CartoDB / cartodb

Location Intelligence & Data Visualization tool
http://carto.com
BSD 3-Clause "New" or "Revised" License
2.76k stars 651 forks source link

Bump moment-timezone from 0.5.23 to 0.5.35 #16436

Open dependabot[bot] opened 2 years ago

dependabot[bot] commented 2 years ago

Bumps moment-timezone from 0.5.23 to 0.5.35.

Release notes

Sourced from moment-timezone's releases.

Release 0.5.34

  • Updated data to IANA TZDB 2021e

Release 0.5.33

  • Updated data to IANA TZDB 2021a

Release 0.5.32

  • Updated data to IANA TZDB 2020d

Release 0.5.31

Fixed Travis builds for Node.js 4 and 6

Release 0.5.28

0.5.29 2020-02-21

Merged pull request #410 from @​adgrace:

  • Added a method moment.tz.zonesForCountry(country_code) which returns all timezones for the country
  • Added a method moment.tz(timezone_id).countries() to get countries for some time zone
  • Added a method moment.tz.countries() to get all country codes
  • And as you know moment.tz.names() already exists

Release 0.5.27

0.5.27 2019-10-14

  • Updated data to IANA TZDB `2019c

Release 0.5.26

  • Updated data to IANA TZDB 2019b
  • Fix: stabilize Array.sort #762

Release 0.5.25

  • Fix moment.tz.dataVersion to return 2019a #742
  • Update path in bower.json

Release 0.5.24

  • Updated data to IANA TZDB 2019a #737
  • Start shipping both a 1970-1930 file and a rolling 10-year file #614 #697
  • Fixed bug where _z time zone name was not cleared with .local() or .utcOffset(offset) #738
Changelog

Sourced from moment-timezone's changelog.

0.5.35 2022-08-23

Thanks to the OpenSSF Alpha-Omega project for reporting these!

0.5.34 2020-11-10

  • Updated data to IANA TZDB 2021e

0.5.33 2020-11-15

  • Updated data to IANA TZDB 2021a

0.5.32 2020-11-14

  • Updated data to IANA TZDB 2020d

0.5.31 2020-05-16

  • Fixed Travis builds for Node.js 4 and 6

0.5.30 2020-05-16

  • Updated data to IANA TZDB 2020a
  • Fixed typescript definitions

NOTE: You might need to un-install @​types/moment-timezone. Check moment/moment-timezone#858 for more info

0.5.29 2020-05-16

0.5.28 2020-02-21

Merged pull request #410 from @​adgrace:

  • Added a method moment.tz.zonesForCountry(country_code) which returns all timezones for the country
  • Added a method moment.tz(timezone_id).countries() to get countries for some time zone
  • Added a method moment.tz.countries() to get all country codes
  • And as you know moment.tz.zones() already exists

0.5.27 2019-10-14

  • Updated data to IANA TZDB 2019c

0.5.26 2019-06-06

  • Updated data to IANA TZDB 2019b
  • Fix: stabilize Array.sort #762

0.5.25 2019-04-17

  • Fix moment.tz.dataVersion to return 2019a #742
  • Update path in bower.json

0.5.24 2019-04-17

  • Updated data to IANA TZDB 2019a #737

... (truncated)

Commits
  • b8fb1ba Build moment-timezone 0.5.35
  • f1b5e5a Add changelog for 0.5.35
  • 8b0eb0c Bump version to 0.5.35
  • 7915ac5 Bugfix: Prevent cleartext transmission of tz data during build
  • ce955a3 Bugfix: Fix command injection vulnerability in grunt tzdata pipeline
  • 9430b4c Merge remote-tracking branch 'origin/master' into develop
  • feaf900 Updated contributing.md + added 2021e files
  • 704cfac updated contributing.md
  • 877c863 Updated contributing.md + added 2021e files
  • 5a3015c updated contributing.md
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/CartoDB/cartodb/network/alerts).