Merge main -> prod pour des déploiements heureux #279

tut-tuuut · 2023-11-28T10:30:15Z

No description provided.

Remove site-validator-cli, its dependencies are vulnerable

Bumps [jose](https://github.com/panva/jose) from 4.8.1 to 4.9.3. - [Release notes](https://github.com/panva/jose/releases) - [Changelog](https://github.com/panva/jose/blob/main/CHANGELOG.md) - [Commits](panva/jose@v4.8.1...v4.9.3) --- updated-dependencies: - dependency-name: jose dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bump jose from 4.8.1 to 4.9.3

Bumps [minimist](https://github.com/minimistjs/minimist) from 1.2.5 to 1.2.7. - [Release notes](https://github.com/minimistjs/minimist/releases) - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.7) --- updated-dependencies: - dependency-name: minimist dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [moment-timezone](https://github.com/moment/moment-timezone) from 0.5.32 to 0.5.38. - [Release notes](https://github.com/moment/moment-timezone/releases) - [Changelog](https://github.com/moment/moment-timezone/blob/develop/changelog.md) - [Commits](moment/moment-timezone@0.5.32...0.5.38) --- updated-dependencies: - dependency-name: moment-timezone dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Removes [got](https://github.com/sindresorhus/got). It's no longer used after updating ancestor dependency [nodemon](https://github.com/remy/nodemon). These dependencies need to be updated together. Removes `got` Updates `nodemon` from 2.0.6 to 2.0.20 - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](remy/nodemon@v2.0.6...v2.0.20) --- updated-dependencies: - dependency-name: got dependency-type: indirect - dependency-name: nodemon dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]>

…t-1.2.7 Bump minimist from 1.2.5 to 1.2.7

…-nodemon--removed Bump got and nodemon

…timezone-0.5.38 Bump moment-timezone from 0.5.32 to 0.5.38

Bumps [ansi-regex](https://github.com/chalk/ansi-regex) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v3.0.0...v3.0.1) --- updated-dependencies: - dependency-name: ansi-regex dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

…gex-3.0.1 Bump ansi-regex from 3.0.0 to 3.0.1

Bumps [nanoid](https://github.com/ai/nanoid) to 3.3.3 and updates ancestor dependency [mocha](https://github.com/mochajs/mocha). These dependencies need to be updated together. Updates `nanoid` from 3.1.12 to 3.3.3 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.1.12...3.3.3) Updates `mocha` from 8.2.1 to 10.1.0 - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](mochajs/mocha@v8.2.1...v10.1.0) --- updated-dependencies: - dependency-name: nanoid dependency-type: indirect - dependency-name: mocha dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]>

…and-mocha-3.3.3 Bump nanoid and mocha

Expiration jusqu'au

Bumps [knex](https://github.com/knex/knex) from 0.21.12 to 2.4.0. - [Release notes](https://github.com/knex/knex/releases) - [Changelog](https://github.com/knex/knex/blob/master/CHANGELOG.md) - [Commits](https://github.com/knex/knex/commits/2.4.0) --- updated-dependencies: - dependency-name: knex dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [cookiejar](https://github.com/bmeck/node-cookiejar) from 2.1.2 to 2.1.4. - [Release notes](https://github.com/bmeck/node-cookiejar/releases) - [Commits](https://github.com/bmeck/node-cookiejar/commits) --- updated-dependencies: - dependency-name: cookiejar dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2. - [Release notes](https://github.com/isaacs/minimatch/releases) - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.0.4...v3.1.2) --- updated-dependencies: - dependency-name: minimatch dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.17.3. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.1...4.17.3) --- updated-dependencies: - dependency-name: express dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) from 8.5.1 to 9.0.0. - [Release notes](https://github.com/auth0/node-jsonwebtoken/releases) - [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](auth0/node-jsonwebtoken@v8.5.1...v9.0.0) --- updated-dependencies: - dependency-name: jsonwebtoken dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: BenoitSerrano <[email protected]>

Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) --- updated-dependencies: - dependency-name: decode-uri-component dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [json5](https://github.com/json5/json5) and [tsconfig-paths](https://github.com/dividab/tsconfig-paths). These dependencies needed to be updated together. Updates `json5` from 1.0.1 to 2.2.3 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v2.2.3) Updates `tsconfig-paths` from 3.9.0 to 3.10.1 - [Release notes](https://github.com/dividab/tsconfig-paths/releases) - [Changelog](https://github.com/dividab/tsconfig-paths/blob/master/CHANGELOG.md) - [Commits](dividab/tsconfig-paths@v3.9.0...v3.10.1) --- updated-dependencies: - dependency-name: json5 dependency-type: indirect - dependency-name: tsconfig-paths dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2. - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) --- updated-dependencies: - dependency-name: json5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Extract CGU into dedicated partial * Update terms of service

Release 1.6.1 (#260) * Remove site-validator-cli, its dependencies are vulnerable * Bump jose from 4.8.1 to 4.9.3 Bumps [jose](https://github.com/panva/jose) from 4.8.1 to 4.9.3. - [Release notes](https://github.com/panva/jose/releases) - [Changelog](https://github.com/panva/jose/blob/main/CHANGELOG.md) - [Commits](panva/jose@v4.8.1...v4.9.3) --- updated-dependencies: - dependency-name: jose dependency-type: indirect ... * Expiration jusqu'au * Changer par date d'expiration * Fix message * Update lib/emailer.js * Update lib/emailer.js * Update views/confCreated.ejs * Apply suggestions from code review * use "participants" instead of "personnes" * Extra mentions of expiration date in emails * Bump minimist from 1.2.5 to 1.2.7 Bumps [minimist](https://github.com/minimistjs/minimist) from 1.2.5 to 1.2.7. - [Release notes](https://github.com/minimistjs/minimist/releases) - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.7) --- updated-dependencies: - dependency-name: minimist dependency-type: indirect ... * Bump moment-timezone from 0.5.32 to 0.5.38 Bumps [moment-timezone](https://github.com/moment/moment-timezone) from 0.5.32 to 0.5.38. - [Release notes](https://github.com/moment/moment-timezone/releases) - [Changelog](https://github.com/moment/moment-timezone/blob/develop/changelog.md) - [Commits](moment/moment-timezone@0.5.32...0.5.38) --- updated-dependencies: - dependency-name: moment-timezone dependency-type: indirect ... * Bump got and nodemon Removes [got](https://github.com/sindresorhus/got). It's no longer used after updating ancestor dependency [nodemon](https://github.com/remy/nodemon). These dependencies need to be updated together. Removes `got` Updates `nodemon` from 2.0.6 to 2.0.20 - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](remy/nodemon@v2.0.6...v2.0.20) --- updated-dependencies: - dependency-name: got dependency-type: indirect - dependency-name: nodemon dependency-type: direct:development ... * Bump ansi-regex from 3.0.0 to 3.0.1 Bumps [ansi-regex](https://github.com/chalk/ansi-regex) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v3.0.0...v3.0.1) --- updated-dependencies: - dependency-name: ansi-regex dependency-type: indirect ... * Bump nanoid and mocha Bumps [nanoid](https://github.com/ai/nanoid) to 3.3.3 and updates ancestor dependency [mocha](https://github.com/mochajs/mocha). These dependencies need to be updated together. Updates `nanoid` from 3.1.12 to 3.3.3 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.1.12...3.3.3) Updates `mocha` from 8.2.1 to 10.1.0 - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](mochajs/mocha@v8.2.1...v10.1.0) --- updated-dependencies: - dependency-name: nanoid dependency-type: indirect - dependency-name: mocha dependency-type: direct:development ... * Bump to 1.6.0 * Bump knex from 0.21.12 to 2.4.0 (#256) Bumps [knex](https://github.com/knex/knex) from 0.21.12 to 2.4.0. - [Release notes](https://github.com/knex/knex/releases) - [Changelog](https://github.com/knex/knex/blob/master/CHANGELOG.md) - [Commits](https://github.com/knex/knex/commits/2.4.0) --- updated-dependencies: - dependency-name: knex dependency-type: direct:production ... * Bump cookiejar from 2.1.2 to 2.1.4 (#257) Bumps [cookiejar](https://github.com/bmeck/node-cookiejar) from 2.1.2 to 2.1.4. - [Release notes](https://github.com/bmeck/node-cookiejar/releases) - [Commits](https://github.com/bmeck/node-cookiejar/commits) --- updated-dependencies: - dependency-name: cookiejar dependency-type: indirect ... * Bump minimatch from 3.0.4 to 3.1.2 (#259) Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2. - [Release notes](https://github.com/isaacs/minimatch/releases) - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.0.4...v3.1.2) --- updated-dependencies: - dependency-name: minimatch dependency-type: indirect ... * Bump express from 4.17.1 to 4.17.3 (#252) Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.17.3. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.1...4.17.3) --- updated-dependencies: - dependency-name: express dependency-type: direct:production ... * Bump jsonwebtoken from 8.5.1 to 9.0.0 (#253) Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) from 8.5.1 to 9.0.0. - [Release notes](https://github.com/auth0/node-jsonwebtoken/releases) - [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](auth0/node-jsonwebtoken@v8.5.1...v9.0.0) --- updated-dependencies: - dependency-name: jsonwebtoken dependency-type: direct:production ... * Changement email de sondage (#249) * Bump decode-uri-component from 0.2.0 to 0.2.2 (#250) Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) --- updated-dependencies: - dependency-name: decode-uri-component dependency-type: indirect ... * Bump json5 and tsconfig-paths (#254) Bumps [json5](https://github.com/json5/json5) and [tsconfig-paths](https://github.com/dividab/tsconfig-paths). These dependencies needed to be updated together. Updates `json5` from 1.0.1 to 2.2.3 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v2.2.3) Updates `tsconfig-paths` from 3.9.0 to 3.10.1 - [Release notes](https://github.com/dividab/tsconfig-paths/releases) - [Changelog](https://github.com/dividab/tsconfig-paths/blob/master/CHANGELOG.md) - [Commits](dividab/tsconfig-paths@v3.9.0...v3.10.1) --- updated-dependencies: - dependency-name: json5 dependency-type: indirect - dependency-name: tsconfig-paths dependency-type: indirect ... * Bump json5 from 1.0.1 to 1.0.2 (#255) Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2. - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) --- updated-dependencies: - dependency-name: json5 dependency-type: indirect ... * upgrade package-lock.json to 2.0 (#261) * Mise à jour des CGU (#264) * Extract CGU into dedicated partial * Update terms of service * Upgrade version number --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: BenoitSerrano <[email protected]> Co-authored-by: Estelle Comment <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Julien DAUPHANT <[email protected]>

Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap) from 1.2.3 to 1.2.5. - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) --- updated-dependencies: - dependency-name: word-wrap dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Test in more recent node versions * Test only on LTS versions

Fix spelling

Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.12.9 to 7.23.3. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.3/packages/babel-traverse) --- updated-dependencies: - dependency-name: "@babel/traverse" dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

hide phone numbers in calleraName

Update readme#documentation

estellecomment and others added 30 commits July 12, 2022 13:34

Backmerge branch 'prod' into main after release v1.15.2

8a73e03

Remove site-validator-cli, its dependencies are vulnerable

83c01ca

Merge pull request #237 from betagouv/fix/remove-site-validator-cli

14055ce

Remove site-validator-cli, its dependencies are vulnerable

Expiration jusqu'au

f264126

Changer par date d'expiration

6f69bd8

Fix message

0f1e71a

Update lib/emailer.js

abe6a81

Update lib/emailer.js

00d4070

Update views/confCreated.ejs

a762406

Apply suggestions from code review

329825b

use "participants" instead of "personnes"

1b25aa8

Extra mentions of expiration date in emails

96a4dee

Merge pull request #239 from betagouv/dependabot/npm_and_yarn/jose-4.9.3

217c53f

Bump jose from 4.8.1 to 4.9.3

Merge pull request #241 from betagouv/dependabot/npm_and_yarn/minimis…

d00359a

…t-1.2.7 Bump minimist from 1.2.5 to 1.2.7

Merge pull request #244 from betagouv/dependabot/npm_and_yarn/got-and…

2bc1d8b

…-nodemon--removed Bump got and nodemon

Merge pull request #243 from betagouv/dependabot/npm_and_yarn/moment-…

7d424fb

…timezone-0.5.38 Bump moment-timezone from 0.5.32 to 0.5.38

Merge pull request #242 from betagouv/dependabot/npm_and_yarn/ansi-re…

8cbae15

…gex-3.0.1 Bump ansi-regex from 3.0.0 to 3.0.1

Merge pull request #245 from betagouv/dependabot/npm_and_yarn/nanoid-…

2dcb187

…and-mocha-3.3.3 Bump nanoid and mocha

Merge pull request #240 from betagouv/valide-pendant-x-jours

5926910

Expiration jusqu'au

Bump to 1.6.0

3a2ab7f

dependabot bot and others added 18 commits June 8, 2023 16:11

Changement email de sondage (#249)

0a02950

upgrade package-lock.json to 2.0 (#261)

e7137c5

Mise à jour des CGU (#264)

9eb2a6e

* Extract CGU into dedicated partial * Update terms of service

Merge branch 'prod' into main

dffde3d

Upgrade version number

4fdff8e

Ask for more recent node versions in Github Actions (#273)

88023f1

* Test in more recent node versions * Test only on LTS versions

Corrige des fautes de grammaire dans un e-mail (#272)

0b8e996

Fix spelling

do not send unnecessary fields to front (#262)

7aeb0e5

hide phone numbers in calleraName

Corriger la documentation de déploiement #271 (#275)

aa99496

Update readme#documentation

Merge branch 'main' into ahr/back-merge-from-prod-to-main

6cd5fea

Rapatriement des modifs prod dans main (#278)

4d52df0

tut-tuuut merged commit dae6a37 into prod Nov 28, 2023
4 of 5 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge main -> prod pour des déploiements heureux #279

Merge main -> prod pour des déploiements heureux #279

tut-tuuut commented Nov 28, 2023

Merge main -> prod pour des déploiements heureux #279

Merge main -> prod pour des déploiements heureux #279

Conversation

tut-tuuut commented Nov 28, 2023