This repository has been archived by the owner on Mar 23, 2021. It is now read-only.
Bump node-notifier from 8.0.0 to 8.0.1 in /tests #3444
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Bumps [node-notifier](https://github.com/mikaelbr/node-notifier) from 8.0.0 to 8.0.1. - [Release notes](https://github.com/mikaelbr/node-notifier/releases) - [Changelog](https://github.com/mikaelbr/node-notifier/blob/v8.0.1/CHANGELOG.md) - [Commits](mikaelbr/node-notifier@v8.0.0...v8.0.1) Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
the
dependencies
|
bors r+ |
bors bot
added a commit
that referenced
this pull request
Dec 22, 2020
3437: Bump ajv from 6.12.6 to 7.0.2 in /tests r=mergify[bot] a=dependabot[bot] Bumps [ajv](https://github.com/ajv-validator/ajv) from 6.12.6 to 7.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/ajv-validator/ajv/releases">ajv's releases</a>.</em></p> <blockquote> <h2>v7.0.2</h2> <p>Remove duplicate functions from standalone validation code (<a href="https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1361">#1361</a>)</p> <h2>v7.0.1</h2> <p>Update error message for <code>maxLength</code>/<code>minLength</code> keywords</p> <h2>v7.0.0</h2> <p>Please note: this document covers the changes from v6.12.6.</p> <h1>The main changes</h1> <ul> <li>support of JSON Schema draft-2019-09 features: <a href="https://github.com/ajv-validator/ajv/blob/HEAD/json-schema.md#unevaluatedproperties"><code>unevaluatedProperties</code></a> and <a href="https://github.com/ajv-validator/ajv/blob/HEAD/json-schema.md#unevaluateditems"><code>unevaluatedItems</code></a>, <a href="https://github.com/ajv-validator/ajv/blob/HEAD/validation.md#extending-recursive-schemas">dynamic recursive references</a> and other <a href="https://github.com/ajv-validator/ajv/blob/HEAD/json-schema.md#json-schema-draft-2019-09">additional keywords</a>.</li> <li>comprehensive support for <a href="">standalone validation code</a> - compiling one or multiple schemas to standalone modules with one or multiple exports.</li> <li>to reduce the mistakes in JSON schemas and unexpected validation results, <a href="https://github.com/ajv-validator/ajv/blob/v7-beta/docs/strict-mode.md">strict mode</a> is added - it prohibits ignored or ambiguous JSON Schema elements. See <a href="https://github.com/ajv-validator/ajv/blob/v7-beta/docs/strict-mode.md">Strict mode</a> and <a href="https://github.com/ajv-validator/ajv/blob/v7-beta/docs/api.md">Options</a> for more details</li> <li>to make code injection from untrusted schemas impossible, <a href="https://github.com/ajv-validator/ajv/blob/v7-beta/docs/codegen.md">code generation</a> is fully re-written to be type-level safe against code injection.</li> <li>to simplify Ajv extensions, the new keyword API that is used by pre-defined keywords is available to user-defined keywords - it is much easier to define any keywords now, especially with subschemas.</li> <li>schemas are compiled to ES6 code (ES5 code generation is supported with an option).</li> <li>to improve reliability and maintainability the code is migrated to TypeScript.</li> <li>separate Ajv classes from draft-07 and draft-2019-09 support with different default imports (see <a href="https://github.com/ajv-validator/ajv#usage">Getting started</a> or <a href="https://github.com/ajv-validator/ajv/releases/tag/v7.0.0-beta.5">v7.0.0-beta.5</a> for the details).</li> </ul> <p><strong>Please note</strong>:</p> <ul> <li>the support for JSON-Schema draft-04 is removed - if you have schemas using "id" attributes you have to replace them with "$id" (or continue using version 6 that will be supported until 02/28/2021).</li> <li>all formats are separated to <a href="https://github.com/ajv-validator/ajv-formats">ajv-formats</a> package - they have to be explicitly added if you use them.</li> <li>Ajv instance can only be created with <code>new</code> keyword, as Ajv is now ES6 class.</li> <li>browser bundles are automatically published to ajv-dist package (but still available on cdnjs.com).</li> </ul> <h2>Better TypeScript support:</h2> <ul> <li>Methods <code>compile</code> and <code>compileAsync</code> now return type-guards - see <a href="https://github.com/ajv-validator/ajv/tree/v7-beta#usage">Getting started</a>.</li> <li>Method <code>validate</code> is a type-guard.</li> <li>Better separation of asynchronous schemas on type level.</li> <li>Type utility JSONSchemaType<!-- raw HTML omitted --> that generates the type for JSON Schema for type interface in the type parameter - it simplifies writing schemas (no unions support at the moment).</li> </ul> <h2>API changes:</h2> <ul> <li>addVocabulary - NEW method that allows to add an array of keyword definitions.</li> <li>addKeyword - keyword name should be passed as property in definition object, not as the first parameter (old API works with "deprecated" warning). Also "inline" keywords support is removed, code generation keywords can now be defined with "code" keyword - the same definition format that is used by all pre-defined keywords</li> <li>Ajv no longer allows to create the instance without <code>new</code> keyword (it is ES6 class).</li> </ul> <h3>Added options (and defaults):</h3> <ul> <li>strict: true - strict mode</li> <li>strictTypes: "log" - prevent mistakes related to type keywords and keyword applicability (see <a href="https://github.com/ajv-validator/ajv/blob/v7-beta/docs/strict-mode.md#strict-types">Strict Types</a>)</li> <li>strictTuples: "log" - prevent incomplete tuple schemas (see <a href="https://github.com/ajv-validator/ajv/blob/v7-beta/docs/strict-mode.md#prohibit-unconstrained-tuples">Prohibit unconstrained tuples</a>)</li> <li>allowUnionTypes: false - allow multiple non-null types in "type" keyword</li> <li>allowMatchingProperties: false - allow overlap between "properties" and "patternProperties" keywords</li> <li>loopEnum: Infinity - optimise validation of enums, similar to <code>loopRequired</code></li> <li>validateFormats: true - enable format validation</li> <li>code: {optimize: number|boolean} - control <a href="https://github.com/ajv-validator/ajv/blob/v7-beta/docs/codegen.md#code-optimization">code optimisation</a></li> <li>code: {es5: true} - generate ES5 code, the default is to generate ES6 code.</li> <li>code: {lines: true} - add line breaks to generated code - simplifies debugging of compiled schemas when you need it</li> </ul> <h3>Changed options:</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/ajv-validator/ajv/commit/5c28d853673948c86ab3d876a31c14dae9d63d32"><code>5c28d85</code></a> 7.0.2</li> <li><a href="https://github.com/ajv-validator/ajv/commit/832fee18d39dd1e7c3db4766c029474b81530db9"><code>832fee1</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1362">#1362</a> from ajv-validator/fix-standalone</li> <li><a href="https://github.com/ajv-validator/ajv/commit/0b89a00fc36d9e618c79b464bf4efff08cc26eb9"><code>0b89a00</code></a> fix: standalone code generation creating duplicate functions (closes <a href="https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1361">#1361</a>)</li> <li><a href="https://github.com/ajv-validator/ajv/commit/eae2d5d47426e8b4c355e6613fcf2c3f5e61eec2"><code>eae2d5d</code></a> test: failing test for standalone code (duplicate functions, <a href="https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1361">#1361</a>)</li> <li><a href="https://github.com/ajv-validator/ajv/commit/e446893f5bc1711fa782839eb760ca2c04c1cbfe"><code>e446893</code></a> test: duplicate function in standalone code, it should fail but it does not (...</li> <li><a href="https://github.com/ajv-validator/ajv/commit/5fe4bc04dda46ff289b58b6192cfecc0fece728c"><code>5fe4bc0</code></a> ci: only update website on push to master (not on PR), closes <a href="https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1358">#1358</a></li> <li><a href="https://github.com/ajv-validator/ajv/commit/bd9578377bc22f327a491a2df0833f0f15d8118a"><code>bd95783</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1355">#1355</a> from orgads/readme-links</li> <li><a href="https://github.com/ajv-validator/ajv/commit/53022710b1b8d121600e40da1f491b50e94a9d43"><code>5302271</code></a> README: Fix broken links</li> <li><a href="https://github.com/ajv-validator/ajv/commit/616a725993d6d271ada3845f8b050ac226f3a217"><code>616a725</code></a> 7.0.1</li> <li><a href="https://github.com/ajv-validator/ajv/commit/dc55ff2a7e138ff69b84e2c52f1bffdcee984075"><code>dc55ff2</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1353">#1353</a> from nicksrandall/patch-1</li> <li>Additional commits viewable in <a href="https://github.com/ajv-validator/ajv/compare/v6.12.6...v7.0.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually </details> 3444: Bump node-notifier from 8.0.0 to 8.0.1 in /tests r=mergify[bot] a=dependabot[bot] Bumps [node-notifier](https://github.com/mikaelbr/node-notifier) from 8.0.0 to 8.0.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/mikaelbr/node-notifier/blob/v8.0.1/CHANGELOG.md">node-notifier's changelog</a>.</em></p> <blockquote> <h3><code>v8.0.1</code></h3> <ul> <li>fixes possible injection issue for notify-send</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mikaelbr/node-notifier/commit/5d62799dab88505a709cd032653b2320c5813fce"><code>5d62799</code></a> v8.0.1</li> <li><a href="https://github.com/mikaelbr/node-notifier/commit/0c4a80df9a3b5015cd1e1ab858e008be3fece082"><code>0c4a80d</code></a> chore: adds changelog</li> <li><a href="https://github.com/mikaelbr/node-notifier/commit/f5a7bc647589fc89ac64b0f1d259a853fcf057bc"><code>f5a7bc6</code></a> fix: test cases</li> <li><a href="https://github.com/mikaelbr/node-notifier/commit/b9d148d697d3db807f653e2e6953c3de57dfeb8a"><code>b9d148d</code></a> patch: fixes possible injection issue for notify-send</li> <li>See full diff in <a href="https://github.com/mikaelbr/node-notifier/compare/v8.0.0...v8.0.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comit-network/comit-rs/network/alerts). </details> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
Build failed (retrying...): |
bors
bot
deleted the
dependabot/npm_and_yarn/tests/node-notifier-8.0.1
branch
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps node-notifier from 8.0.0 to 8.0.1.
Changelog
Sourced from node-notifier's changelog.
Commits
5d62799v8.0.10c4a80dchore: adds changelogf5a7bc6fix: test casesb9d148dpatch: fixes possible injection issue for notify-sendDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manuallyYou can disable automated security fix PRs for this repo from the Security Alerts page.