-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
build(deps): bump the npm_and_yarn group across 1 directories with 16 updates #14
Closed
dependabot
wants to merge
1
commit into
master
from
dependabot/npm_and_yarn/npm_and_yarn-security-group-7189c8ddfd
Closed
build(deps): bump the npm_and_yarn group across 1 directories with 16 updates #14
dependabot
wants to merge
1
commit into
master
from
dependabot/npm_and_yarn/npm_and_yarn-security-group-7189c8ddfd
+2,224
−2,506
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Loading status checks…
… updates Bumps the npm_and_yarn group with 16 updates in the /. directory: | Package | From | To | | --- | --- | --- | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.14.0` | `7.23.9` | | [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` | | [ansi-regex](https://github.com/chalk/ansi-regex) | `3.0.0` | `3.0.1` | | [async](https://github.com/caolan/async) | `3.2.0` | `3.2.5` | | [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` | | [dns-packet](https://github.com/mafintosh/dns-packet) | `5.2.1` | `5.6.1` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.14.0` | `1.15.5` | | [got](https://github.com/sindresorhus/got) | `9.6.0` | `12.6.1` | | [public-ip](https://github.com/sindresorhus/public-ip) | `4.0.3` | `6.0.1` | | [nodemon](https://github.com/remy/nodemon) | `2.0.7` | `2.0.22` | | [json5](https://github.com/json5/json5) | `1.0.1` | `1.0.2` | | [merge](https://github.com/yeikos/js.merge) | `1.2.1` | `2.1.1` | | [commitizen](https://github.com/commitizen/cz-cli) | `4.2.3` | `4.3.0` | | [moment](https://github.com/moment/moment) | `2.29.1` | `2.30.1` | | [moment-timezone](https://github.com/moment/moment-timezone) | `0.5.33` | `0.5.44` | | [path-parse](https://github.com/jbgutierrez/path-parse) | `1.0.6` | `1.0.7` | Updates `@babel/traverse` from 7.14.0 to 7.23.9 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.9/packages/babel-traverse) Updates `semver` from 5.7.1 to 5.7.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v5.7.2) Updates `ansi-regex` from 3.0.0 to 3.0.1 - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v3.0.0...v3.0.1) Updates `async` from 3.2.0 to 3.2.5 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/master/CHANGELOG.md) - [Commits](caolan/async@v3.2.0...v3.2.5) Updates `decode-uri-component` from 0.2.0 to 0.2.2 - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) Updates `dns-packet` from 5.2.1 to 5.6.1 - [Changelog](https://github.com/mafintosh/dns-packet/blob/master/CHANGELOG.md) - [Commits](mafintosh/dns-packet@v5.2.1...v5.6.1) Updates `follow-redirects` from 1.14.0 to 1.15.5 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.14.0...v1.15.5) Updates `got` from 9.6.0 to 12.6.1 - [Release notes](https://github.com/sindresorhus/got/releases) - [Commits](sindresorhus/got@v9.6.0...v12.6.1) Updates `public-ip` from 4.0.3 to 6.0.1 - [Release notes](https://github.com/sindresorhus/public-ip/releases) - [Commits](sindresorhus/public-ip@v4.0.3...v6.0.1) Updates `nodemon` from 2.0.7 to 2.0.22 - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](remy/nodemon@v2.0.7...v2.0.22) Updates `json5` from 1.0.1 to 1.0.2 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) Updates `merge` from 1.2.1 to 2.1.1 - [Release notes](https://github.com/yeikos/js.merge/releases) - [Changelog](https://github.com/swordev/merge/blob/main/CHANGELOG.md) - [Commits](swordev/merge@v1.2.1...v2.1.1) Updates `commitizen` from 4.2.3 to 4.3.0 - [Release notes](https://github.com/commitizen/cz-cli/releases) - [Commits](commitizen/cz-cli@v4.2.3...v4.3.0) Updates `moment` from 2.29.1 to 2.30.1 - [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md) - [Commits](moment/moment@2.29.1...2.30.1) Updates `moment-timezone` from 0.5.33 to 0.5.44 - [Release notes](https://github.com/moment/moment-timezone/releases) - [Changelog](https://github.com/moment/moment-timezone/blob/develop/changelog.md) - [Commits](moment/moment-timezone@0.5.33...0.5.44) Updates `path-parse` from 1.0.6 to 1.0.7 - [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7) --- updated-dependencies: - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: ansi-regex dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: async dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: decode-uri-component dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: dns-packet dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: got dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: public-ip dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: nodemon dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: merge dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: commitizen dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: moment dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: moment-timezone dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: path-parse dependency-type: indirect dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <[email protected]>
@dependabot recreate |
Looks like these dependencies are updatable in another way, so this is no longer needed. |
@dependabot rebase |
Looks like this PR is closed. If you re-open it, I'll rebase it, as long as no-one else has edited it. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 16 updates in the /. directory:
7.14.0
7.23.9
5.7.1
5.7.2
3.0.0
3.0.1
3.2.0
3.2.5
0.2.0
0.2.2
5.2.1
5.6.1
1.14.0
1.15.5
9.6.0
12.6.1
4.0.3
6.0.1
2.0.7
2.0.22
1.0.1
1.0.2
1.2.1
2.1.1
4.2.3
4.3.0
2.29.1
2.30.1
0.5.33
0.5.44
1.0.6
1.0.7
Updates
@babel/traverse
from 7.14.0 to 7.23.9Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
a0dd614
v7.23.91200542
fix: Don't throw ingetTypeAnnotation
when using TS+inference (#15383)e428a6d
v7.23.7d292822
fix: Crash when removing withoutProgram
(#16191)d02c1f7
v7.23.6cce807f
Bump debug to ^4.3.1 (#16164)8479012
v7.23.5da7dc40
Do not remove bindings when removing assignment expression path (#16131)fadc081
fix: Unexpected duplication of comments (#16110)13a5c83
v7.23.4Updates
semver
from 5.7.1 to 5.7.2Release notes
Sourced from semver's releases.
Changelog
Sourced from semver's changelog.
Commits
f8cc313
chore: release 5.7.22f8fd41
fix: better handling of whitespace (#585)deb5ad5
chore:@npmcli/template-oss
@4
.16.0Maintainer changes
This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.
Updates
ansi-regex
from 3.0.0 to 3.0.1Commits
f545bdb
3.0.1c57d4c2
fix a few old XO issues for backport419250f
Fix potential ReDoS (#37)Updates
async
from 3.2.0 to 3.2.5Changelog
Sourced from async's changelog.
Commits
87e94e6
Version 3.2.544ed0fb
Update built filesaf02a3d
work around compiler quirk3c7a711
path to config file91fd894
requireConfigFile: false0412f8d
Ensure error objects are propagated without modification (#1920)ab3c56a
Update .eslintrc.json to use es20218610499
Run lint on node 20ffd4cfb
Run coverage on node 20253f5dc
Update Node version matrix in CIUpdates
decode-uri-component
from 0.2.0 to 0.2.2Release notes
Sourced from decode-uri-component's releases.
Commits
a0eea46
0.2.2980e0bf
Prevent overwriting previously decoded tokens3c8a373
0.2.176abc93
Switch to GitHub workflows746ca5d
Fix issue where decode throws - fixes #6486d7e2
Update license (#1)a650457
Tidelift tasks66e1c28
Meta tweaksUpdates
dns-packet
from 5.2.1 to 5.6.1Changelog
Sourced from dns-packet's changelog.
Commits
7b66620
v5.6.113f19d9
Proper Encoding/Decoding for Email Name Representation for SOA and RP Records...519f55d
test node 20e50f34c
5.6.0f14f483
Add TLSA support (#92)ec4d317
sort record types in README alphabeticallya0687b3
5.5.0aca1ff7
implement the NAPTR record (#89)31d3caf
5.4.00fc249c
add SSHFP to readmeUpdates
follow-redirects
from 1.14.0 to 1.15.5Commits
b1677ce
Release version 1.15.5 of the npm package.d8914f7
Preserve fragment in responseUrl.6585820
Release version 1.15.4 of the npm package.7a6567e
Disallow bracketed hostnames.05629af
Prefer native URL instead of deprecated url.parse.1cba8e8
Prefer native URL instead of legacy url.resolve.72bc2a4
Simplify _processResponse error handling.3d42aec
Add bracket tests.bcbb096
Do not directly set Error properties.192dbe7
Release version 1.15.3 of the npm package.Updates
got
from 9.6.0 to 12.6.1Release notes
Sourced from got's releases.
... (truncated)
Commits
c405f54
12.6.167d5039
Fixget-stream
import statement (#2266)469a455
Meta tweaks8f77e8d
Fix readme "axios bugs" urls (#2253)af928f6
Fix type error on build (#2251)702ed35
Meta tweakse4460f7
Add failing tests for #2170 (#2171)13a68d3
12.6.088c88fb
Update dependencies0ca0b7f
Do not enforce newest URI rules on URLs (#2200)Updates
public-ip
from 4.0.3 to 6.0.1Release notes
Sourced from public-ip's releases.
Commits
f342171
6.0.13b60938
Fix types (#64)5724637
6.0.0291e210
Meta tweaks4e1d895
Use named exports and allow getting either IPv4 or IPv6 (#63)7c155f2
Fix CI085c725
5.0.0d353d7c
Throw a special error subclass when the public IP address could not be founde53d7fe
Require Node.js 14 and move to ESM4fcb341
4.0.4Updates
nodemon
from 2.0.7 to 2.0.22Release notes
Sourced from nodemon's releases.
... (truncated)
Commits
c971fdc
Merge branch 'main' of github.com:remy/nodemonb9679a2
chore: supportersf7816e4
fix: remove ts mapping if loader present9f3ffdb
One more fixabc8522
Get rid of spawning shell windows if nodemon is started without console.b11ddd1
Merge branch 'main' of github.com:remy/nodemon204af11
chore: missing supporters1468397
fix: remove ts mapping if loader present26b1f0f
chore: add conventional commit checkadaafa1
One more fixUpdates
json5
from 1.0.1 to 1.0.2Release notes
Sourced from json5's releases.
Changelog
Sourced from json5's changelog.
... (truncated)
Commits
a62db1e
1.0.2e0c23fe
docs: update CHANGELOG for v1.0.262a6540
fix: add proto to objects and arraysUpdates
merge
from 1.2.1 to 2.1.1Commits
56ca75b
build: v2.1.17b0ddc2
fix: prototype pollution8686d85
build: bump version80151be
build0acaaf3
build: update dev dependenciesf571887
Merge pull request #38 from 418sec/master869927f
Merge pull request #1 from alromh87/masterc2f8454
Fix Prototype Pollutionbf8b1ff
build: include typingsece8885
Merge pull request #32 from yeikos/developUpdates
commitizen
from 4.2.3 to 4.3.0Release notes
Sourced from commitizen's releases.
Commits
c1f4142
feat(init): add pnpm support (#915)87138d3
chore(deps) Update all non-major dependencies815c69d
fix(sec): upgrade semantic-release to 19.0.3 (#953)0939910
ci(release): defined a github workflow to release with semantic-release (#923)757a806
chore(deps): update all non-major dependencies25dc80c
fix: fix the "isFunction" utility to match both "asyncFunction"s and "Functio...fc283fb
chore(deps): update dependency semver to v7.3.7c35a3c7
chore(deps): update all non-major dependencies69de704
fix(deps): update all non-major dependenciese79f3ee
chore(deps): update dependency@babel/core
to v7.17.8Updates
moment
from 2.29.1 to 2.30.1Changelog
Sourced from moment's changelog.
Commits
485d9a7
Build 2.30.1e048b09
Bump version to 2.30.1f9f2d58
Update changelog for 2.30.1a52ffb2
Revert "Merge pull request #5827 from BobZombie:feature/fix_d.ts"ddd6809
Build 2.30.0be64d00
Bump version to 2.30.0ad41179
Update changelog for 2.30.063fe479
[misc] Make code ES6 compatible0f0195f
Revert "Merge pull request #5599 from Alanscut:issue_4985"15b82f5
Revert "Merge pull request #5597 from Alanscut:issue-5596"Updates
moment-timezone
from 0.5.33 to 0.5.44Release notes
Sourced from moment-timezone's releases.