-
Notifications
You must be signed in to change notification settings - Fork 3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the npm_and_yarn group across 1 directory with 12 updates #1042
Open
dependabot
wants to merge
1
commit into
master
Choose a base branch
from
dependabot/npm_and_yarn/npm_and_yarn-f1bb56b70e
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the npm_and_yarn group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [concat-with-sourcemaps](https://github.com/floridoo/concat-with-sourcemaps) | `1.0.4` | `1.1.0` | | [deap](https://github.com/selfcontained/deap) | `1.0.0` | `1.0.1` | | [es5-ext](https://github.com/medikoo/es5-ext) | `0.10.12` | `0.10.64` | | [fsevents](https://github.com/fsevents/fsevents) | `1.0.15` | `1.2.13` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.0.6` | `4.7.8` | | [hosted-git-info](https://github.com/npm/hosted-git-info) | `2.1.5` | `2.8.9` | | [ini](https://github.com/npm/ini) | `1.3.4` | `1.3.8` | | [is-my-json-valid](https://github.com/mafintosh/is-my-json-valid) | `2.15.0` | `2.20.6` | | [is-url](https://github.com/segmentio/is-url) | `1.2.2` | `1.2.4` | | [urijs](https://github.com/medialize/URI.js) | `1.18.4` | `1.19.11` | | [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` | Updates `concat-with-sourcemaps` from 1.0.4 to 1.1.0 - [Commits](https://github.com/floridoo/concat-with-sourcemaps/commits) Updates `deap` from 1.0.0 to 1.0.1 - [Commits](https://github.com/selfcontained/deap/commits) Updates `es5-ext` from 0.10.12 to 0.10.64 - [Release notes](https://github.com/medikoo/es5-ext/releases) - [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md) - [Commits](medikoo/es5-ext@v0.10.12...v0.10.64) Updates `fsevents` from 1.0.15 to 1.2.13 - [Release notes](https://github.com/fsevents/fsevents/releases) - [Commits](fsevents/fsevents@v1.0.15...v1.2.13) Updates `handlebars` from 4.0.6 to 4.7.8 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.8/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.0.6...v4.7.8) Updates `hosted-git-info` from 2.1.5 to 2.8.9 - [Release notes](https://github.com/npm/hosted-git-info/releases) - [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md) - [Commits](npm/hosted-git-info@v2.1.5...v2.8.9) Updates `ini` from 1.3.4 to 1.3.8 - [Release notes](https://github.com/npm/ini/releases) - [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md) - [Commits](npm/ini@v1.3.4...v1.3.8) Updates `is-my-json-valid` from 2.15.0 to 2.20.6 - [Commits](mafintosh/is-my-json-valid@v2.15.0...v2.20.6) Updates `is-url` from 1.2.2 to 1.2.4 - [Changelog](https://github.com/segmentio/is-url/blob/master/History.md) - [Commits](segmentio/is-url@v1.2.2...v1.2.4) Updates `jsonpointer` from 4.0.0 to 5.0.1 - [Release notes](https://github.com/janl/node-jsonpointer/releases) - [Commits](janl/node-jsonpointer@4.0.0...v5.0.1) Updates `urijs` from 1.18.4 to 1.19.11 - [Release notes](https://github.com/medialize/URI.js/releases) - [Changelog](https://github.com/medialize/URI.js/blob/gh-pages/CHANGELOG.md) - [Commits](medialize/URI.js@v1.18.4...v1.19.11) Updates `y18n` from 3.2.1 to 3.2.2 - [Release notes](https://github.com/yargs/y18n/releases) - [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md) - [Commits](https://github.com/yargs/y18n/commits) --- updated-dependencies: - dependency-name: concat-with-sourcemaps dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: deap dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: es5-ext dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: fsevents dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: handlebars dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: hosted-git-info dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ini dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: is-my-json-valid dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: is-url dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jsonpointer dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: urijs dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: y18n dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
the
dependencies
Pull requests that update a dependency file
label
Apr 22, 2024
This was referenced Apr 22, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 11 updates in the / directory:
1.0.4
1.1.0
1.0.0
1.0.1
0.10.12
0.10.64
1.0.15
1.2.13
4.0.6
4.7.8
2.1.5
2.8.9
1.3.4
1.3.8
2.15.0
2.20.6
1.2.2
1.2.4
1.18.4
1.19.11
3.2.1
3.2.2
Updates
concat-with-sourcemaps
from 1.0.4 to 1.1.0Commits
Maintainer changes
This version was pushed to npm by floridoo, a new releaser for concat-with-sourcemaps since your current version.
Updates
deap
from 1.0.0 to 1.0.1Commits
Maintainer changes
This version was pushed to npm by prestaul, a new releaser for deap since your current version.
Updates
es5-ext
from 0.10.12 to 0.10.64Release notes
Sourced from es5-ext's releases.
... (truncated)
Changelog
Sourced from es5-ext's changelog.
... (truncated)
Commits
f76b03d
chore: Release v0.10.642881acd
chore: Bump dependenciesc2e2bb9
fix: Revert update meant to fix Powershell issue, as it's a regression16f2b72
docs: Fix date in the changelogde4e03c
chore: Release v0.10.633fd53b7
chore: Upgradelint-staged
to v13bf8ed79
chore: Ensure postinstall script does not crash on Windows2cbbb07
chore: Bump dependencies22d0416
chore: Bump LICENSE yeara52e957
fix: Support ES2015+ function definitions infunction#toStringTokens()
Updates
fsevents
from 1.0.15 to 1.2.13Release notes
Sourced from fsevents's releases.
... (truncated)
Commits
844a05d
Version Bumpf393f2a
Only build fsevents on macOS (#322)6a281a7
[publish binary]acc2bce
[publish binary]f532b6e
[publish binary]4c6a1c0
Add node 13 to travis matrix.92e40aa
Release 1.2.12.909af26
Release v1.2.117074adb
Release v1.2.100a052f6
Node.js v12 support for v1.x (#274)Updates
handlebars
from 4.0.6 to 4.7.8Release notes
Sourced from handlebars's releases.
Changelog
Sourced from handlebars's changelog.
... (truncated)
Commits
8dc3d25
v4.7.8668c4fb
Fix browser tests in CI pipelinec65c6cc
Test on Node 183d3796c
Make library compatible with workers075b354
Fix sync issue with npm lock-file30dbf04
Fix compiling of each block params in strict modee3a5448
Fix bundler issue with webpack 58e23642
Fix integration-tests issue with npm >= 788ac068
use https instead of git for mustache submodulec68bc08
Fix typoMaintainer changes
This version was pushed to npm by jaylinski, a new releaser for handlebars since your current version.
Updates
hosted-git-info
from 2.1.5 to 2.8.9Changelog
Sourced from hosted-git-info's changelog.
... (truncated)
Commits
8d4b369
chore(release): 2.8.929adfe5
fix: backport regex fix from #76afeaefd
chore(release): 2.8.85038b18
fix: #61 & #65 addressing issues w/ url.URL implmentation which regressed nod...7440afa
chore(release): 2.8.72d0bb66
fix: Do not attempt to use url.URL when unavailablef2cdfcf
fix: Do not pass scp-style URLs to the WhatWG url.URLe1b83df
chore(release): 2.8.6ff259a6
Ensure passwords in hosted Git URLs are correctly escaped624fd6f
chore(release): 2.8.5Maintainer changes
This version was pushed to npm by nlf, a new releaser for hosted-git-info since your current version.
Updates
ini
from 1.3.4 to 1.3.8Commits
a2c5da8
1.3.8af5c6bb
Do not use Object.create(null)8b648a1
don't test where our devdeps don't even workc74c8af
1.3.7024b8b5
update deps, add linting032fbaf
Use Object.create(null) to avoid default object property hazards2da9039
1.3.6cfea636
better git push script, before publish instead of after56d2805
do not allow invalid hazardous string as section name738eca5
v1.3.5Maintainer changes
This version was pushed to npm by isaacs, a new releaser for ini since your current version.
Updates
is-my-json-valid
from 2.15.0 to 2.20.6Commits
58d30cb
2.20.6f76edf0
Merge pull request #188 from axelniklasson/master4eef089
Upgrade jsonpointer to address security vulnerability441f812
2.20.5d36a1b1
Merge pull request #182 from ChALkeR/chalker/fix-commab6ea484
Fix uri prefix detection5389c5b
Merge pull request #181 from ChALkeR/chalker/fix-undefdf5b313
add funding filec224619
Fix 'required' implementation2534af4
2.20.4Maintainer changes
This version was pushed to npm by linusu, a new releaser for is-my-json-valid since your current version.
Updates
is-url
from 1.2.2 to 1.2.4Commits
d204828
1.2.4a524d7f
Merge pull request #20 from davisjam/FixUndefb33cac4
handle undefined string8585fac
Merge pull request #23 from segmentio/fix-testse572e5d
add travis confige1c30e1
remove cruft and fix the test scriptf1c83cf
1.2.355ee8ee
Merge pull request #18 from davisjam/FixREDOS1495509
security: Fix REDOS vulnerabilityUpdates
jsonpointer
from 4.0.0 to 5.0.1Release notes
Sourced from jsonpointer's releases.
Commits
4a253c0
Adopt strictEqual changes and only return null when the get succeededbad4983
Fix null values throwing exception when traversing over while gettinga5706e8
test: Always use strictEqual to ensure null and undefined values are asserted...b8e1e6a
fix incorrect typings for compile get/set methodsc4de620
Merge pull request #53 from janl/release/5.0.08dbf304
feat: v584cf173
Merge pull request #52 from janl/fix/testf716e5c
chore: more rip travise2ae355
chore: remove commentd23693b
chore: update primary branchUpdates
urijs
from 1.18.4 to 1.19.11Release notes
Sourced from urijs's releases.
... (truncated)
Changelog
Sourced from urijs's changelog.
... (truncated)
Commits
b655c1b
chore(build): bumping to version 1.19.11b0c9796
fix(parse): handle CR,LF,TAB88805fd
fix(parse): handle excessive slashes in scheme-relative URLs926b2aa
chore(build): bumping to version 1.19.10a8166fe
fix(parse): handle excessive colons in scheme delimiter01920b5
chore(build): bumping to version 1.19.986d1052
fix(parse): remove leading whitespaceefae1e5
chore(build): bumping to version 1.19.86ea641c
fix(parse): case insensitive scheme - #41219e54c7
chore(build): bumping to version 1.19.7Updates
y18n
from 3.2.1 to 3.2.2Release notes
Sourced from y18n's releases.
Commits
Maintainer changes
This version was pushed to npm by oss-bot, a new releaser for y18n since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.