Bump the npm_and_yarn group across 1 directories with 12 updates #2
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 12 updates in the /. directory:
4.2.1
4.2.2
0.2.0
0.2.2
1.15.1
1.15.5
4.1.0
4.1.1
1.1.5
1.1.9
1.4.0
1.4.2
2.0.0
2.1.1
6.5.2
6.5.3
0.8.4
0.8.5
2.8.1
2.8.2
1.19.7
1.19.11
1.2.3
1.2.5
Updates
browserify-sign
from 4.2.1 to 4.2.2Changelog
Sourced from browserify-sign's changelog.
Commits
4af5a90
v4.2.23aec038
[Dev Deps] updatetape
85994cd
[Fix] properly check the upper bound for DSA signatures9ac5a5e
[meta] fix package.json indentationdcf49ce
[meta] addsafe-publish-latest
4418183
[meta] addnpmignore
andauto-changelog
8767739
[Fix]sign
: throw on unsupported padding scheme5f6fb17
[Tests] log when openssl doesn't support cipherf5f17c2
[Tests] handle openSSL not supporting a schemed845d85
[Tests] migrate from travis to github actionsMaintainer changes
This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.
Updates
decode-uri-component
from 0.2.0 to 0.2.2Release notes
Sourced from decode-uri-component's releases.
Commits
a0eea46
0.2.2980e0bf
Prevent overwriting previously decoded tokens3c8a373
0.2.176abc93
Switch to GitHub workflows746ca5d
Fix issue where decode throws - fixes #6486d7e2
Update license (#1)a650457
Tidelift tasks66e1c28
Meta tweaksUpdates
follow-redirects
from 1.15.1 to 1.15.5Commits
b1677ce
Release version 1.15.5 of the npm package.d8914f7
Preserve fragment in responseUrl.6585820
Release version 1.15.4 of the npm package.7a6567e
Disallow bracketed hostnames.05629af
Prefer native URL instead of deprecated url.parse.1cba8e8
Prefer native URL instead of legacy url.resolve.72bc2a4
Simplify _processResponse error handling.3d42aec
Add bracket tests.bcbb096
Do not directly set Error properties.192dbe7
Release version 1.15.3 of the npm package.Updates
http-cache-semantics
from 4.1.0 to 4.1.1Commits
2449650
Update mocha560b2d8
Don't use regex to trim whitespaceb1bdb92
Remove linting package zooc20dc7e
Cache 308Updates
ip
from 1.1.5 to 1.1.9Commits
1ecbf2f
1.1.96a3ada9
lib: fixed CVE-2023-42282 and added unit test5dc3b2f
1.1.88e6f28b
lib: even better node 6 support088c9e5
1.1.71a4ca35
lib: add back support for Node.js 6af82ef4
1.1.6dba19f6
package: exclude test folder from publishing7cd7f30
ci: use github workflows4de50ae
lib: node 18 supportUpdates
loader-utils
from 1.4.0 to 1.4.2Release notes
Sourced from loader-utils's releases.
Changelog
Sourced from loader-utils's changelog.
Commits
331ad50
chore(release): 1.4.217cbf8f
fix: ReDoS problem (#226)8f082b3
chore(release): 1.4.14504e34
fix: security problem (#220)Updates
nth-check
from 2.0.0 to 2.1.1Release notes
Sourced from nth-check's releases.
Commits
639fd2a
2.1.10eec65b
fix(test): AddmoduleNameMapper
aeeb067
fix: Fix ESM432ebc6
2.1.03e8cd1e
feat: Addgenerate
andsequence
methods (#207)57a5c62
feat: Add ESM (#206)1ce0c7c
chore(deps-dev): Bump@types/node
from 17.0.34 to 17.0.35 (#205)eebb040
chore(deps-dev): Bump@typescript-eslint/parser
from 5.24.0 to 5.25.0 (#204)a316aaa
chore(deps-dev): Bump@typescript-eslint/eslint-plugin
(#203)454c0de
chore(deps-dev): Bump@typescript-eslint/eslint-plugin
(#202)Updates
qs
from 6.5.2 to 6.5.3Changelog
Sourced from qs's changelog.
Commits
298bfa5
v6.5.3ed0f5dc
[Fix]parse
: ignore__proto__
keys (#428)691e739
[Robustness]stringify
: avoid relying on a globalundefined
(#427)1072d57
[readme] remove travis badge; add github actions/codecov badges; update URLs12ac1c4
[meta] fix README.md (#399)0338716
[actions] backport actions from main5639c20
Clean up license text so it’s properly detected as BSD-3-Clause51b8a0b
add FUNDING.yml45f6759
[Fix] fix for an impossible situation: when the formatter is called with a no...f814a7f
[Dev Deps] backport from mainUpdates
shelljs
from 0.8.4 to 0.8.5Release notes
Sourced from shelljs's releases.
Commits
70668a4
0.8.5d919d22
fix(exec): lockdown file permissions (#1060)Updates
simple-get
from 2.8.1 to 2.8.2Commits
4e156b6
2.8.243c272d
Bug fix: Thirdparty cookie leakMaintainer changes
This version was pushed to npm by linusu, a new releaser for simple-get since your current version.
Updates
urijs
from 1.19.7 to 1.19.11Release notes
Sourced from urijs's releases.
Changelog
Sourced from urijs's changelog.
Commits
b655c1b
chore(build): bumping to version 1.19.11b0c9796
fix(parse): handle CR,LF,TAB88805fd
fix(parse): handle excessive slashes in scheme-relative URLs926b2aa
chore(build): bumping to version 1.19.10a8166fe
fix(parse): handle excessive colons in scheme delimiter01920b5
chore(build): bumping to version 1.19.986d1052
fix(parse): remove leading whitespaceefae1e5
chore(build): bumping to version 1.19.86ea641c
fix(parse): case insensitive scheme - #412Updates
word-wrap
from 1.2.3 to 1.2.5Release notes
Sourced from word-wrap's releases.
Commits
207044e
1.2.59894315
revert default indentf64b188
run verb to generate README03ea082
Merge pull request #42 from jonschlinkert/chore/publish-workflow420dce9
Merge pull request #41 from jonschlinkert/fix/CVE-2023-26115-2bfa694e
Update .github/workflows/publish.ymlace0b3c
chore: bump version to 1.2.46fd7275
chore: add publish workflow30d6daf
chore: fix test655929c
chore: remove package-lockDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.