Skip to content

Bump the npm_and_yarn group across 1 directory with 11 updates #5

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump the npm_and_yarn group across 1 directory with 11 updates #5

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 17, 2024

Bumps the npm_and_yarn group with 11 updates in the /examples/angular directory:

Package From To
@adobe/css-tools 4.2.0 4.3.3
@babel/traverse 7.22.8 7.24.5
express 4.18.2 4.19.2
follow-redirects 1.15.2 1.15.6
fsevents 2.3.2 2.3.3
ip 2.0.0 2.0.1
postcss 8.4.16 8.4.31
@angular-devkit/build-angular 14.2.12 14.2.13
socket.io 4.7.2 4.7.5
tar 6.1.15 6.2.1
webpack-dev-middleware 5.3.3 6.1.2
@angular-devkit/build-angular 14.2.13 17.3.7

Updates @adobe/css-tools from 4.2.0 to 4.3.3

Changelog

Sourced from @​adobe/css-tools's changelog.

4.3.3 / 2024-01-24

  • Update export property #271

4.3.2 / 2023-11-28

  • Fix redos vulnerability with specific crafted css string - CVE-2023-48631
  • Fix Problem parsing with :is() and nested :nth-child() #211

4.3.1 / 2023-03-14

  • Fix redos vulnerability with specific crafted css string - CVE-2023-26364

4.3.0 / 2023-03-07

  • Update build tools
  • Update exports path and files
Commits

Updates @babel/traverse from 7.22.8 to 7.24.5

Release notes

Sourced from @​babel/traverse's releases.

v7.24.5 (2024-04-29)

Thanks @​romgrk and @​sossost for your first PRs!

🐛 Bug Fix

  • babel-plugin-transform-classes, babel-traverse
  • babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs3

💅 Polish

🏠 Internal

  • Other
  • babel-parser
  • babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-helper-module-transforms, babel-helper-split-export-declaration, babel-helper-wrap-function, babel-helpers, babel-plugin-bugfix-firefox-class-in-computed-class-key, babel-plugin-proposal-explicit-resource-management, babel-plugin-transform-block-scoping, babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-chaining, babel-plugin-transform-parameters, babel-plugin-transform-private-property-in-object, babel-plugin-transform-react-jsx-self, babel-plugin-transform-typeof-symbol, babel-plugin-transform-typescript, babel-traverse
  • babel-plugin-proposal-partial-application, babel-types
  • babel-plugin-transform-class-properties, babel-preset-env

🏃‍♀️ Performance

  • babel-helpers, babel-preset-env, babel-runtime-corejs3

Committers: 6

v7.24.4 (2024-04-03)

Thanks @​Dunqing, @​luiscubal, and @​samualtnorman for your first PRs!

👓 Spec Compliance

  • babel-parser
  • babel-helpers, babel-plugin-proposal-decorators, babel-runtime-corejs3

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.24.5 (2024-04-29)

🐛 Bug Fix

  • babel-plugin-transform-classes, babel-traverse
  • babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs3

💅 Polish

🏠 Internal

  • Other
  • babel-parser
  • babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-helper-module-transforms, babel-helper-split-export-declaration, babel-helper-wrap-function, babel-helpers, babel-plugin-bugfix-firefox-class-in-computed-class-key, babel-plugin-proposal-explicit-resource-management, babel-plugin-transform-block-scoping, babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-chaining, babel-plugin-transform-parameters, babel-plugin-transform-private-property-in-object, babel-plugin-transform-react-jsx-self, babel-plugin-transform-typeof-symbol, babel-plugin-transform-typescript, babel-traverse
  • babel-plugin-proposal-partial-application, babel-types
  • babel-plugin-transform-class-properties, babel-preset-env

🏃‍♀️ Performance

  • babel-helpers, babel-preset-env, babel-runtime-corejs3

v7.24.4 (2024-04-03)

👓 Spec Compliance

  • babel-parser
  • babel-helpers, babel-plugin-proposal-decorators, babel-runtime-corejs3

🐛 Bug Fix

  • babel-generator
  • babel-compat-data, babel-plugin-bugfix-firefox-class-in-computed-class-key, babel-preset-env
  • babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • babel-plugin-transform-block-scoping
  • babel-core, babel-plugin-transform-block-scoped-functions, babel-plugin-transform-block-scoping

... (truncated)

Commits

Updates express from 4.18.2 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

New Contributors

Full Changelog: expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

Other Changes

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

  • Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

  • Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

4.18.3 / 2024-02-29

Commits
  • 04bc627 4.19.2
  • da4d763 Improved fix for open redirect allow list bypass
  • 4f0f6cc 4.19.1
  • a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
  • a1fa90f fixed un-edited version in history.md for 4.19.0
  • 11f2b1d build: fix build due to inconsistent supertest behavior in older versions
  • 084e365 4.19.0
  • 0867302 Prevent open redirect allow list bypass due to encodeurl
  • 567c9c6 Add note on how to update docs for new release (#5541)
  • 69a4cf2 deps: [email protected]
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.


Updates follow-redirects from 1.15.2 to 1.15.6

Commits
  • 35a517c Release version 1.15.6 of the npm package.
  • c4f847f Drop Proxy-Authorization across hosts.
  • 8526b4a Use GitHub for disclosure.
  • b1677ce Release version 1.15.5 of the npm package.
  • d8914f7 Preserve fragment in responseUrl.
  • 6585820 Release version 1.15.4 of the npm package.
  • 7a6567e Disallow bracketed hostnames.
  • 05629af Prefer native URL instead of deprecated url.parse.
  • 1cba8e8 Prefer native URL instead of legacy url.resolve.
  • 72bc2a4 Simplify _processResponse error handling.
  • Additional commits viewable in compare view

Updates fsevents from 2.3.2 to 2.3.3

Release notes

Sourced from fsevents's releases.

Release v2.3.3

Released to npm as v2.3.3

Commits

Updates ip from 2.0.0 to 2.0.1

Commits

Updates postcss from 8.4.16 to 8.4.31

Release notes

Sourced from postcss's releases.

8.4.31

8.4.30

8.4.29

8.4.28

  • Fixed Root.source.end for better source map (by @​romainmenke).
  • Fixed Result.root types when process() has no parser.

8.4.27

  • Fixed Container clone methods types.

8.4.26

  • Fixed clone methods types.

8.4.25

8.4.24

  • Fixed Plugin types.

8.4.23

  • Fixed warnings in TypeDoc.

8.4.22

8.4.21

8.4.20

  • Fixed source map generation for childless at-rules like @layer.

8.4.19

  • Fixed whitespace preserving after AST transformations (by @​romainmenke).

8.4.18

  • Fixed an error on absolute: true with empty sourceContent (by @​KingSora).

8.4.17

Changelog

Sourced from postcss's changelog.

8.4.31

8.4.30

  • Improved source map performance (by Romain Menke).

8.4.29

  • Fixed Node#source.offset (by Ido Rosenthal).
  • Fixed docs (by Christian Oliff).

8.4.28

  • Fixed Root.source.end for better source map (by Romain Menke).
  • Fixed Result.root types when process() has no parser.

8.4.27

  • Fixed Container clone methods types.

8.4.26

  • Fixed clone methods types.

8.4.25

8.4.24

  • Fixed Plugin types.

8.4.23

  • Fixed warnings in TypeDoc.

8.4.22

  • Fixed TypeScript support with node16 (by Remco Haszing).

8.4.21

  • Fixed Input#error types (by Aleks Hudochenkov).

8.4.20

  • Fixed source map generation for childless at-rules like @layer.

8.4.19

  • Fixed whitespace preserving after AST transformations (by Romain Menke).

8.4.18

  • Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

8.4.17

  • Fixed Node.before() unexpected behavior (by Romain Menke).
  • Added TOC to docs (by Mikhail Dedov).
Commits

Updates @angular-devkit/build-angular from 14.2.12 to 14.2.13

Release notes

Sourced from @​angular-devkit/build-angular's releases.

v14.2.13

14.2.13 (2023-10-05)

@​angular-devkit/build-angular

Commit Description
fix - 1ca44dcd9 update dependency postcss to v8.4.31
Changelog

Sourced from @​angular-devkit/build-angular's changelog.

14.2.13 (2023-10-05)

@​angular-devkit/build-angular

Commit Type Description
1ca44dcd9 fix update dependency postcss to v8.4.31

16.2.5 (2023-10-04)

@​angular-devkit/build-angular

Commit Type Description
933358186 fix do not print Angular is running in development mode. in the server console when using dev-server
493bd3906 fix update dependency postcss to v8.4.31

16.2.4 (2023-09-27)

@​schematics/angular

Commit Type Description
5dc7fb1a1 fix update @angular/cli version specifier to use ^

16.2.3 (2023-09-20)

@​angular-devkit/build-angular

Commit Type Description
39643bee1 fix correctly re-point RXJS to ESM on Windows
d8d116b31 fix several windows fixes to application builder prerendering

@​ngtools/webpack

Commit Type Description

... (truncated)

Commits
  • a76fb29 release: cut the v14.2.13 release
  • 1ca44dc fix(@​angular-devkit/build-angular): update dependency postcss to v8.4.31
  • See full diff in compare view

Updates socket.io from 4.7.2 to 4.7.5

Release notes

Sourced from socket.io's releases.

4.7.5

Bug Fixes

  • close the adapters when the server is closed (bf64870)
  • remove duplicate pipeline when serving bundle (e426f3e)

Links

4.7.4

Bug Fixes

  • typings: calling io.emit with no arguments incorrectly errored (cb6d2e0), closes #4914

Links

4.7.3

Bug Fixes

  • return the first response when broadcasting to a single socket (#4878) (df8e70f)
  • typings: allow to bind to a non-secure Http2Server (#4853) (8c9ebc3)

Links

Changelog

Sourced from socket.io's changelog.

4.7.5 (2024-03-14)

Bug Fixes

  • close the adapters when the server is closed (bf64870)
  • remove duplicate pipeline when serving bundle (e426f3e)

Dependencies

4.7.4 (2024-01-12)

Bug Fixes

  • typings: calling io.emit with no arguments incorrectly errored (cb6d2e0), closes #4914

Dependencies

4.7.3 (2024-01-03)

Bug Fixes

  • return the first response when broadcasting to a single socket (#4878) (df8e70f)
  • typings: allow to bind to a non-secure Http2Server (#4853) (8c9ebc3)

Dependencies

Commits
  • 5017681 chore(release): 4.7.5
  • bf64870 fix: close the adapters when the server is closed
  • 748e18c ci: test with older TypeScript version
  • b9ce6a2 refactor: create specific adapter for parent namespaces (#4950)
  • 54dabe5 ci: upgrade to actions/checkout@4 and actions/setup-node@4
  • e426f3e fix: remove duplicate pipeline when serving bundle
  • e36062c docs: update the webtransport example
  • 0bbe8ae docs: only execute the passport middleware once
  • 914a8bd docs: add example with JWT
  • d943c3e docs: update the Passport.js example
  • Additional commits viewable in compare view

Updates tar from 6.1.15 to 6.2.1

Changelog

Sourced from tar's changelog.

Changelog

7.1

  • Update minipass to v7.1.0
  • Update the type definitions of write() and end() methods on Unpack and Parser classes to be compatible with the NodeJS.WritableStream type in the latest versions of @types/node.

7.0

  • Rewrite in TypeScript, provide ESM and CommonJS hybrid interface
  • Add tree-shake friendly exports, like import('tar/create') and import('tar/read-entry') to get individual functions or classes.
  • Add chmod option that defaults to false, and deprecate noChmod. That is, reverse the default option regarding explicitly setting file system modes to match tar entry settings.
  • Add processUmask option to avoid having to call process.umask() when chmod: true (or noChmod: false) is set.

6.2

  • Add support for brotli compression
  • Add maxDepth option to prevent extraction into excessively deep folders.

6.1

6.0

  • Drop support for node 6 and 8
  • fix symlinks and hardlinks on windows being packed with \-style path targets

5.0

  • Address unpack race conditions using path reservations
  • Change large-numbers errors from TypeError to Error
  • Add TAR_* error codes

... (truncated)

Commits

Updates webpack-dev-middleware from 5.3.3 to 6.1.2

Release notes

Sourced from webpack-dev-middleware's releases.

v6.1.2

6.1.2 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1778) (9670b34)

v6.1.1

6.1.1 (2023-05-16)

Bug Fixes

v6.1.0

6.1.0 (2023-05-03)

Features

Bug Fixes

v6.0.2

6.0.2 (2023-03-19)

Bug Fixes

v6.0.1

6.0.1 (2022-11-28)

Bug Fixes

  • update schema for index and methods properties (#1397) (cda328e)

v6.0.0

6.0.0 (2022-11-20)

... (truncated)

Changelog

Sourced from webpack-dev-middleware's changelog.

6.1.2 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1778) (9670b34)

6.1.1 (2023-05-16)

Bug Fixes

6.1.0 (2023-05-03)

Features

Bug Fixes

6.0.2 (2023-03-19)

Bug Fixes

6.0.1 (2022-11-28)

Bug Fixes

  • update schema for index and methods properties (#1397) (cda328e)

6.0.0 (2022-11-20)

⚠ BREAKING CHANGES

  • minimum supported webpack version is 5.0.0
  • minimum supported Nodejs version is 14.15.0
Commits
  • 54e4a96 chore(release): 6.1.2
  • 9670b34 fix(security): do not allow to read files above (#1778)
  • 94561de chore(release): 6.1.1
  • 41b2f77 fix(types): methods should be string array (#1550)
  • b9287c4 chore(deps-dev): bump @​types/node from 18.16.9 to 18.16.10 (#1549)
  • 57fb0cc chore(deps-dev): bump @​types/node from 18.16.8 to 18.16.9 (#1548)
  • 644d6e0 docs: add GitHub discussion badge (#1547)
  • b266fe1 chore(deps-dev): bump @​types/node from 18.16.7 to 18.16.8 (#1546)
  • d952145 chore(deps-dev): bump @​types/node from 18.16.6 to 18.16.7 (#1545)
  • 015b9ff chore(deps-dev): bump webpack from 5.82.0 to 5.82.1 (#1544)
  • Additional commits viewable in compare view

Updates @angular-devkit/build-angular from 14.2.13 to 17.3.7

Release notes

Sourced from @​angular-devkit/build-angular's releases.

v14.2.13

14.2.13 (2023-10-05)

@​angular-devkit/build-angular

Commit Description
fix - 1ca44dcd9 update dependency postcss to v8.4.31
Changelog

Sourced from @​angular-devkit/build-angular's changelog.

14.2.13 (2023-10-05)

@​angular-devkit/build-angular

Commit Type Description
1ca44dcd9 fix update dependency postcss to v8.4.31

16.2.5 (2023-10-04)

@​angular-devkit/build-angular

Commit Type Description
933358186 fix do not print Angular is running in development mode. in the server console when using dev-server
493bd3906 fix update dependency postcss to v8.4.31

16.2.4 (2023-09-27)

@​schematics/angular

Commit Type Description
5dc7fb1a1 fix update @angular/cli version specifier to use ^

16.2.3 (2023-09-20)

@​angular-devkit/build-angular

...

Description has been truncated

@dependabot
Bump the npm_and_yarn group across 1 directory with 11 updates
7664623 
Bumps the npm_and_yarn group with 11 updates in the /examples/angular directory:

| Package | From | To |
| --- | --- | --- |
| [@adobe/css-tools](https://github.com/adobe/css-tools) | `4.2.0` | `4.3.3` |
| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.22.8` | `7.24.5` |
| [express](https://github.com/expressjs/express) | `4.18.2` | `4.19.2` |
| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.2` | `1.15.6` |
| [fsevents](https://github.com/fsevents/fsevents) | `2.3.2` | `2.3.3` |
| [ip](https://github.com/indutny/node-ip) | `2.0.0` | `2.0.1` |
| [postcss](https://github.com/postcss/postcss) | `8.4.16` | `8.4.31` |
| [@angular-devkit/build-angular](https://github.com/angular/angular-cli) | `14.2.12` | `14.2.13` |
| [socket.io](https://github.com/socketio/socket.io) | `4.7.2` | `4.7.5` |
| [tar](https://github.com/isaacs/node-tar) | `6.1.15` | `6.2.1` |
| [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `5.3.3` | `6.1.2` |
| [@angular-devkit/build-angular](https://github.com/angular/angular-cli) | `14.2.13` | `17.3.7` |



Updates `@adobe/css-tools` from 4.2.0 to 4.3.3
- [Changelog](https://github.com/adobe/css-tools/blob/main/History.md)
- [Commits](https://github.com/adobe/css-tools/commits)

Updates `@babel/traverse` from 7.22.8 to 7.24.5
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.24.5/packages/babel-traverse)

Updates `express` from 4.18.2 to 4.19.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@4.18.2...4.19.2)

Updates `follow-redirects` from 1.15.2 to 1.15.6
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](follow-redirects/follow-redirects@v1.15.2...v1.15.6)

Updates `fsevents` from 2.3.2 to 2.3.3
- [Release notes](https://github.com/fsevents/fsevents/releases)
- [Commits](fsevents/fsevents@v2.3.2...v2.3.3)

Updates `ip` from 2.0.0 to 2.0.1
- [Commits](indutny/node-ip@v2.0.0...v2.0.1)

Updates `postcss` from 8.4.16 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@8.4.16...8.4.31)

Updates `@angular-devkit/build-angular` from 14.2.12 to 14.2.13
- [Release notes](https://github.com/angular/angular-cli/releases)
- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](angular/angular-cli@14.2.12...14.2.13)

Updates `socket.io` from 4.7.2 to 4.7.5
- [Release notes](https://github.com/socketio/socket.io/releases)
- [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md)
- [Commits](socketio/socket.io@4.7.2...4.7.5)

Updates `tar` from 6.1.15 to 6.2.1
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-tar@v6.1.15...v6.2.1)

Updates `webpack-dev-middleware` from 5.3.3 to 6.1.2
- [Release notes](https://github.com/webpack/webpack-dev-middleware/releases)
- [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v6.1.2/CHANGELOG.md)
- [Commits](webpack/webpack-dev-middleware@v5.3.3...v6.1.2)

Updates `@angular-devkit/build-angular` from 14.2.13 to 17.3.7
- [Release notes](https://github.com/angular/angular-cli/releases)
- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](angular/angular-cli@14.2.12...14.2.13)

---
updated-dependencies:
- dependency-name: "@adobe/css-tools"
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@babel/traverse"
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: express
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: follow-redirects
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: fsevents
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ip
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: postcss
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@angular-devkit/build-angular"
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: socket.io
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: tar
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: webpack-dev-middleware
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@angular-devkit/build-angular"
  dependency-type: direct:development
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 17, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github May 30, 2024

Superseded by #6.

@dependabot dependabot bot closed this May 30, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/examples/angular/npm_and_yarn-bb742379e1 branch May 30, 2024 08:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants