search

10up / headstartwp

Build a headless website fast with WordPress, the world’s most popular CMS, and Next.js, the most popular React framework. A free and open source solution by the experts at 10up.
https://headstartwp.10up.com
153 stars 17 forks source link

chore(deps): bump the npm_and_yarn group across 2 directories with 8 updates #756

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps the npm_and_yarn group with 2 updates in the / directory: express and ejs. Bumps the npm_and_yarn group with 5 updates in the /docs directory:

Package From To
express 4.18.2 4.19.2
got 9.6.0 12.6.1
@docusaurus/core 2.3.1 3.2.1
@docusaurus/preset-classic 2.3.1 3.2.1
@easyops-cn/docusaurus-search-local 0.33.6 0.40.1

Updates express from 4.18.2 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2

4.19.1

What's Changed

Full Changelog: https://github.com/expressjs/express/compare/4.19.0...4.19.1

4.19.0

What's Changed

New Contributors

Full Changelog: https://github.com/expressjs/express/compare/4.18.3...4.19.0

4.18.3

Main Changes

  • Fix routing requests without method
  • deps: body-parser@1.20.2
    • Fix strict json error message on Node.js 19+
    • deps: content-type@~1.0.5
    • deps: raw-body@2.5.2

Other Changes

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

  • Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

  • Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

  • Prevent open redirect allow list bypass due to encodeurl
  • deps: cookie@0.6.0

4.18.3 / 2024-02-29

  • Fix routing requests without method
  • deps: body-parser@1.20.2
    • Fix strict json error message on Node.js 19+
    • deps: content-type@~1.0.5
    • deps: raw-body@2.5.2
  • deps: cookie@0.6.0
    • Add partitioned option
Commits
  • 04bc627 4.19.2
  • da4d763 Improved fix for open redirect allow list bypass
  • 4f0f6cc 4.19.1
  • a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
  • a1fa90f fixed un-edited version in history.md for 4.19.0
  • 11f2b1d build: fix build due to inconsistent supertest behavior in older versions
  • 084e365 4.19.0
  • 0867302 Prevent open redirect allow list bypass due to encodeurl
  • 567c9c6 Add note on how to update docs for new release (#5541)
  • 69a4cf2 deps: cookie@0.6.0
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.


Updates ejs from 3.1.9 to 3.1.10

Release notes

Sourced from ejs's releases.

v3.1.10

Version 3.1.10

Commits


Updates express from 4.18.2 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2

4.19.1

What's Changed

Full Changelog: https://github.com/expressjs/express/compare/4.19.0...4.19.1

4.19.0

What's Changed

New Contributors

Full Changelog: https://github.com/expressjs/express/compare/4.18.3...4.19.0

4.18.3

Main Changes

  • Fix routing requests without method
  • deps: body-parser@1.20.2
    • Fix strict json error message on Node.js 19+
    • deps: content-type@~1.0.5
    • deps: raw-body@2.5.2

Other Changes

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

  • Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

  • Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

  • Prevent open redirect allow list bypass due to encodeurl
  • deps: cookie@0.6.0

4.18.3 / 2024-02-29

  • Fix routing requests without method
  • deps: body-parser@1.20.2
    • Fix strict json error message on Node.js 19+
    • deps: content-type@~1.0.5
    • deps: raw-body@2.5.2
  • deps: cookie@0.6.0
    • Add partitioned option
Commits
  • 04bc627 4.19.2
  • da4d763 Improved fix for open redirect allow list bypass
  • 4f0f6cc 4.19.1
  • a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
  • a1fa90f fixed un-edited version in history.md for 4.19.0
  • 11f2b1d build: fix build due to inconsistent supertest behavior in older versions
  • 084e365 4.19.0
  • 0867302 Prevent open redirect allow list bypass due to encodeurl
  • 567c9c6 Add note on how to update docs for new release (#5541)
  • 69a4cf2 deps: cookie@0.6.0
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.


Updates got from 9.6.0 to 12.6.1

Release notes

Sourced from got's releases.

v12.6.1

  • Fix get-stream import statement (#2266) 67d5039

https://github.com/sindresorhus/got/compare/v12.6.0...v12.6.1

v12.6.0

  • Update dependencies 88c88fb 979272e
  • Loosen URL validation strictness (#2200) 0ca0b7f

https://github.com/sindresorhus/got/compare/v12.5.3...v12.6.0

v12.5.3

  • Fix abort event listeners not always being cleaned up (#2162) 3cc40b5

https://github.com/sindresorhus/got/compare/v12.5.2...v12.5.3

v12.5.2

  • Improve TypeScript 4.9 compatibility (#2163) 39f83b6

https://github.com/sindresorhus/got/compare/v12.5.1...v12.5.2

v12.5.1

  • Fix compatibility with TypeScript and ESM 3b3ea67
  • Fix request body not being properly cached (#2150) 3e9d3af

https://github.com/sindresorhus/got/compare/v12.5.0...v12.5.1

v12.5.0

  • Disable method rewriting on 307 and 308 status codes (#2145) e049e94
  • Upgrade dependencies 8630815 f0ac0b3 4c3762a

https://github.com/sindresorhus/got/compare/v12.4.1...v12.5.0

v12.4.1

Fixes

  • Fix options.context being not extensible b671480715dbbff908e9a385f5e714570c663cd7
  • Don't emit uploadProgress after promise cancelation 693de217b030816f574d6e4cb505ee2e77b21c29

https://github.com/sindresorhus/got/compare/v12.4.0...v12.4.1

v12.4.0

Improvements

  • Support FormData without known length (#2120) 850773c

Fixes

  • Don't call beforeError hooks with HTTPError if the throwHttpErrors option is false (#2104) 3927348

... (truncated)

Commits


Updates @docusaurus/core from 2.3.1 to 3.2.1

Release notes

Sourced from @​docusaurus/core's releases.

3.2.1 (2024-04-04)

:bug: Bug Fix

:memo: Documentation

:robot: Dependencies

Committers: 2

3.2.0 (2024-03-29)

:rocket: New Feature

  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-plugin-content-pages, docusaurus-plugin-sitemap, docusaurus-types, docusaurus-utils, docusaurus
  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-utils-validation, docusaurus-utils
  • docusaurus-plugin-debug, docusaurus-types, docusaurus
  • docusaurus-theme-translations
  • docusaurus-plugin-content-blog
    • #9886 feat(blog): allow processing blog posts through a processBlogPosts function (@​OzakIOne)
    • #9838 feat(blog): add blog pageBasePath plugin option (@​ilg-ul)
  • docusaurus
    • #9681 feat(swizzle): ask user preferred language if no language CLI option provided (@​yixiaojiu)
  • create-docusaurus, docusaurus-utils
    • #9442 feat(create-docusaurus): ask user for preferred language when no language CLI option provided (@​Rafael-Martins)
  • docusaurus-plugin-vercel-analytics
    • #9687 feat(plugin-vercel-analytics): add new vercel analytics plugin (@​OzakIOne)
  • docusaurus-mdx-loader
    • #9684 feat(mdx-loader): the table-of-contents should display toc/headings of imported MDX partials (@​anatolykopyl)

:bug: Bug Fix

  • docusaurus-mdx-loader
    • #9999 fix(mdx-loader): Ignore contentTitle coming after Markdown thematicBreak (@​slorber)

... (truncated)

Changelog

Sourced from @​docusaurus/core's changelog.

3.2.1 (2024-04-04)

:bug: Bug Fix

:memo: Documentation

:robot: Dependencies

Committers: 2

3.2.0 (2024-03-29)

:rocket: New Feature

  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-plugin-content-pages, docusaurus-plugin-sitemap, docusaurus-types, docusaurus-utils, docusaurus
  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-utils-validation, docusaurus-utils
  • docusaurus-plugin-debug, docusaurus-types, docusaurus
  • docusaurus-theme-translations
  • docusaurus-plugin-content-blog
    • #9886 feat(blog): allow processing blog posts through a processBlogPosts function (@​OzakIOne)
    • #9838 feat(blog): add blog pageBasePath plugin option (@​ilg-ul)
  • docusaurus
    • #9681 feat(swizzle): ask user preferred language if no language CLI option provided (@​yixiaojiu)
  • create-docusaurus, docusaurus-utils
    • #9442 feat(create-docusaurus): ask user for preferred language when no language CLI option provided (@​Rafael-Martins)
  • docusaurus-plugin-vercel-analytics
    • #9687 feat(plugin-vercel-analytics): add new vercel analytics plugin (@​OzakIOne)
  • docusaurus-mdx-loader
    • #9684 feat(mdx-loader): the table-of-contents should display toc/headings of imported MDX partials (@​anatolykopyl)

:bug: Bug Fix

  • docusaurus-mdx-loader
    • #9999 fix(mdx-loader): Ignore contentTitle coming after Markdown thematicBreak (@​slorber)

... (truncated)

Commits
  • f268e15 v3.2.1
  • f9a90d3 fix(core): fix configurePostCss v3.2 regression (#10012)
  • debfc87 chore: release Docusaurus v3.2.0 (#10000)
  • 8212471 refactor(utils): remove duplicated function (#9972)
  • efbe474 refactor(core): improve dev perf, fine-grained site reloads - part 3 (#9975)
  • 93a09ea refactor(core): improve dev perf, fine-grained site reloads - part2 (#9968)
  • 9017fb9 feat(sitemap): add support for "lastmod" (#9954)
  • 8d115a9 feat(core): add new plugin allContentLoaded lifecycle (#9931)
  • d02b96f refactor(core): improve dev perf, fine-grained site reloads - part1 (#9903)
  • 6bf21d2 fix(core): fix default i18n calendar used, infer it from locale if possible (...
  • Additional commits viewable in compare view


Updates @docusaurus/preset-classic from 2.3.1 to 3.2.1

Release notes

Sourced from @​docusaurus/preset-classic's releases.

3.2.1 (2024-04-04)

:bug: Bug Fix

:memo: Documentation

:robot: Dependencies

Committers: 2

3.2.0 (2024-03-29)

:rocket: New Feature

  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-plugin-content-pages, docusaurus-plugin-sitemap, docusaurus-types, docusaurus-utils, docusaurus
  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-utils-validation, docusaurus-utils
  • docusaurus-plugin-debug, docusaurus-types, docusaurus
  • docusaurus-theme-translations
  • docusaurus-plugin-content-blog
    • #9886 feat(blog): allow processing blog posts through a processBlogPosts function (@​OzakIOne)
    • #9838 feat(blog): add blog pageBasePath plugin option (@​ilg-ul)
  • docusaurus
    • #9681 feat(swizzle): ask user preferred language if no language CLI option provided (@​yixiaojiu)
  • create-docusaurus, docusaurus-utils
    • #9442 feat(create-docusaurus): ask user for preferred language when no language CLI option provided (@​Rafael-Martins)
  • docusaurus-plugin-vercel-analytics
    • #9687 feat(plugin-vercel-analytics): add new vercel analytics plugin (@​OzakIOne)
  • docusaurus-mdx-loader
    • #9684 feat(mdx-loader): the table-of-contents should display toc/headings of imported MDX partials (@​anatolykopyl)

:bug: Bug Fix

  • docusaurus-mdx-loader
    • #9999 fix(mdx-loader): Ignore contentTitle coming after Markdown thematicBreak (@​slorber)

... (truncated)

Changelog

Sourced from @​docusaurus/preset-classic's changelog.

3.2.1 (2024-04-04)

:bug: Bug Fix

:memo: Documentation

:robot: Dependencies

Committers: 2

3.2.0 (2024-03-29)

:rocket: New Feature

  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-plugin-content-pages, docusaurus-plugin-sitemap, docusaurus-types, docusaurus-utils, docusaurus
  • docusaurus-plugin-content-blog, docusaurus-plugin-content-docs, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-utils-validation, docusaurus-utils
  • docusaurus-plugin-debug, docusaurus-types, docusaurus
  • docusaurus-theme-translations
  • docusaurus-plugin-content-blog
    • #9886 feat(blog): allow processing blog posts through a processBlogPosts function (@​OzakIOne)
    • #9838 feat(blog): add blog pageBasePath plugin option (@​ilg-ul)
  • docusaurus
    • #9681 feat(swizzle): ask user preferred language if no language CLI option provided (@​yixiaojiu)
  • create-docusaurus, docusaurus-utils
    • #9442 feat(create-docusaurus): ask user for preferred language when no language CLI option provided (@​Rafael-Martins)
  • docusaurus-plugin-vercel-analytics
    • #9687 feat(plugin-vercel-analytics): add new vercel analytics plugin (@​OzakIOne)
  • docusaurus-mdx-loader
    • #9684 feat(mdx-loader): the table-of-contents should display toc/headings of imported MDX partials (@​anatolykopyl)

:bug: Bug Fix

  • docusaurus-mdx-loader
    • #9999 fix(mdx-loader): Ignore contentTitle coming after Markdown thematicBreak (@​slorber)

... (truncated)

Commits


Updates @easyops-cn/docusaurus-search-local from 0.33.6 to 0.40.1

Release notes

Sourced from @​easyops-cn/docusaurus-search-local's releases.

v0.40.1

0.40.1 (2023-12-23)

Bug Fixes

v0.40.0

0.40.0 (2023-12-19)

Features

  • allow force enable search index even if noIndex: true is set (09d0f30), closes #385
  • support i18n for search context labels (83b05a2)

v0.39.0

0.39.0 (2023-12-15)

Features

v0.38.1

0.38.1 (2023-11-28)

Bug Fixes

v0.38.0

0.38.0 (2023-11-24)

Features

  • do not index unlisted content (b0c425d), closes #371
  • add German locale #353

v0.37.5

0.37.5 (2023-11-24)

Bug Fixes

  • set typescript target back to ES6 (c05151f)

... (truncated)

Changelog

Sourced from @​easyops-cn/docusaurus-search-local's changelog.

0.40.1 (2023-12-23)

Bug Fixes

0.40.0 (2023-12-19)

Features

  • allow force enable search index even if noIndex: true is set (09d0f30), closes #385
  • support i18n for search context labels (83b05a2)

0.39.0 (2023-12-15)

Features

0.38.1 (2023-11-28)

Bug Fixes

0.38.0 (2023-11-24)

Features

0.37.5 (2023-11-24)

Bug Fixes

  • set typescript target back to ES6 (c05151f)

0.37.4 (2023-11-12)

Bug Fixes

  • fix peer deps of react 16/17/18 (700d640)

... (truncated)

Commits
  • 8553b40 Merge pull request #391 from easyops-cn/release-please--branches--master--com...
  • cf7655d chore(master): release 0.40.1
  • 7977948 Merge pull request #390 from easyops-cn/steve/fix-search-page
  • 64e26c2 fix: fix search page no results, closes #389
  • 86561f6 Merge pull request #387 from easyops-cn/release-please--branches--master--com...
  • 548659f chore(master): release 0.40.0
  • 183e4b7 Merge pull request #386 from easyops-cn/steve/i18n-search-context-labels
  • 09d0f30 feat: allow force enable search index even if noIndex: true is set
  • 83b05a2 feat: support i18n for search context labels
  • 0be2e80 Merge pull request #384 from easyops-cn/release-please--branches--master--com...
  • Additional commits viewable in compare view


Updates follow-redirects from 1.15.4 to 1.15.6

Commits
  • 35a517c Release version 1.15.6 of the npm package.
  • c4f847f Drop Proxy-Authorization across hosts.
  • 8526b4a Use GitHub for disclosure.
  • b1677ce Release version 1.15.5 of the npm package.
  • d8914f7 Preserve fragment in responseUrl.
  • See full diff in compare view


Updates webpack-dev-middleware from 5.3.3 to 5.3.4

Release notes

Sourced from webpack-dev-middleware's releases.

v5.3.4

5.3.4 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1779) (189c4ac)
Changelog

Sourced from webpack-dev-middleware's changelog.

5.3.4 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1779) (189c4ac)
Commits
changeset-bot[bot] commented 2 months ago

⚠️ No Changeset found

Latest commit: 9dcd8f8009e4180788a01f9ca745fdc999d4f478

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

dependabot[bot] commented 2 months ago

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml