dependabot-preview[bot] commented 5 years ago

Bumps deepmerge from 3.2.0 to 4.2.2.

Changelog

*Sourced from [deepmerge's changelog](https://github.com/TehShrike/deepmerge/blob/master/changelog.md).* > # [4.2.2](https://github.com/TehShrike/deepmerge/releases/tag/v4.2.2) > > - `isMergeableObject` is now only called if there are two values that could be merged. [a34dd4d2](https://github.com/TehShrike/deepmerge/commit/a34dd4d25bf5e250653540a2022bc832c7b00a19) > > # [4.2.1](https://github.com/TehShrike/deepmerge/releases/tag/v4.2.1) > > - Fix: falsey values can now be merged. [#170](https://github-redirect.dependabot.com/TehShrike/deepmerge/issues/170) > > # [4.2.0](https://github.com/TehShrike/deepmerge/releases/tag/v4.2.0) > > - Properties are now only overwritten if they exist on the target object and are enumerable. [#164](https://github-redirect.dependabot.com/TehShrike/deepmerge/pull/164) > > Technically this could probably be a patch release since "which properties get overwritten" wasn't documented and accidentally overwriting a built-in function or some function up the property chain would almost certainly be undesirable, but it feels like a gray area, so here we are with a feature version bump. > > # [4.1.2](https://github.com/TehShrike/deepmerge/releases/tag/v4.1.2) > > - Rolled back [#167](https://github-redirect.dependabot.com/TehShrike/deepmerge/issues/167) since `Object.assign` breaks ES5 support. [55067352](https://github.com/TehShrike/deepmerge/commit/55067352a92c65a6c44a5165f3387720aae1e192) > > # [4.1.1](https://github.com/TehShrike/deepmerge/releases/tag/v4.1.1) > > - The `options` argument is no longer mutated [#167](https://github-redirect.dependabot.com/TehShrike/deepmerge/pull/167) > > # [4.1.0](https://github.com/TehShrike/deepmerge/releases/tag/v4.1.0) > > - `cloneUnlessOtherwiseSpecified` is now exposed to the `arrayMerge` function [#165](https://github-redirect.dependabot.com/TehShrike/deepmerge/pull/165) > > # [4.0.0](https://github.com/TehShrike/deepmerge/releases/tag/v4.0.0) > > - The `main` entry point in `package.json` is now a CommonJS module instead of a UMD module [#155](https://github-redirect.dependabot.com/TehShrike/deepmerge/pull/155) > > # [3.3.0](https://github.com/TehShrike/deepmerge/releases/tag/v3.3.0) > > - Enumerable Symbol properties are now copied [#151](https://github-redirect.dependabot.com/TehShrike/deepmerge/pull/151) > > # [3.2.1](https://github.com/TehShrike/deepmerge/releases/tag/v3.2.1) > > - bumping dev dependency versions to try to shut up bogus security warnings from Github/npm [#149](https://github-redirect.dependabot.com/TehShrike/deepmerge/pull/149)

Commits

- [`c759b5d`](https://github.com/TehShrike/deepmerge/commit/c759b5d83032c2429c837d4fb31d59601ecbe2ef) 4.2.2 - [`88d15b3`](https://github.com/TehShrike/deepmerge/commit/88d15b375f308e7ddc12f6e5d37028d69852584c) Changelog for 4.2.2 - [`a34dd4d`](https://github.com/TehShrike/deepmerge/commit/a34dd4d25bf5e250653540a2022bc832c7b00a19) Only call `isMergeableObject` if there are two values that could be merged - [`0a890fc`](https://github.com/TehShrike/deepmerge/commit/0a890fc9723bb07f1b72ed17360e11bf4bbd0b71) 4.2.1 - [`7b85812`](https://github.com/TehShrike/deepmerge/commit/7b858124ea9007bbfd3f42040b1a87bfb6ea92a2) Allow falsey values to be merged ([#172](https://github-redirect.dependabot.com/TehShrike/deepmerge/issues/172)) - [`3c39fb3`](https://github.com/TehShrike/deepmerge/commit/3c39fb376158fa3cfc75250cfc4414064a90f582) Allow falsey values to be merged - [`5063a96`](https://github.com/TehShrike/deepmerge/commit/5063a964e5dfa6cf8d23fd5fb446b60d6c735742) 4.2.0 - [`f951239`](https://github.com/TehShrike/deepmerge/commit/f9512395164f784b56b081c4988c895896579a84) Changelog for 4.2.0 - [`2b093b7`](https://github.com/TehShrike/deepmerge/commit/2b093b772408ce8a66c6c6b3002e1883f582bfcc) Copy own __proto__ safely ([#164](https://github-redirect.dependabot.com/TehShrike/deepmerge/issues/164)) - [`7fd58e8`](https://github.com/TehShrike/deepmerge/commit/7fd58e8a04f16f9367e22264428afba722228137) Changelog for 4.1.2 - Additional commits viewable in [compare view](https://github.com/TehShrike/deepmerge/compare/v3.2.0...v4.2.2)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)

codecov[bot] commented 5 years ago

Codecov Report

Merging #138 into master will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #138   +/-   ##
=======================================
  Coverage   99.84%   99.84%           
=======================================
  Files          87       87           
  Lines         644      644           
  Branches       90       90           
=======================================
  Hits          643      643           
  Misses          1        1

Continue to review full report at Codecov.

Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update 450464c...5dd5bd3. Read the comment docs.

dependabot-preview[bot] commented 4 years ago

Looks like deepmerge is no longer updatable, so this is no longer needed.

BlueBaseJS / plugin-material-ui

build(deps): bump deepmerge from 3.2.0 to 4.2.2 #138

Codecov Report