-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the npm_and_yarn group with 28 updates #351
Closed
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the npm_and_yarn group with 28 updates: | Package | From | To | | --- | --- | --- | | [axios](https://github.com/axios/axios) | `0.19.0` | `0.28.0` | | [lodash](https://github.com/lodash/lodash) | `4.17.15` | `4.17.21` | | [moment](https://github.com/moment/moment) | `2.24.0` | `2.29.4` | | [acorn](https://github.com/acornjs/acorn) | `7.1.1` | `7.2.0` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.7.2` | `7.24.7` | | [ajv](https://github.com/ajv-validator/ajv) | `6.10.0` | `6.12.6` | | [async](https://github.com/caolan/async) | `2.6.2` | `2.6.4` | | [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` | | [@babel/cli](https://github.com/babel/babel/tree/HEAD/packages/babel-cli) | `7.8.4` | `7.24.7` | | [babel-jest](https://github.com/jestjs/jest/tree/HEAD/packages/babel-jest) | `25.1.0` | `29.7.0` | | [babel-watch](https://github.com/kmagiera/babel-watch) | `7.0.0` | `7.8.1` | | [jest-cli](https://github.com/jestjs/jest/tree/HEAD/packages/jest-cli) | `25.1.0` | `29.7.0` | | [color-string](https://github.com/Qix-/color-string) | `1.5.3` | `1.9.1` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.5.10` | `1.15.6` | | [fsevents](https://github.com/fsevents/fsevents) | `1.2.7` | `2.1.2` | | [glob-parent](https://github.com/gulpjs/glob-parent) | `2.0.0` | `5.1.0` | | [got](https://github.com/sindresorhus/got) | `6.7.1` | `removed` | | [nodemon](https://github.com/remy/nodemon) | `2.0.2` | `2.0.22` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.5.3` | `4.7.8` | | [json5](https://github.com/json5/json5) | `2.1.0` | `2.2.3` | | [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.2` | | [minimist](https://github.com/minimistjs/minimist) | `1.2.0` | `1.2.8` | | [mkdirp](https://github.com/isaacs/node-mkdirp) | `0.5.1` | `0.5.6` | | [node-fetch](https://github.com/node-fetch/node-fetch) | `2.3.0` | `2.7.0` | | [path-parse](https://github.com/jbgutierrez/path-parse) | `1.0.6` | `1.0.7` | | [tmpl](https://github.com/daaku/nodejs-tmpl) | `1.0.4` | `1.0.5` | | [trim-off-newlines](https://github.com/stevemao/trim-off-newlines) | `1.0.1` | `1.0.3` | | [undefsafe](https://github.com/remy/undefsafe) | `2.0.2` | `2.0.5` | Updates `axios` from 0.19.0 to 0.28.0 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v0.28.0/CHANGELOG.md) - [Commits](axios/axios@v0.19.0...v0.28.0) Updates `lodash` from 4.17.15 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.15...4.17.21) Updates `moment` from 2.24.0 to 2.29.4 - [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md) - [Commits](moment/moment@2.24.0...2.29.4) Updates `acorn` from 7.1.1 to 7.2.0 - [Commits](acornjs/acorn@7.1.1...7.2.0) Updates `@babel/traverse` from 7.7.2 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-traverse) Updates `ajv` from 6.10.0 to 6.12.6 - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](ajv-validator/ajv@v6.10.0...v6.12.6) Updates `async` from 2.6.2 to 2.6.4 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md) - [Commits](caolan/async@v2.6.2...v2.6.4) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `@babel/cli` from 7.8.4 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-cli) Updates `babel-jest` from 25.1.0 to 29.7.0 - [Release notes](https://github.com/jestjs/jest/releases) - [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jestjs/jest/commits/v29.7.0/packages/babel-jest) Updates `babel-watch` from 7.0.0 to 7.8.1 - [Release notes](https://github.com/kmagiera/babel-watch/releases) - [Commits](kmagiera/babel-watch@v7.0.0...v7.8.1) Updates `jest-cli` from 25.1.0 to 29.7.0 - [Release notes](https://github.com/jestjs/jest/releases) - [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jestjs/jest/commits/v29.7.0/packages/jest-cli) Updates `color-string` from 1.5.3 to 1.9.1 - [Release notes](https://github.com/Qix-/color-string/releases) - [Changelog](https://github.com/Qix-/color-string/blob/master/CHANGELOG.md) - [Commits](https://github.com/Qix-/color-string/commits/1.9.1) Updates `follow-redirects` from 1.5.10 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.5.10...v1.15.6) Updates `fsevents` from 1.2.7 to 2.1.2 - [Release notes](https://github.com/fsevents/fsevents/releases) - [Commits](fsevents/fsevents@v1.2.7...2.1.2) Updates `glob-parent` from 2.0.0 to 5.1.0 - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](gulpjs/glob-parent@v2.0.0...v5.1.0) Removes `got` Updates `nodemon` from 2.0.2 to 2.0.22 - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](remy/nodemon@v2.0.2...v2.0.22) Updates `handlebars` from 4.5.3 to 4.7.8 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.8/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.5.3...v4.7.8) Updates `json5` from 2.1.0 to 2.2.3 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v2.1.0...v2.2.3) Updates `minimatch` from 3.0.4 to 3.1.2 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.0.4...v3.1.2) Updates `minimist` from 1.2.0 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.0...v1.2.8) Updates `mkdirp` from 0.5.1 to 0.5.6 - [Changelog](https://github.com/isaacs/node-mkdirp/blob/main/CHANGELOG.md) - [Commits](isaacs/node-mkdirp@0.5.1...v0.5.6) Updates `node-fetch` from 2.3.0 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.3.0...v2.7.0) Updates `path-parse` from 1.0.6 to 1.0.7 - [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7) Updates `tmpl` from 1.0.4 to 1.0.5 - [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5) Updates `trim-off-newlines` from 1.0.1 to 1.0.3 - [Commits](stevemao/trim-off-newlines@v1.0.1...v1.0.3) Updates `undefsafe` from 2.0.2 to 2.0.5 - [Release notes](https://github.com/remy/undefsafe/releases) - [Commits](remy/undefsafe@v2.0.2...v2.0.5) --- updated-dependencies: - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: lodash dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: moment dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: acorn dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ajv dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: async dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@babel/cli" dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: babel-jest dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: babel-watch dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: jest-cli dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: color-string dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: fsevents dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: glob-parent dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: got dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nodemon dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: handlebars dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimatch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mkdirp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-parse dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tmpl dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: trim-off-newlines dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: undefsafe dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
the
dependencies
Pull requests that update a dependency file
label
Jun 28, 2024
Looks like these dependencies are updatable in another way, so this is no longer needed. |
dependabot
bot
deleted the
dependabot/npm_and_yarn/npm_and_yarn-4cde2fcc2f
branch
June 28, 2024 16:14
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 28 updates:
0.19.0
0.28.0
4.17.15
4.17.21
2.24.0
2.29.4
7.1.1
7.2.0
7.7.2
7.24.7
6.10.0
6.12.6
2.6.2
2.6.4
3.0.2
3.0.3
7.8.4
7.24.7
25.1.0
29.7.0
7.0.0
7.8.1
25.1.0
29.7.0
1.5.3
1.9.1
1.5.10
1.15.6
1.2.7
2.1.2
2.0.0
5.1.0
6.7.1
removed
2.0.2
2.0.22
4.5.3
4.7.8
2.1.0
2.2.3
3.0.4
3.1.2
1.2.0
1.2.8
0.5.1
0.5.6
2.3.0
2.7.0
1.0.6
1.0.7
1.0.4
1.0.5
1.0.1
1.0.3
2.0.2
2.0.5
Updates
axios
from 0.19.0 to 0.28.0Release notes
Sourced from axios's releases.
... (truncated)
Changelog
Sourced from axios's changelog.
... (truncated)
Commits
3b7635a
[Release] v0.28.0 (#6211)27c0076
feat(backport): added ability for paramsSerializer to handle function; (#6227)80c3d74
chore(ci): backported publish action; (#6224)2755df5
fix(security): fixed CVE-2023-45857 by backportingwithXSRFToken
option to ...880b42e
docs: Fix a typo in READMEc4bf0a4
Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)1e2679f
fix: [Types] Type of header in AxiosRequestConfig / for Axios.create is incor...80b546c
fix: loosing request header (#4858) (#4871)6acb5ef
feat: brower platform add data protocol. (#4814)bbb2264
fix(typing): axios response headers can be undefined (#4813)Maintainer changes
This version was pushed to npm by jasonsaayman, a new releaser for axios since your current version.
Updates
lodash
from 4.17.15 to 4.17.21Commits
f299b52
Bump to v4.17.21c4847eb
Improve performance oftoNumber
,trim
andtrimEnd
on large input strings3469357
Prevent command injection through_.template
'svariable
optionded9bc6
Bump to v4.17.20.63150ef
Documentation fixes.00f0f62
test.js: Remove trailing comma.846e434
Temporarily use a custom fork oflodash-cli
.5d046f3
Re-enable Travis tests on4.17
branch.aa816b3
Remove/npm-package
.d7fbc52
Bump to v4.17.19Maintainer changes
This version was pushed to npm by bnjmnt4n, a new releaser for lodash since your current version.
Updates
moment
from 2.24.0 to 2.29.4Changelog
Sourced from moment's changelog.
... (truncated)
Commits
000ac18
Build 2.24.4f2006b6
Bump version to 2.24.4536ad0c
Update changelog for 2.29.49a3b589
[bugfix] Fix redos in preprocessRFC2822 regex (#6015)6374fd8
Merge branch 'master' into developb4e6153
Revert "[bugfix] Fix redos in preprocessRFC2822 regex (#6015)"7aebb16
[bugfix] Fix redos in preprocessRFC2822 regex (#6015)57c9062
Build 2.29.3aaf50b6
Fixup release complaints26f4aef
Bump version to 2.29.3Updates
acorn
from 7.1.1 to 7.2.0Commits
6d555e8
Mark verison 7.2.082ed10d
make test262 success on Windowsec7cbd1
Add nullish coalescingb4a6e52
Add support forimport.meta
f1c3592
Follow regexp validation as per tc39/ecma26239078e2cc
fix: check potentialArrowAt in maybeAsyncArrow020d8ea
Upgrade to Unicode 137987e41
Supportexport * as ns from "source"
cda280a
Add 6.4.1 to changelog44e52b2
Don't tokenize the token after a class or strict function as strictUpdates
@babel/traverse
from 7.7.2 to 7.24.7Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
bf1e9a3
v7.24.74463aa5
fix: incorrectconstantViolations
with destructuring (#16522)07bd000
ImprovegetBindingIdentifiers
(#16544)17a5502
[Babel 8] Removeextra.shorthand
(#16521)7934963
Usetype: module
in allpackage.json
s (#16535)9630250
v7.24.61f010df
Explicitly defineNodePath.prototype.*
(#16488)6e3539b
[babel 8] Publish.d.ts
files for every package (#16416)e37e64d
Use eslint v9 (#16479)3ff20b9
Statically generate boilerplate for bitfield accessors (#16482)Updates
ajv
from 6.10.0 to 6.12.6Release notes
Sourced from ajv's releases.
Commits
fe59143
6.12.6d580d3e
Merge pull request #1298 from ajv-validator/fix-urlfd36389
fix: regular expression for "url" format490e34c
docs: link to v7-beta branch9cd93a1
docs: note about v7 in readme877d286
Merge pull request #1262 from b4h0-c4t/refactor-opt-object-typef1c8e45
6.12.5764035e
Merge branch 'ChALkeR-chalker/fix-comma'3798160
Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...a3c7eba
Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...Updates
async
from 2.6.2 to 2.6.4Changelog
Sourced from async's changelog.
Commits
c6bdaca
Version 2.6.48870da9
Update built files4df6754
update changelog8f7f903
Fix prototype pollution vulnerability (#1828)f1d8383
Version 2.6.32b674c1
update changelogeab740f
fix: udpate lodash. closes #1675Maintainer changes
This version was pushed to npm by hargasinski, a new releaser for async since your current version.
Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
@babel/cli
from 7.8.4 to 7.24.7Release notes
Sourced from
@babel/cli
's releases.... (truncated)
Changelog
Sourced from
@babel/cli
's changelog.... (truncated)
Commits
bf1e9a3
v7.24.7ec0c62a
fix Babel 8 commander import (#16548)7934963
Usetype: module
in allpackage.json
s (#16535)a21475a
[Babel 8] Bump commander to 12.1.0 (#16517)9630250
v7.24.64f1e42b
bump commander to 6.2.0 (#16509)db3e9a6
Move all runtime helpers to individual files (#16495)6e3539b
[babel 8] Publish.d.ts
files for every package (#16416)e37e64d
Use eslint v9 (#16479)fed85fb
[Babel 8] Use more native fs methods (#16459)Updates
babel-jest
from 25.1.0 to 29.7.0Release notes
Sourced from babel-jest's releases.