Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Dependabot/npm and yarn/tap 18.6.1 #562

Closed
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
134 commits
Select commit Hold shift + click to select a range
ca6ee7b
Create SECURITY.md
Hbutlercapone Feb 4, 2022
8bf2ea9
Create codeql-analysis.yml
Hbutlercapone Feb 4, 2022
0bc6f7f
Merge branch 'fastify:main' into main
Hbutlercapone Feb 4, 2022
9ed5f80
chore(deps-dev): bump @vercel/ncc from 0.33.1 to 0.33.3 (#7)
dependabot[bot] Feb 14, 2022
fc55221
chore(deps-dev): bump eslint from 8.8.0 to 8.9.0 (#8)
dependabot[bot] Feb 14, 2022
59d8973
chore(deps-dev): bump eslint from 8.9.0 to 8.10.0 (#9)
dependabot[bot] Feb 28, 2022
695049b
chore(deps): bump actions/setup-node from 2 to 3
dependabot[bot] Mar 1, 2022
f6e8321
chore(deps-dev): bump eslint from 8.10.0 to 8.11.0 (#12)
dependabot[bot] Mar 14, 2022
d5c4141
chore(deps): bump node-fetch from 2.6.6 to 2.6.7 (#13)
dependabot[bot] Mar 14, 2022
9cba994
chore(deps-dev): bump prettier from 2.5.1 to 2.6.0 (#14)
dependabot[bot] Mar 21, 2022
982a75c
chore(deps-dev): bump eslint from 8.11.0 to 8.12.0 (#15)
dependabot[bot] Mar 28, 2022
eab4082
chore(deps-dev): bump prettier from 2.6.0 to 2.6.1 (#16)
dependabot[bot] Mar 28, 2022
60e8c67
chore(deps-dev): bump prettier from 2.6.1 to 2.6.2 (#19)
dependabot[bot] Apr 4, 2022
6055f40
chore(deps): bump @actions/github from 5.0.0 to 5.0.1 (#20)
dependabot[bot] Apr 4, 2022
6d05d3e
chore(deps): bump semver from 7.3.5 to 7.3.6 (#21)
dependabot[bot] Apr 11, 2022
1be4687
chore(deps): bump semver from 7.3.6 to 7.3.7 (#24)
dependabot[bot] Apr 18, 2022
cc1cdb3
chore(deps-dev): bump @vercel/ncc from 0.33.3 to 0.33.4 (#25)
dependabot[bot] Apr 18, 2022
4afbb30
chore(deps-dev): bump eslint from 8.12.0 to 8.13.0 (#22)
dependabot[bot] Apr 18, 2022
c521e37
chore(deps-dev): bump eslint from 8.13.0 to 8.14.0 (#26)
dependabot[bot] Apr 25, 2022
5a49110
Merge pull request #10 from Hbutlercapone/dependabot/github_actions/a…
Hbutlercapone Apr 26, 2022
ad31fe3
chore(deps): bump actions/checkout from 2 to 3
dependabot[bot] Apr 26, 2022
aa7fc71
chore(deps): bump github/codeql-action from 1 to 2
dependabot[bot] May 1, 2022
eea35c9
chore(deps): bump @actions/core from 1.6.0 to 1.7.0 (#29)
dependabot[bot] May 2, 2022
d8c89cf
chore(deps-dev): bump eslint from 8.14.0 to 8.15.0 (#31)
dependabot[bot] May 9, 2022
ea14333
chore(deps): bump @actions/core from 1.7.0 to 1.8.0 (#34)
dependabot[bot] May 9, 2022
440df9d
chore(deps): bump @actions/core from 1.8.0 to 1.8.2 (#35)
dependabot[bot] May 16, 2022
0c29ee8
chore(deps): bump @actions/github from 5.0.1 to 5.0.3 (#36)
dependabot[bot] May 16, 2022
2d44f1d
chore(deps-dev): bump eslint from 8.15.0 to 8.16.0 (#38)
dependabot[bot] May 23, 2022
3aeadc5
chore(deps-dev): bump @vercel/ncc from 0.33.4 to 0.34.0 (#39)
dependabot[bot] May 30, 2022
ab6ac6c
chore(deps-dev): bump eslint from 8.16.0 to 8.17.0 (#40)
dependabot[bot] Jun 6, 2022
51c1632
chore(deps-dev): bump eslint from 8.17.0 to 8.18.0 (#42)
dependabot[bot] Jun 20, 2022
3de4dc7
chore(deps-dev): bump prettier from 2.6.2 to 2.7.1 (#43)
dependabot[bot] Jun 20, 2022
4b95258
chore(deps): bump @actions/core from 1.8.2 to 1.9.0 (#44)
dependabot[bot] Jun 20, 2022
b931cb8
chore(deps): bump nearform/optic-release-automation-action from 2 to 3
dependabot[bot] Jul 1, 2022
c51b52c
chore(deps-dev): bump eslint from 8.18.0 to 8.19.0 (#46)
dependabot[bot] Jul 4, 2022
2d76c77
chore(deps-dev): bump eslint from 8.19.0 to 8.20.0 (#47)
dependabot[bot] Jul 18, 2022
47f8d34
chore(deps-dev): bump eslint from 8.20.0 to 8.21.0 (#48)
dependabot[bot] Aug 1, 2022
c91cb1a
chore(deps-dev): bump sinon from 12.0.1 to 14.0.0
dependabot[bot] Aug 1, 2022
ccdba15
chore(deps): bump @actions/core from 1.9.0 to 1.9.1 (#49)
dependabot[bot] Aug 15, 2022
a564c35
chore(deps-dev): bump eslint from 8.21.0 to 8.22.0 (#50)
dependabot[bot] Aug 15, 2022
c2622e3
chore(deps-dev): bump eslint from 8.22.0 to 8.23.0 (#51)
dependabot[bot] Aug 29, 2022
634d016
chore(deps-dev): bump husky from 7.0.4 to 8.0.1
dependabot[bot] Aug 29, 2022
83897a8
Merge pull request #45 from Hbutlercapone/dependabot/github_actions/n…
Hbutlercapone Sep 18, 2022
75b9818
chore(deps): bump minimist from 1.2.5 to 1.2.6 (#52)
dependabot[bot] Sep 18, 2022
4deaad6
Merge pull request #28 from Hbutlercapone/dependabot/github_actions/g…
Hbutlercapone Sep 18, 2022
4a88c70
Merge pull request #18 from Hbutlercapone/dependabot/github_actions/a…
Hbutlercapone Sep 18, 2022
40c05ff
Merge pull request #32 from Hbutlercapone/dependabot/npm_and_yarn/sin…
Hbutlercapone Sep 18, 2022
6b1c54e
Merge pull request #37 from Hbutlercapone/dependabot/npm_and_yarn/hus…
Hbutlercapone Sep 18, 2022
17be7bb
chore(deps-dev): bump eslint from 8.23.0 to 8.23.1 (#53)
dependabot[bot] Sep 19, 2022
9f081f4
chore(deps-dev): bump eslint from 8.23.1 to 8.24.0 (#54)
dependabot[bot] Sep 26, 2022
e9ee4c3
chore(deps): bump @actions/github from 5.0.3 to 5.1.0 (#55)
dependabot[bot] Sep 26, 2022
0f67f6a
chore(deps): bump @actions/github from 5.1.0 to 5.1.1 (#56)
dependabot[bot] Oct 3, 2022
68fd117
chore(deps): bump @actions/core from 1.9.1 to 1.10.0 (#57)
dependabot[bot] Oct 3, 2022
e5bdf1a
chore(deps): bump semver from 7.3.7 to 7.3.8 (#60)
dependabot[bot] Oct 10, 2022
fe62800
chore(deps-dev): bump eslint from 8.24.0 to 8.26.0 (#61)
dependabot[bot] Oct 24, 2022
8a2bf60
chore(deps-dev): bump sinon from 14.0.0 to 14.0.1 (#59)
dependabot[bot] Oct 24, 2022
5ee2970
chore(deps-dev): bump eslint from 8.26.0 to 8.27.0 (#62)
dependabot[bot] Nov 7, 2022
eda52bc
chore(deps-dev): bump husky from 8.0.1 to 8.0.2 (#64)
dependabot[bot] Nov 14, 2022
3649869
chore(deps-dev): bump sinon from 14.0.1 to 14.0.2 (#65)
dependabot[bot] Nov 14, 2022
4ed3e6e
chore(deps-dev): bump eslint from 8.27.0 to 8.28.0 (#67)
dependabot[bot] Nov 28, 2022
317993a
chore(deps-dev): bump prettier from 2.7.1 to 2.8.0 (#68)
dependabot[bot] Nov 28, 2022
5f90df2
chore(deps): bump nearform/optic-release-automation-action from 3 to 4
dependabot[bot] Dec 1, 2022
17e9482
chore(deps-dev): bump eslint from 8.28.0 to 8.29.0 (#70)
dependabot[bot] Dec 5, 2022
f23241a
chore(deps-dev): bump prettier from 2.8.0 to 2.8.1 (#73)
dependabot[bot] Dec 12, 2022
28b1619
chore(deps-dev): bump @vercel/ncc from 0.34.0 to 0.36.0 (#72)
dependabot[bot] Dec 12, 2022
cfdfada
chore(deps): bump qs from 6.5.2 to 6.5.3 (#74)
dependabot[bot] Dec 12, 2022
bf1caaa
chore(deps-dev): bump eslint from 8.29.0 to 8.30.0 (#76)
dependabot[bot] Dec 19, 2022
44c99aa
chore(deps-dev): bump eslint from 8.30.0 to 8.31.0 (#77)
dependabot[bot] Jan 2, 2023
04d620b
chore(deps): bump json5 from 2.2.0 to 2.2.3 (#78)
dependabot[bot] Jan 2, 2023
aa9ddec
chore(deps-dev): bump prettier from 2.8.1 to 2.8.2 (#79)
dependabot[bot] Jan 9, 2023
0a21bef
chore(deps-dev): bump husky from 8.0.2 to 8.0.3 (#80)
dependabot[bot] Jan 9, 2023
26b149e
chore(deps-dev): bump prettier from 2.8.2 to 2.8.3 (#82)
dependabot[bot] Jan 16, 2023
40f5c08
chore(deps-dev): bump eslint from 8.31.0 to 8.32.0 (#83)
dependabot[bot] Jan 16, 2023
a965e89
chore(deps-dev): bump @vercel/ncc from 0.36.0 to 0.36.1 (#84)
dependabot[bot] Jan 30, 2023
8b711e4
chore(deps-dev): bump eslint from 8.32.0 to 8.33.0 (#85)
dependabot[bot] Jan 30, 2023
6b9dc28
chore(deps-dev): bump eslint from 8.33.0 to 8.34.0 (#86)
dependabot[bot] Feb 13, 2023
3b181dd
chore(deps-dev): bump prettier from 2.8.3 to 2.8.4 (#87)
dependabot[bot] Feb 13, 2023
58e115a
chore(deps-dev): bump eslint from 8.34.0 to 8.35.0 (#88)
dependabot[bot] Feb 27, 2023
0c2cb61
chore(deps): bump minimist from 1.2.5 to 1.2.6 (#89)
dependabot[bot] Mar 7, 2023
c0d3655
chore(deps-dev): bump eslint from 8.35.0 to 8.36.0 (#91)
dependabot[bot] Mar 13, 2023
84e5a0e
chore(deps-dev): bump prettier from 2.8.4 to 2.8.7 (#92)
dependabot[bot] Mar 27, 2023
dba3a45
chore(deps-dev): bump tap from 15.1.6 to 16.3.4
dependabot[bot] Mar 27, 2023
0feec49
Merge pull request #69 from Hbutlercapone/dependabot/github_actions/n…
Hbutlercapone Mar 28, 2023
d5549d5
Merge pull request #81 from Hbutlercapone/dependabot/npm_and_yarn/tap…
Hbutlercapone Mar 28, 2023
7c6264c
chore(deps-dev): bump sinon from 14.0.2 to 15.0.3
dependabot[bot] Mar 28, 2023
39352a1
Merge pull request #93 from Hbutlercapone/dependabot/npm_and_yarn/sin…
Hbutlercapone Mar 28, 2023
3cde4a7
chore(deps-dev): bump eslint from 8.36.0 to 8.37.0 (#94)
dependabot[bot] Apr 3, 2023
ea24f8c
chore(deps-dev): bump eslint from 8.37.0 to 8.38.0 (#95)
dependabot[bot] Apr 10, 2023
4790db2
chore(deps): bump semver from 7.3.8 to 7.4.0 (#96)
dependabot[bot] Apr 17, 2023
752a256
chore(deps-dev): bump eslint from 8.38.0 to 8.39.0 (#97)
dependabot[bot] Apr 24, 2023
1e52063
chore(deps-dev): bump prettier from 2.8.7 to 2.8.8 (#98)
dependabot[bot] Apr 24, 2023
f9a0edc
chore(deps): bump semver from 7.4.0 to 7.5.0 (#100)
dependabot[bot] Apr 24, 2023
29eedb5
chore(deps-dev): bump sinon from 15.0.3 to 15.0.4 (#99)
dependabot[bot] Apr 24, 2023
e62ee6f
chore(deps-dev): bump eslint from 8.39.0 to 8.40.0 (#101)
dependabot[bot] May 8, 2023
d0df873
chore(deps): bump semver from 7.5.0 to 7.5.1 (#102)
dependabot[bot] May 15, 2023
e1ceed6
chore(deps-dev): bump sinon from 15.0.4 to 15.1.0 (#103)
dependabot[bot] May 22, 2023
3dc83fc
chore(deps-dev): bump eslint from 8.40.0 to 8.41.0 (#104)
dependabot[bot] May 22, 2023
9732b65
chore(deps-dev): bump eslint from 8.41.0 to 8.42.0 (#105)
dependabot[bot] Jun 5, 2023
4a9b124
chore(deps-dev): bump tap from 16.3.4 to 16.3.6 (#106)
dependabot[bot] Jun 5, 2023
eb1fc54
chore(deps-dev): bump eslint from 8.42.0 to 8.43.0 (#107)
dependabot[bot] Jun 19, 2023
73f5370
chore(deps): bump semver from 7.5.1 to 7.5.2 (#108)
dependabot[bot] Jun 19, 2023
4e9ea56
chore(deps-dev): bump sinon from 15.1.0 to 15.1.2 (#109)
dependabot[bot] Jun 19, 2023
b81def5
chore(deps): bump semver from 7.5.2 to 7.5.3 (#110)
dependabot[bot] Jun 26, 2023
d57d3ac
chore(deps-dev): bump tap from 16.3.6 to 16.3.7 (#111)
dependabot[bot] Jun 26, 2023
34923c1
chore(deps-dev): bump sinon from 15.1.2 to 15.2.0 (#112)
dependabot[bot] Jun 26, 2023
abcc542
chore(deps-dev): bump eslint from 8.43.0 to 8.44.0 (#113)
dependabot[bot] Jul 3, 2023
87bcc59
chore(deps): bump semver from 7.5.3 to 7.5.4 (#114)
dependabot[bot] Jul 10, 2023
eb9ffa3
chore(deps-dev): bump eslint from 8.44.0 to 8.45.0 (#116)
dependabot[bot] Jul 17, 2023
1c19f7d
chore(deps-dev): bump tap from 16.3.7 to 16.3.8 (#117)
dependabot[bot] Jul 31, 2023
0d3d76c
chore(deps-dev): bump eslint from 8.45.0 to 8.46.0 (#118)
dependabot[bot] Jul 31, 2023
6d5209c
chore(deps-dev): bump eslint from 8.46.0 to 8.47.0 (#120)
dependabot[bot] Aug 14, 2023
7d54676
chore(deps-dev): bump prettier from 2.8.8 to 3.0.2
dependabot[bot] Aug 21, 2023
9333bad
Merge pull request #121 from Hbutlercapone/dependabot/npm_and_yarn/pr…
Hbutlercapone Aug 23, 2023
2d1c466
chore(deps-dev): bump eslint from 8.47.0 to 8.48.0 (#122)
dependabot[bot] Aug 28, 2023
3f7ba14
chore(deps-dev): bump prettier from 3.0.2 to 3.0.3 (#123)
dependabot[bot] Sep 4, 2023
32f8e6b
chore(deps-dev): bump @vercel/ncc from 0.36.1 to 0.38.0 (#124)
dependabot[bot] Sep 11, 2023
b3dfb2b
chore(deps-dev): bump eslint from 8.48.0 to 8.49.0 (#125)
dependabot[bot] Sep 11, 2023
3c0d533
chore(deps): bump @actions/core from 1.10.0 to 1.10.1 (#127)
dependabot[bot] Sep 18, 2023
abcf2f7
chore(deps-dev): bump eslint from 8.49.0 to 8.50.0 (#131)
dependabot[bot] Sep 25, 2023
118b758
chore(deps): bump actions/checkout from 3 to 4
dependabot[bot] Oct 1, 2023
e2d0828
chore(deps-dev): bump eslint from 8.50.0 to 8.51.0 (#135)
dependabot[bot] Oct 9, 2023
39ccb8c
chore(deps): bump @actions/github from 5.1.1 to 6.0.0
dependabot[bot] Oct 16, 2023
5eeaa0c
chore(deps): bump @babel/traverse
dependabot[bot] Oct 17, 2023
30905e4
chore(deps-dev): bump @vercel/ncc from 0.38.0 to 0.38.1 (#142)
dependabot[bot] Oct 23, 2023
534ef54
chore(deps-dev): bump eslint from 8.51.0 to 8.52.0 (#141)
dependabot[bot] Oct 23, 2023
657081d
Merge pull request #132 from Hbutlercapone/dependabot/github_actions/…
Hbutlercapone Oct 24, 2023
d94a7b5
Merge pull request #138 from Hbutlercapone/dependabot/npm_and_yarn/ac…
Hbutlercapone Oct 24, 2023
0735458
chore(deps-dev): bump sinon from 15.2.0 to 17.0.0
dependabot[bot] Oct 24, 2023
1cd607b
Merge pull request #143 from Hbutlercapone/dependabot/npm_and_yarn/si…
Hbutlercapone Oct 24, 2023
cf83c55
Merge pull request #139 from Hbutlercapone/dependabot/npm_and_yarn/ba…
Hbutlercapone Oct 24, 2023
6e2e4f4
chore(deps-dev): bump eslint from 8.52.0 to 8.53.0 (#146)
dependabot[bot] Nov 6, 2023
caf69f1
chore(deps-dev): bump sinon from 17.0.0 to 17.0.1 (#147)
dependabot[bot] Nov 6, 2023
6c8a3fc
chore(deps-dev): bump prettier from 3.0.3 to 3.1.0 (#149)
dependabot[bot] Nov 13, 2023
03b4d2c
chore(deps-dev): bump tap from 16.3.8 to 18.6.1
dependabot[bot] Nov 20, 2023
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions .github/workflows/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -4,8 +4,8 @@ jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actions/setup-node@v2
- uses: actions/checkout@v4
- uses: actions/setup-node@v3
with:
node-version-file: '.nvmrc'
- run: npm ci
Expand Down
70 changes: 70 additions & 0 deletions .github/workflows/codeql-analysis.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,70 @@
# For most projects, this workflow file will not need changing; you simply need
# to commit it to your repository.
#
# You may wish to alter this file to override the set of languages analyzed,
# or to provide custom queries or build logic.
#
# ******** NOTE ********
# We have attempted to detect the languages in your repository. Please check
# the `language` matrix defined below to confirm you have the correct set of
# supported CodeQL languages.
#
name: "CodeQL"

on:
push:
branches: [ main ]
pull_request:
# The branches below must be a subset of the branches above
branches: [ main ]
schedule:
- cron: '39 15 * * 5'

jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write

strategy:
fail-fast: false
matrix:
language: [ 'javascript' ]
# CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
# Learn more about CodeQL language support at https://git.io/codeql-language-support

steps:
- name: Checkout repository
uses: actions/checkout@v4

# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v2
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a config file.
# By default, queries listed here will override any specified in a config file.
# Prefix the list here with "+" to use these queries and those in the config file.
# queries: ./path/to/local/query, your-org/your-repo/queries@main

# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually (see below)
- name: Autobuild
uses: github/codeql-action/autobuild@v2

# ℹ️ Command-line programs to run using the OS shell.
# 📚 https://git.io/JvXDl

# ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
# and modify them (or add more) to build your code if your project
# uses a compiled language

#- run: |
# make bootstrap
# make release

- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v2
4 changes: 2 additions & 2 deletions .github/workflows/release.yml
Original file line number Diff line number Diff line change
Expand Up @@ -15,10 +15,10 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Setting action build runtime
uses: actions/setup-node@v2
uses: actions/setup-node@v3
with:
node-version: 16
- uses: nearform/optic-release-automation-action@v2
- uses: nearform/optic-release-automation-action@v4
with:
github-token: ${{ secrets.github_token }}
semver: ${{ github.event.inputs.semver }}
Expand Down
21 changes: 21 additions & 0 deletions SECURITY.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
# Security Policy

## Supported Versions

Use this section to tell people about which versions of your project are
currently being supported with security updates.

| Version | Supported |
| ------- | ------------------ |
| 5.1.x | :white_check_mark: |
| 5.0.x | :x: |
| 4.0.x | :white_check_mark: |
| < 4.0 | :x: |

## Reporting a Vulnerability

Use this section to tell people how to report a vulnerability.

Tell them where to go, how often they can expect to get an update on a
reported vulnerability, what to expect if the vulnerability is accepted or
declined, etc.
Loading
Loading