Bump the graphql group across 1 directory with 5 updates

[dependabot[bot]]

Bumps the graphql group with 5 updates in the /backend directory:

Package	From	To
graphql	14.6.0	16.8.2
graphql-middleware	4.0.2	6.1.35
graphql-redis-subscriptions	2.2.1	2.6.1
graphql-shield	7.2.2	7.6.5
graphql-tag	2.10.3	2.12.6

Updates graphql from 14.6.0 to 16.8.2

Release notes

Sourced from graphql's releases.

v16.8.2 (2024-06-12)

Bug Fix 🐞* #4022 fix: remove globalThis check and align with what bundlers can accept (@​JoviDeCroock)

Internal 🏠* #4104 Fix publish scripts (@​benjie)

Committers: 2

• Benjie(@​benjie)
• Jovi De Croock(@​JoviDeCroock)

v16.8.1 (2023-09-19)

Bug Fix 🐞

• #3967 OverlappingFieldsCanBeMergedRule: Fix performance degradation (@​AaronMoat)

Committers: 1

• Aaron Moat(@​AaronMoat)

v16.8.0 (2023-08-14)

New Feature 🚀

• #3950 Support fourfold nested lists (@​gschulze)

Committers: 1

• Gunnar Schulze(@​gschulze)

v16.7.1 (2023-06-22)

:loudspeaker: Big shout out to @​phryneas, who managed to reproduce this issue and come up with this fix.

Bug Fix 🐞

• #3923 instanceOf: workaround bundler issue with process.env (@​IvanGoncharov)

Committers: 1

• Ivan Goncharov(@​IvanGoncharov)

v16.7.0 (2023-06-21)

New Feature 🚀

• #3887 check "globalThis.process" before accessing it (@​kettanaito)

Bug Fix 🐞

• #3707 Fix crash in node when mixing sync/async resolvers (backport of #3706) (@​chrskrchr)
• #3838 Fix/invalid error propagation custom scalars (backport for 16.x.x) (@​stenreijers)

Committers: 3

• Artem Zakharchenko(@​kettanaito)
• Chris Karcher(@​chrskrchr)
• Sten Reijers(@​stenreijers)

... (truncated)

Commits

• 08779a0 16.8.2
• c82609e Fix publish scripts (#4104)
• 0d12b06 fix: remove globalThis check and align with what bundlers can accept (#4022)
• 8a95335 16.8.1
• 8f4c64e OverlappingFieldsCanBeMergedRule: Fix performance degradation (#3967)
• e4f759d 16.8.0
• bec1b49 Support fourfold nested lists (#3950)
• bf6a9f0 16.7.1
• a08aaee instanceOf: workaround bundler issue with process.env (#3923)
• 1519fda 16.7.0
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by benjie, a new releaser for graphql since your current version.

Updates graphql-middleware from 4.0.2 to 6.1.35

Release notes

Sourced from graphql-middleware's releases.

v6.1.35

6.1.35 (2023-07-07)

Performance Improvements

• trigger release (ed63d0d)

v6.1.34

6.1.34 (2023-05-10)

Bug Fixes

• could not find declaration file (fixes #558) (#564) (ba3d159)

v6.1.33

6.1.33 (2022-10-07)

Bug Fixes

• deps: graphql v16 (#556) (1c33515)

v6.1.32

6.1.32 (2022-07-27)

Bug Fixes

• deps: update graphql-tools monorepo (#548) (832b510)

v6.1.31

6.1.31 (2022-06-27)

Bug Fixes

• deps: update graphql-tools monorepo (#546) (fe05332)

v6.1.30

6.1.30 (2022-06-24)

Bug Fixes

• deps: update graphql-tools monorepo (#545) (c98646a)

v6.1.29

6.1.29 (2022-06-07)

... (truncated)

Commits

• ed63d0d perf: trigger release
• e9eac82 Remove uses of reduce/spread which causes significant latency to large middle...
• 63d6879 fix pnpm version for github actions (#566)
• ba3d159 fix: could not find declaration file (fixes #558) (#564)
• 1c33515 fix(deps): graphql v16 (#556)
• 832b510 fix(deps): update graphql-tools monorepo (#548)
• fe05332 fix(deps): update graphql-tools monorepo (#546)
• c98646a fix(deps): update graphql-tools monorepo (#545)
• a63f633 chore(deps): update dependency typescript to ^4.7.4 (#544)
• 5c06a4a chore(deps): update dependency prettier to ^2.7.1 (#543)
• Additional commits viewable in compare view

Updates graphql-redis-subscriptions from 2.2.1 to 2.6.1

Release notes

Sourced from graphql-redis-subscriptions's releases.

v2.6.1

What's Changed

• Fix: buffer messages from external resource by @​nicomoya123 in davidyaha/graphql-redis-subscriptions#582
• Fix CI by using pinned version of redis-cluster by @​anajavi in davidyaha/graphql-redis-subscriptions#609
• chore: export type definitions for options by @​yharaskrik in davidyaha/graphql-redis-subscriptions#607
• feat: use @​types instead of inferring from ioredis directly by @​bneigher in davidyaha/graphql-redis-subscriptions#606
• Fix concurrent subscribe race condition by @​mlaflamm in davidyaha/graphql-redis-subscriptions#599
• chore(deps): bump json5 from 2.1.3 to 2.2.3 by @​dependabot in davidyaha/graphql-redis-subscriptions#573
• chore(deps-dev): bump graphql from 15.7.2 to 16.6.0 by @​dependabot in davidyaha/graphql-redis-subscriptions#561
• chore(deps-dev): bump @​istanbuljs/nyc-config-typescript from 1.0.1 to 1.0.2 by @​dependabot in davidyaha/graphql-redis-subscriptions#563
• chore(deps-dev): bump @​babel/traverse from 7.11.0 to 7.24.5 by @​dependabot in davidyaha/graphql-redis-subscriptions#610

New Contributors

• @​nicomoya123 made their first contribution in davidyaha/graphql-redis-subscriptions#582
• @​yharaskrik made their first contribution in davidyaha/graphql-redis-subscriptions#607
• @​bneigher made their first contribution in davidyaha/graphql-redis-subscriptions#606
• @​mlaflamm made their first contribution in davidyaha/graphql-redis-subscriptions#599

Full Changelog: https://github.com/davidyaha/graphql-redis-subscriptions/compare/v2.6.0...v2.6.1

Update to ioredis 5.x, remove iterall depedency and potential performance increase

Thanks to all contributors!

• @​tjmehta
• @​thecodeboss
• @​yovanoc
• @​anajavi
• @​mauricedoepke

Added support for message buffer

Thanks to @ skabbes for #360 - Added support for message buffer. Please refer to the README to see how to use that with either node-redis or ioredis.

Fixed compiled code in package bundle

IMPORTANT: Do not use v2.3.0 if you want the updated dependencies and Cluster support as the dist folder was mistakenly left out of the version update. Please use this - v2.3.1

Added redis cluster support

IMPORTANT: The published version on NPM was pulled as it does not have the updated features. please use v2.3.1

• Updated dependencies
• Migrated from tslint to eslint
• Migrated from old Istanbul to Nyc for coverage

Thanks to @​arsonik!

Commits

• 62cd88b chore(ci): add permissions to fix publish action
• 20577f1 chore(ci): try to fix publish action
• 627ced2 2.6.1
• d343053 chore(ci): added publish github actions
• 4f4fd77 fix(tests): remove unsubscribe altogether
• e10f293 fix(tests): fix tests again
• 1e84249 fix(tests): cleanup post fix
• af45095 fix(tests): try to fix integration tests
• 42e8f40 Merge pull request #610 from davidyaha/dependabot/npm_and_yarn/babel/traverse...
• a4e1827 Merge pull request #563 from davidyaha/dependabot/npm_and_yarn/istanbuljs/nyc...
• Additional commits viewable in compare view

Updates graphql-shield from 7.2.2 to 7.6.5

Release notes

Sourced from graphql-shield's releases.

graphql-shield@7.6.1

Patch Changes

• 0da0a61: fix corrupted release

graphql-shield@7.6.0

Minor Changes

• 32b91fe: Bump Package Dependencies

Commits

• fd138f9 Upcoming Release Changes (refs/heads/master) (#1495)
• 00d3c47 ESM build fix (#1493)
• abff452 Fix documentation link on readme file (#1492)
• bddd7b2 Upcoming Release Changes (refs/heads/master) (#1475)
• ddf293e fix(deps): add missing tslib dependency (#1470)
• 19fe3d8 Implement Giscus (#1472)
• a798efa chore(ci): remove algolia integrity check, stop trying to commit lockfile on ...
• 126489e fix(ci): algolia workflows (#1468)
• ca7d4be Upcoming Release Changes (refs/heads/master) (#1462)
• 249e0e1 chore(website): algolia workflows (#1466)
• Additional commits viewable in compare view

Updates graphql-tag from 2.10.3 to 2.12.6

Release notes

Sourced from graphql-tag's releases.

2.12.6

Highlighted Changes

• Upgrade to GraphQL 16 by @​brainkim in apollographql/graphql-tag#530

All Changes

• Include src for source maps by @​maclockard in apollographql/graphql-tag#403
• Bump lodash from 4.17.20 to 4.17.21 by @​dependabot in apollographql/graphql-tag#410
• Bump rollup from 2.42.2 to 2.52.3 by @​dependabot in apollographql/graphql-tag#442
• Bump typescript from 4.2.3 to 4.3.4 by @​dependabot in apollographql/graphql-tag#438
• Bump hosted-git-info from 2.8.8 to 2.8.9 by @​dependabot in apollographql/graphql-tag#411
• Bump glob-parent from 5.1.1 to 5.1.2 by @​dependabot in apollographql/graphql-tag#432
• Bump @​types/chai from 4.2.15 to 4.2.19 by @​dependabot in apollographql/graphql-tag#441
• Mention PR #381 in CHANGELOG.md. by @​olleolleolle in apollographql/graphql-tag#386
• Bump graphql from 15.5.0 to 15.5.1 by @​dependabot in apollographql/graphql-tag#443
• Bump mocha from 8.3.2 to 9.0.1 by @​dependabot in apollographql/graphql-tag#444
• Throw as Error to prevent certain issues by @​boboldehampsink in apollographql/graphql-tag#446
• Bump path-parse from 1.0.6 to 1.0.7 by @​dependabot in apollographql/graphql-tag#485
• Bump typescript from 4.3.4 to 4.4.3 by @​dependabot in apollographql/graphql-tag#502
• Update README.md by @​inokawa in apollographql/graphql-tag#506
• Bump mocha from 9.0.1 to 9.2.2 by @​dependabot in apollographql/graphql-tag#584
• Loader: allow a space between # and import word in gql files by @​kidroca in apollographql/graphql-tag#458
• Bump @​types/node from 14.14.35 to 18.0.6 by @​dependabot in apollographql/graphql-tag#628
• Bump rollup from 2.52.3 to 2.77.0 by @​dependabot in apollographql/graphql-tag#627
• Bump tslib from 2.1.0 to 2.4.0 by @​dependabot in apollographql/graphql-tag#593
• Bump graphql from 16.0.1 to 16.5.0 by @​dependabot in apollographql/graphql-tag#629
• Bump typescript from 4.4.4 to 4.7.4 by @​dependabot in apollographql/graphql-tag#630
• Bump minimist from 1.2.5 to 1.2.6 by @​dependabot in apollographql/graphql-tag#588
• Bump source-map-support from 0.5.19 to 0.5.21 by @​dependabot in apollographql/graphql-tag#534
• Update README.md by @​mitchiemt11 in apollographql/graphql-tag#524

New Contributors

• @​maclockard made their first contribution in apollographql/graphql-tag#403
• @​olleolleolle made their first contribution in apollographql/graphql-tag#386
• @​boboldehampsink made their first contribution in apollographql/graphql-tag#446
• @​inokawa made their first contribution in apollographql/graphql-tag#506
• @​brainkim made their first contribution in apollographql/graphql-tag#530
• @​kidroca made their first contribution in apollographql/graphql-tag#458
• @​mitchiemt11 made their first contribution in apollographql/graphql-tag#524

Full Changelog: https://github.com/apollographql/graphql-tag/compare/v2.12.4...v2.12.6

2.12.4

• Allow fragments to be imported by name when using the webpack loader. @​dobesv in #257

2.11.0

• package.json sideEffects changes to clearly identify that graphql-tag doesn't have side effects.

... (truncated)

Changelog

Sourced from graphql-tag's changelog.

v2.12.6

• Update peer dependencies to allow graphql ^16.0.0. @​brainkim in #530

v2.12.5

• Also publish src/ directory to npm, enabling source maps. @​maclockard in #403

v2.12.4 (2021-04-29)

• Allow fragments to be imported by name when using the webpack loader. @​dobesv in #257

v2.12.3

• Update tslib dependency to version 2.1.0. @​benjamn in #381

v2.12.2

• Avoid using Object.assign to attach extra properties to gql. @​benjamn in #380

v2.12.1

• To accommodate older versions of TypeScript, usage of the import type ... syntax (introduced by #325) has been removed, fixing issue #345. @​benjamn in #352

v2.12.0

• The graphql-tag repository has been converted to TypeScript, adding type safety and enabling both ECMAScript and CommonJS module exports. While these changes are intended to be as backwards-compatible as possible, we decided to bump the minor version to reflect the significant refactoring. @​PowerKiKi and @​benjamn in #325

v2.11.0 (2020-07-28)

• package.json sideEffects changes to clearly identify that graphql-tag doesn't have side effects. @​hwillson in #313

v2.10.4 (2020-07-08)

• Bump dev/peer deps to accommodate graphql 15. @​adriencohen in #299

Commits

• 9f1cffe Merge pull request #524 from mitchiemt11/main
• 76dccc3 Merge pull request #534 from apollographql/dependabot/npm_and_yarn/source-map...
• b87c926 Merge pull request #588 from apollographql/dependabot/npm_and_yarn/minimist-1...
• 1e902e4 Merge pull request #630 from apollographql/dependabot/npm_and_yarn/typescript...
• fb54ea9 Merge pull request #629 from apollographql/dependabot/npm_and_yarn/graphql-16...
• 2a4bffe Bump typescript from 4.4.4 to 4.7.4
• 08d7b60 Merge pull request #593 from apollographql/dependabot/npm_and_yarn/tslib-2.4.0
• 4ad4023 Bump graphql from 16.0.1 to 16.5.0
• 22c0d7c Merge pull request #627 from apollographql/dependabot/npm_and_yarn/rollup-2.77.0
• 94870f6 Merge pull request #628 from apollographql/dependabot/npm_and_yarn/types/node...
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml