chore(deps): bump the npm_and_yarn group across 2 directories with 8 updates #113
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 7 updates in the /app/event-handler directory:
1.15.0
2.9.2
2.1.0
4.2.1
4.0.9
4.4.0
9.0.0
9.0.2
1.2.3
1.2.5
0.4.23
0.5.0
2.2.7
2.3.2
Bumps the npm_and_yarn group with 3 updates in the /app/runner-controller directory: fast-xml-parser, word-wrap and express.
Updates
@azure/msal-node
from 1.15.0 to 2.9.2Release notes
Sourced from
@azure/msal-node
's releases.... (truncated)
Commits
1b0fc20
Bump package versions5685c8c
Update lab request scope (#7155)25aefea
Support pop as optional for full framed apps (#7119)7563498
Update package-lock (#7152)3893cce
Update gatsby and angular samples (#7150)3ee9c68
Implementation Based on Feature Request (#7151)cc18b42
Remove outdated TS Sample (#7149)46f6e8a
Bump package versions8e4b664
Fix MSAL Angular MsalInterceptor bug matching to query string (#7137)69e58c3
Update regional-authorities.md (#7078)Maintainer changes
This version was pushed to npm by azuread, a new releaser for
@azure/msal-node
since your current version.Updates
@azure/identity
from 2.1.0 to 4.2.1Commits
183d301
Upgrade to a version ESRP Release that supports federated auth (#29612)9a2afdf
[identity] Prep for release (#29981)3caf203
[identity] Prepare identity for May release (#29441)0a69729
[core] CHANGELOG date for@azure-rest/core-client
release (#29440)88d244a
Sync eng/common directory with azure-sdk-tools for PR 8158 (#29423)7706373
[template-dpg] Suppress build failure (#29437)769c1b1
[EngSys] Update name of@azure-tools/test-utils
NO_CI8cd5bc2
[core] New multipart/form-data primitive in core-client-rest (#29047)73b9faa
[identity] Add changelog entry for MSALClient migration (#29419)b8e63a5
Post release automated changes for notificationhubs releases (#29431)Maintainer changes
This version was pushed to npm by microsoft1es, a new releaser for
@azure/identity
since your current version.Updates
fast-xml-parser
from 4.0.9 to 4.4.0Release notes
Sourced from fast-xml-parser's releases.
Changelog
Sourced from fast-xml-parser's changelog.
... (truncated)
Commits
96f7501
update package detail151b8f4
fix #654: parse attribute list correctly for self closing stop node1a384a5
Run PR tests on node 162ae1f62
fix: return type fortagValueProcessor
&attributeValueProcessor
(#582)9118736
docs: fix typos in v5 documentfast-xml-parse
(#650)a96b968
fix: validator bag when closing tag is not opened. (#647)3ab1b3b
update pcakge detail4c26aaa
fix v5 options, add docs391f24f
Add support for parsing HTML numeric entities (#645)072b2b0
update dev dependenciesUpdates
jsonwebtoken
from 9.0.0 to 9.0.2Changelog
Sourced from jsonwebtoken's changelog.
Commits
bc28861
Release 9.0.2 (#935)96b8906
refactor: use specific lodash packages (#933)ed35062
security: Updating semver to 7.5.4 to resolve CVE-2022-25883 (#932)84539b2
Updating package version to 9.0.1 (#920)a99fd4b
fix(stubs): allow decode method to be stubbed (#876)Maintainer changes
This version was pushed to npm by charlesrea, a new releaser for jsonwebtoken since your current version.
Updates
word-wrap
from 1.2.3 to 1.2.5Release notes
Sourced from word-wrap's releases.
Commits
207044e
1.2.59894315
revert default indentf64b188
run verb to generate README03ea082
Merge pull request #42 from jonschlinkert/chore/publish-workflow420dce9
Merge pull request #41 from jonschlinkert/fix/CVE-2023-26115-2bfa694e
Update .github/workflows/publish.ymlace0b3c
chore: bump version to 1.2.46fd7275
chore: add publish workflow30d6daf
chore: fix test655929c
chore: remove package-lockUpdates
xml2js
from 0.4.23 to 0.5.0Commits
Updates
@azure/core-http
from 2.2.7 to 2.3.2Commits
863622f
set versionde86985
Sync eng/common directory with azure-sdk-tools for PR 5918 (#25467)5fc37df
[core-lro] Remove broken link (#24631)9b3f06a
Port PR #25502 from main1df8a1c
[core-http] undo PR #23660 to fix storage-blob6684e1c
[Language Text] Mitigation for modifiedOn (#23729)e7b7a32
Added change log for version 3.17.2 (#23689)9158f92
[Anomaly Detector] Enable CI and add tests (#23725)526926a
Upgrade TypeScript to 4.8 for most packages (#23730)ceb5483
[engsys] bump api-extractor and typescript versions (#23726)Updates
fast-xml-parser
from 4.0.11 to 4.4.0Release notes
Sourced from fast-xml-parser's releases.
Changelog
Sourced from fast-xml-parser's changelog.
... (truncated)
Commits
96f7501
update package detail151b8f4
fix #654: parse attribute list correctly for self closing stop node1a384a5
Run PR tests on node 162ae1f62
fix: return type fortagValueProcessor
&attributeValueProcessor
(#582)9118736
docs: fix typos in v5 documentfast-xml-parse
(#650)a96b968
fix: validator bag when closing tag is not opened. (#647)3ab1b3b
update pcakge detail4c26aaa
fix v5 options, add docs391f24f
Add support for parsing HTML numeric entities (#645)072b2b0
update dev dependenciesUpdates
word-wrap
from 1.2.4 to 1.2.5Release notes
Sourced from word-wrap's releases.
Commits
207044e
1.2.59894315
revert default indentf64b188
run verb to generate README03ea082
Merge pull request #42 from jonschlinkert/chore/publish-workflow420dce9
Merge pull request #41 from jonschlinkert/fix/CVE-2023-26115-2bfa694e
Update .github/workflows/publish.ymlace0b3c
chore: bump version to 1.2.46fd7275
chore: add publish workflow30d6daf
chore: fix test655929c
chore: remove package-lockUpdates
express
from 4.18.1 to 4.19.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
04bc627
4.19.2da4d763
Improved fix for open redirect allow list bypass4f0f6cc
4.19.1a003cfa
Allow passing non-strings to res.location with new encoding handling checks f...a1fa90f
fixed un-edited version in history.md for 4.19.011f2b1d
build: fix build due to inconsistent supertest behavior in older versions084e365
4.19.00867302
Prevent open redirect allow list bypass due to encodeurl567c9c6
Add note on how to update docs for new release (#5541)69a4cf2
deps: [email protected]Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.