pvanbuijtene
commented
1 year ago Changed PR to use gulp-imagemin~7.1.0 which is still compatible with our gulp file.
Closed dependabot[bot] closed 1 year ago
pvanbuijtene
commented
1 year ago Changed PR to use gulp-imagemin~7.1.0 which is still compatible with our gulp file.
Bumps decompress to 4.2.1 and updates ancestor dependency gulp-imagemin. These dependencies need to be updated together.
Updates
decompressfrom 3.0.0 to 4.2.1Release notes
Sourced from decompress's releases.
Commits
84a8c104.2.1fafff47Meta tweaks967146ePrevent directory traversal (#73)74a462aMeta tweaks7ddadd9Add note aboutfilteroptionb40549f4.2.0c9d7e71Switch tomake-dirfef43354.1.0af0bfccUse graceful-fs to prevent EMFILE issues (#45)90d0a84Fix linting errorMaintainer changes
This version was pushed to npm by sindresorhus, a new releaser for decompress since your current version.
Updates
gulp-imageminfrom 4.1.0 to 8.0.0Release notes
Sourced from gulp-imagemin's releases.
Commits
2f7ecc98.0.01b4baf6Require Node.js 12.20 and move to ESMed39463Move to GitHub Actions (#351)8b40da0Update readme lossless note (#346)1cbb7c57.1.067cceb3Updateimagemin-gifsicleoptional dependency97432ea7.0.0aacca91Require Node.js 10279a91bReplace jpegtran with mozjpeg (#336)f4a22556.2.0Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/EventStore/EventStore.UI/network/alerts).