Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the npm_and_yarn group group with 2 updates #72

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): bump the npm_and_yarn group group with 2 updates #72

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Feb 27, 2024
edited
Loading

Bumps the npm_and_yarn group group with 2 updates: @nrwl/nx-cloud and axios.

Updates @nrwl/nx-cloud from 15.0.2 to 18.0.0

Release notes

Sourced from @​nrwl/nx-cloud's releases.

18.0.0 (2024-02-03)

Nx 18 introduces Project Crystal 💎, a significant shift towards making Nx more transparent and easy to understand! Learn more here!. This is now enabled by default where avaialble and is the reason why we decided to mark it as a major version.

Note: Though this is a major version, there are no removals of previous deprecations. Any deprecations which were previously scheduled for Nx 18 are now scheduled for Nx 19 which will still be coming out around April 2024.

🚀 Features

  • angular: add generator to convert targets to use the esbuild-based application executor (#21333)
  • core: don't clear NX_BASE or NX_HEAD (#20125)
  • core: log to guide users to show details after project generation (#21350)
  • core: improve nx connect success message (#21295)
  • core: add support for loading .ts files using ESM (#21268)
  • core: support --use-agents and --no-agents (#21472)
  • core: enable project crystal by default (#21403)
  • core: move distribution to beginning of generated ci workflows (#21483)
  • core: add migration to disable adding plugins automatically in existing workspaces (#21508)
  • core: add log lines grouping for GH Actions (#21357)
  • core: add fallback flow to nx init when no plugins are detected (#21538)
  • core: improve the commented dte message on ci-workflows (#21524)
  • core: add e2e to ci workflows (#21487)
  • devkit: improving error handeling read target options (#20336)
  • devkit: add loadConfigFile function for plugins to use (#21511)
  • linter: add error and warning statistics (#18313)
  • linter: add option for @​nx/dependency-checks to update workspace dependencies using local file paths (#20157)
  • nextjs: upgrade Next.js 14.0.3 (#20334)
  • nx-dev: more logos & announcement banner (#21444)
  • react-native: add useTransformReactJSX babel config to generators (#19170)
  • react-native: upgrade react native to 0.73 (#20896)
  • vite: allow passing path to custom tsconfig file when skipTypeCheck is false (#19784)

🩹 Fixes

  • nestjs lib generator pass skipPackageJson flag to js lib generator (#20442)
  • angular: fix dev-server validation for esbuildMiddleware (#21413)
  • angular: should not log invalid extension includedScripts (#21441)
  • angular: handle indexHtmlTransformer option in dev-server correctly (#21520)
  • bundling: consider index/folder imports in manual file resolution (#19030)
  • core: remove misleading message at front of error (#21443)
  • core: new generator not skipping package installation (#17927)
  • core: include typescript package when calculating project hashes (#21285)
  • core: do not append node_module paths in run-script executor (#21445)
  • core: update axios to address CVE-2023-45857 (#20493)
  • core: Add missing migration from playwright (#21448)
  • core: always remove cursor reset in terminal output for Windows (#21467)
  • core: do not run pty in run-script when we're not TTY (#21496)
  • core: target defaults should be able to apply to multiple targets with the same executor (#21438)
  • core: nx build --graph file.json should work in subdirectories (#19858)
  • core: Update Nx Welcome to include nx show project (#21509)
  • core: handle negative patterns better when specified in pnpm-workspaces (#19983)

... (truncated)

Commits
  • 26a815c chore(core): add one off exception for next.js (#21572)
  • 7623471 fix(core): handle spaces when launching nxFork (#21571)
  • f309b25 feat(core): add e2e to ci workflows (#21487)
  • 197e670 cleanup(testing): fix cypress e2e tests (#21551)
  • d9b4cb2 chore(misc): fix e2es for cache and run (#21561)
  • bc6e58f fix(core): fix missing nxCloud error message on ci workflows (#21564)
  • 90d0453 fix(expo): set port for e2e (#21559)
  • cb3da6c chore(misc): disable rollup tests (#21563)
  • ce82723 chore(misc): re-enable convert-to-monorepo test to test without Nx plugins fo...
  • 5a818e3 feat(core): improve the commented dte message on ci-workflows (#21524)
  • Additional commits viewable in compare view

Updates axios from 0.21.4 to 1.1.3

Release notes

Sourced from axios's releases.

v1.1.3

Added

Added custom params serializer support #5113

Fixed

Fixed top-level export to keep them in-line with static properties #5109 Stopped including null values to query string. #5108 Restored proxy config backwards compatibility with 0.x #5097 Added back AxiosHeaders in AxiosHeaderValue #5103 Pin CDN install instructions to a specific version #5060 Handling of array values fixed for AxiosHeaders #5085

Chores

docs: match badge style, add link to them #5046 chore: fixing comments typo #5054 chore: update issue template #5061 chore: added progress capturing section to the docs; #5084

Contributors to this release

v1.1.2

Fixed

  • Fixed broken exports for UMD builds.

Contributors to this release

v1.1.1

Fixed

  • Fixed broken exports for common js. This fix breaks a prior fix, I will fix both issues ASAP but the commonJS use is more impactful.

Contributors to this release

... (truncated)

Changelog

Sourced from axios's changelog.

[1.1.3] - 2022-10-15

Added

  • Added custom params serializer support #5113

Fixed

  • Fixed top-level export to keep them in-line with static properties #5109
  • Stopped including null values to query string. #5108
  • Restored proxy config backwards compatibility with 0.x #5097
  • Added back AxiosHeaders in AxiosHeaderValue #5103
  • Pin CDN install instructions to a specific version #5060
  • Handling of array values fixed for AxiosHeaders #5085

Chores

  • docs: match badge style, add link to them #5046
  • chore: fixing comments typo #5054
  • chore: update issue template #5061
  • chore: added progress capturing section to the docs; #5084

Contributors to this release

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

[1.1.2] - 2022-10-07

Fixed

  • Fixed broken exports for UMD builds.

Contributors to this release

... (truncated)

Commits

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 27, 2024
@dependabot dependabot bot mentioned this pull request Feb 27, 2024
Closed
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 29ec7e8 to 72c9202 Compare February 28, 2024 11:43
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 72c9202 to 127e650 Compare February 29, 2024 05:51
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 127e650 to 581648c Compare February 29, 2024 06:40
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 581648c to 68fa5ba Compare February 29, 2024 12:42
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 68fa5ba to 762651d Compare March 1, 2024 06:03
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 762651d to 347321d Compare March 4, 2024 11:47
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 347321d to 3f9fc97 Compare March 7, 2024 05:11
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 3f9fc97 to bd26ab0 Compare March 8, 2024 14:43
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from bd26ab0 to 1f6c0b8 Compare March 12, 2024 07:28
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 1f6c0b8 to 2651e7c Compare March 13, 2024 07:18
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 2651e7c to 99f40fd Compare March 13, 2024 10:30
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from 99f40fd to b0b458c Compare March 15, 2024 08:32
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-security-group-19340db153 branch from b0b458c to 748cc84 Compare March 19, 2024 07:48