Merge pull request #2169 from h5bp/release/ship-v7.3.0

Release/ship v7.3.0

.editorconfig

@@ -14,9 +14,3 @@ trim_trailing_whitespace = true
 
 [*.md]
 trim_trailing_whitespace = false
-
-[{.travis.yml,package.json}]
-# The indent size used in the `package.json` file cannot be changed
-# https://github.com/npm/npm/pull/3180#issuecomment-16336516
-indent_size = 2
-indent_style = space

.eslintrc.js

@@ -1,26 +1,17 @@
 module.exports = {
-    "env": {
-        "browser": true,
-        "es6": true,
-        "mocha": true
-    },
-    "plugins": ["mocha"],
-    "extends": "eslint:recommended",
-    "parserOptions": {
-        "sourceType": "module"
-    },
-    "rules": {
-        "indent": [
-            "error",
-            2
-        ],
-        "quotes": [
-            "error",
-            "single"
-        ],
-        "semi": [
-            "error",
-            "always"
-        ]
-    }
+  env: {
+    browser: true,
+    es6: true,
+    mocha: true
+  },
+  plugins: ["mocha"],
+  extends: "eslint:recommended",
+  parserOptions: {
+    sourceType: "module"
+  },
+  rules: {
+    indent: ["error", 2],
+    quotes: ["error", "single"],
+    semi: ["error", "always"]
+  }
 };

.github/workflows/npmpublish.yml

@@ -0,0 +1,32 @@
+name: publish npm
+
+on:
+  release:
+    types: [published]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v1
+      - uses: actions/setup-node@v1
+        with:
+          node-version: 12
+      - run: npm ci
+      - run: npm run build
+
+  publish-npm:
+    needs: build
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v1
+      - uses: actions/setup-node@v1
+        with:
+          node-version: 12
+          registry-url: https://registry.npmjs.org/
+      - run: npm ci
+      - run: npm publish
+        env:
+          NODE_AUTH_TOKEN: ${{secrets.npm_token}}
+
+

.gitignore

@@ -1,3 +1,2 @@
 archive
 node_modules
-package-lock.json

.jscsrc

@@ -1,68 +0,0 @@
-{
-    "disallowEmptyBlocks": true,
-    "disallowKeywords": [
-        "with"
-    ],
-    "disallowMixedSpacesAndTabs": true,
-    "disallowMultipleLineStrings": true,
-    "disallowMultipleVarDecl": true,
-    "disallowSpaceAfterPrefixUnaryOperators": [
-        "!",
-        "+",
-        "++",
-        "-",
-        "--",
-        "~"
-    ],
-    "disallowSpaceBeforeBinaryOperators": [
-        ","
-    ],
-    "disallowSpaceBeforePostfixUnaryOperators": true,
-    "disallowSpacesInNamedFunctionExpression": {
-        "beforeOpeningRoundBrace": true
-    },
-    "disallowSpacesInsideArrayBrackets": true,
-    "disallowSpacesInsideParentheses": true,
-    "disallowTrailingComma": true,
-    "disallowTrailingWhitespace": true,
-    "requireCamelCaseOrUpperCaseIdentifiers": true,
-    "requireCapitalizedConstructors": true,
-    "requireCommaBeforeLineBreak": true,
-    "requireCurlyBraces": true,
-    "requireDotNotation": true,
-    "requireLineFeedAtFileEnd": true,
-    "requireParenthesesAroundIIFE": true,
-    "requireSpaceAfterBinaryOperators": true,
-    "requireSpaceAfterKeywords": [
-        "catch",
-        "do",
-        "else",
-        "for",
-        "if",
-        "return",
-        "switch",
-        "try",
-        "while"
-    ],
-    "requireSpaceAfterLineComment": true,
-    "requireSpaceBeforeBinaryOperators": true,
-    "requireSpaceBeforeBlockStatements": true,
-    "requireSpacesInAnonymousFunctionExpression": {
-        "beforeOpeningCurlyBrace": true
-    },
-    "requireSpacesInConditionalExpression": true,
-    "requireSpacesInFunctionDeclaration": {
-        "beforeOpeningCurlyBrace": true
-    },
-    "requireSpacesInFunctionExpression": {
-        "beforeOpeningCurlyBrace": true
-    },
-    "requireSpacesInNamedFunctionExpression": {
-        "beforeOpeningCurlyBrace": true
-    },
-    "requireSpacesInsideObjectBrackets": "allButNested",
-    "validateIndentation": 4,
-    "validateLineBreaks": "LF",
-    "validateParameterSeparator": ", ",
-    "validateQuoteMarks": "'"
-}

.travis.yml

@@ -8,9 +8,9 @@ git:
 language: node_js
 
 node_js:
-  - 6
   - 8
   - 9
+  - 10
 
 dist: trusty
 sudo: false

CHANGELOG.md

@@ -1,3 +1,20 @@
+### 7.3.0 (November 19, 2019)
+* Updated to Modernizr 3.8 ([2b2bb45](https://github.com/h5bp/html5-boilerplate/commit/2b2bb453916b4b09a6f0929340290dc2505f7ce9))
+* Updated to Gulp 4 ([#2151](https://github.com/h5bp/html5-boilerplate/pull/2151))
+* Updated package.json ([#2162](https://github.com/h5bp/html5-boilerplate/pull/#2162)) and enabled package-lock.json ([abe2087](https://github.com/h5bp/html5-boilerplate/commit/abe20877fdb569c84aa0a1f8ae12c51c51e41250)),([#2145](https://github.com/h5bp/html5-boilerplate/pull/#2145))
+* Remove redundant rules from .editorconfig ([#2157](https://github.com/h5bp/html5-boilerplate/pull/2157))
+* Small docs maintenance updates ([#2155](https://github.com/h5bp/html5-boilerplate/pull/2155)), ([#2164](https://github.com/h5bp/html5-boilerplate/pull/2164)), ([#2165](https://github.com/h5bp/html5-boilerplate/pull/2165)), ([#2167](https://github.com/h5bp/html5-boilerplate/pull/2167)) & ([#2168](https://github.com/h5bp/html5-boilerplate/pull/2168))
+* Bump lowest supported version of node to 8.x ([#2142](https://github.com/h5bp/html5-boilerplate/pull/2142))
+* Remove .jscsrc config and remove gulp-jscs from package.json ([#2153](https://github.com/h5bp/html5-boilerplate/pull/2153))
+
+### 7.2.0 (June 4, 2019)
+
+* Remove `defer` from Google Analytics snippet ([#2132](https://github.com/h5bp/html5-boilerplate/pull/2132))
+* Update jQuery to v3.4.1 ([#2126](https://github.com/h5bp/html5-boilerplate/pull/2126))
+* Update Apache Server Configs to 3.2.1 ([#2128](https://github.com/h5bp/html5-boilerplate/pull/2128))
+* Update main.css to v2.0.0 ([#2135](https://github.com/h5bp/html5-boilerplate/pull/2135))
+* Docs updates ([#2122](https://github.com/h5bp/html5-boilerplate/pull/2122)), ([#2125](https://github.com/h5bp/html5-boilerplate/pull/2125)), ([#2134](https://github.com/h5bp/html5-boilerplate/pull/2134)), ([#2137](https://github.com/h5bp/html5-boilerplate/pull/2137)), ([#2138](https://github.com/h5bp/html5-boilerplate/pull/2138))
+
 ### 7.1.0 (March 18, 2019)
 
 * Update Modernizr to 3.7.1 ([#2121](https://github.com/h5bp/html5-boilerplate/pull/2121))
@@ -28,21 +45,19 @@
 * [Update Apache Server Configs to `v3.0.0`.](https://github.com/h5bp/html5-boilerplate/pull/2042)
 * Migrate to eslint ([#2037](https://github.com/h5bp/html5-boilerplate/pull/2037))
 * Update to jQuery 3.3.1 ([#2018](https://github.com/h5bp/html5-boilerplate/pull/2018))
-* Update to Modernizr v3.6 and Normalize v8 ([#2028](https://github.com/h5bp/html5-boilerplate/pull/2028)) 
+* Update to Modernizr v3.6 and Normalize v8 ([#2028](https://github.com/h5bp/html5-boilerplate/pull/2028))
 * Update Dev Dependencies ([#2032](https://github.com/h5bp/html5-boilerplate/pull/2032)) ([#2017](https://github.com/h5bp/html5-boilerplate/pull/2017)) ([#2010](https://github.com/h5bp/html5-boilerplate/pull/2010)) ([#2009](https://github.com/h5bp/html5-boilerplate/pull/2009))
 * Replace 'node-sri' with 'ssri' ([#2031](https://github.com/h5bp/html5-boilerplate/pull/2031))
 * Add .babelrc and .prettierrc to .gitattributes ([#2030](https://github.com/h5bp/html5-boilerplate/pull/2030))
 * Update .htaccess ([#2003](https://github.com/h5bp/html5-boilerplate/pull/2003))
-* Fixed JSHint errors  ([#1994](https://github.com/h5bp/html5-boilerplate/pull/1994))
+* Fixed JSHint errors ([#1994](https://github.com/h5bp/html5-boilerplate/pull/1994))
 * Add CODE_OF_CONDUCT.md ([#2011](https://github.com/h5bp/html5-boilerplate/pull/2011))
 * Update Documentation ([#2029](https://github.com/h5bp/html5-boilerplate/pull/2029)) ([#2015](https://github.com/h5bp/html5-boilerplate/pull/2015)) ([#2007](https://github.com/h5bp/html5-boilerplate/pull/2007)) ([#2006](https://github.com/h5bp/html5-boilerplate/pull/2006)) ([#1996](https://github.com/h5bp/html5-boilerplate/pull/1996))
 
-
 ### 6.0.1 (August 20, 2017)
 
 * Reverts .visuallyhidden (see [#1985](https://github.com/h5bp/html5-boilerplate/issues/1985))
 
-
 ### 6.0.0 (August 17, 2017)
 
 * Fix Bug: .visuallyhidden on macOS VO fixes #1985 ([#1989](https://github.com/h5bp/html5-boilerplate/pull/1989))
@@ -50,8 +65,8 @@
 * Update to jQuery 3.2.1 ([#1942](https://github.com/h5bp/html5-boilerplate/pull/1942))
 * Improve ::selection documentation which became confusing after c7057be ([#1955](https://github.com/h5bp/html5-boilerplate/pull/1955))
 * refactor(html): update browsehappy to https instead of http ([#1952](https://github.com/h5bp/html5-boilerplate/pull/1952))
-* Fix links to CONTRIBUTING.md  ([#1951](https://github.com/h5bp/html5-boilerplate/pull/1951))
-* Adds .github folder and contents Fixes  ([#1948](https://github.com/h5bp/html5-boilerplate/pull/1948))
+* Fix links to CONTRIBUTING.md ([#1951](https://github.com/h5bp/html5-boilerplate/pull/1951))
+* Adds .github folder and contents Fixes ([#1948](https://github.com/h5bp/html5-boilerplate/pull/1948))
 * Modernizr 3, modernizr.config and ([#1940](https://github.com/h5bp/html5-boilerplate/pull/1940))
 * Housekeeping by @coliff (#1968 #1969 #1965 #1964 #1958 #1957 #1956)
 * Update .gitattributes for Web Projects ([#1935](https://github.com/h5bp/html5-boilerplate/pull/1935))
@@ -83,7 +98,7 @@
 * Update jQuery to `v1.12.0`.
 * Fetch `jQuery` from jQuery's CDN instead of Google's
   ([#1737](https://github.com/h5bp/html5-boilerplate/issues/1737),
-   [#1739](https://github.com/h5bp/html5-boilerplate/issues/1739)).
+  [#1739](https://github.com/h5bp/html5-boilerplate/issues/1739)).
 * Change print color for `:first-letter` and `:first-line`
   pseudo-elements
   ([#1715](https://github.com/h5bp/html5-boilerplate/pull/1715)).
@@ -133,7 +148,7 @@
   ([#1567](https://github.com/h5bp/html5-boilerplate/pull/1567)).
 * Add `/.editorconfig` file
   ([#1561](https://github.com/h5bp/html5-boilerplate/issues/1561),
-   [#1564](https://github.com/h5bp/html5-boilerplate/issues/1564)).
+  [#1564](https://github.com/h5bp/html5-boilerplate/issues/1564)).
 * Add `auto` to the Google Universal Analytics tracker create method
   ([#1562](https://github.com/h5bp/html5-boilerplate/issues/1562)).
 * Add `timeline` and `timelineEnd` to the list of `console` methods
@@ -152,7 +167,7 @@
   ([#1477](https://github.com/h5bp/html5-boilerplate/issues/1477)).
 * Remove image replacement helper class `.ir`
   ([#1472](https://github.com/h5bp/html5-boilerplate/issues/1472),
-   [#1475](https://github.com/h5bp/html5-boilerplate/issues/1475)).
+  [#1475](https://github.com/h5bp/html5-boilerplate/issues/1475)).
 * Add vertical centering for `svg`
   ([#1453](https://github.com/h5bp/html5-boilerplate/issues/1453)).
 * Redesign 404 page
@@ -161,7 +176,7 @@
   ([#1050](https://github.com/h5bp/html5-boilerplate/issues/1050)).
 * Remove IE conditional classes
   ([#1187](https://github.com/h5bp/html5-boilerplate/issues/1187),
-   [#1290](https://github.com/h5bp/html5-boilerplate/issues/1290)).
+  [#1290](https://github.com/h5bp/html5-boilerplate/issues/1290)).
 
 ### 4.3.0 (September 10, 2013)
 
@@ -172,11 +187,11 @@
 * Update to Apache Server Configs 1.1.0.
 * Add `initial-scale=1` to the viewport `meta`
   ([#1398](https://github.com/h5bp/html5-boilerplate/pull/1398)).
-* Vertical centering for audio-, canvas- and video-tags
+* Vertical centering for audio, canvas and video-tags
   ([#1326](https://github.com/h5bp/html5-boilerplate/issues/1326)).
 * Remove Google Chrome Frame related code
   ([#1379](https://github.com/h5bp/html5-boilerplate/pull/1379),
-   [#1396](https://github.com/h5bp/html5-boilerplate/pull/1396)).
+  [#1396](https://github.com/h5bp/html5-boilerplate/pull/1396)).
 * Update to Google Universal Analytics
   ([#1347](https://github.com/h5bp/html5-boilerplate/issues/1347)).
 * Update to jQuery 1.10.2.
@@ -219,7 +234,7 @@
 
 * Further improvements to `console` method stubbing
   ([#1206](https://github.com/h5bp/html5-boilerplate/issues/1206),
-   [#1229](https://github.com/h5bp/html5-boilerplate/pull/1229)).
+  [#1229](https://github.com/h5bp/html5-boilerplate/pull/1229)).
 * Update to jQuery 1.8.2.
 * Update to Modernizr 2.6.2.
 * Minor additions to the documentation.
@@ -228,7 +243,7 @@
 
 * Improve the Apache compression configuration
   ([#1012](https://github.com/h5bp/html5-boilerplate/issues/1012),
-   [#1173](https://github.com/h5bp/html5-boilerplate/issues/1173)).
+  [#1173](https://github.com/h5bp/html5-boilerplate/issues/1173)).
 * Add a HiDPI example media query
   ([#1127](https://github.com/h5bp/html5-boilerplate/issues/1127)).
 * Add bundled docs

README.md

@@ -1,7 +1,10 @@
 # [HTML5 Boilerplate](https://html5boilerplate.com/)
 
+[![LICENSE](https://img.shields.io/badge/license-MIT-lightgrey.svg)](https://github.com/h5bp/html5-boilerplate/blob/master/LICENSE.txt)
 [![Build Status](https://travis-ci.org/h5bp/html5-boilerplate.svg)](https://travis-ci.org/h5bp/html5-boilerplate)
 [![devDependency Status](https://david-dm.org/h5bp/html5-boilerplate/dev-status.svg)](https://david-dm.org/h5bp/html5-boilerplate#info=devDependencies)
+[![NPM Downloads](https://img.shields.io/npm/dt/html5-boilerplate.svg)](https://www.npmjs.com/package/html5-boilerplate)
+[![github-stars-image](https://img.shields.io/github/stars/h5bp/html5-boilerplate.svg?label=github%20stars)](https://github.com/h5bp/html5-boilerplate)
 
 HTML5 Boilerplate is a professional front-end template for building
 fast, robust, and adaptable web apps or sites.
@@ -20,15 +23,19 @@ way that you want.
 
 Choose one of the following options:
 
-- Download the latest stable release from
-  [html5boilerplate.com](https://html5boilerplate.com/).
-- Clone the git repo — `git clone
+* Download the latest stable release from
+  [html5boilerplate.com](https://html5boilerplate.com/). This zip file is a snapshot of the `dist` folder. On Windows, Mac and from the file manager on Linux unzipping this folder will output to a folder named something like `html5-boilerplate_v7.3.0`. From the command line will need to create a folder and unzip the contents into that folder.
+
+  ```bash
+  mkdir html5-boilerplate
+  unzip html5-boilerplate*.zip -d html5-boilerplate
+  ```
+
+* Clone the git repo — `git clone
   https://github.com/h5bp/html5-boilerplate.git` - and checkout the
   [tagged release](https://github.com/h5bp/html5-boilerplate/releases)
-  you'd like to use.
-- Install with [npm](https://www.npmjs.com/): `npm install html5-boilerplate` and pull in what you need from the resulting `node_modules/html5-boilerplate/dist`
-- Install with [yarn](https://yarnpkg.com/): `yarn add html5-boilerplate`
-
+  you'd like to use. The `dist` folder represents the latest version of the project for end users. 
+* Install with [npm](https://www.npmjs.com/): `npm install html5-boilerplate` or [yarn](https://yarnpkg.com/): `yarn add html5-boilerplate`. The resulting `node_modules/html5-boilerplate/dist` folder represents the latest version of the project for end users. Depending on what you want to use and how you want to use it, you may have to copy and paste the contents of that folder into your project directory.
 
 ## Features
 
@@ -67,7 +74,6 @@ just that we'll ensure compatibility with the ones mentioned above.*
 If you need legacy browser support you can use [HTML5 Boilerplate v6](https://github.com/h5bp/html5-boilerplate/releases/tag/6.1.0) (IE9/IE10)
 or [HTML5 Boilerplate v5](https://github.com/h5bp/html5-boilerplate/releases/tag/5.3.0) (IE 8). They are no longer actively developed.
 
-
 ## Documentation
 
 Take a look at the [documentation table of contents](dist/doc/TOC.md).
@@ -75,7 +81,6 @@ This documentation is bundled with the project which makes it
 available for offline reading and provides a useful starting point for
 any documentation you want to write about your project.
 
-
 ## Contributing
 
 Hundreds of developers have helped to make the HTML5 Boilerplate. Anyone is welcome to [contribute](.github/CONTRIBUTING.md),
@@ -86,7 +91,6 @@ the [guidelines](.github/CONTRIBUTING.md):
 * [Feature requests](.github/CONTRIBUTING.md#features)
 * [Pull requests](.github/CONTRIBUTING.md#pull-requests)
 
-
 ## License
 
 The code is available under the [MIT license](LICENSE.txt).

dist/.editorconfig

@@ -8,6 +8,3 @@ indent_size = 2
 indent_style = space
 insert_final_newline = true
 trim_trailing_whitespace = true
-
-[*.md]
-trim_trailing_whitespace = false

dist/.htaccess

@@ -1,4 +1,4 @@
-# Apache Server Configs v3.1.0 | MIT License
+# Apache Server Configs v3.2.1 | MIT License
 # https://github.com/h5bp/server-configs-apache
 
 # (!) Using `.htaccess` files slows down Apache, therefore, if you have
@@ -126,17 +126,7 @@ Options -MultiViews
 # https://msdn.microsoft.com/en-us/library/ff955275.aspx
 
 <IfModule mod_headers.c>
-
-    Header set X-UA-Compatible "IE=edge"
-
-    # `mod_headers` cannot match based on the content-type, however,
-    # the `X-UA-Compatible` response header should be sent only for
-    # HTML documents and not for the other resources.
-
-    <FilesMatch "\.(appcache|atom|bbaw|bmp|br|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|gz|htc|ic[os]|jpe?g|m?js|json(ld)?|m4[av]|manifest|map|markdown|md|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|wasm|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$">
-        Header unset X-UA-Compatible
-    </FilesMatch>
-
+    Header set X-UA-Compatible "IE=edge" "expr=%{CONTENT_TYPE} =~ m#text/html#i"
 </IfModule>
 
 # ######################################################################
@@ -160,8 +150,9 @@ Options -MultiViews
     AddType application/json                            json map topojson
     AddType application/ld+json                         jsonld
     AddType application/rss+xml                         rss
-    AddType application/vnd.geo+json                    geojson
-    AddType application/xml                             rdf xml
+    AddType application/geo+json                        geojson
+    AddType application/rdf+xml                         rdf
+    AddType application/xml                             xml
 
 
   # JavaScript
@@ -248,26 +239,24 @@ AddDefaultCharset utf-8
 # https://httpd.apache.org/docs/current/mod/mod_mime.html#addcharset
 
 <IfModule mod_mime.c>
-    AddCharset utf-8 .atom \
+    AddCharset utf-8 .appcache \
                      .bbaw \
                      .css \
-                     .geojson \
+                     .htc \
                      .ics \
                      .js \
                      .json \
-                     .jsonld \
                      .manifest \
+                     .map \
                      .markdown \
                      .md \
                      .mjs \
-                     .rdf \
-                     .rss \
                      .topojson \
                      .vtt \
-                     .webapp \
+                     .vcard \
+                     .vcf \
                      .webmanifest \
-                     .xloc \
-                     .xml
+                     .xloc
 </IfModule>
 
 # ######################################################################
@@ -462,17 +451,7 @@ AddDefaultCharset utf-8
 # https://www.owasp.org/index.php/Clickjacking
 
 # <IfModule mod_headers.c>
-
-#     Header set X-Frame-Options "DENY"
-
-#     # `mod_headers` cannot match based on the content-type, however,
-#     # the `X-Frame-Options` response header should be sent only for
-#     # HTML documents and not for the other resources.
-
-#     <FilesMatch "\.(appcache|atom|bbaw|bmp|br|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|gz|htc|ic[os]|jpe?g|m?js|json(ld)?|m4[av]|manifest|map|markdown|md|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|wasm|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$">
-#         Header unset X-Frame-Options
-#     </FilesMatch>
-
+#     Header set X-Frame-Options "DENY" "expr=%{CONTENT_TYPE} =~ m#text/html#i"
 # </IfModule>
 
 # ----------------------------------------------------------------------
@@ -485,30 +464,68 @@ AddDefaultCharset utf-8
 # This can be done by setting a `Content Security Policy` which
 # whitelists trusted sources of content for your website.
 #
-# The example header below allows ONLY scripts that are loaded from
-# the current website's origin (no inline scripts, no CDN, etc).
-# That almost certainly won't work as-is for your website!
+# There is no policy that fits all websites, you will have to modify
+# the `Content-Security-Policy` directives in the example below depending
+# on your needs.
 #
-# To make things easier, you can use an online CSP header generator
-# such as: https://www.cspisawesome.com/.
+# The example policy below aims to:
 #
+#  (1) Restrict all fetches by default to the origin of the current website
+#      by setting the `default-src` directive to `'self'` - which acts as a
+#      fallback to all "Fetch directives" (https://developer.mozilla.org/en-US/docs/Glossary/Fetch_directive).
+#
+#      This is convenient as you do not have to specify all Fetch directives
+#      that apply to your site, for example:
+#      `connect-src 'self'; font-src 'self'; script-src 'self'; style-src 'self'`, etc.
+#
+#      This restriction also means that you must explicitly define from
+#      which site(s) your website is allowed to load resources from.
+#
+#  (2) The `<base>` element is not allowed on the website. This is to
+#      prevent attackers from changing the locations of resources loaded
+#      from relative URLs.
+#
+#      If you want to use the `<base>` element, then `base-uri 'self'`
+#      can be used instead.
+#
+#  (3) Form submissions are only allowed from the current website by
+#      setting: `form-action 'self'`.
+#
+#  (4) Prevents all websites (including your own) from embedding your
+#      webpages within e.g. the `<iframe>` or `<object>` element by
+#      setting `frame-ancestors 'none'`.
+#
+#	   The `frame-ancestors` directive helps avoid "Clickjacking" attacks
+#      and is similar to the `X-Frame-Options` header.
+#
+#      Browsers that support the CSP header will ignore `X-Frame-Options`
+#      if `frame-ancestors` is also specified.
+#
+#  (5) Forces the browser to treat all the resources that are served over
+#      HTTP as if they were loaded securely over HTTPS by setting the
+#      `upgrade-insecure-requests` directive.
+#
+#      Please note that `upgrade-insecure-requests` does not ensure
+#      HTTPS for the top-level navigation. If you want to force the
+#      website itself to be loaded over HTTPS you must include the
+#      `Strict-Transport-Security` header.
+#
+# To make your CSP implementation easier, you can use an online CSP header
+# generator such as:
+# https://report-uri.com/home/generate/
+#
+# It is encouraged that you validate your CSP header using a CSP validator
+# such as:
+# https://csp-evaluator.withgoogle.com
+#
+# https://csp.withgoogle.com/docs/
 # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
-# https://www.w3.org/TR/CSP3/
-# https://content-security-policy.com/
 # https://www.html5rocks.com/en/tutorials/security/content-security-policy/
+# https://www.w3.org/TR/CSP/
 
 # <IfModule mod_headers.c>
-
-#     Header set Content-Security-Policy "script-src 'self'; object-src 'self'"
-
-#     # `mod_headers` cannot match based on the content-type, however,
-#     # the `Content-Security-Policy` response header should be sent
-#     # only for HTML documents and not for the other resources.
-
-#     <FilesMatch "\.(appcache|atom|bbaw|bmp|br|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|gz|htc|ic[os]|jpe?g|m?js|json(ld)?|m4[av]|manifest|map|markdown|md|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|wasm|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$">
-#         Header unset Content-Security-Policy
-#     </FilesMatch>
-
+#     #                                   (1)                 (2)              (3)                 (4)                     (5)
+#     Header set Content-Security-Policy "default-src 'self'; base-uri 'none'; form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests" "expr=%{CONTENT_TYPE} =~ m#text/html#i"
 # </IfModule>
 
 # ----------------------------------------------------------------------
@@ -679,18 +696,8 @@ AddDefaultCharset utf-8
 # https://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29
 
 # <IfModule mod_headers.c>
-
 #     #                           (1)    (2)
-#     Header set X-XSS-Protection "1; mode=block"
-
-#     # `mod_headers` cannot match based on the content-type, however,
-#     # the `X-XSS-Protection` response header should be sent only for
-#     # HTML documents and not for the other resources.
-
-#     <FilesMatch "\.(appcache|atom|bbaw|bmp|br|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|gz|htc|ic[os]|jpe?g|m?js|json(ld)?|m4[av]|manifest|map|markdown|md|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|wasm|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$">
-#         Header unset X-XSS-Protection
-#     </FilesMatch>
-
+#     Header set X-XSS-Protection "1; mode=block" "expr=%{CONTENT_TYPE} =~ m#text/html#i"
 # </IfModule>
 
 # ----------------------------------------------------------------------
@@ -711,23 +718,12 @@ AddDefaultCharset utf-8
 # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
 
 # <IfModule mod_headers.c>
-
 #     # no-referrer-when-downgrade (default)
 #     # This should be the user agent's default behavior if no policy is
 #     # specified.The origin is sent as referrer to a-priori as-much-secure
 #     # destination (HTTPS->HTTPS), but isn't sent to a less secure destination
 #     # (HTTPS->HTTP).
-
-#     Header set Referrer-Policy "no-referrer-when-downgrade"
-
-#     # `mod_headers` cannot match based on the content-type, however,
-#     # the `Referrer-Policy` response header should be sent
-#     # only for HTML documents and not for the other resources.
-
-#     <FilesMatch "\.(appcache|atom|bbaw|bmp|br|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|gz|htc|ic[os]|jpe?g|m?js|json(ld)?|m4[av]|manifest|map|markdown|md|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|wasm|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$">
-#         Header unset Referrer-Policy
-#     </FilesMatch>
-
+#     Header set Referrer-Policy "no-referrer-when-downgrade" "expr=%{CONTENT_TYPE} =~ m#text/html#i"
 # </IfModule>
 
 # ----------------------------------------------------------------------
@@ -775,6 +771,7 @@ AddDefaultCharset utf-8
 
 <IfModule mod_headers.c>
     Header unset X-Powered-By
+    Header always unset X-Powered-By
 </IfModule>
 
 # ----------------------------------------------------------------------
@@ -839,7 +836,7 @@ ServerSignature Off
                                       "application/rdf+xml" \
                                       "application/rss+xml" \
                                       "application/schema+json" \
-                                      "application/vnd.geo+json" \
+                                      "application/geo+json" \
                                       "application/vnd.ms-fontobject" \
                                       "application/wasm" \
                                       "application/x-font-ttf" \
@@ -847,15 +844,12 @@ ServerSignature Off
                                       "application/x-web-app-manifest+json" \
                                       "application/xhtml+xml" \
                                       "application/xml" \
-                                      "font/collection" \
                                       "font/eot" \
                                       "font/opentype" \
                                       "font/otf" \
-                                      "font/ttf" \
                                       "image/bmp" \
                                       "image/svg+xml" \
                                       "image/vnd.microsoft.icon" \
-                                      "image/x-icon" \
                                       "text/cache-manifest" \
                                       "text/calendar" \
                                       "text/css" \
@@ -1082,7 +1076,7 @@ FileETag None
     ExpiresByType application/json                      "access plus 0 seconds"
     ExpiresByType application/ld+json                   "access plus 0 seconds"
     ExpiresByType application/schema+json               "access plus 0 seconds"
-    ExpiresByType application/vnd.geo+json              "access plus 0 seconds"
+    ExpiresByType application/geo+json                  "access plus 0 seconds"
     ExpiresByType application/xml                       "access plus 0 seconds"
     ExpiresByType text/calendar                         "access plus 0 seconds"
     ExpiresByType text/xml                              "access plus 0 seconds"

dist/404.html

@@ -1,60 +1,62 @@
 <!doctype html>
 <html lang="en">
+
 <head>
-    <meta charset="utf-8">
-    <title>Page Not Found</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1">
-    <style>
+  <meta charset="utf-8">
+  <title>Page Not Found</title>
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <style>
+    * {
+      line-height: 1.2;
+      margin: 0;
+    }
 
-        * {
-            line-height: 1.2;
-            margin: 0;
-        }
+    html {
+      color: #888;
+      display: table;
+      font-family: sans-serif;
+      height: 100%;
+      text-align: center;
+      width: 100%;
+    }
 
-        html {
-            color: #888;
-            display: table;
-            font-family: sans-serif;
-            height: 100%;
-            text-align: center;
-            width: 100%;
-        }
+    body {
+      display: table-cell;
+      vertical-align: middle;
+      margin: 2em auto;
+    }
 
-        body {
-            display: table-cell;
-            vertical-align: middle;
-            margin: 2em auto;
-        }
+    h1 {
+      color: #555;
+      font-size: 2em;
+      font-weight: 400;
+    }
 
-        h1 {
-            color: #555;
-            font-size: 2em;
-            font-weight: 400;
-        }
+    p {
+      margin: 0 auto;
+      width: 280px;
+    }
 
-        p {
-            margin: 0 auto;
-            width: 280px;
-        }
+    @media only screen and (max-width: 280px) {
 
-        @media only screen and (max-width: 280px) {
+      body,
+      p {
+        width: 95%;
+      }
 
-            body, p {
-                width: 95%;
-            }
+      h1 {
+        font-size: 1.5em;
+        margin: 0 0 0.3em;
+      }
 
-            h1 {
-                font-size: 1.5em;
-                margin: 0 0 0.3em;
-            }
-
-        }
-
-    </style>
+    }
+  </style>
 </head>
+
 <body>
-    <h1>Page Not Found</h1>
-    <p>Sorry, but the page you were trying to view does not exist.</p>
+  <h1>Page Not Found</h1>
+  <p>Sorry, but the page you were trying to view does not exist.</p>
 </body>
+
 </html>
 <!-- IE needs 512+ bytes: https://blogs.msdn.microsoft.com/ieinternals/2010/08/18/friendly-http-error-pages/ -->

dist/browserconfig.xml

@@ -1,12 +1,12 @@
 <?xml version="1.0" encoding="utf-8"?>
 <!-- Please read: https://msdn.microsoft.com/en-us/library/ie/dn455106.aspx -->
 <browserconfig>
-    <msapplication>
-        <tile>
-            <square70x70logo src="tile.png"/>
-            <square150x150logo src="tile.png"/>
-            <wide310x150logo src="tile-wide.png"/>
-            <square310x310logo src="tile.png"/>
-        </tile>
-    </msapplication>
+  <msapplication>
+    <tile>
+      <square70x70logo src="tile.png"/>
+      <square150x150logo src="tile.png"/>
+      <wide310x150logo src="tile-wide.png"/>
+      <square310x310logo src="tile.png"/>
+    </tile>
+  </msapplication>
 </browserconfig>

dist/css/main.css

@@ -1,21 +1,20 @@
-/*! HTML5 Boilerplate v7.1.0 | MIT License | https://html5boilerplate.com/ */
+/*! HTML5 Boilerplate v7.3.0 | MIT License | https://html5boilerplate.com/ */
 
-/* main.css 1.0.0 | MIT License | https://github.com/h5bp/main.css#readme */
+/* main.css 2.0.0 | MIT License | https://github.com/h5bp/main.css#readme */
 /*
  * What follows is the result of much research on cross-browser styling.
  * Credit left inline and big thanks to Nicolas Gallagher, Jonathan Neal,
  * Kroc Camen, and the H5BP dev community and team.
  */
 
- 
 /* ==========================================================================
    Base styles: opinionated defaults
    ========================================================================== */
 
-   html {
-    color: #222;
-    font-size: 1em;
-    line-height: 1.4;
+html {
+  color: #222;
+  font-size: 1em;
+  line-height: 1.4;
 }
 
 /*
@@ -29,13 +28,13 @@
  */
 
 ::-moz-selection {
-    background: #b3d4fc;
-    text-shadow: none;
+  background: #b3d4fc;
+  text-shadow: none;
 }
 
 ::selection {
-    background: #b3d4fc;
-    text-shadow: none;
+  background: #b3d4fc;
+  text-shadow: none;
 }
 
 /*
@@ -43,12 +42,12 @@
  */
 
 hr {
-    display: block;
-    height: 1px;
-    border: 0;
-    border-top: 1px solid #ccc;
-    margin: 1em 0;
-    padding: 0;
+  display: block;
+  height: 1px;
+  border: 0;
+  border-top: 1px solid #ccc;
+  margin: 1em 0;
+  padding: 0;
 }
 
 /*
@@ -63,7 +62,7 @@ iframe,
 img,
 svg,
 video {
-    vertical-align: middle;
+  vertical-align: middle;
 }
 
 /*
@@ -71,9 +70,9 @@ video {
  */
 
 fieldset {
-    border: 0;
-    margin: 0;
-    padding: 0;
+  border: 0;
+  margin: 0;
+  padding: 0;
 }
 
 /*
@@ -81,7 +80,7 @@ fieldset {
  */
 
 textarea {
-    resize: vertical;
+  resize: vertical;
 }
 
 /* ==========================================================================
@@ -89,35 +88,17 @@ textarea {
    ========================================================================== */
 
 .browserupgrade {
-    margin: 0.2em 0;
-    background: #ccc;
-    color: #000;
-    padding: 0.2em 0;
+  margin: 0.2em 0;
+  background: #ccc;
+  color: #000;
+  padding: 0.2em 0;
 }
 
-
-
-
- /* ==========================================================================
+/* ==========================================================================
    Author's custom styles
    ========================================================================== */
 
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- /* ==========================================================================
+/* ==========================================================================
    Helper classes
    ========================================================================== */
 
@@ -125,7 +106,7 @@ textarea {
  * Hide visually and from screen readers
  */
 
- .hidden {
+.hidden {
   display: none !important;
 }
 
@@ -138,33 +119,34 @@ textarea {
 *    https://medium.com/@jessebeach/beware-smushed-off-screen-accessible-text-5952a4c2cbfe
 */
 
-.visuallyhidden {
+.sr-only {
   border: 0;
-  clip: rect(0 0 0 0);
+  clip: rect(0, 0, 0, 0);
   height: 1px;
   margin: -1px;
   overflow: hidden;
   padding: 0;
   position: absolute;
+  white-space: nowrap;
   width: 1px;
-  white-space: nowrap; /* 1 */
+  /* 1 */
 }
 
 /*
-* Extends the .visuallyhidden class to allow the element
+* Extends the .sr-only class to allow the element
 * to be focusable when navigated to via the keyboard:
 * https://www.drupal.org/node/897638
 */
 
-.visuallyhidden.focusable:active,
-.visuallyhidden.focusable:focus {
+.sr-only.focusable:active,
+.sr-only.focusable:focus {
   clip: auto;
   height: auto;
   margin: 0;
   overflow: visible;
   position: static;
-  width: auto;
   white-space: inherit;
+  width: auto;
 }
 
 /*
@@ -189,107 +171,95 @@ textarea {
 
 .clearfix:before,
 .clearfix:after {
-  content: " "; /* 1 */
-  display: table; /* 2 */
+  content: " ";
+  /* 1 */
+  display: table;
+  /* 2 */
 }
 
 .clearfix:after {
   clear: both;
 }
 
- 
 /* ==========================================================================
    EXAMPLE Media Queries for Responsive Design.
    These examples override the primary ('mobile first') styles.
    Modify as content requires.
    ========================================================================== */
 
-   @media only screen and (min-width: 35em) {
-    /* Style adjustments for viewports that meet the condition */
+@media only screen and (min-width: 35em) {
+  /* Style adjustments for viewports that meet the condition */
 }
 
 @media print,
-       (-webkit-min-device-pixel-ratio: 1.25),
-       (min-resolution: 1.25dppx),
-       (min-resolution: 120dpi) {
-    /* Style adjustments for high resolution devices */
+  (-webkit-min-device-pixel-ratio: 1.25),
+  (min-resolution: 1.25dppx),
+  (min-resolution: 120dpi) {
+  /* Style adjustments for high resolution devices */
 }
 
- 
 /* ==========================================================================
    Print styles.
    Inlined to avoid the additional HTTP request:
    https://www.phpied.com/delay-loading-your-print-css/
    ========================================================================== */
 
-   @media print {
-    *,
-    *:before,
-    *:after {
-        background: transparent !important;
-        color: #000 !important; /* Black prints faster */
-        -webkit-box-shadow: none !important;
-        box-shadow: none !important;
-        text-shadow: none !important;
-    }
-
-    a,
-    a:visited {
-        text-decoration: underline;
-    }
-
-    a[href]:after {
-        content: " (" attr(href) ")";
-    }
-
-    abbr[title]:after {
-        content: " (" attr(title) ")";
-    }
-
-    /*
+@media print {
+  *,
+  *:before,
+  *:after {
+    background: transparent !important;
+    color: #000 !important;
+    /* Black prints faster */
+    box-shadow: none !important;
+    text-shadow: none !important;
+  }
+  a,
+  a:visited {
+    text-decoration: underline;
+  }
+  a[href]:after {
+    content: " (" attr(href) ")";
+  }
+  abbr[title]:after {
+    content: " (" attr(title) ")";
+  }
+  /*
      * Don't show links that are fragment identifiers,
      * or use the `javascript:` pseudo protocol
      */
-
-    a[href^="#"]:after,
-    a[href^="javascript:"]:after {
-        content: "";
-    }
-
-    pre {
-        white-space: pre-wrap !important;
-    }
-    pre,
-    blockquote {
-        border: 1px solid #999;
-        page-break-inside: avoid;
-    }
-
-    /*
+  a[href^="#"]:after,
+  a[href^="javascript:"]:after {
+    content: "";
+  }
+  pre {
+    white-space: pre-wrap !important;
+  }
+  pre,
+  blockquote {
+    border: 1px solid #999;
+    page-break-inside: avoid;
+  }
+  /*
      * Printing Tables:
-     * http://css-discuss.incutio.com/wiki/Printing_Tables
+     * https://web.archive.org/web/20180815150934/http://css-discuss.incutio.com/wiki/Printing_Tables
      */
-
-    thead {
-        display: table-header-group;
-    }
-
-    tr,
-    img {
-        page-break-inside: avoid;
-    }
-
-    p,
-    h2,
-    h3 {
-        orphans: 3;
-        widows: 3;
-    }
-
-    h2,
-    h3 {
-        page-break-after: avoid;
-    }
+  thead {
+    display: table-header-group;
+  }
+  tr,
+  img {
+    page-break-inside: avoid;
+  }
+  p,
+  h2,
+  h3 {
+    orphans: 3;
+    widows: 3;
+  }
+  h2,
+  h3 {
+    page-break-after: avoid;
+  }
 }
 
-

dist/doc/css.md

@@ -6,10 +6,7 @@ table of contents](TOC.md)
 HTML5 Boilerplate's CSS includes:
 
 * [Normalize.css](#normalizecss)
-* [Useful defaults](#useful-defaults)
-* [Common helpers](#common-helpers)
-* [Placeholder media queries](#media-queries)
-* [Print styles](#print-styles)
+* [main.css](#maincss)
 
 This starting CSS does not rely on the presence of
 [conditional class names](https://www.paulirish.com/2008/conditional-stylesheets-vs-css-hacks-answer-neither/),
@@ -21,8 +18,7 @@ your development preferences happen to be.
 ## Normalize.css
 
 In order to make browsers render all elements more consistently and in line
-with modern standards, we include
-[Normalize.css](https://necolas.github.io/normalize.css/) — a modern, HTML5-ready
+with modern standards, we include Normalize.css — a modern, HTML5-ready
 alternative to CSS resets.
 
 As opposed to CSS resets, Normalize.css:
@@ -35,8 +31,7 @@ As opposed to CSS resets, Normalize.css:
 * has better documentation
 
 For more information about Normalize.css, please refer to its [project
-page](https://necolas.github.com/normalize.css/), as well as this
-[blog post](http://nicolasgallagher.com/about-normalize-css/).
+page](https://necolas.github.io/normalize.css/).
 
 
 ## main.css
@@ -51,4 +46,4 @@ styles:
 * style the prompt that is displayed to users using an outdated browser
 * and more...
 
-These styles are included in [main.css](https://github.com/h5bp/html5-boilerplate/blob/master/dist/css/main.css). See the [main.css](https://github.com/h5bp/main.css) project [documentation](https://github.com/h5bp/main.css/blob/master/README.md#features) for a full discussion of these styles. 
+These styles are included in [main.css](https://github.com/h5bp/html5-boilerplate/blob/master/dist/css/main.css). See the [main.css](https://github.com/h5bp/main.css) project [documentation](https://github.com/h5bp/main.css/blob/master/README.md#features) for a full discussion of these styles.

dist/doc/extend.md

@@ -441,7 +441,7 @@ following the [Open Graph
 tutorial](https://developers.facebook.com/docs/sharing/webmasters/getting-started).
 
 For a reference of Open Graph's markup and properties, you may check
-[Facebook's Open Graph Protocol reference](http://ogp.me/). Finally,
+[Facebook's Open Graph Protocol reference](https://ogp.me). Finally,
 you can validate your markup with the [Facebook Object
 Debugger](https://developers.facebook.com/tools/debug/) (needs
 registration to Facebook).
@@ -476,11 +476,10 @@ and you can validate your markup with the [Card validator](https://cards-dev.twi
 <meta name="twitter:image" content="https://www.example.com/path/to/image.jpg">
 ```
 
-### Google+ / Schema.org
+### Schema.org
 
 Google also provides a snippet specification that serves a similar
-purpose to Facebook's Open Graph or Twitter Cards. While it helps you
-to control information displayed on Google+, this metadata is a subset
+purpose to Facebook's Open Graph or Twitter Cards. This metadata is a subset
 of [schema.org's microdata vocabulary](https://schema.org/), which
 covers many other schemas that can describe the content of your pages
 to search engines. For this reason, this metadata is more generic for
@@ -493,7 +492,7 @@ Also, please note that this markup requires to add attributes to your
 top `html` tag.
 
 ```html
-<html class="no-js" lang="" itemscope itemtype="http://schema.org/Article">
+<html class="no-js" lang="" itemscope itemtype="https://schema.org/Article">
     <head>
 
         <link rel="author" href="">

dist/doc/faq.md

@@ -5,8 +5,6 @@ table of contents](TOC.md)
 
 * [Why is the Google Analytics code at the bottom? Google recommends it be
   placed in the `<head>`.](#why-is-the-google-analytics-code-at-the-bottom-google-recommends-it-be-placed-in-the-head)
-* [How can I integrate Bootstrap with HTML5
-  Boilerplate?](#how-can-i-integrate-bootstrap-with-html5-boilerplate)
 * [Do I need to upgrade my site each time a new version of HTML5 Boilerplate is
   released?](#do-i-need-to-upgrade-my-site-each-time-a-new-version-of-html5-boilerplate-is-released)
 * [Where can I get help with support

dist/doc/html.md

@@ -80,7 +80,7 @@ control over the UI of a saved site or web app on a mobile device.
 It's linked to from the HTML as follows:
 
 ```html
-        <link rel="manifest" href="site.webmanifest">
+<link rel="manifest" href="site.webmanifest">
 ```
 Our [site.webmanifest](https://github.com/h5bp/html5-boilerplate/blob/master/src/site.webmanifest) contains a very skeletal "app" definition, just to show the basic usage. 
 You should fill this file out with [more information about your site or application](https://developer.mozilla.org/en-US/docs/Web/Manifest)
@@ -128,10 +128,10 @@ using a polyfill CDN service, like [cdn.polyfill.io](https://cdn.polyfill.io/),
 just put it before the other scripts in the bottom of the page:
 
 ```html
-    <script src="js/vendor/modernizr-3.6.0.min.js"></script>
+    <script src="js/vendor/modernizr-3.8.0.min.js"></script>
     <script src="https://cdn.polyfill.io/v3/polyfill.min.js"></script>
-    <script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-    <script>window.jQuery || document.write('<script src="js/vendor/jquery-3.3.1.min.js"><\/script>')</script>
+    <script src="https://code.jquery.com/jquery-3.4.1.min.js" integrity="sha256-CSXorXvZcTkaix6Yvo6HppcZGetbYMGWSFlBw8HfCJo=" crossorigin="anonymous"></script>
+    <script>window.jQuery || document.write('<script src="js/vendor/jquery-3.4.1.min.js"><\/script>')</script>
     <script src="js/plugins.js"></script>
     <script src="js/main.js"></script>
 </body>

dist/doc/js.md

@@ -9,7 +9,7 @@ Information about the default JavaScript included in the project.
 
 This file can be used to contain or reference your site/app JavaScript code.
 If you're working on something more advanced you might replace this file
-entirely. That's cool. 
+entirely. That's cool.
 
 ## plugins.js
 
@@ -32,5 +32,5 @@ This directory can be used to contain all 3rd party library code.
 
 Minified versions of the latest jQuery and Modernizr libraries are included by
 default. You may wish to create your own [custom Modernizr
-build with the online builder](https://www.modernizr.com/download/) or [command
+build with the online builder](https://modernizr.com/download/) or [command
 line tool](https://modernizr.com/docs#command-line-config).

dist/doc/misc.md

@@ -84,7 +84,7 @@ example, a <Directory> section in the main configuration file. This is usually
 the recommended way, as using .htaccess files slows down Apache!
 
 To enable Apache modules locally, please see:
-https://github.com/h5bp/server-configs-apache/wiki/How-to-enable-Apache-modules.
+https://github.com/h5bp/server-configs-apache#enable-apache-httpd-modules.
 
 In the repo the `.htaccess` is used for:
 
@@ -137,7 +137,7 @@ you want to block access to private content, use proper authentication instead.
 
 For more information about `robots.txt`, please see:
 
-  * [robotstxt.org](http://www.robotstxt.org/)
+  * [robotstxt.org](https://www.robotstxt.org/)
   * [How Google handles the `robots.txt` file](https://developers.google.com/webmasters/control-crawl-index/docs/robots_txt)
 
 ## humans.txt

dist/index.html

@@ -24,9 +24,9 @@
 
   <!-- Add your site or application content here -->
   <p>Hello world! This is HTML5 Boilerplate.</p>
-  <script src="js/vendor/modernizr-3.7.1.min.js"></script>
-  <script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-  <script>window.jQuery || document.write('<script src="js/vendor/jquery-3.3.1.min.js"><\/script>')</script>
+  <script src="js/vendor/modernizr-3.8.0.min.js"></script>
+  <script src="https://code.jquery.com/jquery-3.4.1.min.js" integrity="sha256-CSXorXvZcTkaix6Yvo6HppcZGetbYMGWSFlBw8HfCJo=" crossorigin="anonymous"></script>
+  <script>window.jQuery || document.write('<script src="js/vendor/jquery-3.4.1.min.js"><\/script>')</script>
   <script src="js/plugins.js"></script>
   <script src="js/main.js"></script>
 
@@ -35,7 +35,7 @@
     window.ga = function () { ga.q.push(arguments) }; ga.q = []; ga.l = +new Date;
     ga('create', 'UA-XXXXX-Y', 'auto'); ga('set','transport','beacon'); ga('send', 'pageview')
   </script>
-  <script src="https://www.google-analytics.com/analytics.js" async defer></script>
+  <script src="https://www.google-analytics.com/analytics.js" async></script>
 </body>
 
 </html>

gulpfile.babel.js

@@ -7,10 +7,6 @@ import gulp from 'gulp';
 // and attach them to the `plugins` object
 import plugins from 'gulp-load-plugins';
 
-// Temporary solution until gulp 4
-// https://github.com/gulpjs/gulp/issues/355
-import runSequence from 'run-sequence';
-
 import archiver from 'archiver';
 import glob from 'glob';
 import del from 'del';
@@ -20,19 +16,18 @@ import modernizr from 'modernizr';
 import pkg from './package.json';
 import modernizrConfig from './modernizr-config.json';
 
-
 const dirs = pkg['h5bp-configs'].directories;
 
 // ---------------------------------------------------------------------
 // | Helper tasks                                                      |
 // ---------------------------------------------------------------------
 
-gulp.task('archive:create_archive_dir', () => {
+gulp.task('archive:create_archive_dir', (done) => {
   fs.mkdirSync(path.resolve(dirs.archive), '0755');
+  done();
 });
 
 gulp.task('archive:zip', (done) => {
-
   const archiveName = path.resolve(dirs.archive, `${pkg.name}_v${pkg.version}.zip`);
   const zip = archiver('zip');
   const files = glob.sync('**/*.*', {
@@ -49,7 +44,6 @@ gulp.task('archive:zip', (done) => {
   output.on('close', done);
 
   files.forEach((file) => {
-
     const filePath = path.resolve(dirs.dist, file);
 
     // `zip.bulk` does not maintain the file
@@ -58,12 +52,11 @@ gulp.task('archive:zip', (done) => {
       'name': file,
       'mode': fs.statSync(filePath).mode
     });
-
   });
 
   zip.pipe(output);
   zip.finalize();
-
+  done();
 });
 
 gulp.task('clean', (done) => {
@@ -75,16 +68,6 @@ gulp.task('clean', (done) => {
   });
 });
 
-gulp.task('copy', [
-  'copy:.htaccess',
-  'copy:index.html',
-  'copy:jquery',
-  'copy:license',
-  'copy:main.css',
-  'copy:misc',
-  'copy:normalize'
-]);
-
 gulp.task('copy:.htaccess', () =>
   gulp.src('node_modules/apache-server-configs/dist/.htaccess')
     .pipe(plugins().replace(/# ErrorDocument/g, 'ErrorDocument'))
@@ -94,12 +77,12 @@ gulp.task('copy:.htaccess', () =>
 gulp.task('copy:index.html', () => {
   const hash = ssri.fromData(
     fs.readFileSync('node_modules/jquery/dist/jquery.min.js'),
-    {algorithms: ['sha256']}
+    { algorithms: ['sha256'] }
   );
   let version = pkg.devDependencies.jquery;
   let modernizrVersion = pkg.devDependencies.modernizr;
 
-  gulp.src(`${dirs.src}/index.html`)
+  return gulp.src(`${dirs.src}/index.html`)
     .pipe(plugins().replace(/{{JQUERY_VERSION}}/g, version))
     .pipe(plugins().replace(/{{MODERNIZR_VERSION}}/g, modernizrVersion))
     .pipe(plugins().replace(/{{JQUERY_SRI_HASH}}/g, hash.toString()))
@@ -120,10 +103,9 @@ gulp.task('copy:license', () =>
 gulp.task('copy:main.css', () => {
   const banner = `/*! HTML5 Boilerplate v${pkg.version} | ${pkg.license} License | ${pkg.homepage} */\n\n`;
 
-  gulp.src(`node_modules/main.css/dist/main.css`)
+  return gulp.src('node_modules/main.css/dist/main.css')
     .pipe(plugins().header(banner))
     .pipe(plugins().autoprefixer({
-      browsers: ['last 2 versions', 'ie >= 9', '> 1%'],
       cascade: false
     }))
     .pipe(gulp.dest(`${dirs.dist}/css`));
@@ -131,7 +113,6 @@ gulp.task('copy:main.css', () => {
 
 gulp.task('copy:misc', () =>
   gulp.src([
-
     // Copy all files
     `${dirs.src}/**/*`,
 
@@ -139,12 +120,9 @@ gulp.task('copy:misc', () =>
     // (other tasks will handle the copying of these files)
     `!${dirs.src}/css/main.css`,
     `!${dirs.src}/index.html`
-
   ], {
-
     // Include hidden files by default
     dot: true
-
   }).pipe(gulp.dest(dirs.dist))
 );
 
@@ -153,42 +131,52 @@ gulp.task('copy:normalize', () =>
     .pipe(gulp.dest(`${dirs.dist}/css`))
 );
 
-gulp.task('modernizr', (done) =>{
-
+gulp.task('modernizr', (done) => {
   modernizr.build(modernizrConfig, (code) => {
     fs.writeFile(`${dirs.dist}/js/vendor/modernizr-${pkg.devDependencies.modernizr}.min.js`, code, done);
   });
-
 });
 
 gulp.task('lint:js', () =>
   gulp.src([
-    'gulpfile.js',
     `${dirs.src}/js/*.js`,
     `${dirs.test}/*.js`
-  ]).pipe(plugins().jscs())
-    .pipe(plugins().eslint())
+  ]).pipe(plugins().eslint())
     .pipe(plugins().eslint.failOnError())
 );
 
-
 // ---------------------------------------------------------------------
 // | Main tasks                                                        |
 // ---------------------------------------------------------------------
+gulp.task(
+  'copy',
+  gulp.series(
+    'copy:.htaccess',
+    'copy:index.html',
+    'copy:jquery',
+    'copy:license',
+    'copy:main.css',
+    'copy:misc',
+    'copy:normalize'
+  )
+);
 
-gulp.task('archive', (done) => {
-  runSequence(
+gulp.task(
+  'build',
+  gulp.series(
+    gulp.parallel('clean', 'lint:js'),
+    'copy',
+    'modernizr'
+  )
+);
+
+gulp.task(
+  'archive',
+  gulp.series(
     'build',
     'archive:create_archive_dir',
-    'archive:zip',
-    done);
-});
+    'archive:zip'
+  )
+);
 
-gulp.task('build', (done) => {
-  runSequence(
-    ['clean', 'lint:js'],
-    'copy', 'modernizr',
-    done);
-});
-
-gulp.task('default', ['build']);
+gulp.task('default', gulp.series('build'));

package.json

@@ -1,41 +1,65 @@
 {
+  "name": "html5-boilerplate",
+  "version": "7.3.0",
+  "homepage": "https://html5boilerplate.com/",
+  "license": "MIT",
+  "description": "A professional front-end template for building fast, robust, and adaptable web apps or sites.",
+  "keywords": [
+    "h5bp",
+    "template",
+    "front-end"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/h5bp/html5-boilerplate.git"
+  },
+  "bugs": {
+    "url": "https://github.com/h5bp/html5-boilerplate/issues"
+  },
+  "scripts": {
+    "build": "gulp build",
+    "test": "gulp archive && mocha --require @babel/register --reporter spec --timeout 5000"
+  },
   "devDependencies": {
-    "apache-server-configs": "^3.1.0",
-    "archiver": "^3.0.0",
-    "babel-core": "^6.26.3",
-    "babel-preset-env": "^1.7.0",
-    "babel-register": "^6.26.0",
-    "del": "^4.0.0",
-    "eslint": "^5.15.2",
+    "@babel/core": "^7.7.2",
+    "@babel/preset-env": "^7.7.1",
+    "@babel/register": "^7.7.0",
+    "apache-server-configs": "^3.2.1",
+    "archiver": "^3.1.1",
+    "del": "^5.1.0",
+    "eslint": "^6.6.0",
     "eslint-config-recommended": "^4.0.0",
-    "eslint-plugin-mocha": "^5.3.0",
-    "glob": "^7.1.3",
-    "gulp": "^3.9.1",
-    "gulp-autoprefixer": "^6.0.0",
-    "gulp-eslint": "^5.0.0",
-    "gulp-header": "^2.0.7",
-    "gulp-jscs": "^4.1.0",
-    "gulp-load-plugins": "^1.5.0",
+    "eslint-plugin-mocha": "^6.2.1",
+    "glob": "^7.1.6",
+    "gulp": "^4.0.2",
+    "gulp-autoprefixer": "^7.0.1",
+    "gulp-eslint": "^6.0.0",
+    "gulp-header": "^2.0.9",
+    "gulp-load-plugins": "^2.0.1",
     "gulp-rename": "^1.4.0",
     "gulp-replace": "^1.0.0",
-    "jquery": "3.3.1",
-    "main.css": "1.0.0",
-    "mocha": "^5.2.0",
-    "modernizr": "3.7.1",
+    "jquery": "3.4.1",
+    "main.css": "2.0.0",
+    "mocha": "^6.2.2",
+    "modernizr": "3.8.0",
     "normalize.css": "8.0.1",
-    "run-sequence": "^2.2.1",
-    "ssri": "^6.0.1",
-    "strip-json-comments": "^2.0.1"
+    "ssri": "^7.1.0",
+    "strip-json-comments": "^3.0.1"
   },
   "engines": {
-    "node": ">=6",
+    "node": ">=10",
     "npm": ">=3"
   },
   "babel": {
     "presets": [
-      "env"
+      "@babel/preset-env"
     ]
   },
+  "browserslist": [
+    "last 1 version",
+    "> 1%",
+    "IE 10"
+  ],
   "h5bp-configs": {
     "directories": {
       "archive": "archive",
@@ -44,15 +68,6 @@
       "test": "test"
     }
   },
-  "homepage": "https://html5boilerplate.com/",
-  "license": "MIT",
-  "name": "html5-boilerplate",
-  "scripts": {
-    "build": "gulp build",
-    "test": "gulp archive && mocha --require babel-core/register --reporter spec --timeout 5000"
-  },
-  "version": "7.1.0",
-  "description": "A professional front-end template for building fast, robust, and adaptable web apps or sites.",
   "files": [
     "CHANGELOG.md",
     "LICENSE.txt",
@@ -61,8 +76,5 @@
     "modernizr-config.json",
     "README.md"
   ],
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/h5bp/html5-boilerplate.git"
-  }
+  "dependencies": {}
 }

src/.editorconfig

@@ -8,6 +8,3 @@ indent_size = 2
 indent_style = space
 insert_final_newline = true
 trim_trailing_whitespace = true
-
-[*.md]
-trim_trailing_whitespace = false

src/404.html

@@ -1,60 +1,62 @@
 <!doctype html>
 <html lang="en">
+
 <head>
-    <meta charset="utf-8">
-    <title>Page Not Found</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1">
-    <style>
+  <meta charset="utf-8">
+  <title>Page Not Found</title>
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <style>
+    * {
+      line-height: 1.2;
+      margin: 0;
+    }
 
-        * {
-            line-height: 1.2;
-            margin: 0;
-        }
+    html {
+      color: #888;
+      display: table;
+      font-family: sans-serif;
+      height: 100%;
+      text-align: center;
+      width: 100%;
+    }
 
-        html {
-            color: #888;
-            display: table;
-            font-family: sans-serif;
-            height: 100%;
-            text-align: center;
-            width: 100%;
-        }
+    body {
+      display: table-cell;
+      vertical-align: middle;
+      margin: 2em auto;
+    }
 
-        body {
-            display: table-cell;
-            vertical-align: middle;
-            margin: 2em auto;
-        }
+    h1 {
+      color: #555;
+      font-size: 2em;
+      font-weight: 400;
+    }
 
-        h1 {
-            color: #555;
-            font-size: 2em;
-            font-weight: 400;
-        }
+    p {
+      margin: 0 auto;
+      width: 280px;
+    }
 
-        p {
-            margin: 0 auto;
-            width: 280px;
-        }
+    @media only screen and (max-width: 280px) {
 
-        @media only screen and (max-width: 280px) {
+      body,
+      p {
+        width: 95%;
+      }
 
-            body, p {
-                width: 95%;
-            }
+      h1 {
+        font-size: 1.5em;
+        margin: 0 0 0.3em;
+      }
 
-            h1 {
-                font-size: 1.5em;
-                margin: 0 0 0.3em;
-            }
-
-        }
-
-    </style>
+    }
+  </style>
 </head>
+
 <body>
-    <h1>Page Not Found</h1>
-    <p>Sorry, but the page you were trying to view does not exist.</p>
+  <h1>Page Not Found</h1>
+  <p>Sorry, but the page you were trying to view does not exist.</p>
 </body>
+
 </html>
 <!-- IE needs 512+ bytes: https://blogs.msdn.microsoft.com/ieinternals/2010/08/18/friendly-http-error-pages/ -->

src/browserconfig.xml

@@ -1,12 +1,12 @@
 <?xml version="1.0" encoding="utf-8"?>
 <!-- Please read: https://msdn.microsoft.com/en-us/library/ie/dn455106.aspx -->
 <browserconfig>
-    <msapplication>
-        <tile>
-            <square70x70logo src="tile.png"/>
-            <square150x150logo src="tile.png"/>
-            <wide310x150logo src="tile-wide.png"/>
-            <square310x310logo src="tile.png"/>
-        </tile>
-    </msapplication>
+  <msapplication>
+    <tile>
+      <square70x70logo src="tile.png"/>
+      <square150x150logo src="tile.png"/>
+      <wide310x150logo src="tile-wide.png"/>
+      <square310x310logo src="tile.png"/>
+    </tile>
+  </msapplication>
 </browserconfig>

src/doc/css.md

@@ -6,10 +6,7 @@ table of contents](TOC.md)
 HTML5 Boilerplate's CSS includes:
 
 * [Normalize.css](#normalizecss)
-* [Useful defaults](#useful-defaults)
-* [Common helpers](#common-helpers)
-* [Placeholder media queries](#media-queries)
-* [Print styles](#print-styles)
+* [main.css](#maincss)
 
 This starting CSS does not rely on the presence of
 [conditional class names](https://www.paulirish.com/2008/conditional-stylesheets-vs-css-hacks-answer-neither/),
@@ -21,8 +18,7 @@ your development preferences happen to be.
 ## Normalize.css
 
 In order to make browsers render all elements more consistently and in line
-with modern standards, we include
-[Normalize.css](https://necolas.github.io/normalize.css/) — a modern, HTML5-ready
+with modern standards, we include Normalize.css — a modern, HTML5-ready
 alternative to CSS resets.
 
 As opposed to CSS resets, Normalize.css:
@@ -35,8 +31,7 @@ As opposed to CSS resets, Normalize.css:
 * has better documentation
 
 For more information about Normalize.css, please refer to its [project
-page](https://necolas.github.com/normalize.css/), as well as this
-[blog post](http://nicolasgallagher.com/about-normalize-css/).
+page](https://necolas.github.io/normalize.css/).
 
 
 ## main.css
@@ -51,4 +46,4 @@ styles:
 * style the prompt that is displayed to users using an outdated browser
 * and more...
 
-These styles are included in [main.css](https://github.com/h5bp/html5-boilerplate/blob/master/dist/css/main.css). See the [main.css](https://github.com/h5bp/main.css) project [documentation](https://github.com/h5bp/main.css/blob/master/README.md#features) for a full discussion of these styles. 
+These styles are included in [main.css](https://github.com/h5bp/html5-boilerplate/blob/master/dist/css/main.css). See the [main.css](https://github.com/h5bp/main.css) project [documentation](https://github.com/h5bp/main.css/blob/master/README.md#features) for a full discussion of these styles.

src/doc/extend.md

@@ -441,7 +441,7 @@ following the [Open Graph
 tutorial](https://developers.facebook.com/docs/sharing/webmasters/getting-started).
 
 For a reference of Open Graph's markup and properties, you may check
-[Facebook's Open Graph Protocol reference](http://ogp.me/). Finally,
+[Facebook's Open Graph Protocol reference](https://ogp.me). Finally,
 you can validate your markup with the [Facebook Object
 Debugger](https://developers.facebook.com/tools/debug/) (needs
 registration to Facebook).
@@ -476,11 +476,10 @@ and you can validate your markup with the [Card validator](https://cards-dev.twi
 <meta name="twitter:image" content="https://www.example.com/path/to/image.jpg">
 ```
 
-### Google+ / Schema.org
+### Schema.org
 
 Google also provides a snippet specification that serves a similar
-purpose to Facebook's Open Graph or Twitter Cards. While it helps you
-to control information displayed on Google+, this metadata is a subset
+purpose to Facebook's Open Graph or Twitter Cards. This metadata is a subset
 of [schema.org's microdata vocabulary](https://schema.org/), which
 covers many other schemas that can describe the content of your pages
 to search engines. For this reason, this metadata is more generic for
@@ -493,7 +492,7 @@ Also, please note that this markup requires to add attributes to your
 top `html` tag.
 
 ```html
-<html class="no-js" lang="" itemscope itemtype="http://schema.org/Article">
+<html class="no-js" lang="" itemscope itemtype="https://schema.org/Article">
     <head>
 
         <link rel="author" href="">

src/doc/faq.md

@@ -5,8 +5,6 @@ table of contents](TOC.md)
 
 * [Why is the Google Analytics code at the bottom? Google recommends it be
   placed in the `<head>`.](#why-is-the-google-analytics-code-at-the-bottom-google-recommends-it-be-placed-in-the-head)
-* [How can I integrate Bootstrap with HTML5
-  Boilerplate?](#how-can-i-integrate-bootstrap-with-html5-boilerplate)
 * [Do I need to upgrade my site each time a new version of HTML5 Boilerplate is
   released?](#do-i-need-to-upgrade-my-site-each-time-a-new-version-of-html5-boilerplate-is-released)
 * [Where can I get help with support

src/doc/html.md

@@ -80,7 +80,7 @@ control over the UI of a saved site or web app on a mobile device.
 It's linked to from the HTML as follows:
 
 ```html
-        <link rel="manifest" href="site.webmanifest">
+<link rel="manifest" href="site.webmanifest">
 ```
 Our [site.webmanifest](https://github.com/h5bp/html5-boilerplate/blob/master/src/site.webmanifest) contains a very skeletal "app" definition, just to show the basic usage. 
 You should fill this file out with [more information about your site or application](https://developer.mozilla.org/en-US/docs/Web/Manifest)
@@ -128,10 +128,10 @@ using a polyfill CDN service, like [cdn.polyfill.io](https://cdn.polyfill.io/),
 just put it before the other scripts in the bottom of the page:
 
 ```html
-    <script src="js/vendor/modernizr-3.6.0.min.js"></script>
+    <script src="js/vendor/modernizr-3.8.0.min.js"></script>
     <script src="https://cdn.polyfill.io/v3/polyfill.min.js"></script>
-    <script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-    <script>window.jQuery || document.write('<script src="js/vendor/jquery-3.3.1.min.js"><\/script>')</script>
+    <script src="https://code.jquery.com/jquery-3.4.1.min.js" integrity="sha256-CSXorXvZcTkaix6Yvo6HppcZGetbYMGWSFlBw8HfCJo=" crossorigin="anonymous"></script>
+    <script>window.jQuery || document.write('<script src="js/vendor/jquery-3.4.1.min.js"><\/script>')</script>
     <script src="js/plugins.js"></script>
     <script src="js/main.js"></script>
 </body>

src/doc/js.md

@@ -9,7 +9,7 @@ Information about the default JavaScript included in the project.
 
 This file can be used to contain or reference your site/app JavaScript code.
 If you're working on something more advanced you might replace this file
-entirely. That's cool. 
+entirely. That's cool.
 
 ## plugins.js
 
@@ -32,5 +32,5 @@ This directory can be used to contain all 3rd party library code.
 
 Minified versions of the latest jQuery and Modernizr libraries are included by
 default. You may wish to create your own [custom Modernizr
-build with the online builder](https://www.modernizr.com/download/) or [command
+build with the online builder](https://modernizr.com/download/) or [command
 line tool](https://modernizr.com/docs#command-line-config).

src/doc/misc.md

@@ -84,7 +84,7 @@ example, a <Directory> section in the main configuration file. This is usually
 the recommended way, as using .htaccess files slows down Apache!
 
 To enable Apache modules locally, please see:
-https://github.com/h5bp/server-configs-apache/wiki/How-to-enable-Apache-modules.
+https://github.com/h5bp/server-configs-apache#enable-apache-httpd-modules.
 
 In the repo the `.htaccess` is used for:
 
@@ -137,7 +137,7 @@ you want to block access to private content, use proper authentication instead.
 
 For more information about `robots.txt`, please see:
 
-  * [robotstxt.org](http://www.robotstxt.org/)
+  * [robotstxt.org](https://www.robotstxt.org/)
   * [How Google handles the `robots.txt` file](https://developers.google.com/webmasters/control-crawl-index/docs/robots_txt)
 
 ## humans.txt

src/index.html

@@ -35,7 +35,7 @@
     window.ga = function () { ga.q.push(arguments) }; ga.q = []; ga.l = +new Date;
     ga('create', 'UA-XXXXX-Y', 'auto'); ga('set','transport','beacon'); ga('send', 'pageview')
   </script>
-  <script src="https://www.google-analytics.com/analytics.js" async defer></script>
+  <script src="https://www.google-analytics.com/analytics.js" async></script>
 </body>
 
 </html>