chore(deps): bump @strapi/plugin-users-permissions from 4.10.6 to 4.24.2 in /apps/strapi

[dependabot[bot]]

Bumps @strapi/plugin-users-permissions from 4.10.6 to 4.24.2.

Release notes

Sourced from @​strapi/plugin-users-permissions's releases.

v4.24.2

:warning: Security Warning and Notice :warning:

Strapi was made aware of a vulnerably that were patched in this release, for now we are going to delay the detailed disclosure of the exact details on how to exploit it and how it was patched to give time for users to upgrade before we do public disclosure.

📚 Update and Migration Guides

• General update guide can be found here
• Migration guides can be found here 📚

Full Changelog: https://github.com/strapi/strapi/compare/v4.24.2...v4.24.1

v4.24.1

🔥 Bug fix

• [core:admin] fix(admin): if were in EE mode wait for the EE routes to be loaded before rendering (strapi/strapi#20238) @​joshuaellis
• [core:content-manager] fix(content-manager): bulk publish would only ever show first entry to be published (strapi/strapi#20234) @​Feranchz

📚 Update and Migration Guides

• General update guide can be found here
• Migration guides can be found here 📚

v4.24.0

🔥 Bug fix

• [core:admin] fix: ee not being extended because no default export (strapi/strapi#20171) @​alexandrebodin
• [core:content-manager] fix: content could be undefined (strapi/strapi#20180) @​alexandrebodin
• [core:database] fix(database): add prefix to avoid join column name conflicts (strapi/strapi#20027) @​innerdvations
• [core:upload] enhancement: use file path in place of streams to optimize sharp fragmentation & libvips caching (strapi/strapi#20080) @​alexandrebodin

⚙️ Chore

• [core:core] Make cors middleware compliant with the intended spec (strapi/strapi#20044) @​alexandrebodin
• [dependencies] Chore: Upgrade mysql2 from 3.6.0 to 3.9.4 (strapi/strapi#20123) @​derrickmehaffy

📚 Update and Migration Guides

• General update guide can be found here
• Migration guides can be found here 📚

v4.23.2

What's Changed

• fix: issue 20138 by @​alexandrebodin in strapi/strapi#20231

Full Changelog: https://github.com/strapi/strapi/compare/v4.23.1...v4.23.2

v4.23.1

📖 Documentation

• [docs] Add Local Search plugin to Contributor docs (strapi/strapi#20036) @​pwizla

... (truncated)

Commits

• 6751512 v4.24.2
• 9c79921 Merge pull request from GHSA-wrvh-rcmr-9qfc
• 1c8a790 Merge branch 'develop' into enhancement/up-custom-callback-validation
• ca6c7c8 release: 4.24.1 to develop (#20248)
• de77e23 fix(content-manager): bulk publish would only ever show first entry to be pub...
• a76a2ee Merge pull request #20196 from strapi/releases/4.24.0
• bfa5109 v4.24.0
• f7fb988 Merge pull request #20190 from strapi/chore/updateSecurityPolicy
• 515e540 Update SECURITY.md with changes related to Strapi 5 Beta
• 6ad256c Merge pull request #20180 from strapi/fix/issue-19660
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by marc-roig-strapi, a new releaser for @​strapi/plugin-users-permissions since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/SocialGouv/mda/network/alerts).

[sonarcloud[bot]]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

[socket-security[bot]]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@eslint-community/regexpp@4.10.1	None	0	432 kB	eslint-community-bot
npm/@nodelib/fs.stat@2.0.5	filesystem	0	11.8 kB	mrmlnc
npm/@types/json5@0.0.29	None	0	3 kB	types
npm/bytes@3.1.2	None	0	12.3 kB	dougwilson
npm/client-only@0.0.1	None	0	611 B	sebmarkbage
npm/convert-source-map@1.9.0	filesystem	0	11.4 kB	thlorenz
npm/damerau-levenshtein@1.0.8	None	0	11.8 kB	lazurski
npm/dequal@2.0.3	None	0	14.2 kB	lukeed
npm/domelementtype@2.3.0	None	0	11.4 kB	feedic
npm/emoji-regex@8.0.0	None	0	48.3 kB	mathias
npm/estraverse@5.3.0	None	0	37.1 kB	michaelficarra
npm/fast-deep-equal@3.1.3	None	0	13 kB	esp
npm/fast-json-stable-stringify@2.1.0	None	0	17 kB	esp
npm/flatted@3.3.1	None	0	40.3 kB	webreflection
npm/has-bigints@1.0.2	None	0	12.8 kB	ljharb
npm/has-symbols@1.0.3	None	0	20.6 kB	ljharb
npm/inherits@2.0.4	None	0	3.96 kB	isaacs
npm/is-callable@1.2.7	None	0	28.9 kB	ljharb
npm/is-extglob@2.1.1	None	0	6.22 kB	jonschlinkert
npm/is-path-inside@3.0.3	None	0	4.12 kB	sindresorhus
npm/js-tokens@4.0.0	None	0	15.1 kB	lydell
npm/merge2@1.4.1	None	0	8.9 kB	zensh
npm/minimist@1.2.8	None	0	54.5 kB	ljharb
npm/nanoid@3.3.7	None	0	24.4 kB	ai
npm/normalize-path@3.0.0	None	0	9.22 kB	jonschlinkert
npm/object-assign@4.1.1	None	0	5.49 kB	sindresorhus
npm/path-is-absolute@1.0.1	None	0	3.62 kB	sindresorhus
npm/postcss-value-parser@4.2.0	None	0	27.2 kB	evilebottnawi
npm/react-is@16.13.1	environment	0	24 kB	acdlite
npm/safe-buffer@5.1.2	None	0	31.7 kB	feross
npm/source-map@0.6.1	None	0	805 kB	tromey
npm/tapable@2.2.1	None	0	46.9 kB	sokra
npm/text-table@0.2.0	None	0	11 kB	substack
npm/util-deprecate@1.0.2	None	0	5.48 kB	tootallnate
npm/word-wrap@1.2.5	None	0	11.8 kB	jonschlinkert

🚮 Removed packages: npm/conventional-commits-filter@2.0.7, npm/deprecation@2.3.1, npm/escape-string-regexp@5.0.0, npm/glob@9.3.5, npm/globby@11.1.0, npm/hosted-git-info@6.1.1, npm/https-proxy-agent@5.0.1, npm/isarray@1.0.0, npm/kind-of@6.0.3, npm/lodash-es@4.17.21, npm/lru-cache@7.18.3, npm/minimatch@8.0.4, npm/minipass@4.2.5, npm/node-fetch@2.6.9, npm/once@1.4.0, npm/p-retry@4.6.2, npm/read-pkg-up@9.1.0, npm/semver@7.3.8, npm/url-join@4.0.1, npm/yargs@17.7.1

View full report↗︎