chore(deps): bump the npm_and_yarn group across 1 directories with 9 updates #83
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 5 updates in the /. directory:
3.6.1
3.13.1
10.7.3
18.7.0
0.0.8
1.2.8
6.2.2
6.2.3
1.1.0
1.1.1
Updates
js-yaml
from 3.6.1 to 3.13.1Changelog
Sourced from js-yaml's changelog.
... (truncated)
Commits
665aadd
3.13.1 releasedda8ecf2
Browser files rebuildb2f9e88
Merge pull request #480 from nodeca/toStringe18afbf
Fix possible code execution in (already unsafe) load()9d4ce5e
3.13.0 releasedf64c673
Browser files rebuilda567ef3
Restrict data types for object keys59b6e76
Fix test namee4267fc
3.12.2 released7231a49
Browser files rebuildUpdates
tap
from 10.7.3 to 18.7.0Release notes
Sourced from tap's releases.
... (truncated)
Commits
5187113
update versions5bb7ca8
remove shell:true from publish script2f9abd3
changelog 18.7f105701
late-bind t.context, so it can be set in before()ae2deb7
always initializet.context
e906d21
tcompare: update test to strip out node version specific cruftdc8dadd
ci: node 20 and 21 only0768324
remove windows from CI5063b46
chore: use --loader in bootstrap51e8a31
bootstrap: run nx in --verbose modeUpdates
minimist
from 0.0.8 to 1.2.8Changelog
Sourced from minimist's changelog.
... (truncated)
Commits
6901ee2
v1.2.8a026794
Merge tag 'v0.2.3'c0b2661
v0.2.363b8fee
[Fix] Fix long option followed by single dash (#17)72239e6
[Tests] Remove duplicate test (#12)34b0f1c
[eslint] fix indentation3226afa
[Dev Deps] add missingnpmignore
dev dep098873c
[Dev Deps] update@ljharb/eslint-config
,aud
9ec4d27
[Fix] Fix long option followed by single dashba92fe6
[actions] Avoid 0.6 tests due to build failuresMaintainer changes
This version was pushed to npm by ljharb, a new releaser for minimist since your current version.
Updates
mocha
from 6.2.2 to 6.2.3Release notes
Sourced from mocha's releases.
Changelog
Sourced from mocha's changelog.
Commits
eb781e2
Release v6.2.310dbe94
update CHANGELOG for v6.2.3 [ci skip]848d6fb
security: update mkdirp, yargs, yargs-parserMaintainer changes
This version was pushed to npm by juergba, a new releaser for mocha since your current version.
Updates
flat
from 4.1.0 to 4.1.1Commits
d2ed12b
Release 4.1.15a7c5b8
Fix prototype pollution on unflatten6ed45bb
Test prototype pollution on unflattenMaintainer changes
This version was pushed to npm by timoxley, a new releaser for flat since your current version.
Updates
lodash
from 4.17.10 to 4.17.15Commits
ddfd9b1
Bump to v4.17.15.b185fce
Rebuild lodash and docs.be87d30
Bump to v4.17.14.a6fe6b1
Rebuild lodash and docs.e371828
Bump to v4.17.13.357e899
Rebuild lodash and docs.fd9a062
Bump to v4.17.12.e77d681
Rebuild lodash and docs.629d186
Update OpenJS references.2406eac
Fix minified build.Updates
y18n
from 3.2.1 to 4.0.3Changelog
Sourced from y18n's changelog.
Commits
0aa97c5
chore: release 4.x.x (#128)a8e7f04
build(release-please): configure branch properly (#127)1e21a53
fix(release): 4.x.x should not enforce Node 10 (#126)8dc7580
docs: update CHANGELOG7de58ca
fix: address prototype pollution issue45d2568
chore(release): 4.0.09f11b1e
chore: add standard-version as npm run release (#54)d6fa907
chore(package): update mocha to version 4.0.1 (#52)0594bc4
chore(package): update coveralls to version 3.0.0 (#51)f69b8ca
chore(package): update chai to version 4.0.1 (#46)Maintainer changes
This version was pushed to npm by oss-bot, a new releaser for y18n since your current version.
Updates
pathval
from 1.1.0 to 1.1.1Release notes
Sourced from pathval's releases.
Commits
db6c3e3
chore: v1.1.17859e0e
Merge pull request #60 from deleonio/fix/vulnerability-prototype-pollution49ce1f4
style: correct rule in package.jsonc77b9d2
fix: prototype pollution vulnerability + working tests49031e4
chore: remove very old nodejs57730a9
chore: update deps and tool configurationa123018
Merge pull request #55 from chaijs/remove-lgtm07eb4a8
Delete MAINTAINERSa0147cd
Merge pull request #54 from astorije/patch-1aebb278
Center repo name on READMEMaintainer changes
This version was pushed to npm by chai, a new releaser for pathval since your current version.
Updates
qs
from 6.3.2 to 6.9.1Changelog
Sourced from qs's changelog.
... (truncated)
Commits
7b36800
v6.9.16151be3
[Tests] use shared travis-ci configb9a032f
[meta] addfunding
field1f35831
[Dev Deps] updateeslint
,@ljharb/eslint-config
f884e2d
[Fix]parse
: with comma true, handle field that holds an array of arrays698b683
[fix]parse
: with comma true, do not split non-string values670254b
v6.9.0dadf9db
[Tests]parse
: add passingarrayFormat
testsdf0cb44
[Dev Deps] updateeslint
7f216ee
[New]parse
/stringify
: Pass extra key/value argument todecoder
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.