Bump the npm_and_yarn group across 1 directory with 40 updates #9

dependabot · 2024-06-10T21:44:59Z

Bumps the npm_and_yarn group with 26 updates in the / directory:

Package	From	To
webpack-dev-server	`2.9.1`	`3.1.11`
braces	`1.8.5`	`3.0.3`
watchpack	`1.4.0`	`1.7.5`
webpack-dev-server	`3.1.11`	`5.0.4`
browserify-sign	`4.0.4`	`4.2.3`
chownr	`1.0.1`	`1.1.4`
david	`11.0.0`	`11.1.0`
ejs	`2.5.7`	`removed`
size-limit	`0.11.6`	`11.1.4`
elliptic	`6.4.0`	`6.5.5`
handlebars	`4.0.10`	`4.7.8`
loader-utils	`1.1.0`	`1.4.2`
html-webpack-plugin	`2.30.1`	`5.6.0`
postcss	`5.2.18`	`8.4.38`
css-loader	`0.28.7`	`7.1.2`
json-schema	`0.2.3`	`0.4.0`
jsprim	`1.4.1`	`1.4.2`
lodash	`4.17.4`	`4.17.21`
ini	`1.3.4`	`1.3.8`
stringstream	`0.0.5`	`0.0.6`
got	`6.7.1`	`removed`
david	`11.1.0`	`11.1.1`
deep-extend	`0.4.1`	`0.6.0`
rc	`1.1.7`	`1.2.8`
rc	`1.2.1`	`1.2.8`
https-proxy-agent	`1.0.0`	`2.2.4`
nsp	`2.8.1`	`3.2.1`
pathval	`1.1.0`	`1.1.1`
y18n	`3.2.1`	`3.2.2`

Updates webpack-dev-server from 2.9.1 to 3.1.11

Release notes

Sourced from webpack-dev-server's releases.

v3.1.11

3.1.11 (2018-12-21)

Bug Fixes

bin/options: correct check for color support (options.color) (#1555) (55398b5)

package: update spdy v3.4.1...4.0.0 (assertion error) (#1491) (#1563) (7a3a257)

Server: correct node version checks (#1543) (927a2b3)

Server: mime type for wasm in contentBase directory (#1575) (#1580) (fadae5d)

add url for compatibility with webpack@5 (#1598) (#1599) (68dd49a)

check origin header for websocket connection (#1603) (b3217ca)

v3.1.10

2018-10-23

Bug Fixes

options: add writeToDisk option to schema (#1520) (d2f4902)

package: update sockjs-client v1.1.5...1.3.0 (url-parse vulnerability) (#1537) (e719959)

Server: set tls.DEFAULT_ECDH_CURVE to 'auto' (#1531) (c12def3)

v3.1.9

No release notes provided.

v3.1.8

2018-09-06

Bug Fixes

package: yargs security vulnerability (dependencies) (#1492) (8fb67c9)

utils/createLogger: ensure quiet always takes precedence (options.quiet) (#1486) (7a6ca47)

v3.1.7

2018-08-29

Bug Fixes

Server: don't use spdy on node >= v10.0.0 (#1451) (8ab9eb6)

v3.1.6

2018-08-26

Bug Fixes

... (truncated)

Changelog

Sourced from webpack-dev-server's changelog.

3.1.11 (2018-12-21)

Bug Fixes

bin/options: correct check for color support (options.color) (#1555) (55398b5)

package: update spdy v3.4.1...4.0.0 (assertion error) (#1491) (#1563) (7a3a257)

Server: correct node version checks (#1543) (927a2b3)

Server: mime type for wasm in contentBase directory (#1575) (#1580) (fadae5d)

add url for compatibility with webpack@5 (#1598) (#1599) (68dd49a)

check origin header for websocket connection (#1603) (b3217ca)

3.1.10 (2018-10-23)

Bug Fixes

options: add writeToDisk option to schema (#1520) (d2f4902)

package: update sockjs-client v1.1.5...1.3.0 (url-parse vulnerability) (#1537) (e719959)

Server: set tls.DEFAULT_ECDH_CURVE to 'auto' (#1531) (c12def3)

3.1.9 (2018-09-24)

3.1.8 (2018-09-06)

Bug Fixes

package: yargs security vulnerability (dependencies) (#1492) (8fb67c9)

utils/createLogger: ensure quiet always takes precedence (options.quiet) (#1486) (7a6ca47)

3.1.7 (2018-08-29)

Bug Fixes

Server: don't use spdy on node >= v10.0.0 (#1451) (8ab9eb6)

... (truncated)

Commits

ff2874f chore(release): 3.1.11
b3217ca fix: check origin header for websocket connection (#1603)
68dd49a fix: add url for compatibility with webpack@5 (#1598) (#1599)
fadae5d fix(Server): mime type for wasm in contentBase directory (#1575) (#1580)
7a3a257 fix(package): update spdy v3.4.1...4.0.0 (assertion error) (#1491) (#1563)
1fe82de ci(travis): Node 11 (on OS X) crashes, use 10 for now (#1588)
55398b5 fix(bin/options): correct check for color support (options.color) (#1555)
927a2b3 fix(Server): correct node version checks (#1543)
fa96a76 chore(PULL_REQUEST_TEMPLATE): allow features (#1539)
fe3219f chore(release): 3.1.10
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for webpack-dev-server since your current version.

Updates braces from 1.8.5 to 3.0.3

Changelog

Sourced from braces's changelog.

Release history

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

Changelogs are for humans, not machines.

There should be an entry for every single version.

The same types of changes should be grouped.

Versions and sections should be linkable.

The latest version comes first.

The release date of each versions is displayed.

Mention whether you follow Semantic Versioning.

Changelog entries are classified using the following labels (from keep-a-changelog):

Added for new features.

Changed for changes in existing functionality.

Deprecated for soon-to-be removed features.

Removed for now removed features.

Fixed for any bug fixes.

Security in case of vulnerabilities.

[3.0.0] - 2018-04-08

v3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.

Breaking Changes

The undocumented .makeRe method was removed

Non-breaking changes

Caching was removed

[2.3.2] - 2018-04-08

start refactoring

cover sets

... (truncated)

Commits

74b2db2 3.0.3
88f1429 update eslint. lint, fix unit tests.
415d660 Snyk js braces 6838727 (#40)
190510f fix tests, skip 1 test in test/braces.expand
716eb9f readme bump
a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
98414f9 remove funding file
665ab5d update keepEscaping doc (#27)
Additional commits viewable in compare view

Updates watchpack from 1.4.0 to 1.7.5

Release notes

Sourced from watchpack's releases.

v1.7.5

Bugfixes

removed watchpack-chokidar2 notsup warning

v1.7.4

Bugfixes

remove unneeded files from package

v1.7.3

Bugfixes

force update to latest chokidar version for important bugfix (paulmillr/chokidar#1018)

v1.7.2

Features

support chokidar 2 and 3 for node.js 6 - 14 support

v1.7.1

broken publish

v1.7.0

broken publish

v1.6.1

force upgrade chokidar for security reasons

v1.5.0

set polling interval for binary files too

update chokidar to v2

OSX: not existing directories can be watched

adding files now also causes change events

Commits

a31d9eb 1.7.5
269291e Merge pull request #180 from webpack/bugfix/engine-check
2fb7652 remove node engine check for chokidar 2
f7ef8e0 1.7.4
9ce9da6 remove subpackage from this package
0276211 1.7.3
333a112 Merge pull request #166 from webpack/deps/upgrade-v1
e86fd3c Merge pull request #168 from timneutkens/fix/use-latest-chokidar
7ee98e2 Use latest Chokidar version
8edfd9a regenerate lockfile
Additional commits viewable in compare view

Updates webpack-dev-server from 3.1.11 to 5.0.4

Release notes

Sourced from webpack-dev-server's releases.

v3.1.11

3.1.11 (2018-12-21)

Bug Fixes

bin/options: correct check for color support (options.color) (#1555) (55398b5)

package: update spdy v3.4.1...4.0.0 (assertion error) (#1491) (#1563) (7a3a257)

Server: correct node version checks (#1543) (927a2b3)

Server: mime type for wasm in contentBase directory (#1575) (#1580) (fadae5d)

add url for compatibility with webpack@5 (#1598) (#1599) (68dd49a)

check origin header for websocket connection (#1603) (b3217ca)

v3.1.10

2018-10-23

Bug Fixes

options: add writeToDisk option to schema (#1520) (d2f4902)

package: update sockjs-client v1.1.5...1.3.0 (url-parse vulnerability) (#1537) (e719959)

Server: set tls.DEFAULT_ECDH_CURVE to 'auto' (#1531) (c12def3)

v3.1.9

No release notes provided.

v3.1.8

2018-09-06

Bug Fixes

package: yargs security vulnerability (dependencies) (#1492) (8fb67c9)

utils/createLogger: ensure quiet always takes precedence (options.quiet) (#1486) (7a6ca47)

v3.1.7

2018-08-29

Bug Fixes

Server: don't use spdy on node >= v10.0.0 (#1451) (8ab9eb6)

v3.1.6

2018-08-26

Bug Fixes

... (truncated)

Changelog

Sourced from webpack-dev-server's changelog.

3.1.11 (2018-12-21)

Bug Fixes

bin/options: correct check for color support (options.color) (#1555) (55398b5)

package: update spdy v3.4.1...4.0.0 (assertion error) (#1491) (#1563) (7a3a257)

Server: correct node version checks (#1543) (927a2b3)

Server: mime type for wasm in contentBase directory (#1575) (#1580) (fadae5d)

add url for compatibility with webpack@5 (#1598) (#1599) (68dd49a)

check origin header for websocket connection (#1603) (b3217ca)

3.1.10 (2018-10-23)

Bug Fixes

options: add writeToDisk option to schema (#1520) (d2f4902)

package: update sockjs-client v1.1.5...1.3.0 (url-parse vulnerability) (#1537) (e719959)

Server: set tls.DEFAULT_ECDH_CURVE to 'auto' (#1531) (c12def3)

3.1.9 (2018-09-24)

3.1.8 (2018-09-06)

Bug Fixes

package: yargs security vulnerability (dependencies) (#1492) (8fb67c9)

utils/createLogger: ensure quiet always takes precedence (options.quiet) (#1486) (7a6ca47)

3.1.7 (2018-08-29)

Bug Fixes

Server: don't use spdy on node >= v10.0.0 (#1451) (8ab9eb6)

... (truncated)

Commits

ff2874f chore(release): 3.1.11
b3217ca fix: check origin header for websocket connection (#1603)
68dd49a fix: add url for compatibility with webpack@5 (#1598) (#1599)
fadae5d fix(Server): mime type for wasm in contentBase directory (#1575) (#1580)
7a3a257 fix(package): update spdy v3.4.1...4.0.0 (assertion error) (#1491) (#1563)
1fe82de ci(travis): Node 11 (on OS X) crashes, use 10 for now (#1588)
55398b5 fix(bin/options): correct check for color support (options.color) (#1555)
927a2b3 fix(Server): correct node version checks (#1543)
fa96a76 chore(PULL_REQUEST_TEMPLATE): allow features (#1539)
fe3219f chore(release): 3.1.10
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for webpack-dev-server since your current version.

Updates browserify-sign from 4.0.4 to 4.2.3

Changelog

Sourced from browserify-sign's changelog.

v4.2.3 - 2024-03-05

Commits

[patch] widen support to 0.12 9247adf

[patch] drop minimum node support to v1 4d0ee49

[Dev Deps] update aud, npmignore, tape 87f3a35

[actions] remove redundant finisher 37a4758

[Deps] pin hash-base to ~3.0, due to a breaking change 9e2bf12

[Deps] update parse-asn1 [f427270`](browserify/browserify-sign@f427270)

[Deps] update elliptic fb261ce

[Deps] pin elliptic due to a breaking change 168e16f

v4.2.2 - 2023-10-25

Fixed

[Tests] log when openssl doesn't support cipher [#37](https://github.com/crypto-browserify/browserify-sign/issues/37)

Commits

Only apps should have lockfiles 09a8995

[eslint] switch to eslint 83fe463

[meta] add npmignore and auto-changelog 4418183

[meta] fix package.json indentation 9ac5a5e

[Tests] migrate from travis to github actions d845d85

[Fix] sign: throw on unsupported padding scheme 8767739

[Fix] properly check the upper bound for DSA signatures 85994cd

[Tests] handle openSSL not supporting a scheme f5f17c2

[Deps] update bn.js, browserify-rsa, elliptic, parse-asn1, readable-stream, safe-buffer a67d0eb

[Dev Deps] update nyc, standard, tape cc5350b

[Tests] always run coverage; downgrade nyc 75ce1d5

[meta] add safe-publish-latest dcf49ce

[Tests] add npm run posttest 75dd8fd

[Dev Deps] update tape 3aec038

[Tests] skip unsupported schemes 703c83e

[Tests] node < 6 lacks array includes 3aa43cf

[Dev Deps] fix eslint range 98d4e0d

v4.2.1 - 2020-08-04

Merged

bump elliptic [#58](https://github.com/crypto-browserify/browserify-sign/issues/58)

v4.2.0 - 2020-05-18

Merged

switch to safe buffer [#53](https://github.com/crypto-browserify/browserify-sign/issues/53)

... (truncated)

Commits

bf2c3ec v4.2.3
9247adf [patch] widen support to 0.12
f427270 [Deps] update `parse-asn1
87f3a35 [Dev Deps] update aud, npmignore, tape
fb261ce [Deps] update elliptic
4d0ee49 [patch] drop minimum node support to v1
9e2bf12 [Deps] pin hash-base to ~3.0, due to a breaking change
168e16f [Deps] pin elliptic due to a breaking change
37a4758 [actions] remove redundant finisher
4af5a90 v4.2.2
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.

Updates chownr from 1.0.1 to 1.1.4

Commits

814f642 1.1.4
a0d7ae0 push to github before npm
1a3667a ignore stuff
147eac4 Full tests, handle errors properly in many cases
578fb9f update tap, fix rimraf version
5bbda8c feat: ignore ENOENT errors during chown
deaa058 1.1.3
190e311 Don't early-capture the fs.lchownSync method
df2826a push to git with 1 command, not 2
cf3b27b 1.1.2
Additional commits viewable in compare view

Updates david from 11.0.0 to 11.1.0

Changelog

Sourced from david's changelog.

Changelog

The format is based on Keep a Changelog.

Commits

73fc671 11.1.0
8497cae chore: update dependencies
a198ada feat: ignore dependencies via globs (#144)
c29013f chore: update deps and README (#154)
008beaf Merge pull request #146 from DanielRuf/chore/cache-node-modules
d0a2e19 Merge branch 'master' into chore/cache-node-modules
d180e8d Merge pull request #147 from DanielRuf/chore/add-nodejs-8-10
cc5db9f Merge pull request #145 from DanielRuf/chore/clone-last-5-commits
9aeda4e chore: cache node_modules
d4bf0e6 chore: clone last 5 commits
Additional commits viewable in compare view

Updates dns-packet from 1.2.2 to 5.6.1

Changelog

Sourced from dns-packet's changelog.

Version 5.6.0 - 2023-04-18

Feature: Added support for the TLSA record type.

Version 5.5.0 - 2023-03-27

Feature: Added support for the NAPTR record type.

Version 5.4.0 - 2022-06-14

Feature: Added support for the SSHFP record type.

Version 5.2.0 - 2019-02-21

Feature: Added support for de/encoding certain OPT options.

Version 5.1.0 - 2019-01-22

Feature: Added support for the RP record type.

Version 5.0.0 - 2018-06-01

Breaking: Node.js 6.0.0 or greater is now required.

Feature: Added support for DNSSEC record types.

Version 4.1.0 - 2018-02-11

Feature: Added support for the MX record type.

Version 4.0.0 - 2018-02-04

Feature: Added streamEncode and streamDecode methods for encoding TCP packets.

Breaking: Changed the decoded value of TXT records to an array of Buffers. This is to accomodate DNS-SD records which rely on the individual strings record being separated.

Breaking: Renamed the flag_trunc and flag_auth to flag_tc and flag_aa to match the names of these in the dns standards.

Version 3.0.0 - 2018-01-12

Breaking: The class option has been changed from integer to string.

Version 2.0.0 - 2018-01-11

Breaking: Converted module to ES2015, now requires Node.js 4.0 or greater

Commits

7b66620 v5.6.1
13f19d9 Proper Encoding/Decoding for Email Name Representation for SOA and RP Records...
519f55d test node 20
e50f34c 5.6.0
f14f483 Add TLSA support (#92)
ec4d317 sort record types in README alphabetically
a0687b3 5.5.0
aca1ff7 implement the NAPTR record (#89)
31d3caf 5.4.0
0fc249c add SSHFP to readme
Additional commits viewable in compare view

Removes ejs

Updates size-limit from 0.11.6 to 11.1.4

Release notes

Sourced from size-limit's releases.

11.1.4

Fixed types (by @aryaemami59).

11.1.3

Updated esbuild.

Updated CSS loaders for webpack.

11.1.2

Fixed CSS support in esbuild plugin (by @just-boris).

11.1.1

Fixed Windows support (by @aryaemami59).

11.1.0

Added TypeScript support for config (by @aryaemami59).

Fixed webpack-why regression (by @hoo00nn).

11.0.3

Fixed .mjs config support (by @aryaemami59).

Updated esbuild.

Changelog

Sourced from size-limit's changelog.

11.1.4

Fixed types (by @aryaemami59).

11.1.3

Updated esbuild.

Updated CSS loaders for webpack.

11.1.2

Fixed CSS support in esbuild plugin (by @just-boris).

11.1.1

Fixed Windows support (by @aryaemami59).

11.1.0

Added TypeScript support for config (by @aryaemami59).

Fixed webpack-why regression (by @hoo00nn).

11.0.3

Fixed .mjs config support (by Arya Emami).

Updated esbuild.

11.0.2

Fixed require is not defined regression.

Updated esbuild-visualizer.

11.0.1

Updated estimo.

Updated lilconfig.

11.0

Moved to Brotli as default compression. Use gzip: true for old behavior.

10.0.3

Fixed third-party plugins support (by @JounQin).

Fixed Windows support (by @JounQin).

10.0.2

Fixed require is not defined in webpack-css (by Andrey Medvedev).

Fixed webpack config defined as function support (by @lev875).

10.0.1

Fixed imports and exports between packages.

10.0

Removed @size-limit/dual-publish plugin.

Moved projects to ESM (by @lev875). Size Limit still can be used as CLI in CJS projects.

Updated globby dependency.

9.0

... (truncated)

Commits

691f6c1 Release 11.1.4 version
d1f280e Update dependencies
88d3ce2 Fix type of plugins parameter to be an array of functions (#362)
4d32d27 Return versions for local development
ff1cb6e Release 11.1.3 version
ec84d65 Update bump script
5821630 Update lock file
abbc1e5 Remove debug file
d097a37 Update dependencies
1a97025 Move to Node.js 22
Additional commits viewable in compare view

Updates elliptic from 6.4.0 to 6.5.5

Commits

7570078 6.5.5
206da2e lib: lint
0a78e03 [Fix] restore node < 4 compat
43ac7f2 6.5.4
f4bc72b package: bump deps
441b742 ec: validate that a point before deriving keys
e71b2d9 lib: relint using eslint
8421a01 build(deps): bump elliptic from 6.4.1 to 6.5.3 (#231)
8647803 6.5.3
856fe4d signature: prevent malleability and overflows
Additional commits viewable in compare view

Updates express from 4.16.1 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Improved fix for open redirect allow list bypass

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

Fix ci after location patch by @wesleytodd in expressjs/express#5552

fixed un-edited version in history.md for 4.19.0 by @wesleytodd in expressjs/express#5556

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

fix typo in release date by @UlisesGascon in expressjs/express#5527

docs: nominating @wesleytodd to be project captian by @wesleytodd in expressjs/express#5511

docs: loosen TC activity rules by @wesleytodd in expressjs/express#5510

Add note on how to update docs for new release by @crandmck in expressjs/express#5541

Prevent open redirect allow list bypass due to encodeurl

Release 4.19.0 by @wesleytodd in expressjs/express#5551

New Contributors

@crandmck made their first contribution in expressjs/express#5541

Full Changelog: expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

Fix routing requests without method

deps: body-parser@1.20.2

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: raw-body@2.5.2

Other Changes

Use https: protocol instead of deprecated git: protocol by @vcsjones in expressjs/express#5032

build: Node.js@16.18 and Node.js@18.12 by @abenhamdine in expressjs/express#5034

ci: update actions/checkout to v3 by @armujahid in expressjs/express#5027

test: remove unused function arguments in params by @raksbisht in expressjs/express#5124

Remove unused originalIndex from acceptParams by @raksbisht in expressjs/express#5119

Fixed typos by @raksbisht in expressjs/express#5117

examples: remove unused params by @raksbisht in expressjs/express#5113

fix: parameter str is not described in JSDoc by @raksbisht in expressjs/express#5130

fix: typos in History.md by @raksbisht in expressjs/express#5131

build : add Node.js@19.7 by @abenhamdine in expressjs/express#5028

test: remove unused function arguments in params by @raksbisht in expressjs/express#5137

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

Prevent open redirect allow list bypass due to encodeurl

deps: cookie@0.6.0

4.18.3 / 2024-02-29

Fix routing requests without method

deps: body-parser@1.20.2

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: raw-body@2.5.2

deps: cookie@0.6.0

Add partitioned option

4.18.2 / 2022-10-08

Fix regression routing a large stack in a single route

deps: body-parser@1.20.1

deps: qs@6.11.0

perf: remove unnecessary object clone

deps: qs@6.11.0

4.18.1 / 2022-04-29

Fix hanging on large stack of sync routes

4.18.0 / 20...
Description has been truncated

Bumps the npm_and_yarn group with 26 updates in the / directory: | Package | From | To | | --- | --- | --- | | [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `2.9.1` | `3.1.11` | | [braces](https://github.com/micromatch/braces) | `1.8.5` | `3.0.3` | | [watchpack](https://github.com/webpack/watchpack) | `1.4.0` | `1.7.5` | | [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `3.1.11` | `5.0.4` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.0.4` | `4.2.3` | | [chownr](https://github.com/isaacs/chownr) | `1.0.1` | `1.1.4` | | [david](https://github.com/alanshaw/david) | `11.0.0` | `11.1.0` | | [ejs](https://github.com/mde/ejs) | `2.5.7` | `removed` | | [size-limit](https://github.com/ai/size-limit) | `0.11.6` | `11.1.4` | | [elliptic](https://github.com/indutny/elliptic) | `6.4.0` | `6.5.5` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.0.10` | `4.7.8` | | [loader-utils](https://github.com/webpack/loader-utils) | `1.1.0` | `1.4.2` | | [html-webpack-plugin](https://github.com/jantimon/html-webpack-plugin) | `2.30.1` | `5.6.0` | | [postcss](https://github.com/postcss/postcss) | `5.2.18` | `8.4.38` | | [css-loader](https://github.com/webpack-contrib/css-loader) | `0.28.7` | `7.1.2` | | [json-schema](https://github.com/kriszyp/json-schema) | `0.2.3` | `0.4.0` | | [jsprim](https://github.com/joyent/node-jsprim) | `1.4.1` | `1.4.2` | | [lodash](https://github.com/lodash/lodash) | `4.17.4` | `4.17.21` | | [ini](https://github.com/npm/ini) | `1.3.4` | `1.3.8` | | [stringstream](https://github.com/mhart/StringStream) | `0.0.5` | `0.0.6` | | [got](https://github.com/sindresorhus/got) | `6.7.1` | `removed` | | [david](https://github.com/alanshaw/david) | `11.1.0` | `11.1.1` | | [deep-extend](https://github.com/unclechu/node-deep-extend) | `0.4.1` | `0.6.0` | | [rc](https://github.com/dominictarr/rc) | `1.1.7` | `1.2.8` | | [rc](https://github.com/dominictarr/rc) | `1.2.1` | `1.2.8` | | [https-proxy-agent](https://github.com/TooTallNate/proxy-agents/tree/HEAD/packages/https-proxy-agent) | `1.0.0` | `2.2.4` | | [nsp](https://github.com/nodesecurity/nsp) | `2.8.1` | `3.2.1` | | [pathval](https://github.com/chaijs/pathval) | `1.1.0` | `1.1.1` | | [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` | Updates `webpack-dev-server` from 2.9.1 to 3.1.11 - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md) - [Commits](webpack/webpack-dev-server@v2.9.1...v3.1.11) Updates `braces` from 1.8.5 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@1.8.5...3.0.3) Updates `watchpack` from 1.4.0 to 1.7.5 - [Release notes](https://github.com/webpack/watchpack/releases) - [Commits](webpack/watchpack@v1.4.0...v1.7.5) Updates `webpack-dev-server` from 3.1.11 to 5.0.4 - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md) - [Commits](webpack/webpack-dev-server@v2.9.1...v3.1.11) Updates `browserify-sign` from 4.0.4 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.0.4...v4.2.3) Updates `chownr` from 1.0.1 to 1.1.4 - [Commits](isaacs/chownr@v1.0.1...v1.1.4) Updates `david` from 11.0.0 to 11.1.0 - [Changelog](https://github.com/alanshaw/david/blob/master/CHANGELOG.md) - [Commits](alanshaw/david@v11.0.0...v11.1.0) Updates `dns-packet` from 1.2.2 to 5.6.1 - [Changelog](https://github.com/mafintosh/dns-packet/blob/master/CHANGELOG.md) - [Commits](mafintosh/dns-packet@v1.2.2...v5.6.1) Removes `ejs` Updates `size-limit` from 0.11.6 to 11.1.4 - [Release notes](https://github.com/ai/size-limit/releases) - [Changelog](https://github.com/ai/size-limit/blob/main/CHANGELOG.md) - [Commits](ai/size-limit@0.11.6...11.1.4) Updates `elliptic` from 6.4.0 to 6.5.5 - [Commits](indutny/elliptic@v6.4.0...v6.5.5) Updates `express` from 4.16.1 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.16.1...4.19.2) Updates `follow-redirects` from 1.0.0 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.0.0...v1.15.6) Updates `handlebars` from 4.0.10 to 4.7.8 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.8/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.0.10...v4.7.8) Updates `loader-utils` from 1.1.0 to 1.4.2 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md) - [Commits](webpack/loader-utils@v1.1.0...v1.4.2) Updates `html-webpack-plugin` from 2.30.1 to 5.6.0 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](jantimon/html-webpack-plugin@v2.30.1...v5.6.0) Updates `http-proxy` from 1.16.2 to 1.18.1 - [Release notes](https://github.com/http-party/node-http-proxy/releases) - [Changelog](https://github.com/http-party/node-http-proxy/blob/master/CHANGELOG.md) - [Commits](http-party/node-http-proxy@1.16.2...1.18.1) Updates `postcss` from 5.2.18 to 8.4.38 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/commits/8.4.38) Updates `css-loader` from 0.28.7 to 7.1.2 - [Release notes](https://github.com/webpack-contrib/css-loader/releases) - [Changelog](https://github.com/webpack-contrib/css-loader/blob/master/CHANGELOG.md) - [Commits](webpack-contrib/css-loader@v0.28.7...v7.1.2) Updates `js-yaml` from 3.7.0 to 3.10.0 - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](nodeca/js-yaml@3.7.0...3.10.0) Updates `json-schema` from 0.2.3 to 0.4.0 - [Commits](kriszyp/json-schema@v0.2.3...v0.4.0) Updates `jsprim` from 1.4.1 to 1.4.2 - [Changelog](https://github.com/TritonDataCenter/node-jsprim/blob/v1.4.2/CHANGES.md) - [Commits](TritonDataCenter/node-jsprim@v1.4.1...v1.4.2) Updates `lodash` from 4.17.4 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.4...4.17.21) Updates `node-forge` from 0.6.33 to 1.3.1 - [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md) - [Commits](digitalbazaar/forge@0.6.33...v1.3.1) Updates `npm` from 4.6.1 to 6.14.18 - [Release notes](https://github.com/npm/cli/releases) - [Changelog](https://github.com/npm/cli/blob/v6.14.18/CHANGELOG.md) - [Commits](npm/cli@v4.6.1...v6.14.18) Updates `ini` from 1.3.4 to 1.3.8 - [Release notes](https://github.com/npm/ini/releases) - [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md) - [Commits](npm/ini@v1.3.4...v1.3.8) Updates `npm-user-validate` from 0.1.5 to 1.0.1 - [Release notes](https://github.com/npm/npm-user-validate/releases) - [Changelog](https://github.com/npm/npm-user-validate/blob/main/CHANGELOG.md) - [Commits](npm/npm-user-validate@v0.1.5...v1.0.1) Updates `stringstream` from 0.0.5 to 0.0.6 - [Commits](mhart/StringStream@v0.0.5...v0.0.6) Updates `tough-cookie` from 2.3.2 to 2.3.3 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v2.3.2...v2.3.3) Updates `tar` from 2.2.1 to 4.4.19 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v2.2.1...v4.4.19) Updates `dot-prop` from 4.1.1 to 4.2.1 - [Release notes](https://github.com/sindresorhus/dot-prop/releases) - [Commits](sindresorhus/dot-prop@v4.1.1...v4.2.1) Removes `got` Updates `david` from 11.1.0 to 11.1.1 - [Changelog](https://github.com/alanshaw/david/blob/master/CHANGELOG.md) - [Commits](alanshaw/david@v11.0.0...v11.1.0) Updates `deep-extend` from 0.4.1 to 0.6.0 - [Changelog](https://github.com/unclechu/node-deep-extend/blob/master/CHANGELOG.md) - [Commits](unclechu/node-deep-extend@v0.4.1...v0.6.0) Updates `rc` from 1.1.7 to 1.2.8 - [Commits](https://github.com/dominictarr/rc/commits) Updates `rc` from 1.2.1 to 1.2.8 - [Commits](https://github.com/dominictarr/rc/commits) Updates `https-proxy-agent` from 1.0.0 to 2.2.4 - [Release notes](https://github.com/TooTallNate/proxy-agents/releases) - [Changelog](https://github.com/TooTallNate/proxy-agents/blob/main/packages/https-proxy-agent/CHANGELOG.md) - [Commits](https://github.com/TooTallNate/proxy-agents/commits/2.2.4/packages/https-proxy-agent) Updates `nsp` from 2.8.1 to 3.2.1 - [Commits](https://github.com/nodesecurity/nsp/commits/v3.2.1) Updates `pathval` from 1.1.0 to 1.1.1 - [Release notes](https://github.com/chaijs/pathval/releases) - [Changelog](https://github.com/chaijs/pathval/blob/master/CHANGELOG.md) - [Commits](chaijs/pathval@v1.1.0...v1.1.1) Updates `sockjs` from 0.3.18 to 0.3.24 - [Release notes](https://github.com/sockjs/sockjs-node/releases) - [Changelog](https://github.com/sockjs/sockjs-node/blob/v0.3.24/Changelog) - [Commits](sockjs/sockjs-node@v0.3.18...v0.3.24) Updates `webpack-dev-middleware` from 1.12.0 to 7.2.1 - [Release notes](https://github.com/webpack/webpack-dev-middleware/releases) - [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/master/CHANGELOG.md) - [Commits](webpack/webpack-dev-middleware@v1.12.0...v7.2.1) Updates `yargs-parser` from 4.2.1 to 7.0.0 - [Release notes](https://github.com/yargs/yargs-parser/releases) - [Changelog](https://github.com/yargs/yargs-parser/blob/main/CHANGELOG.md) - [Commits](yargs/yargs-parser@v4.2.1...v7.0.0) Updates `y18n` from 3.2.1 to 3.2.2 - [Release notes](https://github.com/yargs/y18n/releases) - [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md) - [Commits](https://github.com/yargs/y18n/commits) --- updated-dependencies: - dependency-name: webpack-dev-server dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: watchpack dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-server dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: chownr dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: david dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: dns-packet dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ejs dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: size-limit dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: handlebars dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: loader-utils dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: html-webpack-plugin dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: http-proxy dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: css-loader dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: js-yaml dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json-schema dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jsprim dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: lodash dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-forge dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: npm dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ini dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: npm-user-validate dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: stringstream dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tough-cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: dot-prop dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: got dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: david dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: deep-extend dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: rc dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: rc dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: https-proxy-agent dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nsp dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: pathval dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: sockjs dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-middleware dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: yargs-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: y18n dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Jun 10, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 1 directory with 40 updates #9

Bump the npm_and_yarn group across 1 directory with 40 updates #9

dependabot bot commented on behalf of github Jun 10, 2024

Bump the npm_and_yarn group across 1 directory with 40 updates #9

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directory with 40 updates #9

Conversation

dependabot bot commented on behalf of github Jun 10, 2024

v3.1.11

3.1.11 (2018-12-21)

Bug Fixes

v3.1.10

Bug Fixes

v3.1.9

v3.1.8

Bug Fixes

v3.1.7

Bug Fixes

v3.1.6

Bug Fixes

3.1.11 (2018-12-21)

Bug Fixes

3.1.10 (2018-10-23)

Bug Fixes

3.1.9 (2018-09-24)

3.1.8 (2018-09-06)

Bug Fixes

3.1.7 (2018-08-29)

Bug Fixes

Release history

[3.0.0] - 2018-04-08

[2.3.2] - 2018-04-08

v1.7.5

Bugfixes

v1.7.4

Bugfixes

v1.7.3

Bugfixes

v1.7.2

Features

v1.7.1

v1.7.0

v1.6.1

v1.5.0

v3.1.11

3.1.11 (2018-12-21)

Bug Fixes

v3.1.10

Bug Fixes

v3.1.9

v3.1.8

Bug Fixes

v3.1.7

Bug Fixes

v3.1.6

Bug Fixes

3.1.11 (2018-12-21)

Bug Fixes

3.1.10 (2018-10-23)

Bug Fixes

3.1.9 (2018-09-24)

3.1.8 (2018-09-06)

Bug Fixes

3.1.7 (2018-08-29)

Bug Fixes

v4.2.3 - 2024-03-05

Commits

v4.2.2 - 2023-10-25

Fixed

Commits

v4.2.1 - 2020-08-04

Merged

v4.2.0 - 2020-05-18

Merged

Changelog

Version 5.6.0 - 2023-04-18

Version 5.5.0 - 2023-03-27

Version 5.4.0 - 2022-06-14

Version 5.2.0 - 2019-02-21

Version 5.1.0 - 2019-01-22

Version 5.0.0 - 2018-06-01

Version 4.1.0 - 2018-02-11

Version 4.0.0 - 2018-02-04

4.18.0 / 20...
Description has been truncated