Bump the npm_and_yarn group across 1 directory with 22 updates#1
Open
dependabot[bot] wants to merge 1 commit into
Open
Bump the npm_and_yarn group across 1 directory with 22 updates#1dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the npm_and_yarn group with 10 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) | `7.6.4` | `7.29.6` | | [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.6.3` | `7.29.7` | | [postcss](https://github.com/postcss/postcss) | `7.0.2` | `8.5.15` | | [axios](https://github.com/axios/axios) | `0.19.0` | `removed` | | [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` | | [flatted](https://github.com/WebReflection/flatted) | `2.0.1` | `3.4.2` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.4.3` | `4.7.9` | | [lodash](https://github.com/lodash/lodash) | `4.17.15` | `4.17.23` | | [min-document](https://github.com/Raynos/min-document) | `2.19.0` | `2.19.2` | | [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `1.9.1` | `removed` | Updates `@babel/core` from 7.6.4 to 7.29.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.29.6/packages/babel-core) Updates `@babel/runtime` from 7.6.3 to 7.29.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.29.7/packages/babel-runtime) Updates `postcss` from 7.0.2 to 8.5.15 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@7.0.2...8.5.15) Removes `axios` Updates `qs` from 6.2.3 to 6.5.2 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.2.3...v6.5.2) Updates `cipher-base` from 1.0.4 to 1.0.7 - [Changelog](https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md) - [Commits](browserify/cipher-base@v1.0.4...v1.0.7) Updates `cookie` from 0.3.1 to 0.7.2 - [Release notes](https://github.com/jshttp/cookie/releases) - [Commits](jshttp/cookie@v0.3.1...v0.7.2) Updates `eazy-logger` from 3.0.2 to 4.1.0 - [Commits](shakyShane/eazy-logger@v3.0.2...v4.1.0) Updates `elliptic` from 6.5.1 to 6.6.1 - [Commits](indutny/elliptic@v6.5.1...v6.6.1) Updates `ws` from 3.3.3 to 5.2.2 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@3.3.3...5.2.2) Updates `path-to-regexp` from 0.1.7 to 1.7.0 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v0.1.7...v1.7.0) Updates `send` from 0.16.2 to 0.19.2 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.16.2...0.19.2) Updates `serve-static` from 1.13.2 to 1.16.3 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/master/HISTORY.md) - [Commits](expressjs/serve-static@v1.13.2...v1.16.3) Updates `flatted` from 2.0.1 to 3.4.2 - [Commits](WebReflection/flatted@v2.0.1...v3.4.2) Updates `follow-redirects` from 1.5.10 to 1.16.0 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.5.10...v1.16.0) Updates `handlebars` from 4.4.3 to 4.7.9 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.9/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.4.3...v4.7.9) Updates `lodash` from 4.17.15 to 4.17.23 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.15...4.17.23) Updates `min-document` from 2.19.0 to 2.19.2 - [Commits](Raynos/min-document@v2.19.0...v2.19.2) Updates `pbkdf2` from 3.0.17 to 3.1.6 - [Changelog](https://github.com/browserify/pbkdf2/blob/master/CHANGELOG.md) - [Commits](browserify/pbkdf2@v3.0.17...v3.1.6) Updates `picomatch` from 2.0.7 to 2.3.2 - [Release notes](https://github.com/micromatch/picomatch/releases) - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md) - [Commits](micromatch/picomatch@2.0.7...2.3.2) Removes `serialize-javascript` Updates `socket.io-parser` from 3.2.0 to 4.2.6 - [Release notes](https://github.com/socketio/socket.io/releases) - [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md) - [Commits](https://github.com/socketio/socket.io/commits/socket.io-parser@4.2.6) --- updated-dependencies: - dependency-name: "@babel/core" dependency-version: 7.29.6 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/runtime" dependency-version: 7.29.7 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-version: 8.5.15 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: axios dependency-version: dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: qs dependency-version: 6.5.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cipher-base dependency-version: 1.0.7 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cookie dependency-version: 0.7.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: eazy-logger dependency-version: 4.1.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-version: 6.6.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-version: 5.2.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-version: 1.7.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-version: 0.19.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-version: 1.16.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: flatted dependency-version: 3.4.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-version: 1.16.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: handlebars dependency-version: 4.7.9 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: lodash dependency-version: 4.17.23 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: min-document dependency-version: 2.19.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: pbkdf2 dependency-version: 3.1.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: picomatch dependency-version: 2.3.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serialize-javascript dependency-version: dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: socket.io-parser dependency-version: 4.2.6 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 10 updates in the / directory:
7.6.47.29.67.6.37.29.77.0.28.5.150.19.0removed1.0.41.0.72.0.13.4.24.4.34.7.94.17.154.17.232.19.02.19.21.9.1removedUpdates
@babel/corefrom 7.6.4 to 7.29.6Release notes
Sourced from @babel/core's releases.
... (truncated)
Commits
04ea6b2v7.29.699f498a[7.x packport]Improve input source map handling (#18001)feba0a3Preserve original identifier names from input sourcemaps (#17992) (#17998)aa8394ev7.29.0ad0d03f[7.x backport] feat: Allow specifying startLine in code frame (#17739)d7f4008v7.28.6e130225Polish(standalone): improve message on invalid preset/plugin (#17606)99dcba5chore: enable some ts-eslint rules (#17592)c92c491Improve Unicode handling in code-frame tokenizer (#17589)d725e39AddBABEL_7_TO_8_DANGEROUSLY_DISABLE_VERSION_CHECK(#17569)Maintainer changes
This version was pushed to npm by GitHub Actions, a new releaser for
@babel/coresince your current version.Updates
@babel/runtimefrom 7.6.3 to 7.29.7Release notes
Sourced from @babel/runtime's releases.
... (truncated)
Commits
4fba754v7.29.737d5595v7.29.2d7f4008v7.28.635055e3v7.28.4ef155f5v7.28.3cac0ff4v7.28.2f68ac51chore: Avoid CITGM errors (#17382)baa4cb8v7.27.67d06930v7.27.45b9468dReduceregeneratorsize more (#17287)Maintainer changes
This version was pushed to npm by GitHub Actions, a new releaser for
@babel/runtimesince your current version.Updates
postcssfrom 7.0.2 to 8.5.15Release notes
Sourced from postcss's releases.
... (truncated)
Changelog
Sourced from postcss's changelog.
... (truncated)
Commits
eae46dbRelease 8.5.15 version79508ffUpdate CI actionsb128e21Speed up declaration parsing by avoiding creating new array on each token9825dcaFix code format55789c8Update dependencies84fbbe9Install older pnpm action for old Node.js9f860bdRevert pnpm action for old Node.js0877198Update CI actionsb2d1a33Fix linter warnings0700dacMerge pull request #2088 from rootvector2/add-oss-fuzz-harnessRemoves
axiosUpdates
qsfrom 6.2.3 to 6.5.2Changelog
Sourced from qs's changelog.
... (truncated)
Commits
eaabd05v6.5.29a73e55[Dev Deps] updatebrowserify,eslint,iconv-lite,safer-buffer29477ba[Dev Deps] updateeslint,tape,browserify73b3732[Fix] usesafer-bufferinstead ofBufferconstructor037f368[Dev Deps] updateeslint9dcec60[Dev Deps] updateeslint,iconv-lite6f0586fChange exports usage0e838dav6.5.153b54cb[Refactor] name utils functions.dfd28c6[Dev Deps] updateeslint,@ljharb/eslint-config,tapeInstall script changes
This version modifies
prepublishscript that runs during installation. Review the package contents before updating.Updates
cipher-basefrom 1.0.4 to 1.0.7Changelog
Sourced from cipher-base's changelog.
Commits
0056718v1.0.7fd1e5ee[Refactor] useto-buffer08ba803[Dev Deps] update@ljharb/eslint-configf5249f9v1.0.6b7ddd2a[Fix] io.js 3.0 - Node.js 5.3 typed array supportf03cebfv1.0.588dc806[meta] addauto-changelog7a137d7[meta] addnpmignoreandsafe-publish-latest5c02918[meta] fix package.json indentation8fd1364[Fix] return valid values on multi-byte-wide TypedArray inputMaintainer changes
This version was pushed to npm by ljharb, a new releaser for cipher-base since your current version.
Install script changes
This version adds
prepublishscript that runs during installation. Review the package contents before updating.Updates
cookiefrom 0.3.1 to 0.7.2Release notes
Sourced from cookie's releases.
Commits
d19eaa10.7.2bc38ffdFix object assignment ofhasOwnProperty(#177)cf4658f0.7.16a8b8f5Allow leading dot for domain (#174)58015c0Remove more code and perf wins (#172)ab057d60.7.05f02ca8Migrate history to GitHub releasesa5d591cMigrate history to GitHub releases51968f9Skip isNaN9e7ca51perf(parse): cache length, return early (#144)Maintainer changes
This version was pushed to npm by blakeembrey, a new releaser for cookie since your current version.
Updates
eazy-loggerfrom 3.0.2 to 4.1.0Commits
a2e0ddc4.1.05a4da5dMerge branch 'L-four-master'a8baa6fReslove CVE-2024-57075 with and add a test.0d0f1064.0.1c332d9cchalk as depae4c8624.0.0b8c266ejust chalk80dfac43.1.0efe424fdeps: tfunkUpdates
ellipticfrom 6.5.1 to 6.6.1Commits
9b774366.6.104cb6f5Merge commit from forkb8a7edd6.6.034c8534fix: signature verification due to leading zeros3e46a486.5.7accb61elib: DER signature decoding correction03e06e16.5.67ac5360Merge commit from fork75700786.5.5206da2elib: lintUpdates
wsfrom 3.3.3 to 5.2.2Release notes
Sourced from ws's releases.
... (truncated)
Commits
5d55e52[dist] 5.2.28aba871[fix] Fix use after invalidation bug175ce46[dist] 5.2.1307be7a[fix] Remove the'data'listener when the receiver emits an error6046a28[fix] Do not prematurely remove the listener of the'data'eventbf9b2ecchore(package): update nyc to version 12.0.2 (#1395)bcab531chore(package): update eslint-plugin-promise to version 3.8.0 (#1389)e4d032c[dist] 5.2.0e7bfe5fchore(package): update mocha to version 5.2.0 (#1385)6dae94bchore(package): update eslint-plugin-import to version 2.12.0 (#1384)Updates
path-to-regexpfrom 0.1.7 to 1.7.0Release notes
Sourced from path-to-regexp's releases.
Changelog
Sourced from path-to-regexp's changelog.
... (truncated)
Commits
a99ec3cv1.7.069fb61bAllow delimiter to be set fortokensToRegExp1c2e8e4Update history for1.6.0bdf17dev1.6.0675bc5bAdd note to README on path matching44c69d5Enable a default delimiter for parsing behaviour (#94)9932d18Update TypeScript definitionkeysusage49e6e80PopulateRegExp.keysfromtokensToRegExp(#93)ec285edAdd history for1.5.37bbe1bav1.5.3Install script changes
This version adds
prepublishscript that runs during installation. Review the package contents before updating.Updates
sendfrom 0.16.2 to 0.19.2Release notes
Sourced from send's releases.
Changelog
Sourced from send's changelog.
... (truncated)
Commits
34ba03b0.19.2 (#280)e53e4e5deps: use tilde notation and update certain dependencies (#279)19efaa30.19.10a9fa80fix(deps): encodeurl@~2.0.0 (#240)9d2db990.19.0ae4f298Merge commit from forkb69cbb30.18.0f53edbbLimit the headers removed for 304 response706d6dddocs: add security policyb690ba4docs: fix linux build badge linkMaintainer changes
This version was pushed to npm by ulisesgascon, a new releaser for send since your current version.
Updates
serve-staticfrom 1.13.2 to 1.16.3Release notes
Sourced from serve-static's releases.
... (truncated)
Changelog
Sourced from serve-static's changelog.
... (truncated)
Commits
9acad221.16.3 (#229)52dc97ddeps: send@~0.19.1 and upgrade Node.js versions on the CI (#227)ec9c5ec1.16.2f454d37fix(deps): encodeurl@~2.0.077a82551.16.14263f49fix(deps): send@0.19.048c73971.16.00c11fadMerge commit from fork9b5a12a1.15.0a39a0dfdocs: update CI linkMaintainer changes
This version was pushed to npm by ulisesgascon, a new releaser for serve-static since your current version.
Updates
flattedfrom 2.0.1 to 3.4.2Commits
3bf09093.4.2885ddccfix CWE-13210bdba70added flatted-view to the benchmark2a02dce3.4.1fba4e8fMerge pull request #89 from WebReflection/python-fix5fe8648added "when in Rome" also a test for PHP53517adsome minor improvementb3e2a0cF...Description has been truncated