Bump the npm_and_yarn group across 1 directory with 47 updates #14
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Bumps the npm_and_yarn group with 30 updates in the / directory: | Package | From | To | | --- | --- | --- | | [lodash](https://github.com/lodash/lodash) | `4.17.20` | `4.17.21` | | [moment](https://github.com/moment/moment) | `2.24.0` | `2.29.4` | | [node-sass](https://github.com/sass/node-sass) | `4.13.1` | `7.0.0` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.7.4` | `7.24.6` | | [@hapi/hoek](https://github.com/hapijs/hoek) | `8.5.0` | `8.5.1` | | [ansi-html](https://github.com/Tjatse/ansi-html) | `0.0.7` | `0.0.9` | | [react-scripts](https://github.com/facebook/create-react-app/tree/HEAD/packages/react-scripts) | `3.4.0` | `5.0.1` | | [axios](https://github.com/axios/axios) | `0.19.0` | `1.7.2` | | [bundlesize](https://github.com/siddharthkp/bundlesize) | `0.18.0` | `0.18.2` | | [express](https://github.com/expressjs/express) | `4.17.1` | `4.19.2` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.5.10` | `1.15.6` | | [get-func-name](https://github.com/chaijs/get-func-name) | `2.0.0` | `2.0.2` | | [json-schema](https://github.com/kriszyp/json-schema) | `0.2.3` | `0.4.0` | | [jsprim](https://github.com/joyent/node-jsprim) | `1.4.1` | `1.4.2` | | [lodash-es](https://github.com/lodash/lodash) | `4.17.15` | `4.17.21` | | [marked](https://github.com/markedjs/marked) | `0.7.0` | `12.0.2` | | [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.0.8` | | [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.5.3` | `4.7.8` | | [node-fetch](https://github.com/node-fetch/node-fetch) | `1.7.3` | `2.7.0` | | [isomorphic-fetch](https://github.com/matthew-andrews/isomorphic-fetch) | `2.2.1` | `3.0.0` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `15.4.1` | `18.3.1` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `15.4.1` | `18.3.1` | | [path-parse](https://github.com/jbgutierrez/path-parse) | `1.0.6` | `1.0.7` | | [qs](https://github.com/ljharb/qs) | `6.5.2` | `6.5.3` | | [scss-tokenizer](https://github.com/sasstools/scss-tokenizer) | `0.2.3` | `0.4.3` | | [node-sass](https://github.com/sass/node-sass) | `7.0.0` | `7.0.3` | | [shell-quote](https://github.com/ljharb/shell-quote) | `1.7.2` | `1.8.1` | | [simple-get](https://github.com/feross/simple-get) | `3.1.0` | `3.1.1` | | [tmpl](https://github.com/daaku/nodejs-tmpl) | `1.0.4` | `1.0.5` | | [ua-parser-js](https://github.com/faisalman/ua-parser-js) | `0.7.20` | `0.7.38` | Updates `lodash` from 4.17.20 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.20...4.17.21) Updates `moment` from 2.24.0 to 2.29.4 - [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md) - [Commits](moment/moment@2.24.0...2.29.4) Updates `node-sass` from 4.13.1 to 7.0.0 - [Release notes](https://github.com/sass/node-sass/releases) - [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md) - [Commits](sass/node-sass@v4.13.1...v7.0.0) Updates `@babel/traverse` from 7.7.4 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-traverse) Updates `@hapi/hoek` from 8.5.0 to 8.5.1 - [Release notes](https://github.com/hapijs/hoek/releases) - [Commits](hapijs/hoek@v8.5.0...v8.5.1) Updates `ansi-html` from 0.0.7 to 0.0.9 - [Commits](https://github.com/Tjatse/ansi-html/commits) Updates `react-scripts` from 3.4.0 to 5.0.1 - [Release notes](https://github.com/facebook/create-react-app/releases) - [Changelog](https://github.com/facebook/create-react-app/blob/main/CHANGELOG-3.x.md) - [Commits](https://github.com/facebook/create-react-app/commits/[email protected]/packages/react-scripts) Updates `async` from 2.6.3 to 3.2.5 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/master/CHANGELOG.md) - [Commits](caolan/async@v2.6.3...v3.2.5) Updates `axios` from 0.19.0 to 1.7.2 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v0.19.0...v1.7.2) Updates `bundlesize` from 0.18.0 to 0.18.2 - [Release notes](https://github.com/siddharthkp/bundlesize/releases) - [Commits](siddharthkp/bundlesize@v0.18.0...v0.18.2) Updates `express` from 4.17.1 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.1...4.19.2) Updates `follow-redirects` from 1.5.10 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.5.10...v1.15.6) Updates `fsevents` from 1.2.9 to 2.3.3 - [Release notes](https://github.com/fsevents/fsevents/releases) - [Commits](fsevents/fsevents@v1.2.9...v2.3.3) Updates `get-func-name` from 2.0.0 to 2.0.2 - [Release notes](https://github.com/chaijs/get-func-name/releases) - [Commits](https://github.com/chaijs/get-func-name/commits/v2.0.2) Updates `jsdom` from 11.12.0 to 16.7.0 - [Release notes](https://github.com/jsdom/jsdom/releases) - [Changelog](https://github.com/jsdom/jsdom/blob/main/Changelog.md) - [Commits](jsdom/jsdom@11.12.0...16.7.0) Updates `json-schema` from 0.2.3 to 0.4.0 - [Commits](kriszyp/json-schema@v0.2.3...v0.4.0) Updates `jsprim` from 1.4.1 to 1.4.2 - [Changelog](https://github.com/TritonDataCenter/node-jsprim/blob/v1.4.2/CHANGES.md) - [Commits](TritonDataCenter/node-jsprim@v1.4.1...v1.4.2) Updates `json5` from 1.0.1 to 1.0.2 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) Updates `loader-utils` from 1.2.3 to 2.0.4 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/v2.0.4/CHANGELOG.md) - [Commits](webpack/loader-utils@v1.2.3...v2.0.4) Updates `lodash-es` from 4.17.15 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.15...4.17.21) Updates `marked` from 0.7.0 to 12.0.2 - [Release notes](https://github.com/markedjs/marked/releases) - [Changelog](https://github.com/markedjs/marked/blob/master/.releaserc.json) - [Commits](markedjs/marked@v0.7.0...v12.0.2) Updates `minimatch` from 3.0.4 to 3.0.8 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.0.4...v3.0.8) Updates `minimist` from 1.2.5 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.8) Updates `handlebars` from 4.5.3 to 4.7.8 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.8/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.5.3...v4.7.8) Updates `node-fetch` from 1.7.3 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@1.7.3...v2.7.0) Updates `isomorphic-fetch` from 2.2.1 to 3.0.0 - [Release notes](https://github.com/matthew-andrews/isomorphic-fetch/releases) - [Commits](matthew-andrews/isomorphic-fetch@v2.2.1...v3.0.0) Updates `react` from 15.4.1 to 18.3.1 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v18.3.1/packages/react) Updates `react-dom` from 15.4.1 to 18.3.1 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v18.3.1/packages/react-dom) Updates `node-forge` from 0.9.0 to 1.3.1 - [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md) - [Commits](digitalbazaar/forge@0.9.0...v1.3.1) Updates `path-parse` from 1.0.6 to 1.0.7 - [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7) Updates `postcss` from 7.0.18 to 7.0.39 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/7.0.39/CHANGELOG.md) - [Commits](postcss/postcss@7.0.18...7.0.39) Updates `qs` from 6.5.2 to 6.5.3 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.5.2...v6.5.3) Updates `request` from 2.88.0 to 2.88.2 - [Changelog](https://github.com/request/request/blob/master/CHANGELOG.md) - [Commits](https://github.com/request/request/commits) Updates `scss-tokenizer` from 0.2.3 to 0.4.3 - [Release notes](https://github.com/sasstools/scss-tokenizer/releases) - [Commits](sasstools/scss-tokenizer@v0.2.3...v0.4.3) Updates `node-sass` from 7.0.0 to 7.0.3 - [Release notes](https://github.com/sass/node-sass/releases) - [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md) - [Commits](sass/node-sass@v4.13.1...v7.0.0) Updates `semver` from 5.3.0 to 5.7.1 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v5.3.0...v5.7.1) Updates `shell-quote` from 1.7.2 to 1.8.1 - [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md) - [Commits](ljharb/shell-quote@v1.7.2...v1.8.1) Updates `simple-get` from 3.1.0 to 3.1.1 - [Commits](feross/simple-get@v3.1.0...v3.1.1) Updates `tar` from 2.2.2 to 6.2.1 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v2.2.2...v6.2.1) Updates `terser` from 4.6.3 to 5.31.0 - [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md) - [Commits](terser/terser@v4.6.3...v5.31.0) Updates `tmpl` from 1.0.4 to 1.0.5 - [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5) Updates `tough-cookie` from 2.4.3 to 2.5.0 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v2.4.3...v2.5.0) Updates `trim-newlines` from 1.0.0 to 3.0.1 - [Release notes](https://github.com/sindresorhus/trim-newlines/releases) - [Commits](https://github.com/sindresorhus/trim-newlines/commits) Updates `ua-parser-js` from 0.7.20 to 0.7.38 - [Release notes](https://github.com/faisalman/ua-parser-js/releases) - [Changelog](https://github.com/faisalman/ua-parser-js/blob/0.7.38/changelog.md) - [Commits](faisalman/ua-parser-js@0.7.20...0.7.38) Updates `url-parse` from 1.4.7 to 1.5.10 - [Commits](unshiftio/url-parse@1.4.7...1.5.10) Updates `webpack-dev-middleware` from 3.7.2 to 5.3.4 - [Release notes](https://github.com/webpack/webpack-dev-middleware/releases) - [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md) - [Commits](webpack/webpack-dev-middleware@v3.7.2...v5.3.4) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) Updates `ws` from 5.2.2 to 6.2.1 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@5.2.2...6.2.1) --- updated-dependencies: - dependency-name: lodash dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: moment dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: node-sass dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@hapi/hoek" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ansi-html dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: react-scripts dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: async dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: axios dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: bundlesize dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: fsevents dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: get-func-name dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jsdom dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json-schema dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jsprim dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: loader-utils dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: lodash-es dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: marked dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimatch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: handlebars dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: isomorphic-fetch dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: react dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: react-dom dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: node-forge dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-parse dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: qs dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: request dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: scss-tokenizer dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-sass dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: shell-quote dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: simple-get dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: terser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tmpl dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tough-cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: trim-newlines dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ua-parser-js dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: url-parse dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-middleware dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
|
🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎ To accept the risk, merge this PR and you will not be notified again.
Next stepsWhat is an install script?Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts. Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead. Take a deeper look at the dependencyTake a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev. Remove the packageIf you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency. Mark a package as acceptable riskTo ignore an alert, reply with a comment starting with
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 30 updates in the / directory:
4.17.204.17.212.24.02.29.44.13.17.0.07.7.47.24.68.5.08.5.10.0.70.0.93.4.05.0.10.19.01.7.20.18.00.18.24.17.14.19.21.5.101.15.62.0.02.0.20.2.30.4.01.4.11.4.24.17.154.17.210.7.012.0.23.0.43.0.81.2.51.2.84.5.34.7.81.7.32.7.02.2.13.0.015.4.118.3.115.4.118.3.11.0.61.0.76.5.26.5.30.2.30.4.37.0.07.0.31.7.21.8.13.1.03.1.11.0.41.0.50.7.200.7.38Updates
lodashfrom 4.17.20 to 4.17.21Commits
f299b52Bump to v4.17.21c4847ebImprove performance oftoNumber,trimandtrimEndon large input strings3469357Prevent command injection through_.template'svariableoptionUpdates
momentfrom 2.24.0 to 2.29.4Changelog
Sourced from moment's changelog.
... (truncated)
Commits
000ac18Build 2.24.4f2006b6Bump version to 2.24.4536ad0cUpdate changelog for 2.29.49a3b589[bugfix] Fix redos in preprocessRFC2822 regex (#6015)6374fd8Merge branch 'master' into developb4e6153Revert "[bugfix] Fix redos in preprocessRFC2822 regex (#6015)"7aebb16[bugfix] Fix redos in preprocessRFC2822 regex (#6015)57c9062Build 2.29.3aaf50b6Fixup release complaints26f4aefBump version to 2.29.3Updates
node-sassfrom 4.13.1 to 7.0.0Release notes
Sourced from node-sass's releases.
... (truncated)
Changelog
Sourced from node-sass's changelog.
Commits
918dcb3Lint fix0a21792Set rejectUnauthorized to true by default (#3149)e80d4afchore: Drop EOL Node 15 (#3122)d753397feat: Add Node 17 support (#3195)dcf2e75build(deps-dev): bump eslint from 7.32.0 to 8.0.0bfa1a3cbuild(deps): bump actions/setup-node from 2.4.0 to 2.4.180d6c00chore: Windows x86 on GitHub Actions (#3041)566dc27build(deps-dev): bump fs-extra from 0.30.0 to 10.0.0 (#3102)7bb5157build(deps): bump npmlog from 4.1.2 to 5.0.0 (#3156)2efb38fbuild(deps): bump chalk from 1.1.3 to 4.1.2 (#3161)Updates
@babel/traversefrom 7.7.4 to 7.24.6Release notes
Sourced from
@babel/traverse's releases.... (truncated)
Changelog
Sourced from
@babel/traverse's changelog.... (truncated)
Commits
9630250v7.24.61f010dfExplicitly defineNodePath.prototype.*(#16488)6e3539b[babel 8] Publish.d.tsfiles for every package (#16416)e37e64dUse eslint v9 (#16479)3ff20b9Statically generate boilerplate for bitfield accessors (#16482)97c3eb1RemovesyntaxTypeoption for record-and-tuple (parser&plugin) (#16458)71c247a[babel 8] Require Node.js^18.20.0 || ^20.10.0 || >=21.0.0(#16457)ddbea7dv7.24.5e779cadfix: TypeScript annotation affects output (#16377)ee48754Use multiple TypeScript projects (#16430)Updates
@hapi/hoekfrom 8.5.0 to 8.5.1Commits
5bd73f68.5.14d0804bBackport #352. Closes #353Updates
ansi-htmlfrom 0.0.7 to 0.0.9Commits
Updates
react-scriptsfrom 3.4.0 to 5.0.1Changelog
Sourced from react-scripts's changelog.
... (truncated)
Commits
19fa58dPublish9802941fix: webpack noise printed only if error or warning (#12245)2eef1d0Update templates to use React 18createRoot(#12220)221e511Publish5614c87Add support for Tailwind (#11717)20edab4fix(webpackDevServer): disable overlay for warnings (#11413)3afbbc0Update all dependencies (#11624)f5467d5feat(eslint-config-react-app): support ESLint 8.x (#11375)c7627ceUpdate webpack and dev server (#11646)544befeUpdate package.json (#11597)Updates
asyncfrom 2.6.3 to 3.2.5Changelog
Sourced from async's changelog.
... (truncated)
Commits
87e94e6Version 3.2.544ed0fbUpdate built filesaf02a3dwork around compiler quirk3c7a711path to config file91fd894requireConfigFile: false0412f8dEnsure error objects are propagated without modification (#1920)ab3c56aUpdate .eslintrc.json to use es20218610499Run lint on node 20ffd4cfbRun coverage on node 20253f5dcUpdate Node version matrix in CIUpdates
axiosfrom 0.19.0 to 1.7.2Release notes
Sourced from axios's releases.
... (truncated)
Changelog
Sourced from axios's changelog.
... (truncated)
Commits
0e4f9fachore(release): v1.7.2 (#6414)4f79aeffix(fetch): enhance fetch API detection; (#6413)67d1373chore(release): v1.7.1 (#6411)733f15ffix(fetch): fixed ReferenceError issue when TextEncoder is not available in t...3041c61[Release] v1.7.0 (#6408)18b13cbchore(docs): add fetch adapter docs; (#6407)e62099bfix(fetch): fixed a possible memory leak in the AbortController for the strea...b49aa8echore(release): v1.7.0-beta.2 (#6403)d57f03achore(ci): bump create-pull-request version to fix a bug; (#6405)097b0d1chore(ci): add tag resolution for npm releases based on package version; (#6404)Maintainer changes
This version was pushed to npm by jasonsaayman, a new releaser for axios since your current version.
Updates
bundlesizefrom 0.18.0 to 0.18.2Release notes
Sourced from bundlesize's releases.
Commits
0ad21b3patch update79e296bupgrade axios, github-build dependencies (#382)6de086epatch release51305d1upgrade insecure dependenciesb00fbacTravis CI: Node.js 8 is end of life (#368)f250e1cREADME: preact uses compressed-size-action (#366)bd3852eUpdate FUNDING.ymlfb1731e(docs): fixed small error (#362)58e93a3Update README.md (#360)0f241c8Fixed broken link in github token missing warning (#352)Updates
expressfrom 4.17.1 to 4.19.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
... (truncated)
Commits
04bc6274.19.2da4d763Improved fix for open redirect allow list bypass4f0f6cc4.19.1a003cfaAllow passing non-strings to res.location with new encoding handling checks f...a1fa90ffixed un-edited version in history.md for 4.19.011f2b1dbuild: fix build due to inconsistent supertest behavior in older versions084e3654.19.00867302Prevent open redirect allow list bypass due to encodeurl567c9c6Add note on how to update docs for new release (#5541)69a4cf2deps: [email protected]Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Updates
follow-redirectsfrom 1.5.10 to 1.15.6Commits