Open dependabot[bot] opened 3 months ago
Files with Coverage Reduction | New Missed Lines | % | ||
---|---|---|---|---|
lib/text-operation.js | 1 | 93.06% | ||
<!-- | Total: | 1 | --> |
Totals | |
---|---|
Change from base Build 835215972: | -0.08% |
Covered Lines: | 2309 |
Relevant Lines: | 3377 |
Files with Coverage Reduction | New Missed Lines | % | ||
---|---|---|---|---|
lib/text-operation.js | 1 | 93.06% | ||
<!-- | Total: | 1 | --> |
Totals | |
---|---|
Change from base Build 835215972: | -0.04% |
Covered Lines: | 2310 |
Relevant Lines: | 3377 |
Bumps ws to 7.5.10 and updates ancestor dependency karma. These dependencies need to be updated together.
Updates
ws
from 7.2.3 to 7.5.10Release notes
Sourced from ws's releases.
... (truncated)
Commits
d962d70
[dist] 7.5.1022c2876
[security] Fix crash when the Upgrade header cannot be read (#2231)8a78f87
[dist] 7.5.90435e6e
[security] Fix same host check for ws+unix: redirects4271f07
[dist] 7.5.8dc1781b
[security] Drop sensitive headers when following insecure redirects2758ed3
[fix] Abort the handshake if the Upgrade header is invalida370613
[dist] 7.5.71f72e2e
[security] Drop sensitive headers when following redirects (#2013)8ecd890
[dist] 7.5.6Updates
karma
from 4.4.1 to 6.4.3Release notes
Sourced from karma's releases.
... (truncated)
Changelog
Sourced from karma's changelog.
... (truncated)
Commits
d8cf806
chore(release): 6.4.3 [skip ci]d7f2d69
fix: add build commits for patch release85a2eeb
build(deps-dev): bump decode-uri-component from 0.2.0 to 0.2.20bffce2
build(deps): updated socket.io version to fix security issues with socket.io-...86667ab
build(deps): bump follow-redirects from 1.11.0 to 1.15.4450fdfd
docs: Add deprecation notice to Karma README9de3c00
chore(release): 6.4.2 [skip ci]c6a4271
fix: few typos50f9635
docs: update codeclimate badge in readme.md0013121
chore(release): 6.4.1 [skip ci]Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show