Bump the npm_and_yarn group across 1 directory with 8 updates

[dependabot]

Bumps the npm_and_yarn group with 3 updates in the / directory: payload, nodemailer and @payloadcms/plugin-cloud.

Updates payload from 2.11.1 to 2.30.2

Release notes

Sourced from payload's releases.

v2.30.2

2.30.2 (2024-10-17)

Bug Fixes

• applies resize after cropping if resizeOptions are defined (#8535) (f2284f3)
• calculates correct aspect ratio dimensions on sharp based files (#8510) (9d05b82), closes #8317
• db-postgres: build indexes for relationships (#8446) (d05e3b0)
• db-postgres: port many various fixes from 3.0 (#8468) (1347b6c)
• db-postgres: select hasMany nested to array + tab/group (#8739) (0efc610)
• richtext-lexical: add target _blank for new-tab in linkFeature (#8571) (61e8ce1), closes #8569

v2.30.1

2.30.1 (2024-10-02)

Bug Fixes

• db-mongodb: properly filters out number field values with the exists operator filter (#8415) (0586f23), closes #8181
• sorting by id incorrectly orders by version.id (#8450) (1d38e6d)

v2.30.0

2.30.0 (2024-09-27)

• export toast from react toastify in payload (#8438) (17fc2d1)

v2.29.0

2.29.0 (2024-09-25)

Features

• add new option to disable JOI validation (#8067) (28a0650)

Bug Fixes

• treat empty strings as null / undefined for exists queries (#8336) (31d0b30), closes #7714
• db-postgres: localized items in arrays with versions (#8334) (c86526b)
• db-postgres: querying on array within a relationship field (#8153) (170ea5b)
• db-postgres: sanitize tab/group path for table name (#8010) (ba7a043)

v2.28.0

2.28.0 (2024-09-04)

Features

• collections can use custom database operations (#7675) (6ba293c) (@​kendelljoseph)

... (truncated)

Changelog

Sourced from payload's changelog.

2.30.2 (2024-10-17)

Bug Fixes

• applies resize after cropping if resizeOptions are defined (#8535) (f2284f3)
• calculates correct aspect ratio dimensions on sharp based files (#8510) (9d05b82), closes #8317
• db-postgres: build indexes for relationships (#8446) (d05e3b0)
• db-postgres: port many various fixes from 3.0 (#8468) (1347b6c)
• db-postgres: select hasMany nested to array + tab/group (#8739) (0efc610)
• richtext-lexical: add target _blank for new-tab in linkFeature (#8571) (61e8ce1), closes #8569

2.30.1 (2024-10-02)

Bug Fixes

• db-mongodb: properly filters out number field values with the exists operator filter (#8415) (0586f23), closes #8181
• sorting by id incorrectly orders by version.id (#8450) (1d38e6d)

2.30.0 (2024-09-27)

• export toast from react toastify in payload (#8438) (17fc2d1)

2.29.0 (2024-09-25)

Features

• add new option to disable JOI validation (#8067) (28a0650)

Bug Fixes

• db-postgres: localized items in arrays with versions (#8334) (c86526b)
• db-postgres: querying on array within a relationship field (#8153) (170ea5b)
• db-postgres: sanitize tab/group path for table name (#8010) (ba7a043)
• treat empty strings as null / undefined for exists queries (#8336) (31d0b30), closes #7714

2.28.0 (2024-09-04)

Features

• collections can use custom database operations (#7675) (6ba293c)

Bug Fixes

• db-postgres: migration exit codes (#7873) (25e9bc6), closes #7031
• db-postgres: query hasMany text/number in array/blocks (#8033) (96a624a)

... (truncated)

Commits

• 6690c37 chore(release): payload/2.30.2 [skip ci]
• cc99c3a chore: improves getLatestCollectionVersion where constraints (#8747)
• 9d05b82 fix: calculates correct aspect ratio dimensions on sharp based files (#8510)
• f2284f3 fix: applies resize after cropping if resizeOptions are defined (#8535)
• 1347b6c fix(db-postgres): port many various fixes from 3.0 (#8468)
• 4c1a5dc chore(release): payload/2.30.1 [skip ci]
• a12d1f4 chore(deps): bump the production-deps group with 16 updates (#8492)
• b9f236a chore(deps): bump nodemailer (#8453)
• 1d38e6d fix: sorting by id incorrectly orders by version.id (#8450)
• d582619 chore(release): payload/2.30.0 [skip ci]
• Additional commits viewable in compare view

Updates body-parser from 1.20.1 to 1.20.3

Release notes

Sourced from body-parser's releases.

1.20.3

What's Changed

Important

• deps: [email protected]
• add depth option to customize the depth level in the parser
• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity). Documentation

Other changes

• chore: add support for OSSF scorecard reporting by @​inigomarquinez in expressjs/body-parser#522
• ci: fix errors in ci github action for node 8 and 9 by @​inigomarquinez in expressjs/body-parser#523
• fix: pin to [email protected] by @​wesleytodd in expressjs/body-parser#527
• deps: [email protected] by @​melikhov-dev in expressjs/body-parser#521
• Add OSSF Scorecard badge by @​bjohansebas in expressjs/body-parser#531
• Linter by @​UlisesGascon in expressjs/body-parser#534
• Release: 1.20.3 by @​UlisesGascon in expressjs/body-parser#535

New Contributors

• @​inigomarquinez made their first contribution in expressjs/body-parser#522
• @​melikhov-dev made their first contribution in expressjs/body-parser#521
• @​bjohansebas made their first contribution in expressjs/body-parser#531
• @​UlisesGascon made their first contribution in expressjs/body-parser#534

Full Changelog: expressjs/body-parser@1.20.2...1.20.3

1.20.2

• Fix strict json error message on Node.js 19+
• deps: content-type@~1.0.5
  • perf: skip value escaping when unnecessary
• deps: [email protected]

Changelog

Sourced from body-parser's changelog.

1.20.3 / 2024-09-10

• deps: [email protected]
• add depth option to customize the depth level in the parser
• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

1.20.2 / 2023-02-21

• Fix strict json error message on Node.js 19+
• deps: content-type@~1.0.5
  • perf: skip value escaping when unnecessary
• deps: [email protected]

Commits

• 1752951 1.20.3
• 39744cf chore: linter (#534)
• b2695c4 Merge commit from fork
• ade0f3f add scorecard to readme (#531)
• 99a1bd6 deps: [email protected] (#521)
• 9478591 fix: pin to [email protected]
• 83db46a ci: fix errors in ci github action for node 8 and 9 (#523)
• 9d4e212 chore: add support for OSSF scorecard reporting (#522)
• ee91374 1.20.2
• 368a93a Fix strict json error message on Node.js 19+
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.

Updates cookie from 0.5.0 to 0.6.0

Release notes

Sourced from cookie's releases.

0.6.0

• Add partitioned option

Changelog

Sourced from cookie's changelog.

0.6.0 / 2023-11-06

• Add partitioned option

Commits

• 38323ba 0.6.0
• 7560154 build: [email protected]
• c45b52d docs: switch badges to badgen
• 84a1567 Add partitioned option
• c67a478 docs: fix typos in HISTORY
• 52a76c1 docs: fix typo in HISTORY
• 5f22857 Fix typo in JSDoc
• da7e44e build: [email protected]
• 936036a build: [email protected]
• 197f670 build: [email protected]
• Additional commits viewable in compare view

Updates path-to-regexp from 0.1.7 to 0.1.10

Release notes

Sourced from path-to-regexp's releases.

Backtrack protection

Fixed

• Add backtrack protection to parameters 29b96b4
  • This will break some edge cases but should improve performance

pillarjs/path-to-regexp@v0.1.9...v0.1.10

Support non-lookahead regex output

Added

• Allow a non-lookahead regex (#312) c4272e4

component/path-to-regexp@v0.1.8...v0.1.9

Support named matching groups in RegExp

Added

• Add support for named matching groups (#301) 114f62d

pillarjs/path-to-regexp@v0.1.7...v0.1.8

Commits

• c827fce 0.1.10
• 29b96b4 Add backtrack protection to parameters
• ac4c234 Update repo url (#314)
• bdb6635 0.1.9
• c4272e4 Allow a non-lookahead regex (#312)
• 51a1955 0.1.8
• 114f62d Add support for named matching groups (#301)
• See full diff in compare view

Updates send from 0.18.0 to 0.19.0

Release notes

Sourced from send's releases.

0.19.0

What's Changed

• Remove link renderization in html while redirecting (pillarjs/send#235)

New Contributors

• @​UlisesGascon made their first contribution in pillarjs/send#235

Full Changelog: pillarjs/send@0.18.0...0.19.0

Changelog

Sourced from send's changelog.

0.19.0 / 2024-09-10

• Remove link renderization in html while redirecting

Commits

• 9d2db99 0.19.0
• ae4f298 Merge commit from fork
• See full diff in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for send since your current version.

Updates serve-static from 1.15.0 to 1.16.2

Release notes

Sourced from serve-static's releases.

1.16.0

What's Changed

• Remove link renderization in html while redirecting (expressjs/serve-static#173)

New Contributors

• @​UlisesGascon made their first contribution in expressjs/serve-static#173

Full Changelog: expressjs/serve-static@v1.15.0...1.16.0

Changelog

Sourced from serve-static's changelog.

1.16.2 / 2024-09-11

• deps: encodeurl@~2.0.0

1.16.1 / 2024-09-11

• deps: [email protected]

1.16.0 / 2024-09-10

• Remove link renderization in html while redirecting

Commits

• ec9c5ec 1.16.2
• f454d37 fix(deps): encodeurl@~2.0.0
• 77a8255 1.16.1
• 4263f49 fix(deps): [email protected]
• 48c7397 1.16.0
• 0c11fad Merge commit from fork
• See full diff in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for serve-static since your current version.

Updates nodemailer from 6.9.8 to 6.9.9

Release notes

Sourced from nodemailer's releases.

v6.9.9

6.9.9 (2024-02-01)

Bug Fixes

• security: Fix issues described in GHSA-9h6g-pr28-7cqp. Do not use eternal matching pattern if only a few occurences are expected (dd8f5e8)
• tests: Use native node test runner, added code coverage support, removed grunt (#1604) (be45c1b)

Changelog

Sourced from nodemailer's changelog.

6.9.9 (2024-02-01)

Bug Fixes

• security: Fix issues described in GHSA-9h6g-pr28-7cqp. Do not use eternal matching pattern if only a few occurences are expected (dd8f5e8)
• tests: Use native node test runner, added code coverage support, removed grunt (#1604) (be45c1b)

Commits

• 5a2e10f chore(master): release 6.9.9 [skip-ci] (#1606)
• dd8f5e8 fix(security): Fix issues described in GHSA-9h6g-pr28-7cqp. Do not use eterna...
• 2c2b46a chore: do not use caret in version specifier
• be45c1b fix(tests): Use native node test runner, added code coverage support, removed...
• See full diff in compare view

Updates @payloadcms/plugin-cloud from 3.0.0 to 3.0.2

Commits

• aca5676 chore(release): plugin-cloud/3.0.2 [skip ci]
• 1f09348 fix(plugin-cloud): better logging on static handler (#7924)
• 28a6d14 chore(deps): bump nodemailer from 6.9.8 to 6.9.9 in /packages/plugin-cloud (#...
• 1f2af09 chore(release): plugin-cloud/3.0.1 [skip ci]
• 831f1ff fix(plugin-cloud): purge cache for all sizes (#5301)
• b76c5c8 chore: update all package.json repository urls
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.