You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Below is the list of packages that dependabot wanted to update. Don't think there is much risk to leaving these stale as all infra is aws services and the site is client side. But its always nice to have fresh versions.
/cdk
cryptography from 39.0.1 to 41.0.3
certifi from 2022.12.7 to 2023.7.22
requests from 2.27.1 to 2.31.0
werkzeug from 2.0.3 to 2.2.3
/site/visitor-console (I think you can just run npm update --save)
vite from 2.9.13 to 2.9.16
both of these were opened as changes to package.lock which includes the exact version of all dependencies including those of all child dependencies. I would just update all direct dependencies (package.json) and hope these get updated, and/or ignore them.
word-wrap from 1.2.3 to 1.2.4
semver from 6.3.0 to 6.3.1
I disabled dependabot for the time being, as it likes to spam prs over time. This issue is just so I can close all these prs :)
The text was updated successfully, but these errors were encountered:
Just update python and node packages
Below is the list of packages that dependabot wanted to update. Don't think there is much risk to leaving these stale as all infra is aws services and the site is client side. But its always nice to have fresh versions.
/cdk/site/visitor-console(I think you can just runnpm update --save)I disabled dependabot for the time being, as it likes to spam prs over time. This issue is just so I can close all these prs :)
The text was updated successfully, but these errors were encountered: