Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade yaml from 1.10.0 to 1.10.2 #3

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

thandhla
Copy link
Owner

snyk-top-banner

Snyk has created this PR to upgrade yaml from 1.10.0 to 1.10.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 2 versions ahead of your current version.

  • The recommended version was released on 4 years ago.

Release notes
Package name: yaml
  • 1.10.2 - 2021-03-13
  • 1.10.1 - 2021-03-13

    This release backports the following non-breaking fixes made during the work on yaml@2 on top of [email protected]:

    • Support for __proto__ as mapping key & anchor identifier (#192)
    • Fix broken TS type for BigInt toggle
    • Dump long keys properly (#195)
    • When folding highly indented lines, require at least minContentWidth chars on the first line (#196)
    • Fix YAML.stringify() for certain null values (#197)
    • Do not break escaped chars with escaped newlines (#237, cdk8s-team/cdk8s#494)
    • Set type: "module" within browser/dist/ (#208)
    • Use CommonJS for the browser endpoints yaml/types & yaml/util (#208)
    • Always stringify non-Node object keys using explicit notation (#218)
    • Specify node type of Document.Parsed.contents (#221)
    • Add missing type for CST Node.rangeAsLinePos (#222)
    • Prefer literal over folded block scalar when lineWidth=0 is set (#232)
    • Allow for empty lines after node props (#242)
    • Update dev dependencies
  • 1.10.0 - 2020-05-16

    This will probably be the last minor release of yaml@1. I'm aiming to release yaml@2 within a few months; prereleases of that will be published using the next dist-tag on npm. Patch releases for 1.10 may still happen, if necessary.

    New Features

    • Use Rollup for Node.js & browser builds (#165)
      • This removes most of the internal dist/ paths from the release. If you want/need to use a class or function that is no longer public, please file an issue and we can add it to the exports.
      • Drop dependency on @ babel/runtime. After this, the package has 0 runtime dependencies. 🎉
      • Add exports { Alias, Collection, Merge, Node } to 'yaml/types'
    • Document Schema.createPair() & make its ctx arg optional (#157)
    • Always indent top-level scalars with lines starting with document markers or % directives (#162)
    • Use double-space when forcing top-level block scalar indent, for clarity (#162)
    • Add getNodes(): string[] method to Anchors (#166)
    • Refactor Jest config, adding tests for compiled dist/ endpoints
    • Rename & refactor source files. This should have no effect on the results, but lots of stuff moved around

    Improved Errors & Warnings

    • Throw more helpful error when setting Pair.commentBefore incorrectly (#157)
    • Better errors for bad indents (#169)
    • Drop incorrect error for flow mapping keys with length > 1024 chars
    • Add errors for plain scalars that start with reserved indicators
    • Add more explicit errors for block scalar values with bad indents
    • Enable log prints during npm start debugging

    Improved TypeScript declarations

    • Fix/simplify export mapping of 'yaml/types' and 'yaml/util'
    • Fix types, dropping AST.{AstNode,ScalarNode,CollectionNode} (#160)
    • Add missing toString() methods to AST nodes (#159)
    • Add directivesEndMarker to Document type (#167)

    Bugfixes

    • Use CommonJS for top-level default-exporting browser endpoints (#163)
    • docs: Add note about simpleKeys for null values (#170)
    • Update dev & playground dependencies, including eslint 7 & jest 26
    • Update yaml-test-suite, fixing errors in remaining invalid-input tests
      • Add explicit error for block scalars with more-indented leading empty lines (S98Z)
      • Properly add error for tab-indented map values (4EJS)
      • Add error for multiline implicit flow sequence pair key (DK4H & ZXT5)
      • Require space after comma before comment in flow collections (CVW2)
      • Use mapAsMap: true for out.yaml tests (4FJ6)
from yaml GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade yaml from 1.10.0 to 1.10.2.

See this package in npm:
yaml

See this project in Snyk:
https://app.snyk.io/org/thandhla/project/de653a43-d0ec-457d-8330-95f8b902448a?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants