-
Notifications
You must be signed in to change notification settings - Fork 6
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps): bump the npm_and_yarn group with 15 updates #315
base: dev
Are you sure you want to change the base?
Conversation
Bumps the npm_and_yarn group with 15 updates: | Package | From | To | | --- | --- | --- | | [graphql](https://github.com/graphql/graphql-js) | `16.8.1` | `16.8.2` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.21.4` | `7.25.6` | | [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` | | [es5-ext](https://github.com/medikoo/es5-ext) | `0.10.62` | `0.10.64` | | [express](https://github.com/expressjs/express) | `4.18.2` | `4.19.2` | | [fast-loops](https://github.com/robinweser/fast-loops) | `1.1.3` | `1.1.4` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.2` | `1.15.6` | | [get-func-name](https://github.com/chaijs/get-func-name) | `2.0.0` | `2.0.2` | | [jose](https://github.com/panva/jose) | `4.14.0` | `4.15.9` | | [msgpackr](https://github.com/kriszyp/msgpackr) | `1.8.5` | `1.11.0` | | [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` | | [systeminformation](https://github.com/sebhildebrandt/systeminformation) | `5.17.12` | `5.23.5` | | [undici](https://github.com/nodejs/undici) | `5.21.0` | `5.28.4` | | [webpack](https://github.com/webpack/webpack) | `5.77.0` | `5.94.0` | | [word-wrap](https://github.com/jonschlinkert/word-wrap) | `1.2.3` | `1.2.5` | Updates `graphql` from 16.8.1 to 16.8.2 - [Release notes](https://github.com/graphql/graphql-js/releases) - [Commits](graphql/graphql-js@v16.8.1...v16.8.2) Updates `@babel/traverse` from 7.21.4 to 7.25.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.6/packages/babel-traverse) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `es5-ext` from 0.10.62 to 0.10.64 - [Release notes](https://github.com/medikoo/es5-ext/releases) - [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md) - [Commits](medikoo/es5-ext@v0.10.62...v0.10.64) Updates `express` from 4.18.2 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.18.2...4.19.2) Updates `fast-loops` from 1.1.3 to 1.1.4 - [Commits](https://github.com/robinweser/fast-loops/commits) Updates `follow-redirects` from 1.15.2 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.2...v1.15.6) Updates `get-func-name` from 2.0.0 to 2.0.2 - [Release notes](https://github.com/chaijs/get-func-name/releases) - [Commits](https://github.com/chaijs/get-func-name/commits/v2.0.2) Updates `jose` from 4.14.0 to 4.15.9 - [Release notes](https://github.com/panva/jose/releases) - [Changelog](https://github.com/panva/jose/blob/v4.15.9/CHANGELOG.md) - [Commits](panva/jose@v4.14.0...v4.15.9) Updates `msgpackr` from 1.8.5 to 1.11.0 - [Release notes](https://github.com/kriszyp/msgpackr/releases) - [Commits](https://github.com/kriszyp/msgpackr/commits) Updates `semver` from 5.7.1 to 5.7.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v5.7.2) Updates `systeminformation` from 5.17.12 to 5.23.5 - [Changelog](https://github.com/sebhildebrandt/systeminformation/blob/master/CHANGELOG.md) - [Commits](sebhildebrandt/systeminformation@v5.17.12...v5.23.5) Updates `undici` from 5.21.0 to 5.28.4 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.21.0...v5.28.4) Updates `webpack` from 5.77.0 to 5.94.0 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v5.77.0...v5.94.0) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) --- updated-dependencies: - dependency-name: graphql dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: es5-ext dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: fast-loops dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: get-func-name dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jose dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: msgpackr dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: systeminformation dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: undici dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
The following labels could not be found: |
Important Review skippedIgnore keyword(s) in the title. Ignored keywords (1)
Please check the settings in the CodeRabbit UI or the You can disable this status message by setting the Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media? TipsChatThere are 3 ways to chat with CodeRabbit:
Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments. CodeRabbit Commands (Invoked using PR comments)
Other keywords and placeholders
CodeRabbit Configuration File (
|
❌ Deploy Preview for veascan failed. Why did it fail? →
|
Bumps the npm_and_yarn group with 15 updates:
16.8.1
16.8.2
7.21.4
7.25.6
3.0.2
3.0.3
0.10.62
0.10.64
4.18.2
4.19.2
1.1.3
1.1.4
1.15.2
1.15.6
2.0.0
2.0.2
4.14.0
4.15.9
1.8.5
1.11.0
5.7.1
5.7.2
5.17.12
5.23.5
5.21.0
5.28.4
5.77.0
5.94.0
1.2.3
1.2.5
Updates
graphql
from 16.8.1 to 16.8.2Release notes
Sourced from graphql's releases.
Commits
08779a0
16.8.2c82609e
Fix publish scripts (#4104)0d12b06
fix: removeglobalThis
check and align with what bundlers can accept (#4022)Maintainer changes
This version was pushed to npm by benjie, a new releaser for graphql since your current version.
Updates
@babel/traverse
from 7.21.4 to 7.25.6Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
2f72b97
v7.25.6faceae9
fix:path.getAssignmentIdentifiers
may beundefined
(#16727)46ee612
Remove someNodePath
methods (#16655)2fdc8b5
fix: Generate sequence expression parentheses correctly (#16764)cbf124c
v7.25.42b289fb
fix: skip computed key when renaming (#16756)575863c
Avoid unnecessary parens around sequence expressions (#16722)5174ad1
Clean all always enabled parser plugins (#16572)52718ab
Discontinue babel-eslint-config-internal (#16718)dba45d3
IgnoredevDependencies
when generatingtsconfig.json
(#16659)Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
es5-ext
from 0.10.62 to 0.10.64Release notes
Sourced from es5-ext's releases.
Changelog
Sourced from es5-ext's changelog.
Commits
f76b03d
chore: Release v0.10.642881acd
chore: Bump dependenciesc2e2bb9
fix: Revert update meant to fix Powershell issue, as it's a regression16f2b72
docs: Fix date in the changelogde4e03c
chore: Release v0.10.633fd53b7
chore: Upgradelint-staged
to v13bf8ed79
chore: Ensure postinstall script does not crash on Windows2cbbb07
chore: Bump dependencies22d0416
chore: Bump LICENSE yeara52e957
fix: Support ES2015+ function definitions infunction#toStringTokens()
Updates
express
from 4.18.2 to 4.19.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
04bc627
4.19.2da4d763
Improved fix for open redirect allow list bypass4f0f6cc
4.19.1a003cfa
Allow passing non-strings to res.location with new encoding handling checks f...a1fa90f
fixed un-edited version in history.md for 4.19.011f2b1d
build: fix build due to inconsistent supertest behavior in older versions084e365
4.19.00867302
Prevent open redirect allow list bypass due to encodeurl567c9c6
Add note on how to update docs for new release (#5541)69a4cf2
deps: cookie@0.6.0Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Updates
fast-loops
from 1.1.3 to 1.1.4Commits
Updates
follow-redirects
from 1.15.2 to 1.15.6Commits
35a517c
Release version 1.15.6 of the npm package.c4f847f
Drop Proxy-Authorization across hosts.8526b4a
Use GitHub for disclosure.b1677ce
Release version 1.15.5 of the npm package.d8914f7
Preserve fragment in responseUrl.6585820
Release version 1.15.4 of the npm package.7a6567e
Disallow bracketed hostnames.05629af
Prefer native URL instead of deprecated url.parse.1cba8e8
Prefer native URL instead of legacy url.resolve.72bc2a4
Simplify _processResponse error handling.Updates
get-func-name
from 2.0.0 to 2.0.2Release notes
Sourced from get-func-name's releases.
Commits
Maintainer changes
This version was pushed to npm by keithamus, a new releaser for get-func-name since your current version.
Updates
jose
from 4.14.0 to 4.15.9Release notes
Sourced from jose's releases.
... (truncated)
Changelog
Sourced from jose's changelog.
... (truncated)
Commits
051a18e
chore(release): 4.15.913b10dd
chore(release): 4.15.817eef5f
fix: add sideEffects:false to nested ESM package.json files5084808
chore(release): 4.15.7122c939
chore(release): 4.15.6e36d69e
fix: add a workerd package.json target765aafd
chore(release): 4.15.5b36e45e
test: add export check to x509 pem import testse839ecb
test: stop testing JWE RSA1_5 Algorithm1b91d88
fix: add a maxOutputLength option to zlib inflateUpdates
msgpackr
from 1.8.5 to 1.11.0Commits
Updates
semver
from 5.7.1 to 5.7.2Release notes
Sourced from semver's releases.
Changelog
Sourced from semver's changelog.
Commits
f8cc313
chore: release 5.7.22f8fd41
fix: better handling of whitespace (#585)deb5ad5
chore:@npmcli/template-oss
@4
.16.0Maintainer changes
This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.
Updates
systeminformation
from 5.17.12 to 5.23.5Changelog
Sourced from systeminformation's changelog.
... (truncated)
Commits
3a92931
5.23.5012d446
processLoad() linux fix * (linux)55a1fc2
processLoad() linux fix * (linux)642312e
processLoad() linux fix * (linux)6ffb79a
5.23.449e1edb
baseboard(), chassis() cleaned defauls (linux)86f54c0
baseboard(), chassis() cleaned defauls (linux)a080328
5.23.3d76c58e
usb() fixed duplicate entries (windows)3ef84b0
usb() fixed duplicated entries (windows)Updates
undici
from 5.21.0 to 5.28.4Release notes
Sourced from undici's releases.
... (truncated)
Commits
fb98306
Bumped v5.28.42b39440
Merge pull request from GHSA-9qxr-qj54-h67264e3402
Merge pull request from GHSA-m4v8-wqvr-p9f7723c4e7
Revert "build(deps-dev): bump formdata-node from 4.4.1 to 6.0.3 (#2389)"0e9d54b
skip failing test due to Node.js changese71cb4c
Bumped v5.28.320c65b8<...
- Updated
- Added new dependencies for packages like
Description has been truncated
PR-Codex overview
This PR updates various npm packages in
package.json
andyarn.lock
files. The focus is on upgradinggraphql
to version16.8.2
and adding new dependencies.Detailed summary
graphql
to version16.8.2
@babel/code-frame
,@babel/generator
,@jridgewell/gen-mapping
, and more.