Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump @octokit/request, @octokit/graphql and @octokit/rest in /extensions/github #240855

Closed
wants to merge 1 commit into from
Closed

Bump @octokit/request, @octokit/graphql and @octokit/rest in /extensions/github #240855

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 15, 2025
edited
Loading

Bumps @octokit/request to 9.2.2 and updates ancestor dependencies @octokit/request, @octokit/graphql and @octokit/rest. These dependencies need to be updated together.

Updates @octokit/request from 6.2.1 to 9.2.2

Release notes

Sourced from @​octokit/request's releases.

v9.2.2

9.2.2 (2025-02-14)

Bug Fixes

  • deps: update dependency @​octokit/request-error to v6.1.7 [security] (#740) (4b2f485)

v9.2.1

9.2.1 (2025-02-13)

Bug Fixes

  • mitigate ReDos vulnerabilities & lint (#738) (6bb29ba)

v9.2.0

9.2.0 (2025-01-16)

Features

  • correctly parse response bodies as JSON where the Content-Type is application/scim+json (#731) (00bf316)

v9.1.4

9.1.4 (2024-12-29)

Bug Fixes

  • deps: bump @octokit/types to fix deno compat (#730) (324ffef)

v9.1.3

9.1.3 (2024-07-14)

Bug Fixes

v9.1.2

9.1.2 (2024-07-13)

Bug Fixes

  • refactor: async await instead of Promise chain (#711) (611b275)

v9.1.1

9.1.1 (2024-04-15)

... (truncated)

Commits
  • 4b2f485 fix(deps): update dependency @​octokit/request-error to v6.1.7 [security] (#740)
  • 0320a42 chore(deps): update dependency prettier to v3.5.1 (#737)
  • 6bb29ba fix: mitigate ReDos vulnerabilities & lint (#738)
  • 34ff07e Merge commit from fork
  • a0e96b3 chore(deps): update dependency esbuild to ^0.25.0 (#736)
  • d27daa7 build(deps-dev): bump vitest and @​vitest/coverage-v8 (#735)
  • bc07c8a build(deps): bump vite from 5.4.6 to 6.0.11 (#734)
  • 4266a84 build(deps-dev): bump undici from 6.19.2 to 6.21.1 (#733)
  • c2d27a2 chore(deps): update vitest monorepo to v3 (major) (#732)
  • 00bf316 feat: correctly parse response bodies as JSON where the Content-Type is `appl...
  • Additional commits viewable in compare view

Updates @octokit/graphql from 5.0.5 to 8.2.1

Release notes

Sourced from @​octokit/graphql's releases.

v8.2.1

8.2.1 (2025-02-14)

Bug Fixes

  • deps: update dependency @​octokit/request to v9.2.2 [security] (#636) (0e582ca)

v8.2.0

8.2.0 (2025-01-31)

Features

  • allow users to specify operationName in multi-operation queries (#629) (9a1787e)

v8.1.2

8.1.2 (2024-12-31)

Bug Fixes

v8.1.1

8.1.1 (2024-04-15)

Bug Fixes

  • pkg: add default fallback and types export (#565) (9de1ef8)

v8.1.0

8.1.0 (2024-04-03)

Features

v8.0.2

8.0.2 (2024-04-03)

Bug Fixes

  • deps: update dependency @​octokit/types to v13 (ce3f6c9)

v8.0.1

8.0.1 (2024-02-27)

... (truncated)

Commits
  • 0e582ca fix(deps): update dependency @​octokit/request to v9.2.2 [security] (#636)
  • ff4e2db chore(deps): update dependency esbuild to ^0.25.0 (#630)
  • 1b3358b build(deps): lock file maintenance (#628)
  • 9a1787e feat: allow users to specify operationName in multi-operation queries (#629)
  • 3206f6b build(deps): lock file maintenance (#626)
  • 0653e6a chore(deps): update vitest monorepo to v3 (major) (#625)
  • e8654c1 build(deps): lock file maintenance (#624)
  • a48b870 build(deps): lock file maintenance (#623)
  • 071b0a8 maint: switch to vitest (#621)
  • 97a801c fix(deps): bump Octokit dependencies (#620)
  • Additional commits viewable in compare view

Updates @octokit/rest from 19.0.4 to 21.1.1

Release notes

Sourced from @​octokit/rest's releases.

v21.1.1

21.1.1 (2025-02-14)

Bug Fixes

  • deps: update Octokit dependencies to mitigate ReDos [security] (#484) (ca256c3)

v21.1.0

21.1.0 (2025-01-08)

Features

  • new endpoints, bump Octokit deps to fix Deno (#477) (908b1c8)

v21.0.2

21.0.2 (2024-08-16)

Bug Fixes

v21.0.1

21.0.1 (2024-07-17)

Bug Fixes

v21.0.0

21.0.0 (2024-06-20)

Features

BREAKING CHANGES

  • package is now ESM

v21.0.0-beta.4

21.0.0-beta.4 (2024-06-19)

Bug Fixes

... (truncated)

Commits
  • ca256c3 fix(deps): update Octokit dependencies to mitigate ReDos [security] (#484)
  • e791111 chore(deps): update dependency esbuild to ^0.25.0 (#483)
  • facaa50 build(deps-dev): Bump vitest and @​vitest/coverage-v8 (#481)
  • 8a0c472 chore(deps): update dependency undici to v6.21.1 [security] (#480)
  • 4abc914 chore(deps): update vitest monorepo to v3 (major) (#478)
  • 908b1c8 feat: new endpoints, bump Octokit deps to fix Deno (#477)
  • 751b522 chore(deps): update dependency fetch-mock to v12 (#470)
  • 5ad12fd chore(deps): update dependency @​types/node to v22 (#472)
  • c88980a ci(action): update actions/checkout digest to 11bd719 (#469)
  • 94443df ci(action): update actions/checkout digest to eef6144 (#467)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump @octokit/request, @octokit/graphql and @octokit/rest
2e24c99 
Bumps [@octokit/request](https://github.com/octokit/request.js) to 9.2.2 and updates ancestor dependencies [@octokit/request](https://github.com/octokit/request.js), [@octokit/graphql](https://github.com/octokit/graphql.js) and [@octokit/rest](https://github.com/octokit/rest.js). These dependencies need to be updated together.


Updates `@octokit/request` from 6.2.1 to 9.2.2
- [Release notes](https://github.com/octokit/request.js/releases)
- [Commits](octokit/request.js@v6.2.1...v9.2.2)

Updates `@octokit/graphql` from 5.0.5 to 8.2.1
- [Release notes](https://github.com/octokit/graphql.js/releases)
- [Commits](octokit/graphql.js@v5.0.5...v8.2.1)

Updates `@octokit/rest` from 19.0.4 to 21.1.1
- [Release notes](https://github.com/octokit/rest.js/releases)
- [Commits](octokit/rest.js@v19.0.4...v21.1.1)

---
updated-dependencies:
- dependency-name: "@octokit/request"
  dependency-type: indirect
- dependency-name: "@octokit/graphql"
  dependency-type: direct:production
- dependency-name: "@octokit/rest"
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript JavaScript support issues labels Feb 15, 2025
@joaomoreno joaomoreno enabled auto-merge (squash) February 17, 2025 10:17
@joaomoreno
Copy link
Member

@dependabot recreate

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 17, 2025

Looks like these dependencies are up-to-date now, so this is no longer needed.

@dependabot dependabot bot closed this Feb 17, 2025
auto-merge was automatically disabled February 17, 2025 10:21

Pull request was closed

@dependabot dependabot bot deleted the dependabot/npm_and_yarn/extensions/github/multi-42f2a3b803 branch February 17, 2025 10:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@joaomoreno joaomoreno joaomoreno approved these changes

Assignees

@joaomoreno joaomoreno

Labels
dependencies Pull requests that update a dependency file javascript JavaScript support issues
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@joaomoreno