Bump the npm_and_yarn group across 1 directory with 30 updates#1
Open
dependabot[bot] wants to merge 1 commit into
masterMusbi8788/python-coding-challenges:masterfrom
dependabot/npm_and_yarn/npm_and_yarn-8da1203245Musbi8788/python-coding-challenges:dependabot/npm_and_yarn/npm_and_yarn-8da1203245Copy head branch name to clipboard
Open
Bump the npm_and_yarn group across 1 directory with 30 updates#1dependabot[bot] wants to merge 1 commit intomasterMusbi8788/python-coding-challenges:masterfrom dependabot/npm_and_yarn/npm_and_yarn-8da1203245Musbi8788/python-coding-challenges:dependabot/npm_and_yarn/npm_and_yarn-8da1203245Copy head branch name to clipboard
dependabot[bot] wants to merge 1 commit into
masterMusbi8788/python-coding-challenges:masterfrom
dependabot/npm_and_yarn/npm_and_yarn-8da1203245Musbi8788/python-coding-challenges:dependabot/npm_and_yarn/npm_and_yarn-8da1203245Copy head branch name to clipboard
Conversation
Bumps the npm_and_yarn group with 4 updates in the / directory: [gh-pages](https://github.com/tschaub/gh-pages), [async](https://github.com/caolan/async), [babel-traverse](https://github.com/babel/babel) and [node-fetch](https://github.com/node-fetch/node-fetch). Updates `gh-pages` from 1.0.0 to 5.0.0 - [Release notes](https://github.com/tschaub/gh-pages/releases) - [Changelog](https://github.com/tschaub/gh-pages/blob/main/changelog.md) - [Commits](tschaub/gh-pages@v1.0.0...v5.0.0) Updates `async` from 2.1.4 to 2.6.4 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md) - [Commits](caolan/async@v2.1.4...v2.6.4) Removes `babel-traverse` Updates `braces` from 1.8.5 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@1.8.5...3.0.3) Updates `cookie` from 0.3.1 to 0.7.2 - [Release notes](https://github.com/jshttp/cookie/releases) - [Commits](jshttp/cookie@v0.3.1...v0.7.2) Updates `minimist` from 0.0.8 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v0.0.8...v1.2.8) Updates `postcss` from 5.2.17 to 7.0.39 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/7.0.39/CHANGELOG.md) - [Commits](postcss/postcss@5.2.17...7.0.39) Updates `express` from 4.15.3 to 4.22.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/v4.22.1/History.md) - [Commits](expressjs/express@4.15.3...v4.22.1) Updates `path-to-regexp` from 0.1.7 to 0.1.12 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v0.1.7...v0.1.12) Updates `form-data` from 2.1.2 to 3.0.4 - [Release notes](https://github.com/form-data/form-data/releases) - [Changelog](https://github.com/form-data/form-data/blob/master/CHANGELOG.md) - [Commits](form-data/form-data@v2.1.2...v3.0.4) Updates `fsevents` from 1.0.17 to 2.3.3 - [Release notes](https://github.com/fsevents/fsevents/releases) - [Commits](fsevents/fsevents@v1.0.17...v2.3.3) Updates `ini` from 1.3.4 to 1.3.8 - [Release notes](https://github.com/npm/ini/releases) - [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md) - [Commits](npm/ini@v1.3.4...v1.3.8) Updates `json-schema` from 0.2.3 to 0.4.0 - [Commits](kriszyp/json-schema@v0.2.3...v0.4.0) Updates `jsonpointer` from 4.0.1 to 5.0.1 - [Release notes](https://github.com/janl/node-jsonpointer/releases) - [Commits](janl/node-jsonpointer@4.0.1...v5.0.1) Updates `qs` from 6.3.0 to 6.14.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.3.0...v6.14.0) Updates `tough-cookie` from 2.3.2 to 4.1.4 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v2.3.2...v4.1.4) Updates `loader-utils` from 0.2.17 to 2.0.4 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/v2.0.4/CHANGELOG.md) - [Commits](webpack/loader-utils@v0.2.17...v2.0.4) Updates `js-yaml` from 3.7.0 to 3.14.2 - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](nodeca/js-yaml@3.7.0...3.14.2) Updates `json5` from 0.5.1 to 1.0.2 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v0.5.1...v1.0.2) Updates `lodash` from 4.17.4 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.4...4.17.21) Removes `node-fetch` Updates `on-headers` from 1.0.1 to 1.1.0 - [Release notes](https://github.com/jshttp/on-headers/releases) - [Changelog](https://github.com/jshttp/on-headers/blob/master/HISTORY.md) - [Commits](jshttp/on-headers@v1.0.1...v1.1.0) Updates `url-parse` from 1.0.5 to 1.5.10 - [Commits](unshiftio/url-parse@1.0.5...1.5.10) Updates `react-dev-utils` from 3.0.0 to 12.0.1 - [Release notes](https://github.com/facebook/create-react-app/releases) - [Changelog](https://github.com/facebook/create-react-app/blob/main/CHANGELOG-2.x.md) - [Commits](https://github.com/facebook/create-react-app/commits/react-dev-utils@12.0.1/packages/react-dev-utils) Updates `send` from 0.15.3 to 0.19.0 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.15.3...0.19.0) Updates `serve-static` from 1.12.3 to 1.16.2 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md) - [Commits](expressjs/serve-static@v1.12.3...v1.16.2) Updates `sockjs` from 0.3.18 to 0.3.24 - [Release notes](https://github.com/sockjs/sockjs-node/releases) - [Changelog](https://github.com/sockjs/sockjs-node/blob/v0.3.24/Changelog) - [Commits](sockjs/sockjs-node@v0.3.18...v0.3.24) Updates `webpack-dev-middleware` from 1.10.2 to 5.3.4 - [Release notes](https://github.com/webpack/webpack-dev-middleware/releases) - [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md) - [Commits](webpack/webpack-dev-middleware@v1.10.2...v5.3.4) Updates `webpack-dev-server` from 2.4.5 to 4.15.2 - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/v4.15.2/CHANGELOG.md) - [Commits](webpack/webpack-dev-server@v2.4.5...v4.15.2) Updates `y18n` from 3.2.1 to 5.0.8 - [Release notes](https://github.com/yargs/y18n/releases) - [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md) - [Commits](yargs/y18n@v3.2.1...v5.0.8) --- updated-dependencies: - dependency-name: gh-pages dependency-version: 5.0.0 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: async dependency-version: 2.6.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: babel-traverse dependency-version: dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-version: 3.0.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cookie dependency-version: 0.7.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-version: 1.2.8 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-version: 7.0.39 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-version: 4.22.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-version: 0.1.12 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: form-data dependency-version: 3.0.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: fsevents dependency-version: 2.3.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ini dependency-version: 1.3.8 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json-schema dependency-version: 0.4.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jsonpointer dependency-version: 5.0.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: qs dependency-version: 6.14.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tough-cookie dependency-version: 4.1.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: loader-utils dependency-version: 2.0.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: js-yaml dependency-version: 3.14.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json5 dependency-version: 1.0.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: lodash dependency-version: 4.17.21 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-version: dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: on-headers dependency-version: 1.1.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: url-parse dependency-version: 1.5.10 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: react-dev-utils dependency-version: 12.0.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-version: 0.19.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-version: 1.16.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: sockjs dependency-version: 0.3.24 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-middleware dependency-version: 5.3.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-server dependency-version: 4.15.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: y18n dependency-version: 5.0.8 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 4 updates in the / directory: gh-pages, async, babel-traverse and node-fetch.
Updates
gh-pagesfrom 1.0.0 to 5.0.0Release notes
Sourced from gh-pages's releases.
... (truncated)
Changelog
Sourced from gh-pages's changelog.
... (truncated)
Commits
f729b975.0.051534c7Log changesace063bMerge pull request #438 from Vicropht/patch-158e54beMerge pull request #459 from tschaub/dependabot/npm_and_yarn/async-3.2.42189df3Bump async from 2.6.4 to 3.2.4051846eMerge pull request #454 from tschaub/dependabot/npm_and_yarn/email-addresses-...5c91c67Merge pull request #455 from tschaub/dependabot/github_actions/actions/setup-...fe0ad83Merge pull request #453 from tschaub/dependabot/github_actions/actions/checko...b89287dMerge pull request #445 from Nezteb/patch-1e890bd1Bump email-addresses from 3.0.1 to 5.0.0Updates
asyncfrom 2.1.4 to 2.6.4Release notes
Sourced from async's releases.
Changelog
Sourced from async's changelog.
... (truncated)
Commits
c6bdacaVersion 2.6.48870da9Update built files4df6754update changelog8f7f903Fix prototype pollution vulnerability (#1828)f1d8383Version 2.6.32b674c1update changelogeab740ffix: udpate lodash. closes #1675eaf32beVersion 2.6.2684b42eUpdate built filese1bd3daupdate changelogMaintainer changes
This version was pushed to npm by hargasinski, a new releaser for async since your current version.
Removes
babel-traverseUpdates
bracesfrom 1.8.5 to 3.0.3Changelog
Sourced from braces's changelog.
... (truncated)
Commits
74b2db23.0.388f1429update eslint. lint, fix unit tests.415d660Snyk js braces 6838727 (#40)190510ffix tests, skip 1 test in test/braces.expand716eb9freadme bumpa5851e5Merge pull request #37 from coderaiser/fix/vulnerability2092bd1feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cffix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9remove funding file665ab5dupdate keepEscaping doc (#27)Updates
cookiefrom 0.3.1 to 0.7.2Release notes
Sourced from cookie's releases.
Commits
d19eaa10.7.2bc38ffdFix object assignment ofhasOwnProperty(#177)cf4658f0.7.16a8b8f5Allow leading dot for domain (#174)58015c0Remove more code and perf wins (#172)ab057d60.7.05f02ca8Migrate history to GitHub releasesa5d591cMigrate history to GitHub releases51968f9Skip isNaN9e7ca51perf(parse): cache length, return early (#144)Maintainer changes
This version was pushed to npm by blakeembrey, a new releaser for cookie since your current version.
Updates
minimistfrom 0.0.8 to 1.2.8Changelog
Sourced from minimist's changelog.
... (truncated)
Commits
6901ee2v1.2.8a026794Merge tag 'v0.2.3'c0b2661v0.2.363b8fee[Fix] Fix long option followed by single dash (#17)72239e6[Tests] Remove duplicate test (#12)34b0f1c[eslint] fix indentation3226afa[Dev Deps] add missingnpmignoredev dep098873c[Dev Deps] update@ljharb/eslint-config,aud9ec4d27[Fix] Fix long option followed by single dashba92fe6[actions] Avoid 0.6 tests due to build failuresMaintainer changes
This version was pushed to npm by ljharb, a new releaser for minimist since your current version.
Updates
postcssfrom 5.2.17 to 7.0.39Release notes
Sourced from postcss's releases.
Changelog
Sourced from postcss's changelog.
... (truncated)
Commits
e17c1efRelease 7.0.39 version6791bd3Reduce npm package44c581aReplace nanocolors with picocolors8ba21fdRemove eslint-ci3994c4aRelease 7.0.38 version6944e1dRemove development keys from package.json4dd0af0Release 7.0.37 version8408eb4Add compilation step0c68063Move tests to GitHub Actions98b61baReplace chalk to nanocolorsUpdates
expressfrom 4.15.3 to 4.22.1Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
... (truncated)
Commits
12fae144.22.15ddf311Revert "sec: security patch for CVE-2024-51999"49744ab4.22.0 (#6921)6e97452sec: security patch for CVE-2024-519996a23d34deps: use tilde notation forqs(#6919)8c12cdfdeps: qs@6.14.0 (#6909)7fea74fdeps: use tilde notation for certain dependencies (#6905)dac7a04chore: wider range for query test skip (#6513)997919bci: add node.js 24 to test matrix (#6506)36fb59cfix(ci): reordernpm isteps to fix ci for older node versions (#6336)Maintainer changes
This version was pushed to npm by jonchurch, a new releaser for express since your current version.
Updates
path-to-regexpfrom 0.1.7 to 0.1.12Release notes
Sourced from path-to-regexp's releases.
Commits
640e6940.1.12f01c26aMerge commit from fork0c711920.1.118f09549Add error on bad input valuesc827fce0.1.1029b96b4Add backtrack protection to parametersac4c234Update repo url (#314)bdb66350.1.9c4272e4Allow a non-lookahead regex (#312)51a19550.1.8Updates
form-datafrom 2.1.2 to 3.0.4Release notes
Sourced from form-data's releases.
Changelog
Sourced from form-data's changelog.