-
-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps): bump the npm_and_yarn group with 13 updates #73
Open
dependabot
wants to merge
1
commit into
main
Choose a base branch
from
dependabot/npm_and_yarn/npm_and_yarn-16db6568d8
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the npm_and_yarn group with 13 updates: | Package | From | To | | --- | --- | --- | | [axios](https://github.com/axios/axios) | `1.4.0` | `1.6.0` | | [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` | | [express](https://github.com/expressjs/express) | `4.18.2` | `4.19.2` | | [mongodb](https://github.com/mongodb/node-mongodb-native) | `4.16.0` | `4.17.0` | | [nodemailer](https://github.com/nodemailer/nodemailer) | `6.9.3` | `6.9.9` | | [zod](https://github.com/colinhacks/zod) | `3.21.4` | `3.22.3` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.22.8` | `7.23.2` | | [@trivago/prettier-plugin-sort-imports](https://github.com/trivago/prettier-plugin-sort-imports) | `4.1.1` | `4.3.0` | | [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.2` | `1.15.6` | | [postcss](https://github.com/postcss/postcss) | `8.4.23` | `8.4.40` | | [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `4.3.9` | `4.5.3` | | [ws](https://github.com/websockets/ws) | `8.13.0` | `8.18.0` | Updates `axios` from 1.4.0 to 1.6.0 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.4.0...v1.6.0) Updates `ejs` from 3.1.9 to 3.1.10 - [Release notes](https://github.com/mde/ejs/releases) - [Commits](mde/ejs@v3.1.9...v3.1.10) Updates `express` from 4.18.2 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.18.2...4.19.2) Updates `mongodb` from 4.16.0 to 4.17.0 - [Release notes](https://github.com/mongodb/node-mongodb-native/releases) - [Changelog](https://github.com/mongodb/node-mongodb-native/blob/v4.17.0/HISTORY.md) - [Commits](mongodb/node-mongodb-native@v4.16.0...v4.17.0) Updates `nodemailer` from 6.9.3 to 6.9.9 - [Release notes](https://github.com/nodemailer/nodemailer/releases) - [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md) - [Commits](nodemailer/nodemailer@v6.9.3...v6.9.9) Updates `zod` from 3.21.4 to 3.22.3 - [Release notes](https://github.com/colinhacks/zod/releases) - [Changelog](https://github.com/colinhacks/zod/blob/main/CHANGELOG.md) - [Commits](colinhacks/zod@v3.21.4...v3.22.3) Updates `@babel/traverse` from 7.22.8 to 7.23.2 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse) Updates `@trivago/prettier-plugin-sort-imports` from 4.1.1 to 4.3.0 - [Release notes](https://github.com/trivago/prettier-plugin-sort-imports/releases) - [Changelog](https://github.com/trivago/prettier-plugin-sort-imports/blob/main/CHANGELOG.md) - [Commits](trivago/prettier-plugin-sort-imports@v4.1.1...v4.3.0) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `follow-redirects` from 1.15.2 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.2...v1.15.6) Updates `postcss` from 8.4.23 to 8.4.40 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.23...8.4.40) Updates `vite` from 4.3.9 to 4.5.3 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.3/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.3/packages/vite) Updates `ws` from 8.13.0 to 8.18.0 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@8.13.0...8.18.0) --- updated-dependencies: - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: ejs dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: express dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: mongodb dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: nodemailer dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: zod dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@trivago/prettier-plugin-sort-imports" dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: vite dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
labels
Jul 29, 2024
This was referenced Jul 29, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
0 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 13 updates:
1.4.0
1.6.0
3.1.9
3.1.10
4.18.2
4.19.2
4.16.0
4.17.0
6.9.3
6.9.9
3.21.4
3.22.3
7.22.8
7.23.2
4.1.1
4.3.0
3.0.2
3.0.3
1.15.2
1.15.6
8.4.23
8.4.40
4.3.9
4.5.3
8.13.0
8.18.0
Updates
axios
from 1.4.0 to 1.6.0Release notes
Sourced from axios's releases.
... (truncated)
Changelog
Sourced from axios's changelog.
... (truncated)
Commits
f7adacd
chore(release): v1.6.0 (#6031)9917e67
chore(ci): fix release-it arg; (#6032)96ee232
fix(CSRF): fixed CSRF vulnerability CVE-2023-45857 (#6028)7d45ab2
chore(tests): fixed tests to pass in node v19 and v20 withkeep-alive
enabl...5aaff53
fix(dns): fixed lookup function decorator to work properly in node v20; (#6011)a48a63a
chore(docs): added AxiosHeaders docs; (#5932)a1c8ad0
fix(types): fix AxiosHeaders types; (#5931)2ac731d
chore(docs): update readme.md (#5889)88fb52b
chore(release): v1.5.1 (#5920)e410779
fix(adapters): improved adapters loading logic to have clear error messages; ...Updates
ejs
from 3.1.9 to 3.1.10Release notes
Sourced from ejs's releases.
Commits
d3f807d
Version 3.1.109ee26dd
Mocha TDDe469741
Basic pollution protection715e950
Merge pull request #756 from Jeffrey-mu/maincabe314
Include advanced usage examples29b076c
Added header11503c7
Merge branch 'main' of github.com:mde/ejs into main7690404
Added security banner to READMEf47d7ae
Update SECURITY.md828cea1
Update SECURITY.mdUpdates
express
from 4.18.2 to 4.19.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
04bc627
4.19.2da4d763
Improved fix for open redirect allow list bypass4f0f6cc
4.19.1a003cfa
Allow passing non-strings to res.location with new encoding handling checks f...a1fa90f
fixed un-edited version in history.md for 4.19.011f2b1d
build: fix build due to inconsistent supertest behavior in older versions084e365
4.19.00867302
Prevent open redirect allow list bypass due to encodeurl567c9c6
Add note on how to update docs for new release (#5541)69a4cf2
deps: cookie@0.6.0Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Updates
mongodb
from 4.16.0 to 4.17.0Release notes
Sourced from mongodb's releases.
Changelog
Sourced from mongodb's changelog.
Commits
c83a801
chore(4.x): release 4.17.0 [skip-ci] (#3763)1b59955
chore: update release automation scripts 4.x (#3824)5244711
feat(NODE-5398): use mongodb-js/saslprep instead of saslprep (#3820)2910dca
fix(NODE-5536): remove credentials from ConnectionPoolCreatedEvent options (#...0c1b654
chore(NODE-5400): add@octokit/core
as a devDep (#3750)4adff37
chore(NODE-5382): backport release automation scripts (#3747)2d028af
fix(NODE-5356): prevent scram auth from throwing TypeError if saslprep is not...0e1afc0
ci(Node 5335): clean up instance profile from instance after CI runs (#3719)7f5b334
ci(NODE-5334): install npm to node_artifacts directory in CI (#3709)e13038d
fix(NODE-5316): prevent parallel topology creation in MongoClient.connect (#3...Maintainer changes
This version was pushed to npm by dbx-node, a new releaser for mongodb since your current version.
Updates
nodemailer
from 6.9.3 to 6.9.9Release notes
Sourced from nodemailer's releases.
Changelog
Sourced from nodemailer's changelog.
Commits
5a2e10f
chore(master): release 6.9.9 [skip-ci] (#1606)dd8f5e8
fix(security): Fix issues described in GHSA-9h6g-pr28-7cqp. Do not use eterna...2c2b46a
chore: do not use caret in version specifierbe45c1b
fix(tests): Use native node test runner, added code coverage support, removed...4233f6f
chore(master): release 6.9.8 [skip-ci] (#1605)09d502f
chore: removed double fileb4d0e0c
fix(punycode): do not use native punycode module8376c02
Test new github notice syntax for READMEbc46a3b
Updated stale github action78bdaf8
chore: remove redundant AWS SDK for JavaScript v2 (#1593)Updates
zod
from 3.21.4 to 3.22.3Release notes
Sourced from zod's releases.
... (truncated)
Commits
1e61d76
3.22.32ba00fe
[2609] fix ReDoS vulnerability in email regex (#2824)ae0f7a2
docs: update ref to discriminated-unions docs (#2485)ad2ee9c
2718 Updated Custom Schemas documentation example to use type narrowing (#2778)28c1927
Update sponsors18115a8
Formatting64dcc8e
Update sponsorsf59be09
clarify datetime ISO 8601 (#2673)9bd3879
docs: remove obsolete text about readonly types (#2676)1e23990
CommitUpdates
@babel/traverse
from 7.22.8 to 7.23.2Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
b4b9942
v7.23.2b13376b
Only evaluate own String/Number/Math methods (#16033)ca58ec1
v7.23.00f333da
AddcreateImportExpressions
parser option (#15682)3744545
Fix lintingc7e6806
Addt.buildUndefinedNode
(#15893)38ee8b4
Expand evaluation of global built-ins in@babel/traverse
(#15797)9f3dfd9
v7.22.203ed28b2
Fully support||
and&&
inpluginToggleBooleanFlag
(#15961)77b0d73
v7.22.19Updates
@trivago/prettier-plugin-sort-imports
from 4.1.1 to 4.3.0Release notes
Sourced from
@trivago/prettier-plugin-sort-imports
's releases.