Open dependabot[bot] opened 2 weeks ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/mongoist@3.0.2 | Transitive: environment, eval, filesystem, network, shell | +88 |
12.4 MB | ghmeier |
🚮 Removed packages: npm/mongoist@2.7.0, npm/piexifjs@1.0.4, npm/pixelmatch@5.3.0, npm/pngjs@6.0.0, npm/prettier@2.8.4, npm/pretty-quick@3.1.3, npm/proxyquire@2.1.3, npm/rate-limit-redis@1.7.0, npm/redis@3.1.2, npm/session-file-store@1.5.0, npm/sharp@0.32.6, npm/sinon@14.0.2
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 82.89%. Comparing base (
879342e
) to head (7710de0
).
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Bumps mongoist from 2.7.0 to 3.0.2.
Release notes
Sourced from mongoist's releases.
Changelog
Sourced from mongoist's changelog.
Commits
7c7513e
chore(release): 3.0.2 [skip ci]197e590
fix: database connect race condition (#106)3e700b6
chore(release): 3.0.1 [skip ci]851f22a
fix: test for mongo 3.6.2 and 4.0 (#104)3f57ccf
chore(release): 3.0.0 [skip ci]e07e653
chore(deps)!: update mongodb to 4.8.0 (#101)ca3c10c
Merge pull request #94 from mongoist/dependabot/npm_and_yarn/json5-2.2.3b32f896
chore(deps): bump json5 from 2.1.1 to 2.2.3Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show