Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump qs, browser-sync, dgeni-packages and body-parser #346

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): bump qs, browser-sync, dgeni-packages and body-parser #346

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 6, 2022

Bumps qs to 6.11.0 and updates ancestor dependencies qs, browser-sync, dgeni-packages and body-parser. These dependencies need to be updated together.

Updates qs from 0.1.0 to 6.11.0

Changelog

Sourced from qs's changelog.

6.11.0

  • [New] [Fix] stringify: revert 0e903c0; add commaRoundTrip option (#442)
  • [readme] fix version badge

6.10.5

  • [Fix] stringify: with arrayFormat: comma, properly include an explicit [] on a single-item array (#434)

6.10.4

  • [Fix] stringify: with arrayFormat: comma, include an explicit [] on a single-item array (#441)
  • [meta] use npmignore to autogenerate an npmignore file
  • [Dev Deps] update eslint, @ljharb/eslint-config, aud, has-symbol, object-inspect, tape

6.10.3

  • [Fix] parse: ignore __proto__ keys (#428)
  • [Robustness] stringify: avoid relying on a global undefined (#427)
  • [actions] reuse common workflows
  • [Dev Deps] update eslint, @ljharb/eslint-config, object-inspect, tape

6.10.2

  • [Fix] stringify: actually fix cyclic references (#426)
  • [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)
  • [readme] remove travis badge; add github actions/codecov badges; update URLs
  • [Docs] add note and links for coercing primitive values (#408)
  • [actions] update codecov uploader
  • [actions] update workflows
  • [Tests] clean up stringify tests slightly
  • [Dev Deps] update eslint, @ljharb/eslint-config, aud, object-inspect, safe-publish-latest, tape

6.10.1

  • [Fix] stringify: avoid exception on repeated object values (#402)

6.10.0

  • [New] stringify: throw on cycles, instead of an infinite loop (#395, #394, #393)
  • [New] parse: add allowSparse option for collapsing arrays with missing indices (#312)
  • [meta] fix README.md (#399)
  • [meta] only run npm run dist in publish, not install
  • [Dev Deps] update eslint, @ljharb/eslint-config, aud, has-symbols, tape
  • [Tests] fix tests on node v0.6
  • [Tests] use ljharb/actions/node/install instead of ljharb/actions/node/run
  • [Tests] Revert "[meta] ignore eclint transitive audit warning"

6.9.7

  • [Fix] parse: ignore __proto__ keys (#428)
  • [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)
  • [Robustness] stringify: avoid relying on a global undefined (#427)
  • [readme] remove travis badge; add github actions/codecov badges; update URLs
  • [Docs] add note and links for coercing primitive values (#408)
  • [Tests] clean up stringify tests slightly
  • [meta] fix README.md (#399)
  • Revert "[meta] ignore eclint transitive audit warning"

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by ljharb, a new releaser for qs since your current version.


Updates browser-sync from 2.18.2 to 2.27.10

Release notes

Sourced from browser-sync's releases.

2.27.9

What's Changed

A bug prevented the help output from displaying - it was introduced when the CLI parser yargs was updated, and is now fixed :)

Full Changelog: BrowserSync/browser-sync@v2.27.8...v2.27.9

2.27.8

This release upgrades Socket.io (client+server) to the latest versions - solving the following issues, and silencing security warning :)

PR:

Resolved Issues:

Thanks to @​lachieh for the original PR, which helped me land this fix

added snippet: boolean option

This release adds a feature to address BrowserSync/browser-sync#1882

Sometimes you don't want Browsersync to auto-inject it's connection snippet into your HTML - now you can disable it globally via either a CLI param or the new snippet option :)

browser-sync . --no-snippet

or in any Browsersync configuration

const config = {
  snippet: false,
};

the original request was related to Eleventy usage, so here's how that would look

eleventyConfig.setBrowserSyncConfig({
  snippet: false,
});

... (truncated)

Changelog

Sourced from browser-sync's changelog.

2.23.1 (2018-01-01)

2.8.2 (2015-07-31)

Bug Fixes

  • https: add newly generated ssl self-signed certs that will expire for 10 years - fixes (45104a7), closes #750

2.8.1 (2015-07-28)

Bug Fixes

  • web-sockets: Use separate server for web sockets in proxy mode - fixes #625 (40017b4), closes #625

Features

  • serve-static: Added option serveStatic to allow proxy/snippet mode to easily serve local fil (384ef67)

2.7.13 (2015-06-28)

Bug Fixes

  • snippet: Allow async attribute to be removed from snippet with snippetOptions.async = fal (c32bec6), closes #670
  • socket-options: allow socket.domain string|fn for setting domain only on socket path - fixes #69 (5157432), closes #690

Features

  • api: expose sockets to public api (985682c)

2.7.12 (2015-06-17)

Bug Fixes

  • client-script: allow proxy to also use client script middleware (c5fdbbf)
  • client-script: serve cached/gzipped client JS file - fixes #657 (dbe9ffe), closes #657

... (truncated)

Commits

Updates dgeni-packages from 0.10.19 to 0.30.0

Release notes

Sourced from dgeni-packages's releases.

v0.30.0

0.30.0 (2022-09-14)

Features

  • default to git binary in environment variable (acb4f75)
Changelog

Sourced from dgeni-packages's changelog.

Changelog

0.29.5 (2022-08-20)

Bug Fixes

  • base: incorrect usage of fs.mkdir which does not return a promise (be5539ece)

0.29.4 (2022-08-19)

Bug Fixes

  • typescript: account for breaking change in TypeScript 4.8 (126014)
  • jsdoc: runtime error when jsdoc uses unknown tag definition (19e629)

0.29.3 21 January 2022

Bug Fixes

  • typescript: correctly handle absolute paths for imported modules (83eb73)

New Features

  • typescript: update typescript from v3.2.4 to v4.5.4 (317363)

Breaking Changes

typescript due to:

  • 317363: update typescript from v3.2.4 to v4.5.4

Since each TypeScript version may change the shape of the generated AST, this update may break 3rd-party packages that directly rely on the ASTs (that are attached to dgeni API documents).

If you are using such a packages, you should manually verify that it works correctly with the ASTs generated by the new TypeScript version.

0.29.2 2 September 2021

Bug Fixes

  • base:
    • improve layout of checkAnchorLinks messages 4e5c3e4
    • display doc locations even if they are 0 a390fbf
  • ngdoc: link filter - correctly handle missing title

... (truncated)

Commits
  • acb4f75 feat: default to git binary in environment variable
  • 859ac83 chore: cut v0.29.5
  • be5539e fix: incorrect usage of fs.mkdir which does not return a promise
  • 4cabdcb chore: update changelog and add release instructions
  • d8b011e chore: update lock file after recent updates
  • 530b49c chore: cut 0.29.4
  • 6cf9690 chore(deps): source-map-support should not be a production dependency
  • 5b35709 refactor: replace mkdirp with native mkdir
  • 25f7a98 chore(deps): eslint should not be a production dependency
  • 07ca351 build: dont include unnecessary files in npm package
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by google-wombot, a new releaser for dgeni-packages since your current version.


Updates body-parser from 1.18.3 to 1.20.1

Release notes

Sourced from body-parser's releases.

1.20.0

1.19.2

1.19.1

1.19.0

... (truncated)

Changelog

Sourced from body-parser's changelog.

1.20.1 / 2022-10-06

1.20.0 / 2022-04-02

1.19.2 / 2022-02-15

1.19.1 / 2021-12-10

1.19.0 / 2019-04-25

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump qs, browser-sync, dgeni-packages and body-parser
3d0d7e0 
Bumps [qs](https://github.com/ljharb/qs) to 6.11.0 and updates ancestor dependencies [qs](https://github.com/ljharb/qs), [browser-sync](https://github.com/BrowserSync/browser-sync), [dgeni-packages](https://github.com/angular/dgeni-packages) and [body-parser](https://github.com/expressjs/body-parser). These dependencies need to be updated together.


Updates `qs` from 0.1.0 to 6.11.0
- [Release notes](https://github.com/ljharb/qs/releases)
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/commits/v6.11.0)

Updates `browser-sync` from 2.18.2 to 2.27.10
- [Release notes](https://github.com/BrowserSync/browser-sync/releases)
- [Changelog](https://github.com/BrowserSync/browser-sync/blob/master/CHANGELOG.md)
- [Commits](BrowserSync/browser-sync@v2.18.2...v2.27.10)

Updates `dgeni-packages` from 0.10.19 to 0.30.0
- [Release notes](https://github.com/angular/dgeni-packages/releases)
- [Changelog](https://github.com/angular/dgeni-packages/blob/master/CHANGELOG.md)
- [Commits](angular/dgeni-packages@v0.10.19...v0.30.0)

Updates `body-parser` from 1.18.3 to 1.20.1
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](expressjs/body-parser@1.18.3...1.20.1)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
- dependency-name: browser-sync
  dependency-type: direct:development
- dependency-name: dgeni-packages
  dependency-type: direct:development
- dependency-name: body-parser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 6, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants