-
Notifications
You must be signed in to change notification settings - Fork 277
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps): bump the npm_and_yarn group across 4 directories with 12 updates #4697
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
… updates Bumps the npm_and_yarn group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | [zod](https://github.com/colinhacks/zod) | `3.22.4` | `3.22.5` | | [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.7` | `3.3.2` | | [minimatch](https://github.com/isaacs/minimatch) | `4.2.3` | `5.0.0` | | [@azure/identity](https://github.com/Azure/azure-sdk-for-js) | `2.0.4` | `4.2.1` | | [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` | | [elliptic](https://github.com/indutny/elliptic) | `6.5.3` | `6.5.5` | | [find-my-way](https://github.com/delvedor/find-my-way) | `2.2.4` | `2.2.5` | | [hosted-git-info](https://github.com/npm/hosted-git-info) | `2.8.8` | `2.8.9` | | [postcss](https://github.com/postcss/postcss) | `8.4.31` | `8.4.38` | Bumps the npm_and_yarn group with 2 updates in the /libraries/botframework-connector directory: [node-fetch](https://github.com/node-fetch/node-fetch) and [@azure/identity](https://github.com/Azure/azure-sdk-for-js). Bumps the npm_and_yarn group with 4 updates in the /testing/browser-functional/browser-echo-bot directory: [ansi-regex](https://github.com/chalk/ansi-regex), [braces](https://github.com/micromatch/braces), [glob-parent](https://github.com/gulpjs/glob-parent) and [path-parse](https://github.com/jbgutierrez/path-parse). Bumps the npm_and_yarn group with 1 update in the /tools directory: [@azure/identity](https://github.com/Azure/azure-sdk-for-js). Updates `zod` from 3.22.4 to 3.22.5 - [Release notes](https://github.com/colinhacks/zod/releases) - [Changelog](https://github.com/colinhacks/zod/blob/main/CHANGELOG.md) - [Commits](https://github.com/colinhacks/zod/commits) Updates `node-fetch` from 2.6.7 to 3.3.2 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.7...v3.3.2) Updates `minimatch` from 4.2.3 to 5.0.0 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v4.2.3...v5.0.0) Updates `@azure/identity` from 2.0.4 to 4.2.1 - [Release notes](https://github.com/Azure/azure-sdk-for-js/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-js/blob/main/documentation/Changelog-for-next-generation.md) - [Commits](https://github.com/Azure/azure-sdk-for-js/compare/@azure/identity_2.0.4...@azure/identity_4.2.1) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `elliptic` from 6.5.3 to 6.5.5 - [Commits](indutny/elliptic@v6.5.3...v6.5.5) Updates `find-my-way` from 2.2.4 to 2.2.5 - [Release notes](https://github.com/delvedor/find-my-way/releases) - [Commits](delvedor/find-my-way@v2.2.4...v2.2.5) Updates `hosted-git-info` from 2.8.8 to 2.8.9 - [Release notes](https://github.com/npm/hosted-git-info/releases) - [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md) - [Commits](npm/hosted-git-info@v2.8.8...v2.8.9) Updates `postcss` from 8.4.31 to 8.4.38 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.31...8.4.38) Updates `node-fetch` from 2.7.0 to 3.3.2 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.7...v3.3.2) Updates `@azure/identity` from 2.1.0 to 4.3.0 - [Release notes](https://github.com/Azure/azure-sdk-for-js/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-js/blob/main/documentation/Changelog-for-next-generation.md) - [Commits](https://github.com/Azure/azure-sdk-for-js/compare/@azure/identity_2.0.4...@azure/identity_4.2.1) Updates `ansi-regex` from 3.0.0 to 3.0.1 - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v3.0.0...v3.0.1) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `glob-parent` from 5.1.1 to 5.1.2 - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](gulpjs/glob-parent@v5.1.1...v5.1.2) Updates `path-parse` from 1.0.6 to 1.0.7 - [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7) Updates `@azure/identity` from 2.1.0 to 4.3.0 - [Release notes](https://github.com/Azure/azure-sdk-for-js/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-js/blob/main/documentation/Changelog-for-next-generation.md) - [Commits](https://github.com/Azure/azure-sdk-for-js/compare/@azure/identity_2.0.4...@azure/identity_4.2.1) --- updated-dependencies: - dependency-name: zod dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: minimatch dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@azure/identity" dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: find-my-way dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: hosted-git-info dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@azure/identity" dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: ansi-regex dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: glob-parent dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-parse dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@azure/identity" dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
the
dependencies
Pull requests that update a dependency file
label
Jun 27, 2024
Looks like these dependencies are updatable in another way, so this is no longer needed. |
dependabot
bot
deleted the
dependabot/npm_and_yarn/npm_and_yarn-21d4271ed0
branch
June 27, 2024 19:57
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 9 updates in the / directory:
3.22.4
3.22.5
2.6.7
3.3.2
4.2.3
5.0.0
2.0.4
4.2.1
3.0.2
3.0.3
6.5.3
6.5.5
2.2.4
2.2.5
2.8.8
2.8.9
8.4.31
8.4.38
Bumps the npm_and_yarn group with 2 updates in the /libraries/botframework-connector directory: node-fetch and @azure/identity.
Bumps the npm_and_yarn group with 4 updates in the /testing/browser-functional/browser-echo-bot directory: ansi-regex, braces, glob-parent and path-parse.
Bumps the npm_and_yarn group with 1 update in the /tools directory: @azure/identity.
Updates
zod
from 3.22.4 to 3.22.5Commits
Updates
node-fetch
from 2.6.7 to 3.3.2Release notes
Sourced from node-fetch's releases.
... (truncated)
Commits
8b3320d
fix: Remove the default connection close header. (#1736)7b86e94
fix: release "Allow URL class object as an argument for fetch()" #1696 (#1716)8ced5b9
docs: readme - non ESM example (#1707)71e376b
ci(release): use latest Node LTS (#1697)e093030
Allow URL class object as an argument for fetch() (#1696)55a4870
feat: add static Response.json (#1670)c071406
(1138) - Fixed HTTPResponseError with correct constructor and usage (#1666)6f72caa
docs: fix missing comma in example (#1623)2880238
fix: ReDoS referrer (#1611)e87b093
fix(Headers): don't forward secure headers on protocol change (#1599)Maintainer changes
This version was pushed to npm by node-fetch-bot, a new releaser for node-fetch since your current version.
Updates
minimatch
from 4.2.3 to 5.0.0Changelog
Sourced from minimatch's changelog.
... (truncated)
Commits
fc44f5f
5.0.09104d8d
Expect exclusively forward slash as path sep, same as node-glob58b72d3
fix(brace-expansion): ignore only blocks that begins with $ddfacbd
update brace-expansion55ed736
update package scripts and depsUpdates
@azure/identity
from 2.0.4 to 4.2.1Commits
183d301
Upgrade to a version ESRP Release that supports federated auth (#29612)9a2afdf
[identity] Prep for release (#29981)3caf203
[identity] Prepare identity for May release (#29441)0a69729
[core] CHANGELOG date for@azure-rest/core-client
release (#29440)88d244a
Sync eng/common directory with azure-sdk-tools for PR 8158 (#29423)7706373
[template-dpg] Suppress build failure (#29437)769c1b1
[EngSys] Update name of@azure-tools/test-utils
NO_CI8cd5bc2
[core] New multipart/form-data primitive in core-client-rest (#29047)73b9faa
[identity] Add changelog entry for MSALClient migration (#29419)b8e63a5
Post release automated changes for notificationhubs releases (#29431)Maintainer changes
This version was pushed to npm by microsoft1es, a new releaser for
@azure/identity
since your current version.Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
elliptic
from 6.5.3 to 6.5.5Commits
7570078
6.5.5206da2e
lib: lint0a78e03
[Fix] restore node < 4 compat43ac7f2
6.5.4f4bc72b
package: bump deps441b742
ec: validate that a point before deriving keyse71b2d9
lib: relint using eslint8421a01
build(deps): bump elliptic from 6.4.1 to 6.5.3 (#231)Updates
find-my-way
from 2.2.4 to 2.2.5Release notes
Sourced from find-my-way's releases.
Commits
b846810
Bumped v2.2.5264a688
Bumped v2.2.4771d019
Standard0118ab6
Enable versioning on demand (#172)Updates
hosted-git-info
from 2.8.8 to 2.8.9Changelog
Sourced from hosted-git-info's changelog.
Commits
8d4b369
chore(release): 2.8.929adfe5
fix: backport regex fix from #76Maintainer changes
This version was pushed to npm by nlf, a new releaser for hosted-git-info since your current version.
Updates
postcss
from 8.4.31 to 8.4.38Release notes
Sourced from postcss's releases.
Changelog
Sourced from postcss's changelog.
Commits
a69d45e
Release 8.4.38 version64e35d9
Update dependenciesc1ad8fb
Merge pull request #1932 from romainmenke/fix-warning-end-index--inventive-nu...b45e7e9
fix endIndex1bea246
failing test: for endIndex 0 in rangeBy0fd1d86
Add changelog auto release on Github49c906e
Release 8.4.37 versionb5bd92c
Fix another broken prev source map issue2882039
Update dependenciese5ad939
Release 8.4.36 versionUpdates
node-fetch
from 2.7.0 to 3.3.2Release notes
Sourced from node-fetch's releases.
... (truncated)
Commits
8b3320d
fix: Remove the default connection close header. (#1736)7b86e94
fix: release "Allow URL class object as an argument for fetch()" #1696 (#1716)8ced5b9
docs: readme - non ESM example (#1707)71e376b
ci(release): use latest Node LTS (#1697)e093030
Allow URL class object as an argument for fetch() (#1696)55a4870
feat: add static Response.json (#1670)c071406
(1138) - Fixed HTTPResponseError with correct constructor and usage (#1666)6f72caa
docs: fix missing comma in example (#1623)2880238
fix: ReDoS referrer (#1611)e87b093
fix(Headers): don't forward secure headers on protocol change (#1599)Maintainer changes
This version was pushed to npm by node-fetch-bot, a new releaser for node-fetch since your current version.
Updates
@azure/identity
from 2.1.0 to 4.3.0Commits
183d301
Upgrade to a version ESRP Release that supports federated auth (#29612)9a2afdf
[identity] Prep for release (#29981)3caf203
[identity] Prepare identity for May release (#29441)0a69729
[core] CHANGELOG date for@azure-rest/core-client
release (#29440)88d244a
Sync eng/common directory with azure-sdk-tools for PR 8158 (#29423)7706373
[template-dpg] Suppress build failure (#29437)769c1b1
[EngSys] Update name of@azure-tools/test-utils
NO_CI8cd5bc2
[core] New multipart/form-data primitive in core-client-rest (#29047)73b9faa
[identity] Add changelog entry for MSALClient migration (#29419)b8e63a5
Post release automated changes for notificationhubs releases (#29431)Maintainer changes
This version was pushed to npm by microsoft1es, a new releaser for
@azure/identity
since your current version.Updates
ansi-regex
from 3.0.0 to 3.0.1Commits
f545bdb
3.0.1c57d4c2
fix a few old XO issues for backport419250f
Fix potential ReDoS (#37)Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
glob-parent
from 5.1.1 to 5.1.2Release notes
Sourced from glob-parent's releases.
Changelog
Sourced from glob-parent's changelog.
Commits
eb2c439
chore: update changelog12bcb6c
chore: release 5.1.2f923116
fix: eliminate ReDoS (#36)0b014a7
chore: add JSDoc returns information (#33)2b24ebd
chore: generate initial changelogUpdates
path-parse
from 1.0.6 to 1.0.7Commits
Updates
@azure/identity
from 2.1.0 to 4.3.0Commits
183d301
Upgrade to a version ESRP Release that supports federated auth (#29612)9a2afdf
[identity] Prep for release (#29981)3caf203
[identity] Prepare identity for May release (#29441)0a69729
[core] CHANGELOG date for@azure-rest/core-client
release (#29440)88d244a
Sync eng/common directory with azure-sdk-tools for PR 8158 (#29423)7706373
[template-dpg] Suppress build failure (#29437)769c1b1
[EngSys] Update name of@azure-tools/test-utils
NO_CI8cd5bc2
[core] New multipart/form-data primitive in core-client-rest (#29047)73b9faa
[identity] Add changelog entry for MSALClient migration (#29419)b8e63a5
Post release automated changes for notificationhubs releases (#29431)Maintainer changes
This version was pushed to npm by microsoft1es, a new releaser for
@azure/identity
since your current version.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.