From 73c3855a6a8e5bf09b213691094ce4eead5ba28d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Jan 2024 10:02:55 +0100 Subject: [PATCH 01/17] Bump shlex from 1.2.0 to 1.3.0 in /cmd/pinniped-proxy (#7357) Bumps [shlex](https://github.com/comex/rust-shlex) from 1.2.0 to 1.3.0.
Changelog

Sourced from shlex's changelog.

1.3.0

1.2.1

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=shlex&package-manager=cargo&previous-version=1.2.0&new-version=1.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/vmware-tanzu/kubeapps/network/alerts).
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- cmd/pinniped-proxy/Cargo.lock | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/cmd/pinniped-proxy/Cargo.lock b/cmd/pinniped-proxy/Cargo.lock index 7e3e8624b80..a315f79673c 100644 --- a/cmd/pinniped-proxy/Cargo.lock +++ b/cmd/pinniped-proxy/Cargo.lock @@ -1679,9 +1679,9 @@ dependencies = [ [[package]] name = "shlex" -version = "1.2.0" +version = "1.3.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "a7cee0529a6d40f580e7a5e6c495c8fbfe21b7b52795ed4bb5e62cdf92bc6380" +checksum = "0fda2ff0d084019ba4d7c6f371c95d8fd75ce3524c3cb8fb653a3023f6323e64" [[package]] name = "signal-hook-registry" From 2e6761004aecb5ee07899e37d2a0e20751373651 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Jan 2024 10:03:05 +0100 Subject: [PATCH 02/17] Bump h2 from 0.3.22 to 0.3.24 in /cmd/pinniped-proxy (#7344) Bumps [h2](https://github.com/hyperium/h2) from 0.3.22 to 0.3.24.
Release notes

Sourced from h2's releases.

v0.3.24

Fixed

  • Limit error resets for misbehaving connections.

v0.3.23

What's Changed

Changelog

Sourced from h2's changelog.

0.3.24 (January 17, 2024)

  • Limit error resets for misbehaving connections.

0.3.23 (January 10, 2024)

  • Backport fix from 0.4.1 for stream capacity assignment.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=h2&package-manager=cargo&previous-version=0.3.22&new-version=0.3.24)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/vmware-tanzu/kubeapps/network/alerts).
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- cmd/pinniped-proxy/Cargo.lock | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/cmd/pinniped-proxy/Cargo.lock b/cmd/pinniped-proxy/Cargo.lock index a315f79673c..d54be866f96 100644 --- a/cmd/pinniped-proxy/Cargo.lock +++ b/cmd/pinniped-proxy/Cargo.lock @@ -598,9 +598,9 @@ checksum = "d2fabcfbdc87f4758337ca535fb41a6d701b65693ce38287d856d1674551ec9b" [[package]] name = "h2" -version = "0.3.22" +version = "0.3.24" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "4d6250322ef6e60f93f9a2162799302cd6f68f79f6e5d85c8c16f14d1d958178" +checksum = "bb2c4422095b67ee78da96fbb51a4cc413b3b25883c7717ff7ca1ab31022c9c9" dependencies = [ "bytes", "fnv", From 8356c12c3ef5d71747617fc45f2110bf3b2f33f2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Jan 2024 10:28:32 +0100 Subject: [PATCH 03/17] Bump h2 from 0.3.22 to 0.3.24 in /cmd/oci-catalog (#7362) Bumps [h2](https://github.com/hyperium/h2) from 0.3.22 to 0.3.24.
Release notes

Sourced from h2's releases.

v0.3.24

Fixed

  • Limit error resets for misbehaving connections.

v0.3.23

What's Changed

Changelog

Sourced from h2's changelog.

0.3.24 (January 17, 2024)

  • Limit error resets for misbehaving connections.

0.3.23 (January 10, 2024)

  • Backport fix from 0.4.1 for stream capacity assignment.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=h2&package-manager=cargo&previous-version=0.3.22&new-version=0.3.24)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/vmware-tanzu/kubeapps/network/alerts).
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- cmd/oci-catalog/Cargo.lock | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/cmd/oci-catalog/Cargo.lock b/cmd/oci-catalog/Cargo.lock index 2fc2c3673cf..2ca286132a6 100644 --- a/cmd/oci-catalog/Cargo.lock +++ b/cmd/oci-catalog/Cargo.lock @@ -477,9 +477,9 @@ checksum = "d2fabcfbdc87f4758337ca535fb41a6d701b65693ce38287d856d1674551ec9b" [[package]] name = "h2" -version = "0.3.22" +version = "0.3.24" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "4d6250322ef6e60f93f9a2162799302cd6f68f79f6e5d85c8c16f14d1d958178" +checksum = "bb2c4422095b67ee78da96fbb51a4cc413b3b25883c7717ff7ca1ab31022c9c9" dependencies = [ "bytes", "fnv", From cc83255032099c5071ab3631442b1d362287594a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:22:13 +0100 Subject: [PATCH 04/17] Bump axios from 1.6.5 to 1.6.7 in /integration (#7370) Bumps [axios](https://github.com/axios/axios) from 1.6.5 to 1.6.7.
Release notes

Sourced from axios's releases.

Release v1.6.7

Release notes:

Bug Fixes

  • capture async stack only for rejections with native error objects; (#6203) (1a08f90)

Contributors to this release

Release v1.6.6

Release notes:

Bug Fixes

  • fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
  • wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

Changelog

Sourced from axios's changelog.

1.6.7 (2024-01-25)

Bug Fixes

  • capture async stack only for rejections with native error objects; (#6203) (1a08f90)

Contributors to this release

1.6.6 (2024-01-24)

Bug Fixes

  • fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
  • wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=axios&package-manager=npm_and_yarn&previous-version=1.6.5&new-version=1.6.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- integration/package.json | 2 +- integration/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/integration/package.json b/integration/package.json index d40a67dfedf..2c3176db4be 100644 --- a/integration/package.json +++ b/integration/package.json @@ -11,7 +11,7 @@ }, "dependencies": { "@playwright/test": "^1.41.0", - "axios": "^1.6.5" + "axios": "^1.6.7" }, "devDependencies": { "prettier": "^3.2.4" diff --git a/integration/yarn.lock b/integration/yarn.lock index cf56a460ed7..78ba3a71502 100644 --- a/integration/yarn.lock +++ b/integration/yarn.lock @@ -14,10 +14,10 @@ asynckit@^0.4.0: resolved "https://registry.yarnpkg.com/asynckit/-/asynckit-0.4.0.tgz#c79ed97f7f34cb8f2ba1bc9790bcc366474b4b79" integrity sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q== -axios@^1.6.5: - version "1.6.5" - resolved "https://registry.yarnpkg.com/axios/-/axios-1.6.5.tgz#2c090da14aeeab3770ad30c3a1461bc970fb0cd8" - integrity sha512-Ii012v05KEVuUoFWmMW/UQv9aRIc3ZwkWDcM+h5Il8izZCtRVpDUfwpoFf7eOtajT3QiGR4yDUx7lPqHJULgbg== +axios@^1.6.7: + version "1.6.7" + resolved "https://registry.yarnpkg.com/axios/-/axios-1.6.7.tgz#7b48c2e27c96f9c68a2f8f31e2ab19f59b06b0a7" + integrity sha512-/hDJGff6/c7u0hDkvkGxR/oy6CbCs8ziCsC7SqmhjfozqiJGc8Z11wrv9z9lYfY4K8l+H9TpjcMDX0xOZmx+RA== dependencies: follow-redirects "^1.15.4" form-data "^4.0.0" From 847a90bf27a470280bd302d9f1b35bb259024c2b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:22:38 +0100 Subject: [PATCH 05/17] Bump chrono from 0.4.31 to 0.4.33 in /cmd/pinniped-proxy (#7369) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [chrono](https://github.com/chronotope/chrono) from 0.4.31 to 0.4.33.
Release notes

Sourced from chrono's releases.

0.4.33

What's Changed

v0.4.32

What's Changed

... (truncated)

Commits
  • 7c419a3 Prepare 0.4.33 release
  • a9b37c4 Make rkyv feature default to size_32
  • a73b543 Don't assume rkyv-(16|32|64) implies the rkyv feature
  • b5381f8 Fixed typo in Duration::hours() exception
  • bf70419 52
  • 7757386 Prepare 0.4.32 release
  • cee242a Fix typos in Datelike impl for DateTime
  • 6ec8f97 Add from_timestamp_millis to DateTime<Utc> (#1374)
  • 65f0cc2 CI Linting: Fix missing sources checkout in toml job.
  • 5536687 Add Months::as_u32() (#1373)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=chrono&package-manager=cargo&previous-version=0.4.31&new-version=0.4.33)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- cmd/pinniped-proxy/Cargo.lock | 6 +++--- cmd/pinniped-proxy/Cargo.toml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/cmd/pinniped-proxy/Cargo.lock b/cmd/pinniped-proxy/Cargo.lock index d54be866f96..6fed7641c84 100644 --- a/cmd/pinniped-proxy/Cargo.lock +++ b/cmd/pinniped-proxy/Cargo.lock @@ -226,15 +226,15 @@ checksum = "baf1de4339761588bc0619e3cbc0120ee582ebb74b53b4efbf79117bd2da40fd" [[package]] name = "chrono" -version = "0.4.31" +version = "0.4.33" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "7f2c685bad3eb3d45a01354cedb7d5faa66194d1d58ba6e267a8de788f79db38" +checksum = "9f13690e35a5e4ace198e7beea2895d29f3a9cc55015fcebe6336bd2010af9eb" dependencies = [ "android-tzdata", "iana-time-zone", "num-traits", "serde", - "windows-targets 0.48.5", + "windows-targets 0.52.0", ] [[package]] diff --git a/cmd/pinniped-proxy/Cargo.toml b/cmd/pinniped-proxy/Cargo.toml index b4bb35a5aef..55ed78a5c11 100644 --- a/cmd/pinniped-proxy/Cargo.toml +++ b/cmd/pinniped-proxy/Cargo.toml @@ -16,7 +16,7 @@ base64 = "0.21" # In chrono 0.4, the dependency on time 0.1 is used by default, but can be # disabled by switching the default features off. The dependency on the old time # module will be removed in 0.5: https://github.com/chronotope/chrono/issues/876 -chrono = { version = "0.4.31", default-features = false, features = ["clock", "std"] } +chrono = { version = "0.4.33", default-features = false, features = ["clock", "std"] } env_logger = "0.10" hyper = { version = "0.14", features = ["server"] } hyper-tls = "0.5" From 72a02338584cbb4c60e6da0b09854ad73a1f3a7e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:23:04 +0100 Subject: [PATCH 06/17] Bump github.com/docker/cli from 24.0.7+incompatible to 25.0.1+incompatible (#7367) Bumps [github.com/docker/cli](https://github.com/docker/cli) from 24.0.7+incompatible to 25.0.1+incompatible.
Commits
  • 29cf629 Merge pull request #4819 from dvdksn/25.0_backport_docs_host-gateway-ip_daemo...
  • 4caf4de docs: update host-gateway-ip to use daemon.json instead of cli flag
  • 950ecd4 Merge pull request #4815 from thaJeztah/25.0_backport_update_compose
  • 6ab4781 Dockerfile: update docker compose to v2.24.2
  • e8852e8 Merge pull request #4806 from thaJeztah/25.0_backport_socket-eof-return
  • 4e097c6 socket: return from loop after EOF
  • 01f9332 Merge pull request #4803 from thaJeztah/25.0_backport_update_engine
  • 4cd8d5c Merge pull request #4804 from dvdksn/backport_25.0_docs_fix_cli_broken_alias_...
  • 21c1284 docs: move base command to docker.md
  • 22e1f2c docs: fix broken links to alias pages
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/cli&package-manager=go_modules&previous-version=24.0.7+incompatible&new-version=25.0.1+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index d131449ee9c..766748cbd41 100644 --- a/go.mod +++ b/go.mod @@ -16,7 +16,7 @@ require ( github.com/cppforlife/go-cli-ui v0.0.0-20220622150351-995494831c6c github.com/disintegration/imaging v1.6.2 github.com/distribution/reference v0.5.0 - github.com/docker/cli v24.0.7+incompatible + github.com/docker/cli v25.0.1+incompatible github.com/fluxcd/helm-controller/api v0.37.2 github.com/fluxcd/pkg/apis/meta v1.2.0 github.com/fluxcd/pkg/oci v0.34.0 diff --git a/go.sum b/go.sum index d3fbc68f5f2..92c8ff1a829 100644 --- a/go.sum +++ b/go.sum @@ -214,8 +214,8 @@ github.com/distribution/reference v0.5.0 h1:/FUIFXtfc/x2gpa5/VGfiGLuOIdYa1t65IKK github.com/distribution/reference v0.5.0/go.mod h1:BbU0aIcezP1/5jX/8MP0YiH4SdvB5Y4f/wlDRiLyi3E= github.com/dnaeon/go-vcr v1.2.0 h1:zHCHvJYTMh1N7xnV7zf1m1GPBF9Ad0Jk/whtQ1663qI= github.com/dnaeon/go-vcr v1.2.0/go.mod h1:R4UdLID7HZT3taECzJs4YgbbH6PIGXB6W/sc5OLb6RQ= -github.com/docker/cli v24.0.7+incompatible h1:wa/nIwYFW7BVTGa7SWPVyyXU9lgORqUb1xfI36MSkFg= -github.com/docker/cli v24.0.7+incompatible/go.mod h1:JLrzqnKDaYBop7H2jaqPtU4hHvMKP+vjCwu2uszcLI8= +github.com/docker/cli v25.0.1+incompatible h1:mFpqnrS6Hsm3v1k7Wa/BO23oz0k121MTbTO1lpcGSkU= +github.com/docker/cli v25.0.1+incompatible/go.mod h1:JLrzqnKDaYBop7H2jaqPtU4hHvMKP+vjCwu2uszcLI8= github.com/docker/distribution v2.8.2+incompatible h1:T3de5rq0dB1j30rp0sA2rER+m322EBzniBPB6ZIzuh8= github.com/docker/distribution v2.8.2+incompatible/go.mod h1:J2gT2udsDAN96Uj4KfcMRqY0/ypR+oyYUYmja8H+y+w= github.com/docker/docker v24.0.7+incompatible h1:Wo6l37AuwP3JaMnZa226lzVXGA3F9Ig1seQen0cKYlM= From f980d5028b8bad79476c30d3b66e2d07e49a3b1f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:23:30 +0100 Subject: [PATCH 07/17] Bump @bufbuild/buf from 1.28.1 to 1.29.0 in /dashboard (#7364) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [@bufbuild/buf](https://github.com/bufbuild/buf) from 1.28.1 to 1.29.0.
Release notes

Sourced from @​bufbuild/buf's releases.

v1.29.0

  • Add support for yaml format. All commands that take image inputs, output images, or convert between message formats, now take yaml as a format, in addition to the existing binpb and txtpb formats. Some examples:
    • buf build -o image.yaml
    • buf ls-files image.yaml
    • buf convert --type foo.Bar --from input.binpb --to output.yaml
  • The yaml and json formats now accept two new options: use_proto_names and use_enum_numbers. This affects output serialization. Some examples:
    • buf convert --type foo.Bar --from input.binpb --to output.yaml#use_proto_names=true
    • buf convert --type foo.Bar --from input.binpb --to -#format=yaml,use_enum_numbers=true
  • Fix issue where buf format would inadvertently mangle files that used the expanded Any syntax in option values.
Changelog

Sourced from @​bufbuild/buf's changelog.

[v1.29.0] - 2024-01-24

  • Add support for yaml format. All commands that take image inputs, output images, or convert between message formats, now take yaml as a format, in addition to the existing binpb and txtpb formats. Some examples:
    • buf build -o image.yaml
    • buf ls-files image.yaml
    • buf convert --type foo.Bar --from input.binpb --to output.yaml
  • The yaml and json formats now accept two new options: use_proto_names and use_enum_numbers. This affects output serialization. Some examples:
    • buf convert --type foo.Bar --from input.binpb --to output.yaml#use_proto_names=true
    • buf convert --type foo.Bar --from input.binpb --to -#format=yaml,use_enum_numbers=true
  • Fix issue where buf format would inadvertently mangle files that used the expanded Any syntax in option values.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@bufbuild/buf&package-manager=npm_and_yarn&previous-version=1.28.1&new-version=1.29.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 80 +++++++++++++++++++++--------------------- 2 files changed, 41 insertions(+), 41 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index b5019f376ef..6b10b066adf 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -74,7 +74,7 @@ }, "devDependencies": { "@babel/plugin-proposal-private-property-in-object": "^7.21.11", - "@bufbuild/buf": "^1.28.1", + "@bufbuild/buf": "^1.29.0", "@bufbuild/protoc-gen-es": "^1.6.0", "@connectrpc/protoc-gen-connect-es": "^1.3.0", "@craco/craco": "^7.1.0", diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index f1608173f3a..d9fb13841c2 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -1185,47 +1185,47 @@ resolved "https://registry.yarnpkg.com/@braintree/sanitize-url/-/sanitize-url-7.0.0.tgz#8899d8e68a1b3f6933d4ad57a263fd3cf1d34d8a" integrity sha512-GMu2OJiTd1HSe74bbJYQnVvELANpYiGFZELyyTM1CR0sdv5ReQAcJ/c/8pIrPab3lO11+D+EpuGLUxqz+y832g== -"@bufbuild/buf-darwin-arm64@1.28.1": - version "1.28.1" - resolved "https://registry.yarnpkg.com/@bufbuild/buf-darwin-arm64/-/buf-darwin-arm64-1.28.1.tgz#ffe09c8b998d6cc714ab525999fe026b25c952e9" - integrity sha512-nAyvwKkcd8qQTExCZo5MtSRhXLK7e3vzKFKHjXfkveRakSUST2HFlFZAHfErZimN4wBrPTN0V0hNRU8PPjkMpQ== - -"@bufbuild/buf-darwin-x64@1.28.1": - version "1.28.1" - resolved "https://registry.yarnpkg.com/@bufbuild/buf-darwin-x64/-/buf-darwin-x64-1.28.1.tgz#03aa18f7961b651679e349a382f71f1bad3dadec" - integrity sha512-b0eT3xd3vX5a5lWAbo5h7FPuf9MsOJI4I39qs4TZnrlZ8BOuPfqzwzijiFf9UCwaX2vR1NQXexIoQ80Ci+fCHw== - -"@bufbuild/buf-linux-aarch64@1.28.1": - version "1.28.1" - resolved "https://registry.yarnpkg.com/@bufbuild/buf-linux-aarch64/-/buf-linux-aarch64-1.28.1.tgz#2af0683dd6a803bdaba7ea92148007393a058705" - integrity sha512-p5h9bZCVLMh8No9/7k7ulXzsFx5P7Lu6DiUMjSJ6aBXPMYo6Xl7r/6L2cQkpsZ53HMtIxCgMYS9a7zoS4K8wIw== - -"@bufbuild/buf-linux-x64@1.28.1": - version "1.28.1" - resolved "https://registry.yarnpkg.com/@bufbuild/buf-linux-x64/-/buf-linux-x64-1.28.1.tgz#dbac29d39fb4c0a509ebf49fb3a76d481aebe1e0" - integrity sha512-fVJ3DiRigIso06jgEl+JNp59Y5t2pxDHd10d3SA4r+14sXbZ2J7Gy/wBqVXPry4x/jW567KKlvmhg7M5ZBgCQQ== - -"@bufbuild/buf-win32-arm64@1.28.1": - version "1.28.1" - resolved "https://registry.yarnpkg.com/@bufbuild/buf-win32-arm64/-/buf-win32-arm64-1.28.1.tgz#69242d904c73368c2735aa9efc338dd1f5864bfa" - integrity sha512-KJiRJpugQRK/jXC46Xjlb68UydWhCZj2jHdWLIwNtgXd1WTJ3LngChZV7Y6pPK08pwBAVz0JYeVbD5IlTCD4TQ== - -"@bufbuild/buf-win32-x64@1.28.1": - version "1.28.1" - resolved "https://registry.yarnpkg.com/@bufbuild/buf-win32-x64/-/buf-win32-x64-1.28.1.tgz#5014fd87ed29fd26c1c6d2e97eba9ac7b8a14e51" - integrity sha512-vMnc+7OVCkmlRWQsgYHgUqiBPRIjD8XeoRyApJ07YZzGs7DkRH4LhvmacJbLd3wORylbn6gLz3pQa8J/M61mzg== - -"@bufbuild/buf@^1.28.1": - version "1.28.1" - resolved "https://registry.yarnpkg.com/@bufbuild/buf/-/buf-1.28.1.tgz#b107bd1b01a676040b1112de9eb94642bea48a08" - integrity sha512-WRDagrf0uBjfV9s5eyrSPJDcdI4A5Q7JMCA4aMrHRR8fo/TTjniDBjJprszhaguqsDkn/LS4QIu92HVFZCrl9A== +"@bufbuild/buf-darwin-arm64@1.29.0": + version "1.29.0" + resolved "https://registry.yarnpkg.com/@bufbuild/buf-darwin-arm64/-/buf-darwin-arm64-1.29.0.tgz#ff845057f645a4aacd28914be160557f01baa7d1" + integrity sha512-5hKxsARoY2WpWq1n5ONFqqGuauHb4yILKXCy37KRYCKiRLWmIP5yI3gWvWHKoH7sUJWTQmBqdJoCvYQr6ahQnw== + +"@bufbuild/buf-darwin-x64@1.29.0": + version "1.29.0" + resolved "https://registry.yarnpkg.com/@bufbuild/buf-darwin-x64/-/buf-darwin-x64-1.29.0.tgz#1852ac97742c0cd5050f221d124ab63cd13b414e" + integrity sha512-wOAPxbPLBns4AHiComWtdO1sx1J1p6mDYTbqmloHuI+B5U2rDbMsoHoe4nBcoMF8+RHxoqjypha29wVo6yzbZg== + +"@bufbuild/buf-linux-aarch64@1.29.0": + version "1.29.0" + resolved "https://registry.yarnpkg.com/@bufbuild/buf-linux-aarch64/-/buf-linux-aarch64-1.29.0.tgz#16fdb9b2544db2fe870278f51d9a033587bdb860" + integrity sha512-jLk2J/wyyM7KNJ/DkLfhy3eS2/Bdb70e/56adMkapSoLJmghnpgxW+oFznMxxQUX5I9BU5hTn1UhDFxgLwhP7g== + +"@bufbuild/buf-linux-x64@1.29.0": + version "1.29.0" + resolved "https://registry.yarnpkg.com/@bufbuild/buf-linux-x64/-/buf-linux-x64-1.29.0.tgz#2db6bca4ae8cf1a377255b65158eb3f713e5403c" + integrity sha512-heLOywj3Oaoh69RnTx7tHsuz6rEnvz77bghLEOghsrjBR6Jcpcwc137EZR4kRTIWJNrE8Kmo3RVeXlv144qQIQ== + +"@bufbuild/buf-win32-arm64@1.29.0": + version "1.29.0" + resolved "https://registry.yarnpkg.com/@bufbuild/buf-win32-arm64/-/buf-win32-arm64-1.29.0.tgz#c89fa5be3a44139fdb02942568e8badf114d40ae" + integrity sha512-Eglyvr3PLqVucuHBcQ61conyBgH9BRaoLpKWcce1gYBVlxMQM1NxjVjGOWihxQ1dXXw5qZXmYfVODf3gSwPMuQ== + +"@bufbuild/buf-win32-x64@1.29.0": + version "1.29.0" + resolved "https://registry.yarnpkg.com/@bufbuild/buf-win32-x64/-/buf-win32-x64-1.29.0.tgz#fa52d05a98d791a6cbfbfea5077600c0c2599203" + integrity sha512-wRk6co+nqHqEq4iLolXgej0jUVlWlTtGHjKaq54lTbKZrwxrBgql6qS06abgNPRASX0++XT9m3QRZ97qEIC/HQ== + +"@bufbuild/buf@^1.29.0": + version "1.29.0" + resolved "https://registry.yarnpkg.com/@bufbuild/buf/-/buf-1.29.0.tgz#5cc1fcc3836a689f31d90184c57f2aa28df8228d" + integrity sha512-euksXeFtvlvAV5j94LqXb69qQcJvFfo8vN1d3cx+IzhOKoipykuQQTq7mOWVo2R0kdk6yIMBLBofOYOsh0Df8g== optionalDependencies: - "@bufbuild/buf-darwin-arm64" "1.28.1" - "@bufbuild/buf-darwin-x64" "1.28.1" - "@bufbuild/buf-linux-aarch64" "1.28.1" - "@bufbuild/buf-linux-x64" "1.28.1" - "@bufbuild/buf-win32-arm64" "1.28.1" - "@bufbuild/buf-win32-x64" "1.28.1" + "@bufbuild/buf-darwin-arm64" "1.29.0" + "@bufbuild/buf-darwin-x64" "1.29.0" + "@bufbuild/buf-linux-aarch64" "1.29.0" + "@bufbuild/buf-linux-x64" "1.29.0" + "@bufbuild/buf-win32-arm64" "1.29.0" + "@bufbuild/buf-win32-x64" "1.29.0" "@bufbuild/protobuf@1.6.0", "@bufbuild/protobuf@^1.6.0": version "1.6.0" From c5d62dc584d22f44994410e3e6819d5891918777 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:23:52 +0100 Subject: [PATCH 08/17] Bump google.golang.org/grpc from 1.60.1 to 1.61.0 (#7363) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.60.1 to 1.61.0.
Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.61.0

New Features

  • resolver: provide method, AuthorityOverrider, to allow resolver.Builders to override the default authority for a ClientConn. (EXPERIMENTAL) (#6752)
  • xds: add support for mTLS Credentials in xDS bootstrap (gRFC A65) (#6757)
  • server: add grpc.WaitForHandlers ServerOption to cause Server.Stop to block until method handlers return. (EXPERIMENTAL) (#6922)

Performance Improvements

  • grpc: skip compression of empty messages as an optimization (#6842)
  • orca: use atomic pointer to improve performance in server metrics recorder (#6799)

Bug Fixes

  • client: correctly enable TCP keepalives with OS defaults on windows (#6863)
  • server: change some stream operations to return UNAVAILABLE instead of UNKNOWN when underlying connection is broken (#6891)
  • server: fix GracefulStop to block until all method handlers return (v1.60 regression). (#6922)
  • server: fix two bugs that could lead to panics at shutdown when using NumStreamWorkers (EXPERIMENTAL). (#6856)
  • reflection: do not send invalid descriptors to clients for files that cannot be fully resolved (#6771)
  • xds: don't fail channel/server startup when xds creds is specified, but bootstrap is missing certificate providers (#6848)
  • xds: Atomically read and write xDS security configuration client side (#6796)
  • xds/server: fix RDS handling for non-inline route configs (#6915)
Commits
  • 8167bc3 Change version to 1.61.0 (#6936)
  • 52e2363 test/xds: Use different import path for gRPC Messages (#6933)
  • 67e50be transport: Remove redundant if in handleGoAway (#6930)
  • e96f521 alts: Extract AuthInfo after handshake in ALTS e2e test. (#6931)
  • 987df13 metadata: move FromOutgoingContextRaw() to internal (#6765)
  • 61eab37 server: block GracefulStop on method handlers and make blocking optional for ...
  • ddd377f xds/server: fix RDS handling for non-inline route configs (#6915)
  • 8b455de removing Roots deprecated Subjects field in tests (#6907)
  • 953d12a alts: Forward-fix of ALTS queuing of handshake requests. (#6906)
  • 6ce73bf internal/transport: convert ConnectionError to Unavailable status when wr...
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=google.golang.org/grpc&package-manager=go_modules&previous-version=1.60.1&new-version=1.61.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index 766748cbd41..e5d62dad490 100644 --- a/go.mod +++ b/go.mod @@ -46,7 +46,7 @@ require ( golang.org/x/net v0.20.0 golang.org/x/sync v0.6.0 google.golang.org/genproto/googleapis/api v0.0.0-20240102182953-50ed04b92917 - google.golang.org/grpc v1.60.1 + google.golang.org/grpc v1.61.0 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.3.0 google.golang.org/protobuf v1.32.0 gopkg.in/yaml.v3 v3.0.1 diff --git a/go.sum b/go.sum index 92c8ff1a829..6d5e03446b9 100644 --- a/go.sum +++ b/go.sum @@ -1312,8 +1312,8 @@ google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9K google.golang.org/grpc v1.40.1/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34= google.golang.org/grpc v1.42.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU= google.golang.org/grpc v1.43.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU= -google.golang.org/grpc v1.60.1 h1:26+wFr+cNqSGFcOXcabYC0lUVJVRa2Sb2ortSK7VrEU= -google.golang.org/grpc v1.60.1/go.mod h1:OlCHIeLYqSSsLi6i49B5QGdzaMZK9+M7LXN2FKz4eGM= +google.golang.org/grpc v1.61.0 h1:TOvOcuXn30kRao+gfcvsebNEa5iZIiLkisYEkf7R7o0= +google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs= google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw= google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.3.0 h1:rNBFJjBCOgVr9pWD7rs/knKL4FRTKgpZmsRfV214zcA= google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.3.0/go.mod h1:Dk1tviKTvMCz5tvh7t+fh94dhmQVHuCt2OzJB3CTW9Y= From d551b904aad55989e507253208f349e17e7661d3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:24:16 +0100 Subject: [PATCH 09/17] Bump ts-proto from 1.166.3 to 1.167.0 in /dashboard (#7359) Bumps [ts-proto](https://github.com/stephenh/ts-proto) from 1.166.3 to 1.167.0.
Release notes

Sourced from ts-proto's releases.

v1.167.0

1.167.0 (2024-01-22)

Features

v1.166.4

1.166.4 (2024-01-20)

Bug Fixes

Changelog

Sourced from ts-proto's changelog.

1.167.0 (2024-01-22)

Features

1.166.4 (2024-01-20)

Bug Fixes

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ts-proto&package-manager=npm_and_yarn&previous-version=1.166.3&new-version=1.167.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index 6b10b066adf..3d837bb0372 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -127,7 +127,7 @@ "stylelint-config-standard-scss": "^13.0.0", "stylelint-scss": "^6.0.0", "ts-jest": "^29.1.1", - "ts-proto": "^1.166.3", + "ts-proto": "^1.167.0", "typescript": "^5.3.3" }, "resolutions": { diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index d9fb13841c2..ad12a9a6e86 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -14561,10 +14561,10 @@ ts-proto-descriptors@1.15.0: long "^5.2.3" protobufjs "^7.2.4" -ts-proto@^1.166.3: - version "1.166.3" - resolved "https://registry.yarnpkg.com/ts-proto/-/ts-proto-1.166.3.tgz#ce934560cbf6d47668a7945f7992fec652232fdc" - integrity sha512-Ad3TV7wH7m62fKHI55faq403OW9hC5XOGev+bDXHB5lmx1AhiZiH1ISQdk1sk33fRRy8lEBrKRknV41F3d7Nfw== +ts-proto@^1.167.0: + version "1.167.0" + resolved "https://registry.yarnpkg.com/ts-proto/-/ts-proto-1.167.0.tgz#3da5f1cbcdda3a1e339b266b02be40131b278a90" + integrity sha512-ATJ9bN0JpPhtWVymKpkf7zUYOLBZVOA7rWRRH/U+ML8A2xjcBgcM3H4Mme8T8Yn6S4rW6ttNjRAtLZmusAjIIA== dependencies: case-anything "^2.1.13" protobufjs "^7.2.4" From 2671c98e82d52aed002e6959b67f3be22cd5ee0c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:24:53 +0100 Subject: [PATCH 10/17] Bump @tanstack/match-sorter-utils from 8.11.3 to 8.11.7 in /dashboard (#7345) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [@tanstack/match-sorter-utils](https://github.com/TanStack/table/tree/HEAD/packages/match-sorter-utils) from 8.11.3 to 8.11.7.
Release notes

Sourced from @​tanstack/match-sorter-utils's releases.

v8.11.7

Version 8.11.7 - 1/20/2024, 9:08 PM

Changes

Fix

  • Update package.json repository and homepage fields (#5292) (56369bce) by Lachlan Collins

Chore

  • svelte types workaround and simplify bug report template (#5280) (4e182ec7) by Kevin Van Cott
  • upgrade example versions and deps (#5278) (a9a7668d) by Kevin Van Cott

Docs

  • example: Use tsconfig from create-vite (Part II) (#5291) (9941ef1e) by @​lucascmelo
  • examples: Use tsconfig from create-vite (#5286) (4f08e53f) by Lachlan Collins
  • Use type imports for svelte examples (#5285) (6c3f6d80) by Lachlan Collins
  • adjust infinite scrolling example height (f61a0224) by Kevin Vandy
  • update infinite scrolling example (#5277) (d5f514a7) by Kevin Van Cott
  • Row model docs (#5276) (801ee963) by Kevin Van Cott

Packages

  • @​tanstack/table-core@​8.11.7
  • @​tanstack/react-table@​8.11.7
  • @​tanstack/solid-table@​8.11.7
  • @​tanstack/vue-table@​8.11.7
  • @​tanstack/svelte-table@​8.11.7
  • @​tanstack/react-table-devtools@​8.11.7
  • @​tanstack/match-sorter-utils@​8.11.7

v8.11.6

Version 8.11.6 - 1/12/2024, 12:07 AM

Changes

Fix

  • contextDocument scope for SSR bug (0c0a9479) by Kevin Vandy

Packages

  • @​tanstack/table-core@​8.11.6
  • @​tanstack/react-table@​8.11.6
  • @​tanstack/solid-table@​8.11.6
  • @​tanstack/vue-table@​8.11.6
  • @​tanstack/svelte-table@​8.11.6
  • @​tanstack/react-table-devtools@​8.11.6

... (truncated)

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@tanstack/match-sorter-utils&package-manager=npm_and_yarn&previous-version=8.11.3&new-version=8.11.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index 3d837bb0372..e2d7b74b407 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -36,7 +36,7 @@ "@connectrpc/connect-web": "^1.2.0", "@paciolan/remote-component": "^2.13.0", "@redux-devtools/extension": "^3.3.0", - "@tanstack/match-sorter-utils": "^8.11.3", + "@tanstack/match-sorter-utils": "^8.11.7", "@tanstack/react-table": "^8.11.6", "ajv": "^8.12.0", "axios": "^1.6.5", diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index ad12a9a6e86..afa2872f125 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -2744,10 +2744,10 @@ "@swagger-api/apidom-parser-adapter-workflows-yaml-1" "^0.91.0" "@swagger-api/apidom-parser-adapter-yaml-1-2" "^0.91.0" -"@tanstack/match-sorter-utils@^8.11.3": - version "8.11.3" - resolved "https://registry.yarnpkg.com/@tanstack/match-sorter-utils/-/match-sorter-utils-8.11.3.tgz#904bf4916bac1338751491de0685151126e5c29b" - integrity sha512-2XVYTN6fLFyeIPywDL/HGKIQce3V6oUch1FHweGwxruPKEXip6Z9qg+zWZwNE26WG6CktqJh6NqTq90a42jeEw== +"@tanstack/match-sorter-utils@^8.11.7": + version "8.11.7" + resolved "https://registry.yarnpkg.com/@tanstack/match-sorter-utils/-/match-sorter-utils-8.11.7.tgz#f23b4bddbc21a83c846c430699410d3398e7c236" + integrity sha512-4PUKgaaFpiB7MK406N5VAiLu2VUhDumojGWhEC8kNQ767RGU2vsJDI7Xp4D8lMBzijqswRWz3U8ioa2zUKnFeQ== dependencies: remove-accents "0.4.2" From ac2c5812f9ef508de5040908196d75a8505b4e74 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:25:52 +0100 Subject: [PATCH 11/17] Bump react-tooltip from 5.25.2 to 5.26.0 in /dashboard (#7348) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [react-tooltip](https://github.com/ReactTooltip/react-tooltip) from 5.25.2 to 5.26.0.
Release notes

Sourced from react-tooltip's releases.

v5.26.0

If you like the project, please give the project a GitHub 🌟

What's Changed

New Contributors

Full Changelog: https://github.com/ReactTooltip/react-tooltip/compare/v5.25.2...v5.26.0

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=react-tooltip&package-manager=npm_and_yarn&previous-version=5.25.2&new-version=5.26.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index e2d7b74b407..7ea68ca21b2 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -61,7 +61,7 @@ "react-redux": "^7.2.9", "react-router-dom": "^6.21.3", "react-router-hash-link": "^2.4.3", - "react-tooltip": "^5.25.2", + "react-tooltip": "^5.26.0", "react-transition-group": "^4.4.5", "redux": "^4.2.1", "redux-thunk": "^2.4.2", diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index afa2872f125..e5ca168d9e5 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -12444,10 +12444,10 @@ react-test-renderer@^17.0.0, react-test-renderer@^17.0.2: react-shallow-renderer "^16.13.1" scheduler "^0.20.2" -react-tooltip@^5.25.2: - version "5.25.2" - resolved "https://registry.yarnpkg.com/react-tooltip/-/react-tooltip-5.25.2.tgz#efb51845ec2e863045812ad1dc1927573922d629" - integrity sha512-MwZ3S9xcHpojZaKqjr5mTs0yp/YBPpKFcayY7MaaIIBr2QskkeeyelpY2YdGLxIMyEj4sxl0rGoK6dQIKvNLlw== +react-tooltip@^5.26.0: + version "5.26.0" + resolved "https://registry.yarnpkg.com/react-tooltip/-/react-tooltip-5.26.0.tgz#340d054cf952c43c2442f3af24bfc5c2b81fa80a" + integrity sha512-UBbwy3fo1KYDwRCOWwM6AEfQsk9shgVfNkXFqgwS33QHplzg7xao/7mX/6wd+lE6KSZzhUNTkB5TNk9SMaBV/A== dependencies: "@floating-ui/dom" "^1.0.0" classnames "^2.3.0" From ddc0ae182e2aeae464eb92253400eddc750e91bb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:26:16 +0100 Subject: [PATCH 12/17] Bump openssl from 0.10.62 to 0.10.63 in /cmd/pinniped-proxy (#7354) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [openssl](https://github.com/sfackler/rust-openssl) from 0.10.62 to 0.10.63.
Release notes

Sourced from openssl's releases.

openssl-v0.10.63

What's Changed

Full Changelog: https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.62...openssl-v0.10.63

Commits
  • cc2850f Merge pull request #2152 from alex/bump-for-release
  • fde3d03 Merge pull request #2138 from zh-jq/update-boringssl
  • 1951575 Release openssl v0.10.63 and openssl-sys v0.9.99
  • 951d771 Merge pull request #2111 from trail-of-forks/pkcs7-add-apis
  • fb57f9f Merge pull request #2150 from alex/brainpool-on-libressl
  • ca3f45d Expose brainpool NIDs on libressl
  • a14146f Merge pull request #2148 from botovq/fix_stack_from_pem
  • aa26e97 PEM parsing: check last error instead of first
  • 06143eb Merge pull request #2145 from botovq/opaque-purpose
  • bff0db7 Make X509_PURPOSE opaque for LibreSSL >= 3.9
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openssl&package-manager=cargo&previous-version=0.10.62&new-version=0.10.63)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- cmd/pinniped-proxy/Cargo.lock | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/cmd/pinniped-proxy/Cargo.lock b/cmd/pinniped-proxy/Cargo.lock index 6fed7641c84..1dda567f345 100644 --- a/cmd/pinniped-proxy/Cargo.lock +++ b/cmd/pinniped-proxy/Cargo.lock @@ -1132,9 +1132,9 @@ checksum = "3fdb12b2476b595f9358c5161aa467c2438859caa136dec86c26fdd2efe17b92" [[package]] name = "openssl" -version = "0.10.62" +version = "0.10.63" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "8cde4d2d9200ad5909f8dac647e29482e07c3a35de8a13fce7c9c7747ad9f671" +checksum = "15c9d69dd87a29568d4d017cfe8ec518706046a05184e5aea92d0af890b803c8" dependencies = [ "bitflags 2.4.1", "cfg-if", @@ -1164,9 +1164,9 @@ checksum = "ff011a302c396a5197692431fc1948019154afc178baf7d8e37367442a4601cf" [[package]] name = "openssl-sys" -version = "0.9.98" +version = "0.9.99" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "c1665caf8ab2dc9aef43d1c0023bd904633a6a05cb30b0ad59bec2ae986e57a7" +checksum = "22e1bf214306098e4832460f797824c05d25aacdf896f64a985fb0fd992454ae" dependencies = [ "cc", "libc", From 43ca9cd6a8c009b1e0f4b7707592ac1a3f93fd84 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 09:27:35 +0100 Subject: [PATCH 13/17] Bump stylelint-scss from 6.0.0 to 6.1.0 in /dashboard (#7346) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [stylelint-scss](https://github.com/stylelint-scss/stylelint-scss) from 6.0.0 to 6.1.0.
Release notes

Sourced from stylelint-scss's releases.

6.1.0

Full Changelog: https://github.com/stylelint-scss/stylelint-scss/compare/v6.0.0...v6.1.0

Changelog

Sourced from stylelint-scss's changelog.

6.1.0

Full Changelog: https://github.com/stylelint-scss/stylelint-scss/compare/v6.0.0...v6.1.0

Commits
  • 090e1ee 6.1.0
  • c6e2683 Set version back to 6.0.0 (this gets bumped by np)
  • a417415 Update CHANGELOG for 6.1.0
  • f4bf897 Update contributors list
  • 64e1b43 Set stylelint peer dep back to 16.0.2
  • 264aa53 build(deps-dev): bump stylelint from 16.1.0 to 16.2.0 (#951)
  • 8278856 build(deps-dev): bump prettier from 3.1.1 to 3.2.4 (#950)
  • c67f54d Add no-unused-private-members rule (#949)
  • 9bdfb71 Allow calc function interpolation in SassScript (#947)
  • 21f5039 property-no-unknown for deeper nested properties (#948)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=stylelint-scss&package-manager=npm_and_yarn&previous-version=6.0.0&new-version=6.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 12 ++++++------ 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index 7ea68ca21b2..93babdf002c 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -125,7 +125,7 @@ "stylelint-config-idiomatic-order": "^10.0.0", "stylelint-config-prettier": "^9.0.5", "stylelint-config-standard-scss": "^13.0.0", - "stylelint-scss": "^6.0.0", + "stylelint-scss": "^6.1.0", "ts-jest": "^29.1.1", "ts-proto": "^1.167.0", "typescript": "^5.3.3" diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index e5ca168d9e5..82545574cf6 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -11769,7 +11769,7 @@ postcss-selector-not@^6.0.1: dependencies: postcss-selector-parser "^6.0.10" -postcss-selector-parser@^6.0.10, postcss-selector-parser@^6.0.11, postcss-selector-parser@^6.0.13, postcss-selector-parser@^6.0.15, postcss-selector-parser@^6.0.2, postcss-selector-parser@^6.0.4, postcss-selector-parser@^6.0.5, postcss-selector-parser@^6.0.9: +postcss-selector-parser@^6.0.10, postcss-selector-parser@^6.0.11, postcss-selector-parser@^6.0.15, postcss-selector-parser@^6.0.2, postcss-selector-parser@^6.0.4, postcss-selector-parser@^6.0.5, postcss-selector-parser@^6.0.9: version "6.0.15" resolved "https://registry.yarnpkg.com/postcss-selector-parser/-/postcss-selector-parser-6.0.15.tgz#11cc2b21eebc0b99ea374ffb9887174855a01535" integrity sha512-rEYkQOMUCEMhsKbK66tbEU9QVIxbhN18YiniAwA7XQYTVBqrBy+P2p5JcdqsHgKM2zWylp8d7J6eszocfds5Sw== @@ -13967,15 +13967,15 @@ stylelint-order@^6.0.2: postcss "^8.4.32" postcss-sorting "^8.0.2" -stylelint-scss@^6.0.0: - version "6.0.0" - resolved "https://registry.yarnpkg.com/stylelint-scss/-/stylelint-scss-6.0.0.tgz#bf6be6798d71c898484b7e97007d5ed69a89308d" - integrity sha512-N1xV/Ef5PNRQQt9E45unzGvBUN1KZxCI8B4FgN/pMfmyRYbZGVN4y9qWlvOMdScU17c8VVCnjIHTVn38Bb6qSA== +stylelint-scss@^6.0.0, stylelint-scss@^6.1.0: + version "6.1.0" + resolved "https://registry.yarnpkg.com/stylelint-scss/-/stylelint-scss-6.1.0.tgz#b7ef162c417132e8df2b69d1759ae07395d54fb5" + integrity sha512-kCfK8TQzthGwb4vaZniZgxRsVbCM4ZckmT1b/H5m4FU3I8Dz0id9llKsy1NMp3XXqC8+OPD4rVKtUbSxXlJb5g== dependencies: known-css-properties "^0.29.0" postcss-media-query-parser "^0.2.3" postcss-resolve-nested-selector "^0.1.1" - postcss-selector-parser "^6.0.13" + postcss-selector-parser "^6.0.15" postcss-value-parser "^4.2.0" stylelint@^16.2.0: From 7b5fca198b5b6739442549b9642a0b045778df00 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 10:03:58 +0100 Subject: [PATCH 14/17] Bump @playwright/test from 1.41.0 to 1.41.1 in /integration (#7356) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [@playwright/test](https://github.com/microsoft/playwright) from 1.41.0 to 1.41.1.
Release notes

Sourced from @​playwright/test's releases.

v1.41.1

Highlights

microsoft/playwright#29067 - [REGRESSION] Codegen/Recorder: not all clicks are being actioned nor recorded microsoft/playwright#29028 - [REGRESSION] React component tests throw type error when passing null/undefined to component microsoft/playwright#29027 - [REGRESSION] React component tests not passing Date prop values microsoft/playwright#29023 - [REGRESSION] React component tests not rendering children prop microsoft/playwright#29019 - [REGRESSION] trace.playwright.dev does not currently support the loading from URL

Browser Versions

  • Chromium 121.0.6167.57
  • Mozilla Firefox 121.0
  • WebKit 17.4

This version was also tested against the following stable channels:

  • Google Chrome 120
  • Microsoft Edge 120
Commits
  • 8f0163f chore: mark 1.41.1 (#29075)
  • 98a6618 cherry-pick(#29069): Revert "feat(codegen): add range input recording support...
  • 50f1f08 cherry-pick(#29070): chore(ct): revert export mount result
  • e5d201b cherry-pick(#29031): fix(ct): allow passing date, url, bigint as properties
  • 8ee2d81 cherry-pick(#29026): test: add a props.children test
  • 50a8e4f cherry-pick(#29016): chore: add an image import component test
  • cb6c64c cherry-pick(#28986): fix(ct): move import list into the compilation cache data
  • 06518b2 cherry-pick(#28978): chore: build import registry source
  • d47ed6a cherry-pick(#28975): chore: refactor import processing in ct
  • 4d9f923 cherry-pick(#29034): docs: fix typo for stylePath (#29035)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@playwright/test&package-manager=npm_and_yarn&previous-version=1.41.0&new-version=1.41.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- integration/package.json | 2 +- integration/yarn.lock | 28 ++++++++++++++-------------- 2 files changed, 15 insertions(+), 15 deletions(-) diff --git a/integration/package.json b/integration/package.json index 2c3176db4be..492d767606b 100644 --- a/integration/package.json +++ b/integration/package.json @@ -10,7 +10,7 @@ "test": "playwright test --workers=1" }, "dependencies": { - "@playwright/test": "^1.41.0", + "@playwright/test": "^1.41.1", "axios": "^1.6.7" }, "devDependencies": { diff --git a/integration/yarn.lock b/integration/yarn.lock index 78ba3a71502..b445335833d 100644 --- a/integration/yarn.lock +++ b/integration/yarn.lock @@ -2,12 +2,12 @@ # yarn lockfile v1 -"@playwright/test@^1.41.0": - version "1.41.0" - resolved "https://registry.yarnpkg.com/@playwright/test/-/test-1.41.0.tgz#b083e976295f1fe039c15d451c66554d7f37278c" - integrity sha512-Grvzj841THwtpBOrfiHOeYTJQxDRnKofMSzCiV8XeyLWu3o89qftQ4BCKfkziJhSUQRd0utKhrddtIsiraIwmw== +"@playwright/test@^1.41.1": + version "1.41.1" + resolved "https://registry.yarnpkg.com/@playwright/test/-/test-1.41.1.tgz#6954139ed4a67999f1b17460aa3d184f4b334f18" + integrity sha512-9g8EWTjiQ9yFBXc6HjCWe41msLpxEX0KhmfmPl9RPLJdfzL4F0lg2BdJ91O9azFdl11y1pmpwdjBiSxvqc+btw== dependencies: - playwright "1.41.0" + playwright "1.41.1" asynckit@^0.4.0: version "0.4.0" @@ -66,17 +66,17 @@ mime-types@^2.1.12: dependencies: mime-db "1.52.0" -playwright-core@1.41.0: - version "1.41.0" - resolved "https://registry.yarnpkg.com/playwright-core/-/playwright-core-1.41.0.tgz#dbda9c3948df28a8deae76cc90b424e47174f9d7" - integrity sha512-UGKASUhXmvqm2Lxa1fNr8sFwAtqjpgBRr9jQ7XBI8Rn5uFiEowGUGwrruUQsVPIom4bk7Lt+oLGpXobnXzrBIw== +playwright-core@1.41.1: + version "1.41.1" + resolved "https://registry.yarnpkg.com/playwright-core/-/playwright-core-1.41.1.tgz#9c152670010d9d6f970f34b68e3e935d3c487431" + integrity sha512-/KPO5DzXSMlxSX77wy+HihKGOunh3hqndhqeo/nMxfigiKzogn8kfL0ZBDu0L1RKgan5XHCPmn6zXd2NUJgjhg== -playwright@1.41.0: - version "1.41.0" - resolved "https://registry.yarnpkg.com/playwright/-/playwright-1.41.0.tgz#77ab5f3a5fde479522167f74a5070e72ce884bff" - integrity sha512-XOsfl5ZtAik/T9oek4V0jAypNlaCNzuKOwVhqhgYT3os6kH34PzbRb74F0VWcLYa5WFdnmxl7qyAHBXvPv7lqQ== +playwright@1.41.1: + version "1.41.1" + resolved "https://registry.yarnpkg.com/playwright/-/playwright-1.41.1.tgz#83325f34165840d019355c2a78a50f21ed9b9c85" + integrity sha512-gdZAWG97oUnbBdRL3GuBvX3nDDmUOuqzV/D24dytqlKt+eI5KbwusluZRGljx1YoJKZ2NRPaeWiFTeGZO7SosQ== dependencies: - playwright-core "1.41.0" + playwright-core "1.41.1" optionalDependencies: fsevents "2.3.2" From f6accacf9c2494086119c1405c8dcb372fcde99e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 10:04:33 +0100 Subject: [PATCH 15/17] Bump @testing-library/jest-dom from 6.2.0 to 6.3.0 in /dashboard (#7366) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [@testing-library/jest-dom](https://github.com/testing-library/jest-dom) from 6.2.0 to 6.3.0.
Release notes

Sourced from @​testing-library/jest-dom's releases.

v6.3.0

6.3.0 (2024-01-24)

Features

  • Support for regular expressions in toHaveClass (#563) (9787ed5)

v6.2.1

6.2.1 (2024-01-22)

Bug Fixes

  • Standalone types for "./matchers" export and add Bun support (#566) (5675b86)
Commits
  • 9787ed5 feat: Support for regular expressions in toHaveClass (#563)
  • 5675b86 fix: Standalone types for "./matchers" export and add Bun support (#566)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@testing-library/jest-dom&package-manager=npm_and_yarn&previous-version=6.2.0&new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index 93babdf002c..98845da9c31 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -80,7 +80,7 @@ "@craco/craco": "^7.1.0", "@formatjs/cli": "^6.2.6", "@reduxjs/toolkit": "^1.9.7", - "@testing-library/jest-dom": "^6.2.0", + "@testing-library/jest-dom": "^6.3.0", "@testing-library/react": "^12.1.5", "@testing-library/user-event": "^14.5.2", "@types/enzyme": "^3.10.18", diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index 82545574cf6..14e43d914bf 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -2777,10 +2777,10 @@ lz-string "^1.5.0" pretty-format "^27.0.2" -"@testing-library/jest-dom@^6.2.0": - version "6.2.0" - resolved "https://registry.yarnpkg.com/@testing-library/jest-dom/-/jest-dom-6.2.0.tgz#b572bd5cd6b29314487bac7ba393188e4987b4f7" - integrity sha512-+BVQlJ9cmEn5RDMUS8c2+TU6giLvzaHZ8sU/x0Jj7fk+6/46wPdwlgOPcpxS17CjcanBi/3VmGMqVr2rmbUmNw== +"@testing-library/jest-dom@^6.3.0": + version "6.3.0" + resolved "https://registry.yarnpkg.com/@testing-library/jest-dom/-/jest-dom-6.3.0.tgz#e8d308e0c0e91d882340cbbfdea0e4daa7987d36" + integrity sha512-hJVIrkFizEQxoWsGBlycTcQhrpoCH4DhXfrnHFFXgkx3Xdm15zycsq5Ep+vpw4W8S0NJa8cxDHcuJib+1tEbhg== dependencies: "@adobe/css-tools" "^4.3.2" "@babel/runtime" "^7.9.2" From f34eeef760791ac244c439d681343eb1d6cd6418 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 10:05:24 +0100 Subject: [PATCH 16/17] Bump ts-jest from 29.1.1 to 29.1.2 in /dashboard (#7358) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [ts-jest](https://github.com/kulshekhar/ts-jest) from 29.1.1 to 29.1.2.
Release notes

Sourced from ts-jest's releases.

v29.1.2

Please refer to CHANGELOG.md for details.

Changelog

Sourced from ts-jest's changelog.

29.1.2 (2024-01-22)

Bug Fixes

  • calculated cache key based on supportsStaticESM (a5d6f2d)
  • correct error handling in processAsync (e7be4bf), closes #4207
  • use Config.ProjectConfig (918312b), closes #4028
Commits
  • 70d48be chore(release): 29.1.2
  • 19778bd build: reference transform options via jest TransformOptions type
  • a5d6f2d fix: calculated cache key based on supportsStaticESM
  • 2d16f4a test(e2e): remove onNodeVersions function
  • 0861a66 build(deps): Update dependency node-fetch to ^3.3.2
  • f41cc3e build(deps): Update babel monorepo
  • 41b8460 build(deps): Update dependency docusaurus-remark-plugin-tab-blocks to ^1.3.1
  • e7be4bf fix: correct error handling in processAsync
  • e31d953 build(deps): Update actions/setup-node digest to 1a4442c
  • 622539d build(deps): Update dependency @​formatjs/ts-transformer to ^3.13.9
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ts-jest&package-manager=npm_and_yarn&previous-version=29.1.1&new-version=29.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index 98845da9c31..811fe3be9ce 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -126,7 +126,7 @@ "stylelint-config-prettier": "^9.0.5", "stylelint-config-standard-scss": "^13.0.0", "stylelint-scss": "^6.1.0", - "ts-jest": "^29.1.1", + "ts-jest": "^29.1.2", "ts-proto": "^1.167.0", "typescript": "^5.3.3" }, diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index 14e43d914bf..8b985dc2602 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -14513,10 +14513,10 @@ ts-interface-checker@^0.1.9: resolved "https://registry.yarnpkg.com/ts-interface-checker/-/ts-interface-checker-0.1.13.tgz#784fd3d679722bc103b1b4b8030bcddb5db2a699" integrity sha512-Y/arvbn+rrz3JCKl9C4kVNfTfSm2/mEp5FSz5EsZSANGPSlQrpRI5M4PKF+mJnE52jOO90PnPSc3Ur3bTQw0gA== -ts-jest@^29.1.1: - version "29.1.1" - resolved "https://registry.yarnpkg.com/ts-jest/-/ts-jest-29.1.1.tgz#f58fe62c63caf7bfcc5cc6472082f79180f0815b" - integrity sha512-D6xjnnbP17cC85nliwGiL+tpoKN0StpgE0TeOjXQTU6MVCfsB4v7aW05CgQ/1OywGb0x/oy9hHFnN+sczTiRaA== +ts-jest@^29.1.2: + version "29.1.2" + resolved "https://registry.yarnpkg.com/ts-jest/-/ts-jest-29.1.2.tgz#7613d8c81c43c8cb312c6904027257e814c40e09" + integrity sha512-br6GJoH/WUX4pu7FbZXuWGKGNDuU7b8Uj77g/Sp7puZV6EXzuByl6JrECvm0MzVzSTkSHWTihsXt+5XYER5b+g== dependencies: bs-logger "0.x" fast-json-stable-stringify "2.x" From bcefc3088b476553a6066c526875c2512848e516 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jan 2024 10:05:37 +0100 Subject: [PATCH 17/17] Bump @tanstack/react-table from 8.11.6 to 8.11.7 in /dashboard (#7349) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [@tanstack/react-table](https://github.com/TanStack/table/tree/HEAD/packages/react-table) from 8.11.6 to 8.11.7.
Release notes

Sourced from @​tanstack/react-table's releases.

v8.11.7

Version 8.11.7 - 1/20/2024, 9:08 PM

Changes

Fix

  • Update package.json repository and homepage fields (#5292) (56369bce) by Lachlan Collins

Chore

  • svelte types workaround and simplify bug report template (#5280) (4e182ec7) by Kevin Van Cott
  • upgrade example versions and deps (#5278) (a9a7668d) by Kevin Van Cott

Docs

  • example: Use tsconfig from create-vite (Part II) (#5291) (9941ef1e) by @​lucascmelo
  • examples: Use tsconfig from create-vite (#5286) (4f08e53f) by Lachlan Collins
  • Use type imports for svelte examples (#5285) (6c3f6d80) by Lachlan Collins
  • adjust infinite scrolling example height (f61a0224) by Kevin Vandy
  • update infinite scrolling example (#5277) (d5f514a7) by Kevin Van Cott
  • Row model docs (#5276) (801ee963) by Kevin Van Cott

Packages

  • @​tanstack/table-core@​8.11.7
  • @​tanstack/react-table@​8.11.7
  • @​tanstack/solid-table@​8.11.7
  • @​tanstack/vue-table@​8.11.7
  • @​tanstack/svelte-table@​8.11.7
  • @​tanstack/react-table-devtools@​8.11.7
  • @​tanstack/match-sorter-utils@​8.11.7
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@tanstack/react-table&package-manager=npm_and_yarn&previous-version=8.11.6&new-version=8.11.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- dashboard/package.json | 2 +- dashboard/yarn.lock | 18 +++++++++--------- 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/dashboard/package.json b/dashboard/package.json index 811fe3be9ce..915e1976724 100644 --- a/dashboard/package.json +++ b/dashboard/package.json @@ -37,7 +37,7 @@ "@paciolan/remote-component": "^2.13.0", "@redux-devtools/extension": "^3.3.0", "@tanstack/match-sorter-utils": "^8.11.7", - "@tanstack/react-table": "^8.11.6", + "@tanstack/react-table": "^8.11.7", "ajv": "^8.12.0", "axios": "^1.6.5", "fast-json-patch": "^3.1.1", diff --git a/dashboard/yarn.lock b/dashboard/yarn.lock index 8b985dc2602..809c1284591 100644 --- a/dashboard/yarn.lock +++ b/dashboard/yarn.lock @@ -2751,17 +2751,17 @@ dependencies: remove-accents "0.4.2" -"@tanstack/react-table@^8.11.6": - version "8.11.6" - resolved "https://registry.yarnpkg.com/@tanstack/react-table/-/react-table-8.11.6.tgz#ae234355eaae230ede95ebcbadb3251482eb6087" - integrity sha512-i0heTVZtuHF9VPMwcYoZ21hbzGDmLjxHYemDMvbGpjk5fUZ8nLF3S8qjVRU79XfPW8KK9o7iTU2fGFVQQmxMSQ== +"@tanstack/react-table@^8.11.7": + version "8.11.7" + resolved "https://registry.yarnpkg.com/@tanstack/react-table/-/react-table-8.11.7.tgz#a2934c1ee32025d58c9dc4d13cbc15fe0a3e045e" + integrity sha512-ZbzfMkLjxUTzNPBXJYH38pv2VpC9WUA+Qe5USSHEBz0dysDTv4z/ARI3csOed/5gmlmrPzVUN3UXGuUMbod3Jg== dependencies: - "@tanstack/table-core" "8.11.6" + "@tanstack/table-core" "8.11.7" -"@tanstack/table-core@8.11.6": - version "8.11.6" - resolved "https://registry.yarnpkg.com/@tanstack/table-core/-/table-core-8.11.6.tgz#ab753617b64d72f868f6ea4666059912f0c98441" - integrity sha512-69WEY1PaZROaGYUrseng4/4sMYnRGhDe1vM6888CnWekGz/wuCnvqwOoOuKGYivnaiI4BVmZq4WKWhvahyj3/g== +"@tanstack/table-core@8.11.7": + version "8.11.7" + resolved "https://registry.yarnpkg.com/@tanstack/table-core/-/table-core-8.11.7.tgz#266af5af8576e8860df8abfe4e32e9c4ffbc76b0" + integrity sha512-N3ksnkbPbsF3PjubuZCB/etTqvctpXWRHIXTmYfJFnhynQKjeZu8BCuHvdlLPpumKbA+bjY4Ay9AELYLOXPWBg== "@testing-library/dom@^8.0.0": version "8.20.1"