-
Notifications
You must be signed in to change notification settings - Fork 19
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the npm_and_yarn group with 13 updates #38
Open
dependabot
wants to merge
1
commit into
main
Choose a base branch
from
dependabot/npm_and_yarn/npm_and_yarn-9f1c2c83e2
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the npm_and_yarn group with 14 updates: | Package | From | To | | --- | --- | --- | | [karma](https://github.com/karma-runner/karma) | `6.3.2` | `6.3.16` | | [ansi-regex](https://github.com/chalk/ansi-regex) | `5.0.0` | `5.0.1` | | [ansi-regex](https://github.com/chalk/ansi-regex) | `3.0.0` | `5.0.1` | | [body-parser](https://github.com/expressjs/body-parser) | `1.19.0` | `1.20.3` | | [got](https://github.com/sindresorhus/got) | `11.8.3` | `11.8.6` | | [json5](https://github.com/json5/json5) | `1.0.1` | `1.0.2` | | [log4js](https://github.com/log4js-node/log4js-node) | `6.3.0` | `6.9.1` | | [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` | | [nanoid](https://github.com/ai/nanoid) | `3.1.20` | `removed` | | [mocha](https://github.com/mochajs/mocha) | `8.4.0` | `10.7.3` | | [qs](https://github.com/ljharb/qs) | `6.7.0` | `6.13.0` | | [socket.io](https://github.com/socketio/socket.io) | `3.1.2` | `4.7.5` | | [socket.io-parser](https://github.com/Automattic/socket.io-parser) | `4.0.4` | `4.2.4` | | [ws](https://github.com/websockets/ws) | `7.4.5` | `8.17.1` | Updates `karma` from 6.3.2 to 6.3.16 - [Release notes](https://github.com/karma-runner/karma/releases) - [Changelog](https://github.com/karma-runner/karma/blob/master/CHANGELOG.md) - [Commits](karma-runner/karma@v6.3.2...v6.3.16) Updates `ansi-regex` from 5.0.0 to 5.0.1 - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v5.0.0...v5.0.1) Updates `ansi-regex` from 3.0.0 to 5.0.1 - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v5.0.0...v5.0.1) Updates `body-parser` from 1.19.0 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.19.0...1.20.3) Updates `got` from 11.8.3 to 11.8.6 - [Release notes](https://github.com/sindresorhus/got/releases) - [Commits](sindresorhus/got@v11.8.3...v11.8.6) Updates `json5` from 1.0.1 to 1.0.2 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) Updates `log4js` from 6.3.0 to 6.9.1 - [Changelog](https://github.com/log4js-node/log4js-node/blob/master/CHANGELOG.md) - [Commits](log4js-node/log4js-node@v6.3.0...v6.9.1) Updates `minimist` from 1.2.5 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.8) Removes `nanoid` Updates `mocha` from 8.4.0 to 10.7.3 - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/main/CHANGELOG.md) - [Commits](mochajs/mocha@v8.4.0...v10.7.3) Updates `qs` from 6.7.0 to 6.13.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.7.0...v6.13.0) Updates `socket.io` from 3.1.2 to 4.7.5 - [Release notes](https://github.com/socketio/socket.io/releases) - [Changelog](https://github.com/socketio/socket.io/blob/4.7.5/CHANGELOG.md) - [Commits](socketio/socket.io@3.1.2...4.7.5) Updates `socket.io-parser` from 4.0.4 to 4.2.4 - [Release notes](https://github.com/Automattic/socket.io-parser/releases) - [Changelog](https://github.com/socketio/socket.io-parser/blob/4.2.4/CHANGELOG.md) - [Commits](socketio/socket.io-parser@4.0.4...4.2.4) Updates `ws` from 7.4.5 to 8.17.1 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@7.4.5...8.17.1) --- updated-dependencies: - dependency-name: karma dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: ansi-regex dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ansi-regex dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: body-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: got dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: log4js dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nanoid dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mocha dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: qs dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: socket.io dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: socket.io-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
the
dependencies
Pull requests that update a dependency file
label
Sep 11, 2024
This was referenced Sep 11, 2024
Closed
Closed
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 14 updates:
6.3.2
6.3.16
5.0.0
5.0.1
3.0.0
5.0.1
1.19.0
1.20.3
11.8.3
11.8.6
1.0.1
1.0.2
6.3.0
6.9.1
1.2.5
1.2.8
3.1.20
removed
8.4.0
10.7.3
6.7.0
6.13.0
3.1.2
4.7.5
4.0.4
4.2.4
7.4.5
8.17.1
Updates
karma
from 6.3.2 to 6.3.16Release notes
Sourced from karma's releases.
... (truncated)
Changelog
Sourced from karma's changelog.
... (truncated)
Commits
ab4b328
chore(release): 6.3.16 [skip ci]ff7edbb
fix(security): mitigate the "Open Redirect Vulnerability"c1befa0
chore(release): 6.3.15 [skip ci]d9dade2
fix(helper): make mkdirIfNotExists helper resilient to concurrent calls653c762
ci: prevent duplicate CI tasks on creating a PRc97e562
chore(release): 6.3.14 [skip ci]91d5acd
fix: remove string template from client code69cfc76
fix: warn whensingleRun
andautoWatch
arefalse
839578c
fix(security): remove XSS vulnerability inreturnUrl
query paramdb53785
chore(release): 6.3.13 [skip ci]Updates
ansi-regex
from 5.0.0 to 5.0.1Release notes
Sourced from ansi-regex's releases.
Commits
a9babce
5.0.14657833
fix incorrect formatc3c0b3f
Fix potential ReDoS (#37)178363b
Move to GitHub Actions (#35)0755e66
Add@Qix
- to funding.ymlUpdates
ansi-regex
from 3.0.0 to 5.0.1Release notes
Sourced from ansi-regex's releases.
Commits
a9babce
5.0.14657833
fix incorrect formatc3c0b3f
Fix potential ReDoS (#37)178363b
Move to GitHub Actions (#35)0755e66
Add@Qix
- to funding.ymlUpdates
body-parser
from 1.19.0 to 1.20.3Release notes
Sourced from body-parser's releases.
... (truncated)
Changelog
Sourced from body-parser's changelog.
... (truncated)
Commits
1752951
1.20.339744cf
chore: linter (#534)b2695c4
Merge commit from forkade0f3f
add scorecard to readme (#531)99a1bd6
deps: qs@6.12.3 (#521)9478591
fix: pin to node@22.4.183db46a
ci: fix errors in ci github action for node 8 and 9 (#523)9d4e212
chore: add support for OSSF scorecard reporting (#522)ee91374
1.20.2368a93a
Fix strict json error message on Node.js 19+Maintainer changes
This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.
Updates
got
from 11.8.3 to 11.8.6Release notes
Sourced from got's releases.
Commits
2b1482c
11.8.62d1497e
Destroy request object after successful response (#2187)5e17bb7
11.8.5bce8ce7
Backport 861ccd9ac2237df762a9e2beed7edd88c60782dc8ced192
Fix build670eb04
11.8.420f29fe
Backport #1543: Initialize globalResponse in case of ignored HTTPError (#2017)Updates
json5
from 1.0.1 to 1.0.2Release notes
Sourced from json5's releases.
Changelog
Sourced from json5's changelog.
... (truncated)
Commits
a62db1e
1.0.2e0c23fe
docs: update CHANGELOG for v1.0.262a6540
fix: add proto to objects and arraysUpdates
log4js
from 6.3.0 to 6.9.1Changelog
Sourced from log4js's changelog.
... (truncated)
Commits
26dcec6
6.9.163ae5b9
Merge pull request #1379 from log4js-node/update-docs185fa66
docs: updated changelog for 6.9.1ed54dc2
Merge pull request #1378 from log4js-node/1377-defaultparsecallstack-cant-par...2628688
fix(7922e82): regex for stacktraceb3919d8
6.9.07cfe8a4
Merge pull request #1376 from log4js-node/update-docsf89e7b6
docs: updated changelog for 6.9.00082928
Merge pull request #1375 from log4js-node/update-docsc0db6a4
docs: added thatlog4js.getLogger()
may calllog4js.configure()
Updates
minimist
from 1.2.5 to 1.2.8Changelog
Sourced from minimist's changelog.
... (truncated)
Commits
6901ee2
v1.2.8a026794
Merge tag 'v0.2.3'c0b2661
v0.2.363b8fee
[Fix] Fix long option followed by single dash (#17)72239e6
[Tests] Remove duplicate test (#12)34b0f1c
[eslint] fix indentation3226afa
[Dev Deps] add missingnpmignore
dev dep098873c
[Dev Deps] update@ljharb/eslint-config
,aud
9ec4d27
[Fix] Fix long option followed by single dashba92fe6
[actions] Avoid 0.6 tests due to build failuresMaintainer changes
This version was pushed to npm by ljharb, a new releaser for minimist since your current version.
Removes
nanoid
Updates
mocha
from 8.4.0 to 10.7.3Release notes
Sourced from mocha's releases.
... (truncated)
Changelog
Sourced from mocha's changelog.
... (truncated)
Commits
d5766c8
chore(main): release 10.7.3 (#5195)afd66ef
fix: make release-please build work (#5194)9e0a4bd
chore(main): release 10.7.2 (#5192)7e7a2ec
chore: fix failing markdown linting (#5193)1ac5b55
docs: improve filtering (#5191)1528c42
chore(main): release 10.7.1 (#5189)d7013dd
fix: crash with --parallel and --retries both enabled (#5173)5c2989f
chore: add knip to validate included dependenciesa777fd1
ci: automate releases (#5186)ac5574e
ci: update towindows-latest
in actions (#5185)Maintainer changes
This version was pushed to npm by voxpelli, a new releaser for mocha since your current version.
Updates
qs
from 6.7.0 to 6.13.0Changelog
Sourced from qs's changelog.
... (truncated)
Commits
5cf516c
v6.13.08d56df2
[New]parse
: addstrictDepth
optionc9a6694
[Tests] usenpm audit
instead ofaud
f90cc35
v6.12.31bf9f7a
[Fix]parse
: properly account forstrictNullHandling
whenallowEmptyArrays
7ebf48b
[meta] fix changelog indentationd0dff11
v6.12.2f0b8d03
[Dev Deps] update@ljharb/eslint-config
,object-inspect
,tape
81835ff
[Fix]:parse
: parse encoded square bracketsdb47dcc
[readme] add CII best practices badgeUpdates
socket.io
from 3.1.2 to 4.7.5Release notes
Sourced from socket.io's releases.