill class
  • #40507: Docs: HTTPS link to ikons iconset
  • #39777: Docs: fix Reddit URL to avoid redirection
  • #39697: refactor(accordion): merge selectors for border-radius rule

  🎨 CSS

  • #41336: Fix modal and offcanvas header collapse
  • #41126: Fix display issues of close button in contextual light and dark modes
  • #40695: Fix light mode carousel in dark mode
  • #41004: Add workarounds for postcss-values-parser error (negative values in calc())
  • #41013: Align floating labels with form-select sizes
  • #40931: Fix: correct typo in background-blend-mode value
  • #40900: Remove unnecessary duplicated CSS class name
  • #40876: Remove unneeded flexbug workaround
  • #40844: Docs: Remove mention about Safari's limited support flexbox gap
  • #40623: Fix use of declarations after nested rules (deprecated in Sass 1.77.7)
  • #39720: Floating labels: Fix max-width and background-color
  • #40488: button-group: Fix btn-group-vertical by using same rules as btn-group
  • #39804: Optimize Sass SVG files
  • #39494: Change floating label placeholder's color
  • #39697: refactor(accordion): merge selectors for border-radius rule

  ☕️ JavaScript

  • #38411: Add note about cancelling modal events to modal.md
  • #41150: Update fixtureId to FIXTURE_ID for consistency
  • #40803: Fix popover toggle twice to close
  • #38725: Fix this reference for functions
  • #39791: Fix broken comment link for reflow hack

  📖 Docs

  • #39364: Docs: improve progress bar labels markup and explanations for accessibility
  • #41308: Fix typo in Navbar docs
  • #41299: Typo fixed
  • #41281: Fixed minor typo in Sass documentation
  • #41187: Docs: mention removal of util.js in migration guide
  • #41228: Docs: Simplify ids for checks, radios and switches
  • #38411: Add note about cancelling modal events to modal.md
  • #40917: Fix: clipboard icon not showing after multiple press
  • #40714: Docs: add descriptions for Webpack, Parcel and Vite
  • #40928: Update css-grid.md
  • #41098: Update a point in the RTL documentation
  • #40965: Docs: Use <article> element for example cards
  • #40756: Docs: missing aria-hidden on some decorative SVGs
  • #41036: Docs: add warning callout for Yarn Berry
  • #41052: Doc: Fix link endpoint in dropdown documentation
  • #41030: Docs: fix .order values in the migration guide
  • #40973: Docs: correct example formatting in 'Utilities > API' for linting compliance
  • #40911: fix transparent navbar in windows high contrast mode
  • #40932: Docs: add ngx-bootstrap to JavaScript frameworks list
  • #40951: Docs: fix example hiding element except on medium and large devices in 'Utilities > Display > Hiding elements'
  • #40931: Fix: correct typo in background-blend-mode value
  • #40790: Docs: Drop .grid where it shouldn't be used
  • #40821: Docs: precise how to add new .order-* classes in 'Layout > Columns'
  • #40799: Fix Cheatsheet examples horizontal scrolling
  • #40914: Docs: drop useless .justify-content-start class in homepage
  • #40900: Remove unnecessary duplicated CSS class name
  • #40766: Docs: Make "Edit in Stackblitz" links explicit
  • #40767: Docs: Indicate links in foreign language
  • #40818: Docs: fix $enable-css-grid → $enable-cssgrid in 'Customize > Options'
  • #40870: Docs: Update modal min-height inline style

[sourcery-ai]

Reviewer's Guide

This pull request upgrades the Bootstrap dependency from version 3.4.1 to 5.3.6 by updating the version specifier in package.json.

File-Level Changes

Change	Details	Files
Bump Bootstrap version	Changed the Bootstrap dependency string from "^3.4.1" to "^5.3.6"	glances/outputs/static/package.json

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it. You can also reply to a
  review comment with @sourcery-ai issue to create an issue from it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time. You can also comment
  @sourcery-ai title on the pull request to (re-)generate the title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time exactly where you
  want it. You can also comment @sourcery-ai summary on the pull request to
  (re-)generate the summary at any time.
• Generate reviewer's guide: Comment @sourcery-ai guide on the pull
  request to (re-)generate the reviewer's guide at any time.
• Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
  pull request to resolve all Sourcery comments. Useful if you've already
  addressed all the comments and don't want to see them anymore.
• Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
  request to dismiss all existing Sourcery reviews. Especially useful if you
  want to start fresh with a new review - don't forget to comment
  @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.