chore(deps): bump the npm_and_yarn group across 6 directories with 11 updates #2892

dependabot · 2024-11-12T14:03:34Z

Bumps the npm_and_yarn group with 5 updates in the / directory:

Package	From	To
postcss	`8.4.45`	`8.4.46`
vite	`4.5.3`	`4.5.5`
happy-dom	`15.7.4`	`15.10.2`
axios	`1.5.0`	`1.7.4`
next	`13.4.19`	`14.2.10`

Bumps the npm_and_yarn group with 2 updates in the /docs/website directory: axios and next.
Bumps the npm_and_yarn group with 2 updates in the /generator/rust directory: braces and micromatch.
Bumps the npm_and_yarn group with 3 updates in the /infra/dashboard directory: axios, next and jsonwebtoken.
Bumps the npm_and_yarn group with 1 update in the /sdk/circomlib directory: circom_tester.
Bumps the npm_and_yarn group with 1 update in the /sdk/typescript/bitseed-sdk directory: vite.

Updates postcss from 8.4.45 to 8.4.46

Release notes

Sourced from postcss's releases.

8.4.46

Fixed Cannot read properties of undefined (reading 'before').

Changelog

Sourced from postcss's changelog.

8.4.46

Fixed Cannot read properties of undefined (reading 'before').

Commits

439d20e Release 8.4.46 version
b93582f Update dependencies
c51e467 Fix error on inserting node without raws in some cases
829ae47 Update dependencies
5aaaec2 Update remaining workflow jobs to use latest version of actions (#1968)
See full diff in compare view

Updates vite from 4.5.3 to 4.5.5

Release notes

Sourced from vite's releases.

v4.5.5

Please refer to CHANGELOG.md for details.

v4.5.4

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

4.5.5 (2024-09-16)

4.5.4 (2024-09-16)

fix: avoid DOM Clobbering gadget in getRelativeUrlFromDocument (#18115) (e812716), closes #18115

fix: backport #18112, fs raw query (b901438), closes #18112

Commits

f1d8845 release: v4.5.5
2466c08 release: v4.5.4
e812716 fix: avoid DOM Clobbering gadget in getRelativeUrlFromDocument (#18115)
b901438 fix: backport #18112, fs raw query
See full diff in compare view

Updates happy-dom from 15.7.4 to 15.10.2

Release notes

Sourced from happy-dom's releases.

v15.10.2

👷‍♂️ Patch fixes

Fixes a security vulnerability that allowed for server side code to be executed by a <script> tag - By @capricorn86 in task #1585

There was a case that was missed with the first patch

v15.10.1

👷‍♂️ Patch fixes

Fixes a security vulnerability that allowed for server side code to be executed by a <script> tag - By @capricorn86 in task #1585

v15.10.0

🎨 Features

Adds a new setting called disableSameOriginPolicy that makes it possible to bypass the same-origin policy in fetch requests - By @OlaviSau in task #1553

v15.9.0

🎨 Features

Adds support for "aspect-ratio" to CSSStyleDeclaration - By @yinm in task #1147

v15.8.5

👷‍♂️ Patch fixes

Fixes bug where Node.getRootNode() returned null when it was within a ShadowRoot that previously been disconnected from the Document - By @capricorn86 in task #1581

v15.8.4

👷‍♂️ Patch fixes

Fixes bug where child nodes of HTMLSelectElement and HTMLFormElement had the wrong reference to the parent - By @capricorn86 in task #1578

v15.8.3

👷‍♂️ Patch fixes

Toggle "open" attribute on HTMLDetailsElement when dispatching a click event on a summary element which is a child of the details element - By @mikedidomizio in task #1534

v15.8.2

👷‍♂️ Patch fixes

Use globalThis instead of global to make Happy DOM work in other runtimes such as Cloudflare workers - By @mattallty in task #1546

v15.8.1

👷‍♂️ Patch fixes

Always return Promise<Blob> from ClipboardItem.getType() - By @ezzatron in task #1538

v15.8.0

👷‍♂️ Patch fixes

Adds support for using non-ASCII characters in custom elements when parsing HTML - By @capricorn86 in task #1079

Fixes an issue where getHTML() and getInnerHTML() would return the slotted content of a shadow root before the template, but the template should be the first child - By @capricorn86 in task #1079

Fixes a bug where SVG elements would not be found by getElementsByTagName() - By @capricorn86 in task #1079

Improves performance when creating elements (e.g. during parsing of HTML) - By @capricorn86 in task #1550

Binding all methods to the target scope in Proxies caused a performance hit, so this is now done when calling a method the first time

🎨 Features

Adds support for all remaining SVG elements: SVGAnimateElement, SVGAnimateMotionElement, SVGAnimateTransformElement, SVGCircleElement, SVGClipPathElement, SVGDefsElement, SVGDescElement, SVGEllipseElement, SVGFEBlendElement, SVGFEColorMatrixElement, SVGFEComponentTransferElement, SVGFECompositeElement, SVGFEConvolveMatrixElement, SVGFEDiffuseLightingElement, SVGFEDisplacementMapElement, SVGFEDistantLightElement, SVGFEDropShadowElement, SVGFEFloodElement, SVGFEFuncAElement, SVGFEFuncBElement, SVGFEFuncGElement, SVGFEFuncRElement, SVGFEGaussianBlurElement, SVGFEImageElement, SVGFEMergeElement, SVGFEMergeNodeElement, SVGFEMorphologyElement, SVGFEOffsetElement, SVGFEPointLightElement, SVGFESpecularLightingElement, SVGFESpotLightElement, SVGFETileElement, SVGFETurbulenceElement, SVGFilterElement, SVGForeignObjectElement, SVGGElement, SVGImageElement, SVGLineElement, SVGLinearGradientElement, SVGMarkerElement, SVGMaskElement, SVGMetadataElement, SVGMPathElement, SVGPathElement, SVGPatternElement, SVGPolygonElement, SVGPolylineElement, SVGRadialGradientElement, SVGRectElement, SVGScriptElement, SVGSetElement, SVGStopElement, SVGStyleElement, SVGSwitchElement, SVGSymbolElement, SVGTextElement, SVGTextPathElement, SVGTitleElement, SVGTSpanElement, SVGUseElement and SVGViewElement - By @capricorn86 in task #1079

Adds support for DOMMatrix, DOMMatrixReadOnly, DOMPoint and DOMPointReadOnly - By @capricorn86 in task #1079

... (truncated)

Commits

d23834c fix: #1585 Fixes a security vulnerability that allowed for server side code...
5ee0b16 fix: #1585 Fixes security vulnerability that allowed for server side code t...
a20dba9 chore: #1542 Adds SECURITY.md file (#1584)
1625d40 feat: #1553 Adds setting disableSameOriginPolicy, to make it possible to by...
a78cd8f feat: #1147 Adds support for aspect-ratio to CSSStyleDeclaration (#1537)
e6f8b13 fix: #1581 Fixes bug where Node.getRootNode() returned null when it was wi...
38ab960 fix: #1578 Fixes bug where child nodes of HTMLSelectElement and HTMLFormEle...
8f74989 fix: #1534 Toggle open attribute on HTMLDetailsElement when dispatching a c...
7f57469 fix: #1546 Use globalThis instead of global to make Happy DOM work in o...
759b4fb fix: #1538 Always return Promise<Blob> from ClipboardItem.getType() (#1539)
Additional commits viewable in compare view

Updates axios from 1.5.0 to 1.7.4

Release notes

Sourced from axios's releases.

Release v1.7.4

Release notes:

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

Release v1.7.3

Release notes:

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

Release v1.7.2

Release notes:

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.1

Release notes:

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.0

Release notes:

Features

... (truncated)

Changelog

Sourced from axios's changelog.

1.7.4 (2024-08-13)

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

1.7.3 (2024-08-01)

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

1.7.2 (2024-05-21)

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

1.7.1 (2024-05-20)

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

... (truncated)

Commits

abd24a7 chore(release): v1.7.4 (#6544)
6b6b605 fix(sec): CVE-2024-39338 (#6539) (#6543)
07a661a fix(sec): disregard protocol-relative URL to remediate SSRF (#6539)
c6cce43 chore(release): v1.7.3 (#6521)
e3c76fc fix(adapter): fix progress event emitting; (#6518)
85d4d0e fix(fetch): fix withCredentials request config (#6505)
92cd8ed chore(github): update ISSUE_TEMPLATE.md (#6519)
8966ee7 fix(xhr): return original config on errors from XHR adapter (#6515)
0e4f9fa chore(release): v1.7.2 (#6414)
4f79aef fix(fetch): enhance fetch API detection; (#6413)
Additional commits viewable in compare view

Updates next from 13.4.19 to 14.2.10

Release notes

Sourced from next's releases.

v14.2.10

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Remove invalid fallback revalidate value (vercel/next.js#69990)

Revert server action optimization (vercel/next.js#69925)

Add ability to customize Cache-Control (#69802)

Credits

Huge thanks to @huozhi and @ijjk for helping!

v13.5.7

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Remove invalid fallback revalidate value (#69990)

Shared Revalidate Timings (#64370)

Credits

Huge thanks to @wyattjoh and @ijjk for helping!

Commits

937651f v14.2.10
7ed7f12 Remove invalid fallback revalidate value (#69990)
99de057 Revert server action optimization (#69925)
24647b9 Add ability to customize Cache-Control (#69802)
6fa8982 v14.2.9
7998745 test: lock ts type check (#69889)
4bd3849 create-next-app: fix font file corruption when using import alias (#69806)
3756801 test: check most possible combination of CNA flags
9a72ad6 unpin CNA tests from 14.2.3
747d365 Fix metadata prop merging (#69807)
Additional commits viewable in compare view

Updates zod from 3.21.4 to 3.23.8

Release notes

Sourced from zod's releases.

v3.23.8

Commits:

0f4d403558ae0490c711e4c2bfcf6c200bd14e11 Add Bronze logos (#3470)

19687315b5b24bbd1ff6c346bfc2975700221748 Tweak tiers (#3471)

eda7df314399929f7ed737423868a5a0780cd944 Change RefinementCtx to interface

ca42965df46b2f7e2747db29c40a26bcb32a51d5 v3.23.8

v3.23.7

Commits:

29d2ea2a15f0b1ac4b89138041f786a3dafc490b Add copper

d969423266fccee56ef769da6744cc8bacb04550 Fix #3437: extendShape erases JSDoc property documentation (#3463)

2239ff3ccc9af4d28bee27bd6fb2a5632844480b Add social crow

f985b5b922cb357dbf4b25bb43814d19f838e046 3.23.7

v3.23.6

Commits:

bc0095aab9e7254deb18701adc63de128ca2c742 Test on latest node

6e5699a30373cc22879f2bcb6902fc138518c980 Lint on latest node

1f466d9d00f446d7bed1962990e7a1ce813ab0d4 describe how one can protect from cyclical objects starting an infini… (#3447)

3fed6f21e0ea7adc91aa0cc44f75bcf4e526d98e Add zod playground link (#3454)

04e1f379f6989d23dd45660fcabc78f76d7834f8 Fixed freezing async ZodReadonly results (#3457)

b87e59d0e4bbb4403bf27243afdcda9fcdeec258 Update sponsor tiers (#3453)

143886151bba3930bdcc10d34a1cff4bf9103ba8 Add copper tier (#3460)

ce3711e1384952d255769b9495f9bfadfb327291 add VSCode dev container support and documenation

93b480b12ec3466cbd3b4182f7ce292e5c61528c v3.23.6

v3.23.5

Commits:

110b8211f991b3e060ab2da4fec7b63d600439ad Update README_ZH.md (#3433)

c1910bdfc98709b8f14231e2cefc5a3be401e3ee Made ZodEnum take readonly string array (#3444)

541a862e978f96eb391849a6bf16be84231aa1b3 3.23.5

v3.23.4

Commits:

157b18d742c86d85b26a8421af46ad6d6d6b6ea7 Add 3.23 announcement

aedf93f1435a29463d915c3be45b4dcbeefa8cc1 Revert change to default Input

45107f7a7230fe48ee24dc37e621422c9dc64ec4 v3.23.4

v3.23.3

Commits:

103d2436f85872ca0e0e6247652989cc93d46a39 3.23.3

v3.23.2

Commits:

... (truncated)

Commits

ca42965 v3.23.8
eda7df3 Change RefinementCtx to interface
1968731 Tweak tiers (#3471)
0f4d403 Add Bronze logos (#3470)
f985b5b 3.23.7
2239ff3 Add social crow
d969423 Fix #3437: extendShape erases JSDoc property documentation (#3463)
29d2ea2 Add copper
93b480b v3.23.6
ce3711e add VSCode dev container support and documenation
Additional commits viewable in compare view

Updates axios from 1.5.0 to 1.7.4

Release notes

Sourced from axios's releases.

Release v1.7.4

Release notes:

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

Release v1.7.3

Release notes:

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

Release v1.7.2

Release notes:

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.1

Release notes:

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.0

Release notes:

Features

... (truncated)

Changelog

Sourced from axios's changelog.

1.7.4 (2024-08-13)

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

1.7.3 (2024-08-01)

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

1.7.2 (2024-05-21)

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

1.7.1 (2024-05-20)

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

... (truncated)

Commits

abd24a7 chore(release): v1.7.4 (#6544)
6b6b605 fix(sec): CVE-2024-39338 (#6539) (#6543)
07a661a fix(sec): disregard protocol-relative URL to remediate SSRF (#6539)
c6cce43 chore(release): v1.7.3 (#6521)
e3c76fc fix(adapter): fix progress event emitting; (#6518)
85d4d0e fix(fetch): fix withCredentials request config (#6505)
92cd8ed chore(github): update ISSUE_TEMPLATE.md (#6519)
8966ee7 fix(xhr): return original config on errors from XHR adapter (#6515)
0e4f9fa chore(release): v1.7.2 (#6414)
4f79aef fix(fetch): enhance fetch API detection; (#6413)
Additional commits viewable in compare view

Updates next from 13.4.19 to 14.2.10

Release notes

Sourced from next's releases.

v14.2.10

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Remove invalid fallback revalidate value (vercel/next.js#69990)

Revert server action optimization (vercel/next.js#69925)

Add ability to customize Cache-Control (#69802)

Credits

Huge thanks to @huozhi and @ijjk for helping!

v13.5.7

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Remove invalid fallback revalidate value (#69990)

Shared Revalidate Timings (#64370)

Credits

Huge thanks to @wyattjoh and @ijjk for helping!

Commits

937651f v14.2.10
7ed7f12 Remove invalid fallback revalidate value (#69990)
99de057 Revert server action optimization (#69925)
24647b9 Add ability to customize Cache-Control (#69802)
6fa8982 v14.2.9
7998745 test: lock ts type check (#69889)
4bd3849 create-next-app: fix font file corruption when using import alias (#69806)
3756801 test: check most possible combination of CNA flags
9a72ad6 unpin CNA tests from 14.2.3
747d365 Fix metadata prop merging (#69807)
Additional commits viewable in compare view

Updates braces from 3.0.2 to 3.0.3

Commits

74b2db2 3.0.3
88f1429 update eslint. lint, fix unit tests.
415d660 Snyk js braces 6838727 (#40)
190510f fix tests, skip 1 test in test/braces.expand
716eb9f readme bump
a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
98414f9 remove funding file
665ab5d update keepEscaping doc (#27)
Additional commits viewable in compare view

Updates micromatch from 4.0.5 to 4.0.8

Release notes

Sourced from micromatch's releases.

4.0.8

Ultimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We consider the issues low-priority, so even if you see automated scanners saying otherwise, don't be scared.

Changelog

Sourced from micromatch's changelog.

[4.0.8] - 2024-08-22

backported CVE-2024-4067 fix (from v4.0.6) over to 4.x branch

[4.0.7] - 2024-05-22

this is basically v4.0.5, with some README updates

it is vulnerable to CVE-2024-4067

Updated braces to v3.0.3 to avoid CVE-2024-4068

does NOT break API compatibility

[4.0.6] - 2024-05-21

Added hasBraces to check if a pattern contains braces.

Fixes CVE-2024-4067

BREAKS API COMPATIBILITY

Should be labeled as a major release, but it's not.

Commits

8bd704e 4.0.8
a0e6841 run verb to generate README documentation
4ec2884 Merge branch 'v4' into hauserkristof-feature/v4.0.8
03aa805 Merge pull request #266 from hauserkristof/feature/v4.0.8
814f5f7 lint
67fcce6 fix: CHANGELOG about braces & CVE-2024-4068, v4.0.5
113f2e3 fix: CVE numbers in CHANGELOG
d9dbd9a feat: updated CHANGELOG
2ab1315 fix: use actions/setup-node@v4
1406ea3 feat: rework test to work on macos with node 10,12 and 14
Additional commits viewable in compare view

Updates axios from 1.3.4 to 1.7.4

Release notes

Sourced from axios's releases.

Release v1.7.4

Release notes:

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

Release v1.7.3

Release notes:

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

Release v1.7.2

Release notes:

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.1

Release notes:

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.0

Release notes:

Features

... (truncated)

Changelog

Sourced from axios's changelog.

1.7.4 (2024-08-13)

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

1.7.3 (2024-08-01)

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

1.7.2 (2024-05-21)

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

1.7.1 (2024-05-20)

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

... (truncated)

Commits

abd24a7 chore(release): v1.7.4 (#6544)
6b6b605 fix(sec): CVE-2024-39338 (#6539) (#6543)
07a661a fix(sec): disregard protocol-relative URL to remediate SSRF (#6539)
c6cce43 chore(release): v1.7.3 (#6521)
e3c76fc fix(adapter): fix progress event emitting; (#6518)
85d4d0e fix(fetch): fix withCredentials request config (

vercel · 2024-11-12T14:03:36Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Updated (UTC)
rooch	❌ Failed (Inspect)	Nov 13, 2024 4:34am
rooch-portal-v2.1	❌ Failed (Inspect)	Nov 13, 2024 4:34am
test-portal	❌ Failed (Inspect)	Nov 13, 2024 4:34am

github-actions · 2024-11-12T14:04:08Z

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

… updates Bumps the npm_and_yarn group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [postcss](https://github.com/postcss/postcss) | `8.4.45` | `8.4.46` | | [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `4.5.3` | `4.5.5` | | [happy-dom](https://github.com/capricorn86/happy-dom) | `15.7.4` | `15.10.2` | | [axios](https://github.com/axios/axios) | `1.5.0` | `1.7.4` | | [next](https://github.com/vercel/next.js) | `13.4.19` | `14.2.10` | Bumps the npm_and_yarn group with 2 updates in the /docs/website directory: [axios](https://github.com/axios/axios) and [next](https://github.com/vercel/next.js). Bumps the npm_and_yarn group with 2 updates in the /generator/rust directory: [braces](https://github.com/micromatch/braces) and [micromatch](https://github.com/micromatch/micromatch). Bumps the npm_and_yarn group with 3 updates in the /infra/dashboard directory: [axios](https://github.com/axios/axios), [next](https://github.com/vercel/next.js) and [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken). Bumps the npm_and_yarn group with 1 update in the /sdk/circomlib directory: [circom_tester](https://github.com/iden3/circom_tester). Bumps the npm_and_yarn group with 1 update in the /sdk/typescript/bitseed-sdk directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `postcss` from 8.4.45 to 8.4.46 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.45...8.4.46) Updates `vite` from 4.5.3 to 4.5.5 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.5/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.5/packages/vite) Updates `happy-dom` from 15.7.4 to 15.10.2 - [Release notes](https://github.com/capricorn86/happy-dom/releases) - [Commits](capricorn86/happy-dom@v15.7.4...v15.10.2) Updates `axios` from 1.5.0 to 1.7.4 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.5.0...v1.7.4) Updates `next` from 13.4.19 to 14.2.10 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v13.4.19...v14.2.10) Updates `zod` from 3.21.4 to 3.23.8 - [Release notes](https://github.com/colinhacks/zod/releases) - [Changelog](https://github.com/colinhacks/zod/blob/main/CHANGELOG.md) - [Commits](colinhacks/zod@v3.21.4...v3.23.8) Updates `axios` from 1.5.0 to 1.7.4 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.5.0...v1.7.4) Updates `next` from 13.4.19 to 14.2.10 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v13.4.19...v14.2.10) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `micromatch` from 4.0.5 to 4.0.8 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@4.0.5...4.0.8) Updates `axios` from 1.3.4 to 1.7.4 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.5.0...v1.7.4) Updates `next` from 13.2.4 to 14.2.10 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v13.4.19...v14.2.10) Updates `jsonwebtoken` from 8.5.1 to 9.0.0 - [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](auth0/node-jsonwebtoken@v8.5.1...v9.0.0) Updates `circom_tester` from 0.0.19 to 0.0.20 - [Commits](iden3/circom_tester@v0.0.19...v0.0.20) Updates `snarkjs` from 0.5.0 to 0.7.5 - [Release notes](https://github.com/iden3/snarkjs/releases) - [Commits](iden3/snarkjs@v0.5.0...v0.7.5) Updates `vite` from 5.4.4 to 5.4.6 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.5/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.5/packages/vite) --- updated-dependencies: - dependency-name: postcss dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: vite dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: happy-dom dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: zod dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: micromatch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: jsonwebtoken dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: circom_tester dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: snarkjs dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: vite dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot requested review from wow-sven, geometryolife, Mine77 and yubing744 as code owners November 12, 2024 14:03

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Nov 12, 2024

dependabot bot mentioned this pull request Nov 12, 2024

chore(deps): bump the npm_and_yarn group across 6 directories with 11 updates #2861

Closed

vercel bot had a problem deploying to Preview – test-portal November 12, 2024 14:04 Failure

vercel bot had a problem deploying to Preview – rooch-portal-v2.1 November 12, 2024 14:04 Failure

vercel bot had a problem deploying to Preview – rooch November 12, 2024 14:04 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-1c63c34c0a branch from 4436cce to bfe3bdd Compare November 13, 2024 04:32

vercel bot had a problem deploying to Preview – test-portal November 13, 2024 04:33 Failure

vercel bot had a problem deploying to Preview – rooch-portal-v2.1 November 13, 2024 04:33 Failure

vercel bot had a problem deploying to Preview – rooch November 13, 2024 04:34 Failure

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the npm_and_yarn group across 6 directories with 11 updates #2892

chore(deps): bump the npm_and_yarn group across 6 directories with 11 updates #2892

dependabot bot commented on behalf of github Nov 12, 2024 •

edited

Loading

vercel bot commented Nov 12, 2024 •

edited

Loading

github-actions bot commented Nov 12, 2024 •

edited

Loading

chore(deps): bump the npm_and_yarn group across 6 directories with 11 updates #2892

Are you sure you want to change the base?

chore(deps): bump the npm_and_yarn group across 6 directories with 11 updates #2892

Conversation

dependabot bot commented on behalf of github Nov 12, 2024 • edited Loading

8.4.46

8.4.46

v4.5.5

v4.5.4

4.5.5 (2024-09-16)

4.5.4 (2024-09-16)

v15.10.2

👷‍♂️ Patch fixes

v15.10.1

👷‍♂️ Patch fixes

v15.10.0

🎨 Features

v15.9.0

🎨 Features

v15.8.5

👷‍♂️ Patch fixes

v15.8.4

👷‍♂️ Patch fixes

v15.8.3

👷‍♂️ Patch fixes

v15.8.2

👷‍♂️ Patch fixes

v15.8.1

👷‍♂️ Patch fixes

v15.8.0

👷‍♂️ Patch fixes

🎨 Features

Release v1.7.4

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.3

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.2

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.1

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.0

Release notes:

Features

1.7.4 (2024-08-13)

Bug Fixes

Contributors to this release

1.7.3 (2024-08-01)

Bug Fixes

Contributors to this release

1.7.2 (2024-05-21)

Bug Fixes

Contributors to this release

1.7.1 (2024-05-20)

Bug Fixes

Contributors to this release

v14.2.10

Core Changes

Credits

v13.5.7

Core Changes

Credits

v3.23.8

Commits:

v3.23.7

Commits:

v3.23.6

Commits:

v3.23.5

Commits:

v3.23.4

Commits:

v3.23.3

dependabot bot commented on behalf of github Nov 12, 2024 •

edited

Loading