From 19b69cf4453f99098bd9b2a19c4686e6fc2fb7fe Mon Sep 17 00:00:00 2001 From: bizob2828 Date: Tue, 5 Jul 2022 18:56:44 +0000 Subject: [PATCH 1/3] Setting version to v0.2.0. --- package-lock.json | 4 ++-- package.json | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index d95b82c..4d7ecb3 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "@newrelic/next", - "version": "0.1.1", + "version": "0.2.0", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "@newrelic/next", - "version": "0.1.1", + "version": "0.2.0", "license": "Apache-2.0", "dependencies": { "semver": "^7.3.7" diff --git a/package.json b/package.json index b228983..f777b30 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "@newrelic/next", - "version": "0.1.1", + "version": "0.2.0", "description": "Next.js instrumentation for the New Relic Node.js agent. ", "main": "index.js", "scripts": { From c1827ce85f861acde7d11237fd15236846206797 Mon Sep 17 00:00:00 2001 From: bizob2828 Date: Tue, 5 Jul 2022 18:56:45 +0000 Subject: [PATCH 2/3] Adds auto-generated release notes. --- CHANGELOG.md | 219 +++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 219 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 2302835..cbaa532 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,222 @@ +### v0.2.0 (2022-07-05) + +* Adds an additional path to register `next-server` when running a Next.js app with a standalone server. + +* **BREAKING**: Fixed instrumentation to only support middleware in >=12.2.0 of Next.js + * Next.js has made middleware [stable](https://nextjs.org/docs/advanced-features/middleware). All attempts to track middleware before 12.2.0 have been removed. + +Bump NPM dependencies to their latest version + +--- NOTES NEEDS REVIEW --- +Bumps [protobufjs](https://github.com/protobufjs/protobuf.js) from 6.11.2 to 6.11.3. +
+Release notes +

Sourced from protobufjs's releases.

+
+

v6.11.3

+

6.11.3 (2022-05-20)

+

Bug Fixes

+ +
+
+
+Changelog +

Sourced from protobufjs's changelog.

+
+

6.11.3 (2022-05-20)

+

Bug Fixes

+ +
+
+
+Commits + +
+
+ + +[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=protobufjs&package-manager=npm_and_yarn&previous-version=6.11.2&new-version=6.11.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) + +Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. + +[//]: # (dependabot-automerge-start) +[//]: # (dependabot-automerge-end) + +--- + +
+Dependabot commands and options +
+ +You can trigger Dependabot actions by commenting on this PR: +- `@dependabot rebase` will rebase this PR +- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it +- `@dependabot merge` will merge this PR after your CI passes on it +- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it +- `@dependabot cancel merge` will cancel a previously requested merge and block automerging +- `@dependabot reopen` will reopen this PR if it is closed +- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually +- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) +- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) +- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) +- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language +- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language +- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language +- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language + +You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-node-nextjs/network/alerts). + +
+-------------------------- + +--- NOTES NEEDS REVIEW --- +Bumps [async](https://github.com/caolan/async) from 2.6.3 to 2.6.4. +
+Changelog +

Sourced from async's changelog.

+
+

v2.6.4

+
    +
  • Fix potential prototype pollution exploit (#1828)
    • +
+
+
+
+Commits + +
+
+Maintainer changes +

This version was pushed to npm by hargasinski, a new releaser for async since your current version.

+
+
+ + +[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=async&package-manager=npm_and_yarn&previous-version=2.6.3&new-version=2.6.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) + +Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. + +[//]: # (dependabot-automerge-start) +[//]: # (dependabot-automerge-end) + +--- + +
+Dependabot commands and options +
+ +You can trigger Dependabot actions by commenting on this PR: +- `@dependabot rebase` will rebase this PR +- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it +- `@dependabot merge` will merge this PR after your CI passes on it +- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it +- `@dependabot cancel merge` will cancel a previously requested merge and block automerging +- `@dependabot reopen` will reopen this PR if it is closed +- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually +- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) +- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) +- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) +- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language +- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language +- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language +- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language + +You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-node-nextjs/network/alerts). + +
+-------------------------- + +* Bumped tap to ^16.0.1. + +* Resolved dev-only audit warnings. + +--- NOTES NEEDS REVIEW --- +Bumps [moment](https://github.com/moment/moment) from 2.29.1 to 2.29.2. +
+Changelog +

Sourced from moment's changelog.

+
+

2.29.2 See full changelog

+
    +
  • Release Apr 3 2022
    • +
+

Address https://github.com/advisories/GHSA-8hfj-j24r-96c4

+
+
+
+Commits +
    +
  • 75e2ac5 Build 2.29.2
    • +
  • 5a29877 Bump version to 2.29.2
    • +
  • 4fd847b Update changelog for 2.29.2
    • +
  • 4211bfc [bugfix] Avoid loading path-looking locales from fs
    • +
  • f2a813a [misc] Fix indentation (according to prettier)
    • +
  • 7a10de8 [test] Avoid hours around DST
    • +
  • e968092 [locale] ar-ly: fix locale name (#5828)
    • +
  • 53d7ee6 [misc] fix builds (#5836)
    • +
  • 52019f1 [misc] Specify length of toArray return type (#5766)
    • +
  • 0dcaaa6 [locale] tr: update translation of Monday and Saturday (#5756)
    • +
  • Additional commits viewable in compare view
    • +
+
+
+ + +[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=moment&package-manager=npm_and_yarn&previous-version=2.29.1&new-version=2.29.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) + +Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. + +[//]: # (dependabot-automerge-start) +[//]: # (dependabot-automerge-end) + +--- + +
+Dependabot commands and options +
+ +You can trigger Dependabot actions by commenting on this PR: +- `@dependabot rebase` will rebase this PR +- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it +- `@dependabot merge` will merge this PR after your CI passes on it +- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it +- `@dependabot cancel merge` will cancel a previously requested merge and block automerging +- `@dependabot reopen` will reopen this PR if it is closed +- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually +- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) +- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) +- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) +- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language +- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language +- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language +- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language + +You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-node-nextjs/network/alerts). + +
+-------------------------- + ### v0.1.1 (2022-04-04) * Added support for middleware in > 12.1.1 of Next.js. The return of `getModuleContext` is now an async function. From 1bc36c39992ac7d7a70a520df173596c2f119657 Mon Sep 17 00:00:00 2001 From: Bob Evans Date: Tue, 5 Jul 2022 15:05:16 -0400 Subject: [PATCH 3/3] tweaked changelog for 0.2.0 --- CHANGELOG.md | 219 ++------------------------------------------------- 1 file changed, 5 insertions(+), 214 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index cbaa532..cfea1ff 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,221 +1,12 @@ ### v0.2.0 (2022-07-05) -* Adds an additional path to register `next-server` when running a Next.js app with a standalone server. +* **BREAKING**: Fixed instrumentation to only support middleware in `>=12.2.0` of Next.js + * Next.js has made middleware [stable](https://nextjs.org/docs/advanced-features/middleware). + * All attempts in `@newrelic/next` to track middleware before 12.2.0 have been removed. -* **BREAKING**: Fixed instrumentation to only support middleware in >=12.2.0 of Next.js - * Next.js has made middleware [stable](https://nextjs.org/docs/advanced-features/middleware). All attempts to track middleware before 12.2.0 have been removed. +* Added an additional path to register `next-server` when running a Next.js app with a standalone server. -Bump NPM dependencies to their latest version - ---- NOTES NEEDS REVIEW --- -Bumps [protobufjs](https://github.com/protobufjs/protobuf.js) from 6.11.2 to 6.11.3. -
-Release notes -

Sourced from protobufjs's releases.

-
-

v6.11.3

-

6.11.3 (2022-05-20)

-

Bug Fixes

- -
-
-
-Changelog -

Sourced from protobufjs's changelog.

-
-

6.11.3 (2022-05-20)

-

Bug Fixes

- -
-
-
-Commits - -
-
- - -[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=protobufjs&package-manager=npm_and_yarn&previous-version=6.11.2&new-version=6.11.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) - -Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. - -[//]: # (dependabot-automerge-start) -[//]: # (dependabot-automerge-end) - ---- - -
-Dependabot commands and options -
- -You can trigger Dependabot actions by commenting on this PR: -- `@dependabot rebase` will rebase this PR -- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it -- `@dependabot merge` will merge this PR after your CI passes on it -- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it -- `@dependabot cancel merge` will cancel a previously requested merge and block automerging -- `@dependabot reopen` will reopen this PR if it is closed -- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language -- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language -- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language -- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - -You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-node-nextjs/network/alerts). - -
--------------------------- - ---- NOTES NEEDS REVIEW --- -Bumps [async](https://github.com/caolan/async) from 2.6.3 to 2.6.4. -
-Changelog -

Sourced from async's changelog.

-
-

v2.6.4

-
    -
  • Fix potential prototype pollution exploit (#1828)
    • -
-
-
-
-Commits - -
-
-Maintainer changes -

This version was pushed to npm by hargasinski, a new releaser for async since your current version.

-
-
- - -[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=async&package-manager=npm_and_yarn&previous-version=2.6.3&new-version=2.6.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) - -Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. - -[//]: # (dependabot-automerge-start) -[//]: # (dependabot-automerge-end) - ---- - -
-Dependabot commands and options -
- -You can trigger Dependabot actions by commenting on this PR: -- `@dependabot rebase` will rebase this PR -- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it -- `@dependabot merge` will merge this PR after your CI passes on it -- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it -- `@dependabot cancel merge` will cancel a previously requested merge and block automerging -- `@dependabot reopen` will reopen this PR if it is closed -- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language -- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language -- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language -- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - -You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-node-nextjs/network/alerts). - -
--------------------------- - -* Bumped tap to ^16.0.1. - -* Resolved dev-only audit warnings. - ---- NOTES NEEDS REVIEW --- -Bumps [moment](https://github.com/moment/moment) from 2.29.1 to 2.29.2. -
-Changelog -

Sourced from moment's changelog.

-
-

2.29.2 See full changelog

-
    -
  • Release Apr 3 2022
    • -
-

Address https://github.com/advisories/GHSA-8hfj-j24r-96c4

-
-
-
-Commits -
    -
  • 75e2ac5 Build 2.29.2
    • -
  • 5a29877 Bump version to 2.29.2
    • -
  • 4fd847b Update changelog for 2.29.2
    • -
  • 4211bfc [bugfix] Avoid loading path-looking locales from fs
    • -
  • f2a813a [misc] Fix indentation (according to prettier)
    • -
  • 7a10de8 [test] Avoid hours around DST
    • -
  • e968092 [locale] ar-ly: fix locale name (#5828)
    • -
  • 53d7ee6 [misc] fix builds (#5836)
    • -
  • 52019f1 [misc] Specify length of toArray return type (#5766)
    • -
  • 0dcaaa6 [locale] tr: update translation of Monday and Saturday (#5756)
    • -
  • Additional commits viewable in compare view
    • -
-
-
- - -[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=moment&package-manager=npm_and_yarn&previous-version=2.29.1&new-version=2.29.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) - -Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. - -[//]: # (dependabot-automerge-start) -[//]: # (dependabot-automerge-end) - ---- - -
-Dependabot commands and options -
- -You can trigger Dependabot actions by commenting on this PR: -- `@dependabot rebase` will rebase this PR -- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it -- `@dependabot merge` will merge this PR after your CI passes on it -- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it -- `@dependabot cancel merge` will cancel a previously requested merge and block automerging -- `@dependabot reopen` will reopen this PR if it is closed -- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language -- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language -- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language -- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - -You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-node-nextjs/network/alerts). - -
--------------------------- +* Updated dev-dependencies to clear security audit warnings. ### v0.1.1 (2022-04-04)