search

AirWalk-Digital / airview-next

Airview Next
MIT License
1 stars 2 forks source link

build(deps): bump the npm_and_yarn group across 1 directories with 4 updates #5

Closed dependabot[bot] closed 9 months ago

dependabot[bot] commented 9 months ago

Bumps the npm_and_yarn group with 4 updates in the /. directory: axios, next, sharp and word-wrap.

Updates axios from 1.4.0 to 1.6.0

Release notes

Sourced from axios's releases.

Release v1.6.0

Release notes:

Bug Fixes

  • CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)
  • dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)
  • types: fix AxiosHeaders types; (#5931) (a1c8ad0)

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

Contributors to this release

Release v1.5.1

Release notes:

Bug Fixes

  • adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)
  • formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)
  • headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)
  • types: removed duplicated code (9e62056)

Contributors to this release

Release v1.5.0

Release notes:

Bug Fixes

  • adapter: make adapter loading error more clear by using platform-specific adapters explicitly (#5837) (9a414bb)
  • dns: fixed cacheable-lookup integration; (#5836) (b3e327d)
  • headers: added support for setting header names that overlap with class methods; (#5831) (d8b4ca0)
  • headers: fixed common Content-Type header merging; (#5832) (8fda276)

Features

... (truncated)

Changelog

Sourced from axios's changelog.

1.6.0 (2023-10-26)

Bug Fixes

  • CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)
  • dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)
  • types: fix AxiosHeaders types; (#5931) (a1c8ad0)

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

Contributors to this release

1.5.1 (2023-09-26)

Bug Fixes

  • adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)
  • formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)
  • headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)
  • types: removed duplicated code (9e62056)

Contributors to this release

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

1.5.0 (2023-08-26)

... (truncated)

Commits
  • f7adacd chore(release): v1.6.0 (#6031)
  • 9917e67 chore(ci): fix release-it arg; (#6032)
  • 96ee232 fix(CSRF): fixed CSRF vulnerability CVE-2023-45857 (#6028)
  • 7d45ab2 chore(tests): fixed tests to pass in node v19 and v20 with keep-alive enabl...
  • 5aaff53 fix(dns): fixed lookup function decorator to work properly in node v20; (#6011)
  • a48a63a chore(docs): added AxiosHeaders docs; (#5932)
  • a1c8ad0 fix(types): fix AxiosHeaders types; (#5931)
  • 2ac731d chore(docs): update readme.md (#5889)
  • 88fb52b chore(release): v1.5.1 (#5920)
  • e410779 fix(adapters): improved adapters loading logic to have clear error messages; ...
  • Additional commits viewable in compare view


Updates next from 14.0.3 to 14.0.4

Release notes

Sourced from next's releases.

v14.0.4

Core Changes

  • Remove early return that is duplicated in useSearchParams: #58545
  • Support passing a relative string to pushState/replaceState: #58438
  • [.next/trace] Record start-dev-server trace span: #58469
  • Update React from 593ecee66 to 2c338b16f.: #58553
  • turbopack: Fix pageExtensions with dots: #58504
  • fix: revalidation with file-system-cache: #58508
  • fix: fetch() behavior when "dynamic" is "force-dynamic: #58484
  • Add cacheNodeSeedData to RSC payload: #58566
  • Lift subtree data out of React tree: #58569
  • fix(next-core): allow runtime segment option in pages/api: #58409
  • Update rust-toolchain to 2023-11-16: #58558
  • refactor: Add lightningcss mode for turbopack-css: #58471
  • fix: avoid race condition when download swc wasm: #58536
  • Removed unused route resolver code: #58702
  • Add experimental.windowHistorySupport to Turbopack supported options: #58717
  • Improve Server Actions compiler: #58391
  • Seed CacheNodes immediately after receiving response: #58669
  • Turbopack: improve error display: #58734
  • fix node externals resolving: #58129
  • disable static prefetching behavior for dynamic segments: #58609
  • fix: ensure DynamicUsageErrors caught during render bubble up: #58747
  • fix image.domains deprecation warning: #58656
  • fix waitUntil handling in pipeToNodeResponse: #58744
  • Use consistent resolve extensions alias for compiler: #58725
  • Turbopack: Use styled issue titles and details: #58743
  • route handlers: make req.cookies opt you into dynamic: #58769
  • OpenTelemetry: a more reliable way to establish a root context: #58662
  • Revert "fix: fetch() behavior when "dynamic" is "force-dynamic": #58735
  • [Instrumentation] Don't treat instrumentation hook as pages: #58775
  • Fix turboFlag set to false: #58795
  • [.next/trace] Track server requests and memory usage: #58690
  • place virtual module inside the project directory: #58798
  • fix rewrites to edge routes: #58797
  • Polish unsupported metadata warning with doc link: #58750
  • Enable .mjs extension config in Turbopack: #58825
  • Turbopack: align automatic externals code with webpack: #58851
  • Upgrade Turbopack: #58859
  • OpenTelemetry: propagate context to sandbox: #58791
  • fix uniqueness of layers: #58872
  • disable flushToDisk during generateStaticParams: #58871
  • Turbopack: enable some node.js builtin in edge runtime: #58850
  • add NEXT_TRIGGER_URL env var to show request triggering a compilation: #58762
  • Update swc_core to v0.86.81: #58517
  • Trace server updates: #58694
  • remove duplicate util file for redirect status: #58878
  • fix(windows): workaround for intermittent locks on windows when renaming files: #58835
  • unify server action detection logic: #58879

... (truncated)

Commits


Updates sharp from 0.31.3 to 0.32.6

Changelog

Sourced from sharp's changelog.

v0.32.6 - 18th September 2023

  • Upgrade to libvips v8.14.5 for upstream bug fixes.

  • Ensure composite tile images are fully decoded (regression in 0.32.0). #3767

  • Ensure withMetadata can add ICC profiles to RGB16 output. #3773

  • Ensure withMetadata does not reduce 16-bit images to 8-bit (regression in 0.32.5). #3773

  • TypeScript: Add definitions for block and unblock. #3799 @​ldrick

v0.32.5 - 15th August 2023

  • Upgrade to libvips v8.14.4 for upstream bug fixes.

  • TypeScript: Add missing WebpPresetEnum to definitions. #3748 @​pilotso11

  • Ensure compilation using musl v1.2.4. #3755 @​kleisauke

  • Ensure resize with a fit of inside respects 90/270 degree rotation. #3756

  • TypeScript: Ensure minSize property of WebpOptions is boolean. #3758 @​sho-xizz

  • Ensure withMetadata adds default sRGB profile. #3761

v0.32.4 - 21st July 2023

  • Upgrade to libvips v8.14.3 for upstream bug fixes.

  • Expose ability to (un)block low-level libvips operations by name.

  • Prebuilt binaries: restore support for tile-based output. #3581

v0.32.3 - 14th July 2023

... (truncated)

Commits


Updates word-wrap from 1.2.3 to 1.2.5

Release notes

Sourced from word-wrap's releases.

1.2.5

Changes:

Reverts default value for options.indent to two spaces ' '.

Full Changelog: https://github.com/jonschlinkert/word-wrap/compare/1.2.4...1.2.5

1.2.4

What's Changed

New Contributors

Full Changelog: https://github.com/jonschlinkert/word-wrap/compare/1.2.3...1.2.4

Commits
  • 207044e 1.2.5
  • 9894315 revert default indent
  • f64b188 run verb to generate README
  • 03ea082 Merge pull request #42 from jonschlinkert/chore/publish-workflow
  • 420dce9 Merge pull request #41 from jonschlinkert/fix/CVE-2023-26115-2
  • bfa694e Update .github/workflows/publish.yml
  • ace0b3c chore: bump version to 1.2.4
  • 6fd7275 chore: add publish workflow
  • 30d6daf chore: fix test
  • 655929c chore: remove package-lock
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/AirWalk-Digital/airview-next/network/alerts).
github-actions[bot] commented 9 months ago

:tada: This PR is included in version 1.2.0 :tada:

The release is available on:

Your semantic-release bot :package::rocket: