Bump the npm_and_yarn group across 1 directories with 18 updates #284

dependabot · 2024-02-21T11:41:23Z

Bumps the npm_and_yarn group with 3 updates in the /. directory: semver, npm and react-scripts.

Updates semver from 5.7.1 to 7.6.0

Release notes

v7.6.0

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

816c7b2 #667 postinstall for dependabot template-oss PR (@lukekarrys)

0bd24d9 #667 bump @npmcli/template-oss from 4.21.1 to 4.21.3 (@dependabot[bot])

e521932 #652 postinstall for dependabot template-oss PR (@lukekarrys)

8873991 #652 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

f317dc8 #652 bump @npmcli/template-oss from 4.19.0 to 4.21.0 (@dependabot[bot])

7303db1 #658 add clean() test for build metadata (#658) (@jethrodaniel)

6240d75 #656 add missing quotes in README.md (#656) (@zyxkad)

14d263f #625 postinstall for dependabot template-oss PR (@lukekarrys)

7c34e1a #625 bump @npmcli/template-oss from 4.18.1 to 4.19.0 (@dependabot[bot])

123e0b0 #622 postinstall for dependabot template-oss PR (@lukekarrys)

737d5e1 #622 bump @npmcli/template-oss from 4.18.0 to 4.18.1 (@dependabot[bot])

cce6180 #598 postinstall for dependabot template-oss PR (@lukekarrys)

b914a3d #598 bump @npmcli/template-oss from 4.17.0 to 4.18.0 (@dependabot[bot])

v7.5.4

7.5.4 (2023-07-07)

Bug Fixes

cc6fde2 #588 trim each range set before parsing (@lukekarrys)

99d8287 #583 correctly parse long build ids as valid (#583) (@lukekarrys)

v7.5.3

7.5.3 (2023-06-22)

Bug Fixes

abdd93d #571 set max lengths in regex for numeric and build identifiers (#571) (@lukekarrys)

Documentation

bf53dd8 #569 add example for > comparator (#569) (@mbtools)

v7.5.2

7.5.2 (2023-06-15)

Bug Fixes

58c791f #566 diff when detecting major change from prerelease (#566) (@lukekarrys)

5c8efbc #565 preserve build in raw after inc (#565) (@lukekarrys)

717534e #564 better handling of whitespace (#564) (@lukekarrys)

... (truncated)

Changelog

Sourced from semver's changelog.

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

816c7b2 #667 postinstall for dependabot template-oss PR (@lukekarrys)

0bd24d9 #667 bump @npmcli/template-oss from 4.21.1 to 4.21.3 (@dependabot[bot])

e521932 #652 postinstall for dependabot template-oss PR (@lukekarrys)

8873991 #652 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

f317dc8 #652 bump @npmcli/template-oss from 4.19.0 to 4.21.0 (@dependabot[bot])

7303db1 #658 add clean() test for build metadata (#658) (@jethrodaniel)

6240d75 #656 add missing quotes in README.md (#656) (@zyxkad)

14d263f #625 postinstall for dependabot template-oss PR (@lukekarrys)

7c34e1a #625 bump @npmcli/template-oss from 4.18.1 to 4.19.0 (@dependabot[bot])

123e0b0 #622 postinstall for dependabot template-oss PR (@lukekarrys)

737d5e1 #622 bump @npmcli/template-oss from 4.18.0 to 4.18.1 (@dependabot[bot])

cce6180 #598 postinstall for dependabot template-oss PR (@lukekarrys)

b914a3d #598 bump @npmcli/template-oss from 4.17.0 to 4.18.0 (@dependabot[bot])

7.5.4 (2023-07-07)

Bug Fixes

cc6fde2 #588 trim each range set before parsing (@lukekarrys)

99d8287 #583 correctly parse long build ids as valid (#583) (@lukekarrys)

7.5.3 (2023-06-22)

Bug Fixes

abdd93d #571 set max lengths in regex for numeric and build identifiers (#571) (@lukekarrys)

Documentation

bf53dd8 #569 add example for > comparator (#569) (@mbtools)

7.5.2 (2023-06-15)

Bug Fixes

58c791f #566 diff when detecting major change from prerelease (#566) (@lukekarrys)

5c8efbc #565 preserve build in raw after inc (#565) (@lukekarrys)

717534e #564 better handling of whitespace (#564) (@lukekarrys)

7.5.1 (2023-05-12)

Bug Fixes

... (truncated)

Commits

377f709 chore: release 7.6.0 (#661)
a7ab13a feat: preserve pre-release and build parts of a version on coerce (#671)
816c7b2 chore: postinstall for dependabot template-oss PR
0bd24d9 chore: bump @npmcli/template-oss from 4.21.1 to 4.21.3
e521932 chore: postinstall for dependabot template-oss PR
8873991 chore: chore: chore: postinstall for dependabot template-oss PR
f317dc8 chore: bump @npmcli/template-oss from 4.19.0 to 4.21.0
7303db1 chore: add clean() test for build metadata (#658)
6240d75 chore: add missing quotes in README.md (#656)
14d263f chore: postinstall for dependabot template-oss PR
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by npm-cli-ops, a new releaser for semver since your current version.

Updates npm from 6.14.8 to 10.4.0

Release notes

Sourced from npm's releases.

libnpmhook: v10.0.1

10.0.1 (2023-12-06)

Chores

f656b66 #7062 @npmcli/template-oss@4.21.3 (#7062) (@lukekarrys)

9754b17 #7051 use global npm for workspace tests (@lukekarrys)

3891757 #7051 @npmcli/template-oss@4.21.2 (@lukekarrys)

0270a7d #6807 set workspace engines (@lukekarrys)

fec08ad #6807 @npmcli/template-oss@4.19.0 (@lukekarrys)

libnpmhook: v10.0.0

10.0.0 (2023-08-31)

Features

fb31c7e trigger release process (@lukekarrys)

libnpmhook: v10.0.0-pre.0

10.0.0-pre.0 (2023-08-31)

⚠️ BREAKING CHANGES

support for node <=16.13 has been removed

support for node 14 has been removed

Bug Fixes

6b251b1 #6706 drop node 16.13.x support (@lukekarrys)

4caedd0 #6706 drop node14 support (@lukekarrys)

Dependencies

2ee0fb3 #6706 npm-registry-fetch@16.0.0

5d0d859 #6706 npm-registry-fetch@15.0.0

libnpmpublish: v9.0.4

9.0.4 (2024-01-24)

Dependencies

a50b03b #7141 sigstore@2.2.0 (#7141) (@bdehamer)

libnpmpublish: v9.0.3

9.0.3 (2023-12-06)

Chores

f656b66 #7062 @npmcli/template-oss@4.21.3 (#7062) (@lukekarrys)

9754b17 #7051 use global npm for workspace tests (@lukekarrys)

... (truncated)

Changelog

Sourced from npm's changelog.

10.4.0 (2024-01-24)

Features

35a098c #7175 display tree diff on --long (@wraithgar)

dffca29 #7174 format: print --dry-run diffs in table format (#7174) (@ritaaktay)

6d5f9ac #7133 dedupe - display difference when --dry-run is enabled (#7133) (@Blaumaus)

Bug Fixes

ec06f77 #7175 inline diff table code w/ summary code (@wraithgar)

d4ebfba #7157 use util.stripVTControlCharacters instead of strip-ansi (@wraithgar)

81c95c7 #7063 don't reset update notifier duration on every check (#7063) (@wraithgar)

Documentation

2b7eaad #7168 package-json: Reword warning about publishing local dependencies (#7168) (@DanKaplanSES)

67ab0f7 #7142 update: Replace comma with period in run on sentence (#7142) (@DanKaplanSES)

05c69dc #7150 config: State default configuration file affected by npm config set (#7150) (@DanKaplanSES)

44f4518 #7149 Link to the config command in the npm configuration description (#7149) (@DanKaplanSES)

dd5699f #7152 update: Fix a typo and remove unneeded statement (#7152) (@DanKaplanSES)

Dependencies

ec77e81 #7124 promise-call-limit@3.0.1

e32189c #7173 deduplicate tree

b7af4d9 #7173 tar-stream@3.1.7

6883743 #7173 @npmcli/run-script@7.0.4

739634d #7157 remove strip-ansi

162c82e #7148 pacote@17.0.6 (#7148) (@bdehamer)

a50b03b #7141 sigstore@2.2.0 (#7141) (@bdehamer)

f696b51 #7132 @sigstore/tuf@2.3.0 (#7132) (@bdehamer)

workspace: @npmcli/arborist@7.3.1

workspace: libnpmdiff@6.0.6

workspace: libnpmexec@7.0.7

workspace: libnpmfund@5.0.4

workspace: libnpmpack@6.0.6

workspace: libnpmpublish@9.0.4

Chores

a82ccc5 #7173 nock@13.5.0 (@wraithgar)

dcaa99c #7173 fix exec test (@wraithgar)

0d96080 #7162 release: do not exclude docs directory from CLI release commits (#7162) (@lukekarrys)

10.3.0 (2024-01-10)

Features

6673c77 #6914 add --libc option to override platform specific install (#6914) (@wraithgar, @Brooooooklyn)

... (truncated)

Commits

3b82f27 chore: release 10.4.0
35a098c feat: display tree diff on --long
ec06f77 fix: inline diff table code w/ summary code
ec77e81 deps: promise-call-limit@3.0.1
d3f1845 fix: clean up idealTree code
dffca29 feat(format): print --dry-run diffs in table format (#7174)
332ed08 chore: fix smoke test
a82ccc5 chore: nock@13.5.0
e32189c deps: deduplicate tree
dcaa99c chore: fix exec test
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by gar, a new releaser for npm since your current version.

Updates react-scripts from 3.4.3 to 5.0.1

Changelog

Sourced from react-scripts's changelog.

3.4.4 (2020-10-20)

v3.4.4 release bumps resolve-url-loader to a version for which npm audit does not report a vulnerability. Note that this vulnerability did not affect Create React App projects, so this change is only necessary to satisfy auditing tools.

Commits

19fa58d Publish
9802941 fix: webpack noise printed only if error or warning (#12245)
2eef1d0 Update templates to use React 18 createRoot (#12220)
221e511 Publish
5614c87 Add support for Tailwind (#11717)
20edab4 fix(webpackDevServer): disable overlay for warnings (#11413)
3afbbc0 Update all dependencies (#11624)
f5467d5 feat(eslint-config-react-app): support ESLint 8.x (#11375)
c7627ce Update webpack and dev server (#11646)
544befe Update package.json (#11597)
Additional commits viewable in compare view

Updates @babel/traverse from 7.11.5 to 7.23.9

Release notes

Sourced from @babel/traverse's releases.

v7.23.9 (2024-01-25)

🐛 Bug Fix

babel-helper-transform-fixture-test-runner, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-preset-env

#16225 fix: systemjs re-traverses helpers (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16226 Improve decorated private method check (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-runtime, babel-preset-env

#16224 Properly sort core-js@3 imports (@nicolo-ribaudo)

babel-traverse

#15383 fix: Don't throw in getTypeAnnotation when using TS+inference (@liuxingbaoyu)

Other

#16210 [eslint] Fix no-use-before-define for class ref in fields (@nicolo-ribaudo)

🏠 Internal

babel-core, babel-parser, babel-template

#16222 Migrate eslint-parser to cts (@liuxingbaoyu)

babel-types

#16213 Remove @babel/types props that are not produced by the parser (@liuxingbaoyu)

🏃‍♀️ Performance

babel-parser

#16072 perf: Improve parser performance for typescript (@liuxingbaoyu)

🔬 Output optimization

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-new-target, babel-plugin-transform-parameters, babel-plugin-transform-private-methods, babel-preset-env

#16218 Improve temporary variables for decorators (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#15959 Improve output of using (@liuxingbaoyu)

Committers: 4

Babel Bot (@babel-bot)

Huáng Jùnliàng (@JLHwung)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

v7.23.8 (2024-01-08)

🐛 Bug Fix

babel-preset-env

#16181 fix: preset-env throws exception for export * as x (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-decorators

#16201 fix: decorator binds getter/setter to ctx.access for public fields (@liuxingbaoyu)

#16199 fix: Class decorator correctly passes return value (@liuxingbaoyu)

↩️ Revert

#16202 Revert "chore: Update artifact tools (#16184)" (@JLHwung)

🔬 Output optimization

babel-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-function-name, babel-plugin-transform-parameters, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

... (truncated)

Changelog

Sourced from @babel/traverse's changelog.

v7.23.9 (2024-01-25)

🐛 Bug Fix

babel-helper-transform-fixture-test-runner, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-preset-env

#16225 fix: systemjs re-traverses helpers (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16226 Improve decorated private method check (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-runtime, babel-preset-env

#16224 Properly sort core-js@3 imports (@nicolo-ribaudo)

babel-traverse

#15383 fix: Don't throw in getTypeAnnotation when using TS+inference (@liuxingbaoyu)

Other

#16210 [eslint] Fix no-use-before-define for class ref in fields (@nicolo-ribaudo)

🏠 Internal

babel-core, babel-parser, babel-template

#16222 Migrate eslint-parser to cts (@liuxingbaoyu)

babel-types

#16213 Remove @babel/types props that are not produced by the parser (@liuxingbaoyu)

🏃‍♀️ Performance

babel-parser

#16072 perf: Improve parser performance for typescript (@liuxingbaoyu)

🔬 Output optimization

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-new-target, babel-plugin-transform-parameters, babel-plugin-transform-private-methods, babel-preset-env

#16218 Improve temporary variables for decorators (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#15959 Improve output of using (@liuxingbaoyu)

v7.23.8 (2024-01-08)

🐛 Bug Fix

babel-preset-env

#16181 fix: preset-env throws exception for export * as x (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-decorators

#16201 fix: decorator binds getter/setter to ctx.access for public fields (@liuxingbaoyu)

#16199 fix: Class decorator correctly passes return value (@liuxingbaoyu)

↩️ Revert

#16202 Revert "chore: Update artifact tools (#16184)" (@JLHwung)

🔬 Output optimization

babel-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-function-name, babel-plugin-transform-parameters, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#16194 Improve output of super() (@liuxingbaoyu)

v7.23.7 (2023-12-29)

🐛 Bug Fix

babel-traverse

#16191 fix: Crash when removing without Program (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-decorators

... (truncated)

Commits

a0dd614 v7.23.9
1200542 fix: Don't throw in getTypeAnnotation when using TS+inference (#15383)
e428a6d v7.23.7
d292822 fix: Crash when removing without Program (#16191)
d02c1f7 v7.23.6
cce807f Bump debug to ^4.3.1 (#16164)
8479012 v7.23.5
da7dc40 Do not remove bindings when removing assignment expression path (#16131)
fadc081 fix: Unexpected duplication of comments (#16110)
13a5c83 v7.23.4
Additional commits viewable in compare view

Updates json5 from 1.0.1 to 1.0.2

Release notes

Sourced from json5's releases.

v1.0.2

Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295). This has been backported to v1. (#298)

Changelog

Sourced from json5's changelog.

Unreleased [code, diff]

v2.2.3 [code, diff]

Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2 [code, diff]

... (truncated)

Commits

a62db1e 1.0.2
e0c23fe docs: update CHANGELOG for v1.0.2
62a6540 fix: add proto to objects and arrays
See full diff in compare view

Updates loader-utils from 1.2.3 to 2.0.4

Release notes

Sourced from loader-utils's releases.

v2.0.4

2.0.4 (2022-11-11)

Bug Fixes

ReDoS problem (#225) (ac09944)

v2.0.3

2.0.3 (2022-10-20)

Bug Fixes

security: prototype pollution exploit (#217) (a93cf6f)

v2.0.2

2.0.2 (2021-11-04)

Bug Fixes

base64 generation and unicode characters (#197) (8c2d24e)

v2.0.1

2.0.1 (2021-10-29)

Bug Fixes

md4 support on Node.js v17 (#193) (1069f61)

v2.0.0

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

minimum required Node.js version is 8.9.0 (#166) (c937e8c)

the getOptions method returns empty object on empty query (#167) (b595cfb)

Use md4 by default

v1.4.2

1.4.2 (2022-11-11)

Bug Fixes

ReDoS problem (#226) (17cbf8f)

... (truncated)

Changelog

Sourced from loader-utils's changelog.

2.0.4 (2022-11-11)

Bug Fixes

ReDoS problem (#225) (ac09944)

2.0.3 (2022-10-20)

Bug Fixes

security: prototype pollution exploit (#217) (a93cf6f)

2.0.2 (2021-11-04)

Bug Fixes

base64 generation and unicode characters (#197) (8c2d24e)

2.0.1 (2021-10-29)

Bug Fixes

md4 support on Node.js v17 (#193) (1069f61)

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

minimum required Node.js version is 8.9.0 (#166) (c937e8c)

the getOptions method returns empty object on empty query (#167) (b595cfb)

Use md4 by default

1.4.0 (2020-02-19)

Features

the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

1.3.0 (2020-02-19)

... (truncated)

Commits

6688b50 chore(release): 2.0.4
ac09944 fix: ReDoS problem (#225)
7162619 chore(release): 2.0.3
a93cf6f fix(security): prototype polution exploit (#217)
90c7c4b chore(release): 2.0.2
8c2d24e fix: base64 generation and unicode characters (#197)
5fb5562 chore(re...
Description has been truncated

Bumps the npm_and_yarn group with 3 updates in the /. directory: [semver](https://github.com/npm/node-semver), [npm](https://github.com/npm/cli) and [react-scripts](https://github.com/facebook/create-react-app/tree/HEAD/packages/react-scripts). Updates `semver` from 5.7.1 to 7.6.0 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v7.6.0) Updates `npm` from 6.14.8 to 10.4.0 - [Release notes](https://github.com/npm/cli/releases) - [Changelog](https://github.com/npm/cli/blob/latest/CHANGELOG.md) - [Commits](npm/cli@v6.14.8...v10.4.0) Updates `react-scripts` from 3.4.3 to 5.0.1 - [Release notes](https://github.com/facebook/create-react-app/releases) - [Changelog](https://github.com/facebook/create-react-app/blob/main/CHANGELOG-3.x.md) - [Commits](https://github.com/facebook/create-react-app/commits/react-scripts@5.0.1/packages/react-scripts) Updates `@babel/traverse` from 7.11.5 to 7.23.9 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.9/packages/babel-traverse) Updates `json5` from 1.0.1 to 1.0.2 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) Updates `loader-utils` from 1.2.3 to 2.0.4 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/v2.0.4/CHANGELOG.md) - [Commits](webpack/loader-utils@v1.2.3...v2.0.4) Updates `ansi-regex` from 2.1.1 to 5.0.1 - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@2.1.1...v5.0.1) Updates `qs` from 6.5.2 to 6.11.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.5.2...v6.11.0) Updates `follow-redirects` from 1.14.8 to 1.15.5 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.14.8...v1.15.5) Updates `ip` from 1.1.5 to 2.0.0 - [Commits](indutny/node-ip@v1.1.5...v2.0.0) Updates `jsdom` from 11.12.0 to 16.7.0 - [Release notes](https://github.com/jsdom/jsdom/releases) - [Changelog](https://github.com/jsdom/jsdom/blob/main/Changelog.md) - [Commits](jsdom/jsdom@11.12.0...16.7.0) Updates `minimatch` from 3.0.4 to 3.1.2 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.0.4...v3.1.2) Updates `http-cache-semantics` from 3.8.1 to 4.1.1 - [Commits](kornelski/http-cache-semantics@v3.8.1...v4.1.1) Updates `tar` from 4.4.13 to 6.2.0 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v4.4.13...v6.2.0) Updates `tough-cookie` from 2.4.3 to 4.1.3 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v2.4.3...v4.1.3) Updates `postcss` from 7.0.21 to 7.0.39 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/7.0.39/CHANGELOG.md) - [Commits](postcss/postcss@7.0.21...7.0.39) Updates `shell-quote` from 1.7.2 to 1.8.1 - [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md) - [Commits](ljharb/shell-quote@v1.7.2...v1.8.1) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) --- updated-dependencies: - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: npm dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: react-scripts dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: loader-utils dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: ansi-regex dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: qs dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: ip dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: jsdom dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: minimatch dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: http-cache-semantics dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: tough-cookie dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: shell-quote dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2024-09-01T18:41:02Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

dependabot bot added the dependencies Pull requests that update a dependency file label Feb 21, 2024

dependabot bot mentioned this pull request Feb 21, 2024

Bump the npm_and_yarn group across 1 directories with 17 updates #278

Closed

a-gubskiy closed this Sep 1, 2024

dependabot bot deleted the dependabot/npm_and_yarn/npm_and_yarn-security-group-d123f3ec14 branch September 1, 2024 18:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 1 directories with 18 updates #284

Bump the npm_and_yarn group across 1 directories with 18 updates #284

dependabot bot commented on behalf of github Feb 21, 2024

dependabot bot commented on behalf of github Sep 1, 2024

Bump the npm_and_yarn group across 1 directories with 18 updates #284

Bump the npm_and_yarn group across 1 directories with 18 updates #284

Conversation

dependabot bot commented on behalf of github Feb 21, 2024

v7.6.0

7.6.0 (2024-01-31)

Features

Chores

v7.5.4

7.5.4 (2023-07-07)

Bug Fixes

v7.5.3

7.5.3 (2023-06-22)

Bug Fixes

Documentation

v7.5.2

7.5.2 (2023-06-15)

Bug Fixes

7.6.0 (2024-01-31)

Features

Chores

7.5.4 (2023-07-07)

Bug Fixes

7.5.3 (2023-06-22)

Bug Fixes

Documentation

7.5.2 (2023-06-15)

Bug Fixes

7.5.1 (2023-05-12)

Bug Fixes

libnpmhook: v10.0.1

10.0.1 (2023-12-06)

Chores

libnpmhook: v10.0.0

10.0.0 (2023-08-31)

Features

libnpmhook: v10.0.0-pre.0

10.0.0-pre.0 (2023-08-31)

⚠️ BREAKING CHANGES

Bug Fixes

Dependencies

libnpmpublish: v9.0.4

9.0.4 (2024-01-24)

Dependencies

libnpmpublish: v9.0.3

9.0.3 (2023-12-06)

Chores

10.4.0 (2024-01-24)

Features

Bug Fixes

Documentation

Dependencies

Chores

10.3.0 (2024-01-10)

Features

3.4.4 (2020-10-20)

v7.23.9 (2024-01-25)

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

🔬 Output optimization

Committers: 4

v7.23.8 (2024-01-08)

🐛 Bug Fix

↩️ Revert

🔬 Output optimization

v7.23.9 (2024-01-25)

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

🔬 Output optimization

v7.23.8 (2024-01-08)

🐛 Bug Fix

↩️ Revert

🔬 Output optimization

v7.23.7 (2023-12-29)

🐛 Bug Fix

v1.0.2

Unreleased [code, diff]

v2.2.3 [code, diff]