-
Notifications
You must be signed in to change notification settings - Fork 8
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
build(deps): bump the npm_and_yarn group across 2 directories with 31 updates #226
Open
dependabot
wants to merge
1
commit into
main
Choose a base branch
from
dependabot/npm_and_yarn/journey/npm_and_yarn-15e5beb679
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
build(deps): bump the npm_and_yarn group across 2 directories with 31 updates #226
dependabot
wants to merge
1
commit into
main
from
dependabot/npm_and_yarn/journey/npm_and_yarn-15e5beb679
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
… updates Bumps the npm_and_yarn group with 18 updates in the /journey directory: | Package | From | To | | --- | --- | --- | | [moment](https://github.com/moment/moment) | `2.29.1` | `2.29.4` | | [moment-timezone](https://github.com/moment/moment-timezone) | `0.5.34` | `0.5.35` | | [node-sass](https://github.com/sass/node-sass) | `6.0.1` | `9.0.0` | | [semantic-release](https://github.com/semantic-release/semantic-release) | `15.14.0` | `24.2.0` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.17.3` | `7.26.4` | | [async](https://github.com/caolan/async) | `2.6.3` | `2.6.4` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.2.1` | `4.2.3` | | [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` | | [elliptic](https://github.com/indutny/elliptic) | `6.5.4` | `6.6.1` | | [es5-ext](https://github.com/medikoo/es5-ext) | `0.10.53` | `0.10.64` | | [eventsource](https://github.com/EventSource/eventsource) | `1.1.0` | `1.1.2` | | [express](https://github.com/expressjs/express) | `4.17.3` | `4.21.2` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.14.9` | `1.15.9` | | [get-func-name](https://github.com/chaijs/get-func-name) | `2.0.0` | `2.0.2` | | [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` | | [nanoid](https://github.com/ai/nanoid) | `3.3.1` | `3.3.8` | | [terser](https://github.com/terser/terser) | `4.8.0` | `4.8.1` | | [ws](https://github.com/websockets/ws) | `6.2.2` | `6.2.3` | Bumps the npm_and_yarn group with 4 updates in the /traffic directory: [braces](https://github.com/micromatch/braces), [got](https://github.com/sindresorhus/got), [nodemon](https://github.com/remy/nodemon) and [semver](https://github.com/npm/node-semver). Updates `moment` from 2.29.1 to 2.29.4 - [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md) - [Commits](moment/moment@2.29.1...2.29.4) Updates `moment-timezone` from 0.5.34 to 0.5.35 - [Release notes](https://github.com/moment/moment-timezone/releases) - [Changelog](https://github.com/moment/moment-timezone/blob/develop/changelog.md) - [Commits](moment/moment-timezone@0.5.34...0.5.35) Updates `node-sass` from 6.0.1 to 9.0.0 - [Release notes](https://github.com/sass/node-sass/releases) - [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md) - [Commits](sass/node-sass@v6.0.1...v9.0.0) Updates `semantic-release` from 15.14.0 to 24.2.0 - [Release notes](https://github.com/semantic-release/semantic-release/releases) - [Commits](semantic-release/semantic-release@v15.14.0...v24.2.0) Updates `@babel/traverse` from 7.17.3 to 7.26.4 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.26.4/packages/babel-traverse) Updates `async` from 2.6.3 to 2.6.4 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md) - [Commits](caolan/async@v2.6.3...v2.6.4) Updates `browserify-sign` from 4.2.1 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.2.1...v4.2.3) Updates `cross-spawn` from 5.1.0 to 6.0.5 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@5.1.0...v6.0.5) Updates `decode-uri-component` from 0.2.0 to 0.2.2 - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) Updates `elliptic` from 6.5.4 to 6.6.1 - [Commits](indutny/elliptic@v6.5.4...v6.6.1) Updates `es5-ext` from 0.10.53 to 0.10.64 - [Release notes](https://github.com/medikoo/es5-ext/releases) - [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md) - [Commits](medikoo/es5-ext@v0.10.53...v0.10.64) Updates `eventsource` from 1.1.0 to 1.1.2 - [Release notes](https://github.com/EventSource/eventsource/releases) - [Changelog](https://github.com/EventSource/eventsource/blob/main/CHANGELOG.md) - [Commits](EventSource/eventsource@v1.1.0...v1.1.2) Updates `express` from 4.17.3 to 4.21.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md) - [Commits](expressjs/express@4.17.3...4.21.2) Updates `follow-redirects` from 1.14.9 to 1.15.9 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.14.9...v1.15.9) Updates `get-func-name` from 2.0.0 to 2.0.2 - [Release notes](https://github.com/chaijs/get-func-name/releases) - [Commits](https://github.com/chaijs/get-func-name/commits/v2.0.2) Updates `http-cache-semantics` from 3.8.1 to 4.1.1 - [Commits](kornelski/http-cache-semantics@v3.8.1...v4.1.1) Updates `marked` from 0.7.0 to 12.0.2 - [Release notes](https://github.com/markedjs/marked/releases) - [Changelog](https://github.com/markedjs/marked/blob/master/.releaserc.json) - [Commits](markedjs/marked@v0.7.0...v12.0.2) Updates `minimist` from 1.2.5 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.8) Updates `nanoid` from 3.3.1 to 3.3.8 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.3.1...3.3.8) Updates `path-to-regexp` from 0.1.7 to 0.1.12 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v0.1.7...v0.1.12) Updates `scss-tokenizer` from 0.2.3 to 0.4.3 - [Release notes](https://github.com/sasstools/scss-tokenizer/releases) - [Commits](sasstools/scss-tokenizer@v0.2.3...v0.4.3) Updates `semver-regex` from 2.0.0 to 4.0.5 - [Release notes](https://github.com/sindresorhus/semver-regex/releases) - [Commits](sindresorhus/semver-regex@v2.0.0...v4.0.5) Updates `send` from 0.17.2 to 0.19.0 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.17.2...0.19.0) Updates `serve-static` from 1.14.2 to 1.16.2 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md) - [Commits](expressjs/serve-static@v1.14.2...v1.16.2) Updates `tar` from 4.4.19 to 6.1.11 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v4.4.19...v6.1.11) Updates `terser` from 4.8.0 to 4.8.1 - [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md) - [Commits](terser/terser@v4.8.0...v4.8.1) Updates `ws` from 6.2.2 to 6.2.3 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@6.2.2...6.2.3) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Removes `got` Updates `nodemon` from 2.0.15 to 2.0.22 - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](remy/nodemon@v2.0.15...v2.0.22) Updates `semver` from 5.7.1 to 7.6.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v7.6.3) Updates `nodemon` from 2.0.22 to 3.1.9 - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](remy/nodemon@v2.0.15...v2.0.22) --- updated-dependencies: - dependency-name: moment dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: moment-timezone dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: node-sass dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: semantic-release dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: async dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: decode-uri-component dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: es5-ext dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: eventsource dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: get-func-name dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: http-cache-semantics dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: marked dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nanoid dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: scss-tokenizer dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: semver-regex dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: terser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: got dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nodemon dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nodemon dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
the
dependencies
Pull requests that update a dependency file
label
Dec 17, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 18 updates in the /journey directory:
2.29.1
2.29.4
0.5.34
0.5.35
6.0.1
9.0.0
15.14.0
24.2.0
7.17.3
7.26.4
2.6.3
2.6.4
4.2.1
4.2.3
0.2.0
0.2.2
6.5.4
6.6.1
0.10.53
0.10.64
1.1.0
1.1.2
4.17.3
4.21.2
1.14.9
1.15.9
2.0.0
2.0.2
1.2.5
1.2.8
3.3.1
3.3.8
4.8.0
4.8.1
6.2.2
6.2.3
Bumps the npm_and_yarn group with 4 updates in the /traffic directory: braces, got, nodemon and semver.
Updates
moment
from 2.29.1 to 2.29.4Changelog
Sourced from moment's changelog.
Commits
000ac18
Build 2.24.4f2006b6
Bump version to 2.24.4536ad0c
Update changelog for 2.29.49a3b589
[bugfix] Fix redos in preprocessRFC2822 regex (#6015)6374fd8
Merge branch 'master' into developb4e6153
Revert "[bugfix] Fix redos in preprocessRFC2822 regex (#6015)"7aebb16
[bugfix] Fix redos in preprocessRFC2822 regex (#6015)57c9062
Build 2.29.3aaf50b6
Fixup release complaints26f4aef
Bump version to 2.29.3Updates
moment-timezone
from 0.5.34 to 0.5.35Release notes
Sourced from moment-timezone's releases.
Changelog
Sourced from moment-timezone's changelog.
Commits
b8fb1ba
Build moment-timezone 0.5.35f1b5e5a
Add changelog for 0.5.358b0eb0c
Bump version to 0.5.357915ac5
Bugfix: Prevent cleartext transmission of tz data during buildce955a3
Bugfix: Fix command injection vulnerability in grunt tzdata pipeline9430b4c
Merge remote-tracking branch 'origin/master' into developfeaf900
Updated contributing.md + added 2021e files704cfac
updated contributing.md877c863
Updated contributing.md + added 2021e files5a3015c
updated contributing.mdUpdates
node-sass
from 6.0.1 to 9.0.0Release notes
Sourced from node-sass's releases.
... (truncated)
Commits
87f3899
feat: Node 20 support (#3355)06ae4c7
build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 (#3350)e069f73
build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0c34837d
build(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0ee13eb9
8.0.098e75b3
feat: Node 18 and 19 support and drop Node 17 (#3257)e9bb866
Bump node-gyp and nan for node 19 support (#3314)ab7840b
Fix binaries being partially downloaded (#3313)d595abf
7.0.33b556c1
7.0.2Updates
semantic-release
from 15.14.0 to 24.2.0Release notes
Sourced from semantic-release's releases.
... (truncated)
Commits
05a2ea9
feat: clarify branch existence requirement in error messages (#3462)8940f32
ci(action): update actions/setup-node action to v4.1.0 (#3489)789ac43
chore(deps): update dependency publint to v0.2.12 (#3488)3ba76ae
ci(action): update actions/checkout action to v4.2.2 (#3486)8612ff1
chore(deps): update dependency npm-run-all2 to v7.0.1 (#3487)e29a892
ci(action): update github/codeql-action action to v3.27.0 (#3485)98d606e
chore(deps): update dependency npm-run-all2 to v7 (#3483)55938c3
docs(plugins): community pluginsemantic-release-kaniko
(#3450)2b4c86c
chore(deps): lock file maintenance (#3481)41c9502
ci(action): update github/codeql-action action to v3.26.13 (#3424)Updates
@babel/traverse
from 7.17.3 to 7.26.4Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
cf7b9cd
v7.26.4f33704a
Revert "perf: Improve scope information collection performance" (#17005)36ca8fa
v7.26.3ded1571
perf: Improve scope information collection performance (#16923)943bdfe
perf: Avoid repeated traversal when creating scope (#16964)b07957e
v7.25.9af91759
fix: Accidentally publishing useless files (#16917)2533cfb
v7.25.7611d958
[babel 8] CreateTSClassImplements|TSInterfaceHeritage
nodes (#16731)506bf91
RemoveBABEL_TYPES_8_BREAKING
flag and enable it by default (#16817)Updates
async
from 2.6.3 to 2.6.4Changelog
Sourced from async's changelog.
Commits
c6bdaca
Version 2.6.48870da9
Update built files4df6754
update changelog8f7f903
Fix prototype pollution vulnerability (#1828)Maintainer changes
This version was pushed to npm by hargasinski, a new releaser for async since your current version.
Updates
browserify-sign
from 4.2.1 to 4.2.3Changelog
Sourced from browserify-sign's changelog.
Commits
bf2c3ec
v4.2.39247adf
[patch] widen support to 0.12f427270
[Deps] update `parse-asn187f3a35
[Dev Deps] updateaud
,npmignore
,tape
fb261ce
[Deps] updateelliptic
4d0ee49
[patch] drop minimum node support to v19e2bf12
[Deps] pinhash-base
to ~3.0, due to a breaking change168e16f
[Deps] pinelliptic
due to a breaking change37a4758
[actions] remove redundant finisher4af5a90
v4.2.2Maintainer changes
This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.
Updates
cross-spawn
from 5.1.0 to 6.0.5Changelog
Sourced from cross-spawn's changelog.
... (truncated)
Commits
301187a
chore(release): 6.0.5ae85d40
chore: fix linting errorsd5770df
fix: avoid using deprecated Buffer constructor (#94)6b64987
chore(package): update lint-staged to version 7.0.0 (#93)39166eb
chore: update eslint-config-moxy dependency213aa43
Merge pull request #92 from moxystudio/greenkeeper/eslint-config-moxy-5.0.035b1ff0
chore(package): update eslint-config-moxy to version 5.0.052e557e
chore(release): 6.0.46f43a61
Merge pull request #91 from moxystudio/fix-unix-path-normalize06ee3c6
fix: fix paths being incorrectly normalized on unixUpdates
decode-uri-component
from 0.2.0 to 0.2.2Release notes
Sourced from decode-uri-component's releases.
Commits
a0eea46
0.2.2980e0bf
Prevent overwriting previously decoded tokens3c8a373
0.2.176abc93
Switch to GitHub workflows746ca5d
Fix issue where decode throws - fixes #6486d7e2
Update license (#1)a650457
Tidelift tasks66e1c28
Meta tweaksUpdates
elliptic
from 6.5.4 to 6.6.1Commits
9b77436
6.6.104cb6f5
Merge commit from forkb8a7edd
6.6.034c8534
fix: signature verification due to leading zeros3e46a48
6.5.7accb61e
lib: DER signature decoding correction03e06e1
6.5.67ac5360
Merge commit from fork7570078
6.5.5206da2e
lib: lintUpdates
es5-ext
from 0.10.53 to 0.10.64Release notes
Sourced from es5-ext's releases.
... (truncated)
Changelog
Sourced from es5-ext's changelog.
... (truncated)
Commits
f76b03d
chore: Release v0.10.642881acd
chore: Bump dependenciesc2e2bb9
fix: Revert update meant to fix Powershell issue, as it's a regression16f2b72
docs: Fix date in the changelogde4e03c
chore: Release v0.10.633fd53b7
chore: Upgradelint-staged
to v13bf8ed79
chore: Ensure postinstall script does not crash on Windows2cbbb07
chore: Bump dependencies22d0416
chore: Bump LICENSE yeara52e957
fix: Support ES2015+ function definitions infunction#toStringTokens()
Updates
eventsource
from 1.1.0 to 1.1.2Changelog
Sourced from eventsource's changelog.
Commits
0a8b85b
1.1.2f99ae66
docs: update history for 1.1.206c9721
chore: rebuild polyfill9494642
fix: inline origin resolution, droporiginal
dependency (#281)aa7a408
1.1.156d489e
chore: rebuild polyfill4a951e5
docs: update history for 1.1.1f9f6416
fix: strip sensitive headers on redirect to different originUpdates
express
from 4.17.3 to 4.21.2Release notes
Sourced from express's releases.