-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
May 2023 Pre-Release #5954
Closed
Closed
May 2023 Pre-Release #5954
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Shane Oatman <shoatman@microsoft.com> Co-authored-by: Thomas Norling <thomas.l.norling@gmail.com> Co-authored-by: konstantin-msft <119362382+konstantin-msft@users.noreply.github.com> Co-authored-by: Konstantin Shabelko <kshabelko@microsoft.com> Co-authored-by: Jo Arroyo <joarroyo@microsoft.com> Co-authored-by: Robbie-Microsoft <87724641+Robbie-Microsoft@users.noreply.github.com> Co-authored-by: Robert Ginsburg <rgins16@gmail.com> Co-authored-by: Thomas Norling <thnorlin@microsoft.com> Co-authored-by: Doğan Erişen <v-derisen@microsoft.com> Co-authored-by: Lalima Sharda <lalima.sharda@gmail.com> Co-authored-by: Sameera Gajjarapu <sameera.gajjarapu@microsoft.com> Co-authored-by: Lalima Sharda <lalimasharda@microsoft.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: konstantin-msft <konstantin-msft@users.noreply.github.com> Co-authored-by: Salman Salem <v-ssalem@microsoft.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: tnorling <tnorling@users.noreply.github.com>
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 4 to 5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/peter-evans/create-pull-request/releases">peter-evans/create-pull-request's releases</a>.</em></p> <blockquote> <h2>Create Pull Request v5.0.0</h2> <h2>Behaviour changes</h2> <ul> <li>The action will no longer leave the local repository checked out on the pull request <code>branch</code>. Instead, it will leave the repository checked out on the branch or commit that it was when the action started.</li> <li>When using <code>add-paths</code>, uncommitted changes will no longer be destroyed. They will be stashed and restored at the end of the action run.</li> </ul> <h2>What's new</h2> <ul> <li>Adds input <code>body-path</code>, the path to a file containing the pull request body.</li> <li>At the end of the action run the local repository is now checked out on the branch or commit that it was when the action started.</li> <li>Any uncommitted tracked or untracked changes are now stashed and restored at the end of the action run. Currently, this can only occur when using the <code>add-paths</code> input, which allows for changes to not be committed. Previously, any uncommitted changes would be destroyed.</li> <li>The proxy implementation has been revised but is not expected to have any change in behaviour. It continues to support the standard environment variables <code>http_proxy</code>, <code>https_proxy</code> and <code>no_proxy</code>.</li> <li>Now sets the git <code>safe.directory</code> configuration for the local repository path. The configuration is removed when the action completes. Fixes issue <a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1170">peter-evans/create-pull-request#1170</a>.</li> <li>Now determines the git directory path using the <code>git rev-parse --git-dir</code> command. This allows users with custom repository configurations to use the action.</li> <li>Improved handling of the <code>team-reviewers</code> input and associated errors.</li> </ul> <h2>News</h2> <p>:trophy: create-pull-request won <a href="https://twitter.com/peterevans0/status/1638463617686470657?s=20">an award</a> for "awesome action" at the Open Source Awards at GitHub Universe. Thank you for your support and for making create-pull-request one of the top used actions. Please give it a :star:, or even <a href="https://github.com/sponsors/peter-evans">buy me a coffee</a>.</p> <h2>What's Changed</h2> <ul> <li>v5 by <a href="https://github.com/peter-evans"><code>@peter-evans</code></a> in <a href="https://redirect.github.com/peter-evans/create-pull-request/pull/1792">peter-evans/create-pull-request#1792</a></li> <li>15 dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/peter-evans/create-pull-request/compare/v4.2.4...v5.0.0">https://github.com/peter-evans/create-pull-request/compare/v4.2.4...v5.0.0</a></p> <h2>Create Pull Request v4.2.4</h2> <p>⚙️ Patches some recent security vulnerabilities.</p> <h2>What's Changed</h2> <ul> <li>Update concepts-guidelines.md by <a href="https://github.com/chrisbruford"><code>@chrisbruford</code></a> in <a href="https://redirect.github.com/peter-evans/create-pull-request/pull/1610">peter-evans/create-pull-request#1610</a></li> <li>58 dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/chrisbruford"><code>@chrisbruford</code></a> made their first contribution in <a href="https://redirect.github.com/peter-evans/create-pull-request/pull/1610">peter-evans/create-pull-request#1610</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/peter-evans/create-pull-request/compare/v4.2.3...v4.2.4">https://github.com/peter-evans/create-pull-request/compare/v4.2.3...v4.2.4</a></p> <h2>Create Pull Request v4.2.3</h2> <h2>What's Changed</h2> <ul> <li>fix: add check for missing token input by <a href="https://github.com/peter-evans"><code>@peter-evans</code></a> in <a href="https://redirect.github.com/peter-evans/create-pull-request/pull/1324">peter-evans/create-pull-request#1324</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/peter-evans/create-pull-request/compare/v4.2.2...v4.2.3">https://github.com/peter-evans/create-pull-request/compare/v4.2.2...v4.2.3</a></p> <h2>Create Pull Request v4.2.2</h2> <h2>What's Changed</h2> <ul> <li>fix: support github server url for pushing to fork by <a href="https://github.com/peter-evans"><code>@peter-evans</code></a> in <a href="https://redirect.github.com/peter-evans/create-pull-request/pull/1318">peter-evans/create-pull-request#1318</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/peter-evans/create-pull-request/commit/5b4a9f6a9e2af26e5f02351490b90d01eb8ec1e5"><code>5b4a9f6</code></a> v5 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1792">#1792</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/1847e5d1d66115e99988ff4ccbe629ae5b14820b"><code>1847e5d</code></a> build(deps-dev): bump eslint from 8.36.0 to 8.37.0 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1803">#1803</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/c246f7e9126aba0f1cc780a7133429d9771e9b66"><code>c246f7e</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.57.0 to 5.57.1 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1801">#1801</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/2dd2b11b09f0b3bf86c25cf615e4bbe624f80314"><code>2dd2b11</code></a> build(deps-dev): bump eslint-import-resolver-typescript (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1802">#1802</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/05d5a3c3f9506f8628125834beec3993d3eada67"><code>05d5a3c</code></a> build(deps-dev): bump <code>@types/node</code> from 18.15.10 to 18.15.11 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1800">#1800</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/21479f22fcc890fd56c1b5a47d47162fa907dddc"><code>21479f2</code></a> build(deps-dev): bump ts-jest from 29.0.5 to 29.1.0 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1799">#1799</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/36a56dac0739df8d3d8ebb9e6e41026ba248ec27"><code>36a56da</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.56.0 to 5.57.0 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1768">#1768</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/b7f0c9773b3f9bd0eb8d00cc963aceb9da2345e5"><code>b7f0c97</code></a> build(deps-dev): bump prettier from 2.8.6 to 2.8.7 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1767">#1767</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/6a62596740af10ccfc9800db9f74c255f65c9055"><code>6a62596</code></a> build(deps): bump peter-evans/enable-pull-request-automerge from 2 to 3 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1766">#1766</a>)</li> <li><a href="https://github.com/peter-evans/create-pull-request/commit/d1ed29fe1ea9695e51f6bdda3db7211f3294d9d5"><code>d1ed29f</code></a> build(deps-dev): bump <code>@types/node</code> from 18.15.5 to 18.15.10 (<a href="https://redirect.github.com/peter-evans/create-pull-request/issues/1765">#1765</a>)</li> <li>Additional commits viewable in <a href="https://github.com/peter-evans/create-pull-request/compare/v4...v5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=peter-evans/create-pull-request&package-manager=github_actions&previous-version=4&new-version=5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Updates node-jose dependency to 2.2.0+ to address vulnerability with versions < 2.2.0
Update PoliCheck version as the one we're using now is being deprecated
- Remove `startPerformanceMeasuremeant` that is a duplicate of `startPerformanceMeasurement`. - Rename `astsAsyncMeasurement` -> `atsAsyncMeasurement`.
Co-authored-by: Robert Ginsburg <rgins16@gmail.com>
Same as #5870 for msal-browser v3
Same as #5754, rebased to dev. Addressed feedback. --------- Co-authored-by: Konstantin Shabelko <kshabelko@microsoft.com>
Same as #5826, rebased to dev. Feedback addressed. --------- Co-authored-by: Konstantin Shabelko <kshabelko@microsoft.com>
Since we upgraded our React samples to version 18, we will no longer need to maintain the React 18 sample. Co-authored-by: Doğan Erişen <v-derisen@microsoft.com>
- added prettier to root of project (fixed version intentionally to avoid folks updating to new rules until we want to universally) - added prettier to all projects.... looks like msal-react has a dependency which uses a older version of prettier, by explicitly declaring dependency ensure we get the correct version - ran prettier using commands created below - Made changes post apply fixed around (moving the comments as needed): - @ts-ignore - eslint-ignore-next-line / eslint-ignore-line - added format:check and format:fix scripts/commands to package.json of all updated projects - only applied to src / test folders (where present) and ignored all files ignored in .gitignore - updated the eslintrc file to remove things that conflict with the default rules of prettier... intentionally using the default rules - Some of the things I cut were no longer recommended to be there
Changed bucket names and updated line items --------- Co-authored-by: Doğan Erişen <v-derisen@microsoft.com>
This PR updates package-lock.json to address security vulnerabilities.
Update 1P-3P build workflow to trigger on PRs targeting `msal-lts` branch
Add redirecting to an empty page to the react-router and the default vanillaJs samples to showcase MSAL.js best performance practices. --------- Co-authored-by: Doğan Erişen <v-derisen@microsoft.com>
Addresses dependabot alerts
TSDX is no longer maintained and there are security alerts open for some transitive dependencies. This PR drops TSDX in favor of using the underlying tools directly
TSDX is no longer maintained and there are security alerts open for some transitive dependencies. This PR drops TSDX in favor of using the underlying tools directly
Improves error detection and logging when monitoring hidden iframes, providing a better understanding of why the request failed. Previously any non-successful response was thrown as `monitor_window_timeout` With these changes we'll also throw `hash_empty_error` or `hash_does_not_contain_known_properties` error if the application is manipulating the hash before we can read it.
This PR ports changes from community PR #5725 into v3 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Sameera Gajjarapu <sameera.gajjarapu@microsoft.com> Co-authored-by: Jo Arroyo <joarroyo@microsoft.com> Co-authored-by: Hector Morales <hemoral@microsoft.com> Co-authored-by: Shane Oatman <shoatman@microsoft.com> Co-authored-by: konstantin-msft <119362382+konstantin-msft@users.noreply.github.com> Co-authored-by: Konstantin Shabelko <kshabelko@microsoft.com> Co-authored-by: Robbie-Microsoft <87724641+Robbie-Microsoft@users.noreply.github.com> Co-authored-by: Robert Ginsburg <rgins16@gmail.com> Co-authored-by: Thomas Norling <thnorlin@microsoft.com> Co-authored-by: Doğan Erişen <v-derisen@microsoft.com> Co-authored-by: Lalima Sharda <lalima.sharda@gmail.com> Co-authored-by: Lalima Sharda <lalimasharda@microsoft.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: konstantin-msft <konstantin-msft@users.noreply.github.com> Co-authored-by: Salman Salem <v-ssalem@microsoft.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: tnorling <tnorling@users.noreply.github.com>
This PR: - adds initialization to `handleRedirectObservable` and updates unit tests - removes initialization from `MsalRedirectComponent` and updates unit tests - updates the msal-angular README - adds a v2-v3 upgrade guide - updates guidance surrounding initialization and handling redirects --------- Co-authored-by: Thomas Norling <thomas.l.norling@gmail.com>
…ency (#5903) - Randomize native extension `responseId` to facilitate concurrency. - Update window message handler to filter out responses with no matched resolvers sooner. - Add unit tests to make sure concurrent calls to `app.initialize()` do not interfere with each other.
Same contents as #5855 but new target branch - Adds unit tests for the NativeBrokerPlugin implementation in msal-node-extensions - Fixes incorrect expiresOn property
Fix link to Angular 15 sample project.
`acquireTokenSilent` does not return anything other than `AuthenticationResult`. This PR updates the return type to reflect that.
- Removes no account error from `removeAccount` as this should not be a failure case - Re-enables tests that were skipped
Adds unit tests for the native broker flows in msal-node
…lar (#5947) Bumps [caniuse-lite](https://github.com/browserslist/caniuse-lite) from 1.0.30001480 to 1.0.30001481. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/browserslist/caniuse-lite/commit/357cac0d73c0178299f1574845557b517417e560"><code>357cac0</code></a> Update caniuse-db 1.0.30001481</li> <li>See full diff in <a href="https://github.com/browserslist/caniuse-lite/compare/1.0.30001480...1.0.30001481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=caniuse-lite&package-manager=npm_and_yarn&previous-version=1.0.30001480&new-version=1.0.30001481)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…al-node-extensions (#5949) [//]: # (dependabot-start)⚠️ **Dependabot is rebasing this PR**⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [caniuse-lite](https://github.com/browserslist/caniuse-lite) from 1.0.30001478 to 1.0.30001481. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/browserslist/caniuse-lite/commit/357cac0d73c0178299f1574845557b517417e560"><code>357cac0</code></a> Update caniuse-db 1.0.30001481</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/703ed4ee8ed3b7180705e3c8f30eb21b73bd49c6"><code>703ed4e</code></a> Update caniuse-db 1.0.30001480</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/98f08eb933ba10d87c2175b832bccf55d3054f3b"><code>98f08eb</code></a> Update caniuse-db 1.0.30001479</li> <li>See full diff in <a href="https://github.com/browserslist/caniuse-lite/compare/1.0.30001478...1.0.30001481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=caniuse-lite&package-manager=npm_and_yarn&previous-version=1.0.30001478&new-version=1.0.30001481)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…on (#5948) [//]: # (dependabot-start)⚠️ **Dependabot is rebasing this PR**⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [caniuse-lite](https://github.com/browserslist/caniuse-lite) from 1.0.30001473 to 1.0.30001481. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/browserslist/caniuse-lite/commit/357cac0d73c0178299f1574845557b517417e560"><code>357cac0</code></a> Update caniuse-db 1.0.30001481</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/703ed4ee8ed3b7180705e3c8f30eb21b73bd49c6"><code>703ed4e</code></a> Update caniuse-db 1.0.30001480</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/98f08eb933ba10d87c2175b832bccf55d3054f3b"><code>98f08eb</code></a> Update caniuse-db 1.0.30001479</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/3a57822bfd84a168a45ed3668699ad3ba0081f2d"><code>3a57822</code></a> Update caniuse-db 1.0.30001478</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/951444609fb5bfb03aa8b70f2dbcfc02173de1aa"><code>9514446</code></a> Update caniuse-db 1.0.30001477</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/ab134517657597caf4a242546e91ee16b15a021b"><code>ab13451</code></a> Update caniuse-db 1.0.30001476</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/cb2f230be60f4cfbdcf40efbab68182d1eb487e1"><code>cb2f230</code></a> Update caniuse-db 1.0.30001475</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/b559e13e7014472b85aabbe10cf0c384d2d5691b"><code>b559e13</code></a> Update caniuse-db 1.0.30001474</li> <li>See full diff in <a href="https://github.com/browserslist/caniuse-lite/compare/1.0.30001473...1.0.30001481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=caniuse-lite&package-manager=npm_and_yarn&previous-version=1.0.30001473&new-version=1.0.30001481)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ser (#5951) Bumps [caniuse-lite](https://github.com/browserslist/caniuse-lite) from 1.0.30001478 to 1.0.30001481. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/browserslist/caniuse-lite/commit/357cac0d73c0178299f1574845557b517417e560"><code>357cac0</code></a> Update caniuse-db 1.0.30001481</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/703ed4ee8ed3b7180705e3c8f30eb21b73bd49c6"><code>703ed4e</code></a> Update caniuse-db 1.0.30001480</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/98f08eb933ba10d87c2175b832bccf55d3054f3b"><code>98f08eb</code></a> Update caniuse-db 1.0.30001479</li> <li>See full diff in <a href="https://github.com/browserslist/caniuse-lite/compare/1.0.30001478...1.0.30001481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=caniuse-lite&package-manager=npm_and_yarn&previous-version=1.0.30001478&new-version=1.0.30001481)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#5946) Bumps [caniuse-lite](https://github.com/browserslist/caniuse-lite) from 1.0.30001478 to 1.0.30001481. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/browserslist/caniuse-lite/commit/357cac0d73c0178299f1574845557b517417e560"><code>357cac0</code></a> Update caniuse-db 1.0.30001481</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/703ed4ee8ed3b7180705e3c8f30eb21b73bd49c6"><code>703ed4e</code></a> Update caniuse-db 1.0.30001480</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/98f08eb933ba10d87c2175b832bccf55d3054f3b"><code>98f08eb</code></a> Update caniuse-db 1.0.30001479</li> <li>See full diff in <a href="https://github.com/browserslist/caniuse-lite/compare/1.0.30001478...1.0.30001481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=caniuse-lite&package-manager=npm_and_yarn&previous-version=1.0.30001478&new-version=1.0.30001481)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#5952) Bumps [caniuse-lite](https://github.com/browserslist/caniuse-lite) from 1.0.30001469 to 1.0.30001481. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/browserslist/caniuse-lite/commit/357cac0d73c0178299f1574845557b517417e560"><code>357cac0</code></a> Update caniuse-db 1.0.30001481</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/703ed4ee8ed3b7180705e3c8f30eb21b73bd49c6"><code>703ed4e</code></a> Update caniuse-db 1.0.30001480</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/98f08eb933ba10d87c2175b832bccf55d3054f3b"><code>98f08eb</code></a> Update caniuse-db 1.0.30001479</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/3a57822bfd84a168a45ed3668699ad3ba0081f2d"><code>3a57822</code></a> Update caniuse-db 1.0.30001478</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/951444609fb5bfb03aa8b70f2dbcfc02173de1aa"><code>9514446</code></a> Update caniuse-db 1.0.30001477</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/ab134517657597caf4a242546e91ee16b15a021b"><code>ab13451</code></a> Update caniuse-db 1.0.30001476</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/cb2f230be60f4cfbdcf40efbab68182d1eb487e1"><code>cb2f230</code></a> Update caniuse-db 1.0.30001475</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/b559e13e7014472b85aabbe10cf0c384d2d5691b"><code>b559e13</code></a> Update caniuse-db 1.0.30001474</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/f2d92d9b622a1c0f9a4ee4175608b9805f3aad45"><code>f2d92d9</code></a> Update caniuse-db 1.0.30001473</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/bc9ce4a9f0cc13f1763a512932cb3a3d60044c35"><code>bc9ce4a</code></a> Update caniuse-db 1.0.30001472</li> <li>Additional commits viewable in <a href="https://github.com/browserslist/caniuse-lite/compare/1.0.30001469...1.0.30001481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=caniuse-lite&package-manager=npm_and_yarn&previous-version=1.0.30001469&new-version=1.0.30001481)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
#5950) Bumps [caniuse-lite](https://github.com/browserslist/caniuse-lite) from 1.0.30001478 to 1.0.30001481. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/browserslist/caniuse-lite/commit/357cac0d73c0178299f1574845557b517417e560"><code>357cac0</code></a> Update caniuse-db 1.0.30001481</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/703ed4ee8ed3b7180705e3c8f30eb21b73bd49c6"><code>703ed4e</code></a> Update caniuse-db 1.0.30001480</li> <li><a href="https://github.com/browserslist/caniuse-lite/commit/98f08eb933ba10d87c2175b832bccf55d3054f3b"><code>98f08eb</code></a> Update caniuse-db 1.0.30001479</li> <li>See full diff in <a href="https://github.com/browserslist/caniuse-lite/compare/1.0.30001478...1.0.30001481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=caniuse-lite&package-manager=npm_and_yarn&previous-version=1.0.30001478&new-version=1.0.30001481)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
documentation
Related to documentation.
extensions
Related to extensions for the base libraries
msal@1.x
Related to msal@1.x (implicit flow)
msal-angular
Related to @azure/msal-angular package
msal-browser
Related to msal-browser package
msal-common
Related to msal-common package
msal-node
Related to msal-node package
msal-react
Related to @azure/msal-react
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.