-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the npm_and_yarn group with 13 updates #1210
Open
dependabot
wants to merge
1
commit into
develop
Choose a base branch
from
dependabot/npm_and_yarn/npm_and_yarn-d18eba9470
base: develop
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Bump the npm_and_yarn group with 13 updates #1210
dependabot
wants to merge
1
commit into
develop
from
dependabot/npm_and_yarn/npm_and_yarn-d18eba9470
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dependabot
bot
added
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
labels
Dec 16, 2024
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/npm_and_yarn-d18eba9470
branch
from
December 16, 2024 11:51
419e14b
to
49e4584
Compare
Bumps the npm_and_yarn group with 13 updates: | Package | From | To | | --- | --- | --- | | [body-parser](https://github.com/expressjs/body-parser) | `1.20.2` | `1.20.3` | | [express](https://github.com/expressjs/express) | `4.19.2` | `4.21.2` | | [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` | | [webpack](https://github.com/webpack/webpack) | `4.47.0` | `5.97.1` | | [cookie](https://github.com/jshttp/cookie) | `0.4.2` | `0.7.2` | | [socket.io](https://github.com/socketio/socket.io) | `4.7.4` | `4.8.1` | | [cross-spawn](https://github.com/moxystudio/node-cross-spawn) | `7.0.3` | `7.0.6` | | [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.7` | `0.1.12` | | [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.6` | `2.0.7` | | [micromatch](https://github.com/micromatch/micromatch) | `3.1.10` | `4.0.5` | | [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` | | [send](https://github.com/pillarjs/send) | `0.18.0` | `0.19.0` | | [serve-static](https://github.com/expressjs/serve-static) | `1.15.0` | `1.16.2` | Updates `body-parser` from 1.20.2 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.20.2...1.20.3) Updates `express` from 4.19.2 to 4.21.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md) - [Commits](expressjs/express@4.19.2...4.21.2) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `webpack` from 4.47.0 to 5.97.1 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v4.47.0...v5.97.1) Updates `cookie` from 0.4.2 to 0.7.2 - [Release notes](https://github.com/jshttp/cookie/releases) - [Commits](jshttp/cookie@v0.4.2...v0.7.2) Updates `socket.io` from 4.7.4 to 4.8.1 - [Release notes](https://github.com/socketio/socket.io/releases) - [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md) - [Commits](https://github.com/socketio/socket.io/compare/[email protected]) Updates `cross-spawn` from 7.0.3 to 7.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6) Updates `express` from 4.19.2 to 4.21.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md) - [Commits](expressjs/express@4.19.2...4.21.2) Updates `path-to-regexp` from 0.1.7 to 0.1.12 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v0.1.7...v0.1.12) Updates `http-proxy-middleware` from 2.0.6 to 2.0.7 - [Release notes](https://github.com/chimurai/http-proxy-middleware/releases) - [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v2.0.7/CHANGELOG.md) - [Commits](chimurai/http-proxy-middleware@v2.0.6...v2.0.7) Updates `micromatch` from 3.1.10 to 4.0.5 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@3.1.10...4.0.5) Updates `nanoid` from 3.3.7 to 3.3.8 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.3.7...3.3.8) Updates `send` from 0.18.0 to 0.19.0 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.18.0...0.19.0) Updates `serve-static` from 1.15.0 to 1.16.2 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md) - [Commits](expressjs/serve-static@v1.15.0...v1.16.2) --- updated-dependencies: - dependency-name: body-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: socket.io dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: http-proxy-middleware dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: micromatch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nanoid dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/npm_and_yarn-d18eba9470
branch
from
December 16, 2024 12:06
49e4584
to
d2eddb9
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
0 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 13 updates:
1.20.2
1.20.3
4.19.2
4.21.2
3.0.2
3.0.3
4.47.0
5.97.1
0.4.2
0.7.2
4.7.4
4.8.1
7.0.3
7.0.6
0.1.7
0.1.12
2.0.6
2.0.7
3.1.10
4.0.5
3.3.7
3.3.8
0.18.0
0.19.0
1.15.0
1.16.2
Updates
body-parser
from 1.20.2 to 1.20.3Release notes
Sourced from body-parser's releases.
Changelog
Sourced from body-parser's changelog.
Commits
1752951
1.20.339744cf
chore: linter (#534)b2695c4
Merge commit from forkade0f3f
add scorecard to readme (#531)99a1bd6
deps: [email protected] (#521)9478591
fix: pin to [email protected]83db46a
ci: fix errors in ci github action for node 8 and 9 (#523)9d4e212
chore: add support for OSSF scorecard reporting (#522)Maintainer changes
This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.
Updates
express
from 4.19.2 to 4.21.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
1faf228
4.21.22e0fb64
deps: bump [email protected] (#6209)59fc270
deps: [email protected] (#5956)51fc39c
docs: add funding (#6065)8e229f9
4.21.1a024c8a
fix(deps): [email protected]7e562c6
4.21.01bcde96
fix(deps): [email protected] (#5946)7d36477
fix(deps): [email protected] (#5951)40d2d8f
fix(deps): [email protected]Maintainer changes
This version was pushed to npm by jonchurch, a new releaser for express since your current version.
Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
webpack
from 4.47.0 to 5.97.1Release notes
Sourced from webpack's releases.
... (truncated)
Commits
3612d36
chore(release): 5.97.1eb7ac6f
fix: perf regression554be24
fix: sub define key should't be renamed when it's a defined variable5e0e780
refactor: issue #1903058fb035
fix: sub define key should't be renamed when it's a defined variableaf1fd12
perf: regression34f19cb
fix: package.json0ec7f5d
refactor: issue #190305e7b8a2
fix:package.json
644f1d1
refactor: no extra work for CSS unescapingUpdates
cookie
from 0.4.2 to 0.7.2Release notes
Sourced from cookie's releases.
Commits
d19eaa1
0.7.2bc38ffd
Fix object assignment ofhasOwnProperty
(#177)cf4658f
0.7.16a8b8f5
Allow leading dot for domain (#174)58015c0
Remove more code and perf wins (#172)ab057d6
0.7.05f02ca8
Migrate history to GitHub releasesa5d591c
Migrate history to GitHub releases51968f9
Skip isNaN9e7ca51
perf(parse): cache length, return early (#144)Maintainer changes
This version was pushed to npm by blakeembrey, a new releaser for cookie since your current version.
Updates
socket.io
from 4.7.4 to 4.8.1Release notes
Sourced from socket.io's releases.
... (truncated)
Commits
91e1c8b
chore(release): [email protected]8d5528a
chore(release): [email protected]71387e5
refactor(sio-client): reexport transports from the engineaead835
refactor(sio): make Namespace._fns private (#5196)029e010
chore(release): [email protected]4ca6ddb
docs(nuxt): update example with latest versionca9e994
fix(sio-client): do not mangle the "_placeholder" attribute4865f2e
fix(eio-client): prevent infinite loop with Node.js built-in WebSocketd4b3dde
ci: use Node.js 223b68658
chore: bump@fails-components/webtransport
to version 1.1.4 (dev)Updates
cross-spawn
from 7.0.3 to 7.0.6Changelog
Sourced from cross-spawn's changelog.
Commits
77cd97f
chore(release): 7.0.66717de4
chore: upgrade standard-versionf700743
fix: update cross-spawn version to 7.0.5 in package-lock.json9a7e3b2
chore: fix build status badge0852683
chore(release): 7.0.5640d391
fix: fix escaping bug introduced by backtrackingbff0c87
chore: remove codecova7c6abc
chore: replace travis with github workflows9b9246e
chore(release): 7.0.45ff3a07
fix: disable regexp backtracking (#160)Updates
express
from 4.19.2 to 4.21.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
1faf228
4.21.22e0fb64
deps: bump [email protected] (#6209)59fc270
deps: [email protected] (#5956)51fc39c
docs: add funding (#6065)8e229f9
4.21.1a024c8a
fix(deps): [email protected]7e562c6
4.21.01bcde96
fix(deps): [email protected] (#5946)7d36477
fix(deps): [email protected] (#5951)40d2d8f
fix(deps): [email protected]Maintainer changes
This version was pushed to npm by jonchurch, a new releaser for express since your current version.
Updates
path-to-regexp
from 0.1.7 to 0.1.12Release notes
Sourced from path-to-regexp's releases.
Commits
640e694
0.1.12f01c26a
Merge commit from fork0c71192
0.1.118f09549
Add error on bad input valuesc827fce
0.1.1029b96b4
Add backtrack protection to parametersac4c234
Update repo url (#314)bdb6635
0.1.9c4272e4
Allow a non-lookahead regex (#312)51a1955
0.1.8Updates
http-proxy-middleware
from 2.0.6 to 2.0.7Release notes
Sourced from http-proxy-middleware's releases.
Changelog
Sourced from http-proxy-middleware's changelog.
Commits
1e92339
ci(github-actions): fix npm tag90afb7c
chore(package): v2.0.70b4274e
fix(filter): handle errors1bd6dd5
ci(github actions): add publish.ymlUpdates
micromatch
from 3.1.10 to 4.0.5Release notes
Sourced from micromatch's releases.
Changelog
Sourced from micromatch's changelog.
... (truncated)
Commits
002d0d1
4.0.5 - Massive (100x) performance improvement ofmicromatch.not()
, thanks ...4201cb4
fix windows tests32fe3fe
add github workflows, upgrade deps9a26c20
Merge pull request #228 from antonyk/patch-19b9abac
Merge pull request #229 from antonyk/patch-23899055
Merge pull request #233 from joyceerhl/patch-16598377
UseSet.prototype.has
overArray.prototype.includes
36ef44e
fix parse method's jsdoc20825e4
fix typo in docs34f44b4
Remove tideliftUpdates
nanoid
from 3.3.7 to 3.3.8Changelog
Sourced from nanoid's changelog.
Commits
3044cd5
Release 3.3.8 version4fe3495
Update size limitd643045
Fix pool pollution, infinite loop (#510)Updates
send
from 0.18.0 to 0.19.0Release notes
Sourced from send's releases.
Changelog
Sourced from send's changelog.
Commits
9d2db99
0.19.0ae4f298
Merge commit from forkMaintainer changes
This version was pushed to npm by ulisesgascon, a new releaser for send since your current version.
Updates
serve-static
from 1.15.0 to 1.16.2Release notes
Sourced from serve-static's releases.
Changelog
Sourced from serve-static's changelog.Description has been truncated