chore(deps): bump axios, @accordproject/cicero-core, @accordproject/concerto-core, @accordproject/ergo-compiler and @accordproject/ergo-engine

[dependabot]

Bumps axios to 0.23.0 and updates ancestor dependencies axios, @accordproject/cicero-core, @accordproject/concerto-core, @accordproject/ergo-compiler and @accordproject/ergo-engine. These dependencies need to be updated together.

Updates axios from 0.21.1 to 0.23.0

Release notes

Sourced from axios's releases.

v0.23.0

Breaking changes:

• Distinguish request and response data types (#4116)
• Change never type to unknown (#4142)
• Fixed TransitionalOptions typings (#4147)

Fixes and Functionality:

• Adding globalObject: 'this' to webpack config (#3176)
• Adding insecureHTTPParser type to AxiosRequestConfig (#4066)
• Fix missing semicolon in typings (#4115)
• Fix response headers types (#4136)

Internal and Tests:

• Improve timeout error when timeout is browser default (#3209)
• Fix node version on CI (#4069)
• Added testing to TypeScript portion of project (#4140)

Documentation:

• Rename Angular to AngularJS (#4114)

Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:

• Jay
• Evan-Finkelstein
• Paweł Szymański
• Dobes Vandermeer
• Claas Augner
• Remco Haszing
• Evgeniy
• Dmitriy Mozgovoy

v0.22.0

Fixes and Functionality:

• Caseless header comparing in HTTP adapter (#2880)
• Avoid package.json import fixing issues and warnings related to this (#4041), (#4065)
• Fixed cancelToken leakage and added AbortController support (#3305)
• Updating CI to run on release branches
• Bump follow redirects version
• Fixed default transitional config for custom Axios instance; (#4052)

Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:

• Jay
• Matt R. Wilson
• Xianming Zhong
• Dmitriy Mozgovoy

v0.21.4

Fixes and Functionality:

• Fixing JSON transform when data is stringified. Providing backward compatibility and complying to the JSON RFC standard (#4020)

... (truncated)

Changelog

Sourced from axios's changelog.

0.23.0 (October 12, 2021)

Breaking changes:

• Distinguish request and response data types (#4116)
• Change never type to unknown (#4142)
• Fixed TransitionalOptions typings (#4147)

Fixes and Functionality:

• Adding globalObject: 'this' to webpack config (#3176)
• Adding insecureHTTPParser type to AxiosRequestConfig (#4066)
• Fix missing semicolon in typings (#4115)
• Fix response headers types (#4136)

Internal and Tests:

• Improve timeout error when timeout is browser default (#3209)
• Fix node version on CI (#4069)
• Added testing to TypeScript portion of project (#4140)

Documentation:

• Rename Angular to AngularJS (#4114)

Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:

• Jay
• Evan-Finkelstein
• Paweł Szymański
• Dobes Vandermeer
• Claas Augner
• Remco Haszing
• Evgeniy
• Dmitriy Mozgovoy

0.22.0 (October 01, 2021)

Fixes and Functionality:

• Caseless header comparing in HTTP adapter (#2880)
• Avoid package.json import fixing issues and warnings related to this (#4041), (#4065)
• Fixed cancelToken leakage and added AbortController support (#3305)
• Updating CI to run on release branches
• Bump follow redirects version
• Fixed default transitional config for custom Axios instance; (#4052)

Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:

• Jay
• Matt R. Wilson
• Xianming Zhong
• Dmitriy Mozgovoy

0.21.4 (September 6, 2021)

... (truncated)

Commits

• 1025d12 Release v0.23.0
• 6d1e30f Prepared release notes
• 20e8b6b chore(docs): rename Angular to AngularJS (#4114)
• 94a9344 Test types (#4140)
• fce210a Fixed TransitionalOptions typings (#4147)
• 547815d Mending merge conflict
• e462973 fix response headers types (#4136)
• 7c9a5c5 Fix missing semicolon in typings (#4115)
• 6c00232 Change never type to unknown (#4142)
• 28a06e6 Distinguish request and response data types (#4116)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by jasonsaayman, a new releaser for axios since your current version.

Updates @accordproject/cicero-core from 0.22.2 to 0.24.0

Release notes

Sourced from @​accordproject/cicero-core's releases.

Cicero v0.24.0

Updates Ergo, Concerto and Markdown transform. Addresses a security vulnerability in vm2, used by Ergo.

What's Changed

• docs: update invite link - #738 by @​K-Kumar-01 in accordproject/cicero#739
• docs(cicero-server/README.md): update curl requests - #742 by @​K-Kumar-01 in accordproject/cicero#743
• chore(actions): publish v0.23.0 to npm by @​github-actions in accordproject/cicero#737
• test(core): metadata test by @​mttrbrts in accordproject/cicero#753
• feat(server) Add new /invoke/:template endpoint implementation by @​mehmettokgoz in accordproject/cicero#746
• feat(server) Add new /initialize/:template endpoint implementation by @​mehmettokgoz in accordproject/cicero#747
• fix(server) Replace bitwise OR operator with logical OR for CICERO_PORT setting. by @​mehmettokgoz in accordproject/cicero#754
• feat(server) Add new /normalize/:template endpoint implementation by @​mehmettokgoz in accordproject/cicero#748
• chore(deps): bump yargs-parser from 9.0.2 to 20.2.4 by @​dependabot in accordproject/cicero#733
• chore(deps): bump lodash.template from 3.6.2 to 4.5.0 by @​dependabot in accordproject/cicero#732
• feat(server) Add new /compile/:template endpoint implementation by @​mehmettokgoz in accordproject/cicero#749
• chore(ergo) : bump ergo version by @​dselman in accordproject/cicero#757

New Contributors

• @​K-Kumar-01 made their first contribution in accordproject/cicero#739
• @​mehmettokgoz made their first contribution in accordproject/cicero#746

Full Changelog: accordproject/template-archive@v0.23.0...v0.24.0

Cicero v0.23.0

Updates to Concerto v2.0.0, Ergo v0.23.1 and Markdown Transform v0.15.1

Cicero v0.23.0-alpha.1

This release upgrades to the latest major version of Concerto 2.0.0 and updates numerous dependencies.

💥 Breaking Changes

• Cicero libraries now require Node.js version 14 or later. Node.js version 12 is no longer supported

🛡️Dependencies Updates

• Upgrades to Concerto 2.0.0
• Upgrades to Ergo backend to Q*cert 2.1.1
• Upgrades numerous dependencies, fixing vulnerabilities

Commits

• 8fc3dd2 chore(ergo) : bump ergo version (#757)
• b6f6598 test(core): metadata test (#753)
• c626bf9 chore(actions): publish v0.23.0 to npm (#737)
• 2becd47 (feat) update to Concerto v2 (#736)
• c0dc742 chore(build): Update engines constraints in all package.json
• 38b2855 chore(deps): bump node-forge from 0.10.0 to 1.0.0
• 44b49fe fix(*): Adjuts all the tests post 0.23, fixes to keystores
• b94794a chore(actions): publish v0.23.0-alpha.1 to npm
• 53a41ed fix(build): Update configuration for webpack 5
• 2a37517 fix(dep): Upgrade many dependencies
• Additional commits viewable in compare view

Updates @accordproject/concerto-core from 1.2.1 to 3.0.0

Release notes

Sourced from @​accordproject/concerto-core's releases.

v3.0.0

Release Article on Accord Project Blog Migration Guide

Breaking Changes

• metamodel: support namespaces with semver (#426) (#444)

Features

• cli: add generate command for cli (#514) (204e43b)
• cli: add new concerto version command (contributes to #465) (#467) (45f7690)
• cli: expose excludeLineLocations for parsing (#454) (cddf536)
• cli: extend concerto version to update imports (resolves #465) (#468) (7edb0ea)
• cli: enable strict mode for cli in compile (#502) (9cdbaec)
• cto: add option to skip location information when parsing (#455) (736ed30)
• core: Adds InMemoryWriter (#490) (853837a)
• core: client provided regex (#487) (28984e4)
• tools: fix code generation to support versioned namespaces (#464 #463 #462) (#521)
• tools: improved C# code generation (#456) (a563fa3)
• tools: use pascal case by default for generated c# code (#517) (7e2eca3)
• tools: align with concerto-dotnet changes (#511) (df10d15)
• tools: add type attributes to generated c# (#506) (98fac38)
• tools: allow c# namespace to be specified via decorator (#499) (aa61efa)
• tools: generate Mermaid UML diagrams (#457) (2a76a0c)
• tools: generate Markdown visitor (#532)
• tools: add identifier attribute to generated c# fields (#534)
• add compile option for including metamodel (#494) (98d5924)
• add decorators to model files (resolves #491) (#492) (b246faa)
• add keep and set prerelease option to version command (#493) (864b231)
• analysis: extend concerto compare to include field validators (#481) (ee709ff)
• analysis: compare two concerto models (contributes to #442) (#476) (2e17bf1)
• analysis: detect class declaration type change (contributes to #442) (f8a43c5)
• analysis: detect enum value add/remove (contributes to #442) (f6edc16)
• analysis: detect field to relationship, scalar to array (contributes to #442) (d45eb36)
• analysis: detect primitive to declaration and namespace changes (contributes to #442) (8645a0c)

Bug Fixes

• cto: parser bug for versioned import of single type (#527) (a3b8948)
• core: fix wildcard import parsing, import hygiene (#504) (53c844c)
• deps: add missing slash dependency (#488) (a9b483e)
• property wrong for versioned concerto base class (#501) (7a699b1)
• expose model util methods, remove redundant type lookup (#469) (9576cbd)
• use webpack version for browsers (#478) (39056a1)
• correct metamodel function return types (#440) (96750bf)
• correct return types for add model functions (#446) (ae09a85)
• wrong error getting fully qualified type name (#445) (2e5733c)

New Contributors

... (truncated)

Commits

• 7576d1b chore(actions): publish v3.0.0-beta.4 to npm (#531)
• ac47ec0 chore(actions): publish v3.0.0-beta.3 to npm (#529)
• 6044479 chore(actions): publish v3.0.0-beta.2 to npm (#526)
• a3b8948 fix(cto): parser bug for versioned import of single type (#527)
• c43b1a4 fix(codegen) fix code generation to support versioned namespaces (#521)
• db932f6 chore(deps): bump nanoid and mocha in /packages/concerto-cto (#512)
• 5aafcec chore(actions): publish v3.0.0-beta.1 to npm (#513)
• 4999e75 test(cto): improve code coverage (#505)
• b59141d BREAKING CHANGE(cto): change syntax of ImportTypes statements (#508)
• 53c844c fix(core): fix wildcard import parsing, import hygiene (#504)
• Additional commits viewable in compare view

Updates @accordproject/ergo-compiler from 0.22.2 to 0.24.0

Release notes

Sourced from @​accordproject/ergo-compiler's releases.

Ergo v0.24.0

Updated to use Concerto v3

Ergo v0.23.2

Updates version of concerto-core and vm2.

Ergo v0.23.1

Publish to npm

Ergo v0.23.0

Update to Concerto v2.0.0

Ergo v0.23.0-alpha.3

This release includes improvements and addresses security vulnerabilities in dependencies.

💥 Breaking changes

• The Ergo engine API now returns validated requests when executing contract logic (See accordproject/cicero#643)

🐛 Bug Fixes

• Fixes issue with converting minutes durations into hours (See #848 )

Ergo v0.23.0-alpha.2

This release upgrades the webpack configuration to webpack 5.

Ergo v0.23.0-alpha.1

This release upgrades to the latest major version of Concerto 2.0.0 and updates numerous dependencies.

💥 Breaking Changes

• Ergo libraries now require Node.js version 14 or later. Node.js version 12 is no longer supported

🛡️Dependencies Updates

• Upgrades to Concerto 2.0.0
• Upgrades to Q*cert 2.1.1
• Upgrades numerous dependencies, fixing vulnerabilities

🏗 Build

• Fixes failures with build from source tests in the CI/CD pipelines

Commits

• 3cef79d chore(deps) : use concerto v3.0.0
• 2296d1c chore(deps) : bump concerto-core
• b389dd6 (feat) update to Concert v2
• 73a22c4 chore(build): Update engines constraints in all package.json
• a4a0145 chore(build): Regenerate compiler artifacts
• 6facaec fix(dep): Upgrades to jszip and vm2
• fe9875f chore(actions): publish v0.23.0-alpha.2 to npm
• edac5df fix(build): Fixes mocha configuration for latest version
• 74f7f27 fix(build): Update configuration for webpack 5
• cdd0bb2 feature(dep): Switch to Concerto 2.0.0-alpha.2
• Additional commits viewable in compare view

Updates @accordproject/ergo-engine from 0.22.2 to 0.24.0

Release notes

Sourced from @​accordproject/ergo-engine's releases.

Ergo v0.24.0

Updated to use Concerto v3

Ergo v0.23.2

Updates version of concerto-core and vm2.

Ergo v0.23.1

Publish to npm

Ergo v0.23.0

Update to Concerto v2.0.0

Ergo v0.23.0-alpha.3

This release includes improvements and addresses security vulnerabilities in dependencies.

💥 Breaking changes

• The Ergo engine API now returns validated requests when executing contract logic (See accordproject/cicero#643)

🐛 Bug Fixes

• Fixes issue with converting minutes durations into hours (See #848 )

Ergo v0.23.0-alpha.2

This release upgrades the webpack configuration to webpack 5.

Ergo v0.23.0-alpha.1

This release upgrades to the latest major version of Concerto 2.0.0 and updates numerous dependencies.

💥 Breaking Changes

• Ergo libraries now require Node.js version 14 or later. Node.js version 12 is no longer supported

🛡️Dependencies Updates

• Upgrades to Concerto 2.0.0
• Upgrades to Q*cert 2.1.1
• Upgrades numerous dependencies, fixing vulnerabilities

🏗 Build

• Fixes failures with build from source tests in the CI/CD pipelines

Commits

• 3cef79d chore(deps) : use concerto v3.0.0
• 2296d1c chore(deps) : bump concerto-core
• fbce855 chore(deps): bump vm2 from 3.9.6 to 3.9.11
• b389dd6 (feat) update to Concert v2
• 73a22c4 chore(build): Update engines constraints in all package.json
• cc36756 feature(engine): trigger now returns the concerto validated JSON for the request
• b91d903 fix(build): Correct name for umd module
• 6facaec fix(dep): Upgrades to jszip and vm2
• fe9875f chore(actions): publish v0.23.0-alpha.2 to npm
• edac5df fix(build): Fixes mocha configuration for latest version
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.