Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/SwissBitcoinPay/app/network/alerts).
Bumps the npm_and_yarn group with 5 updates in the / directory:
8.4.21
8.4.38
1.6.6
1.6.19
1.15.5
1.15.6
1.1.8
1.1.9
5.3.3
5.3.4
Updates
postcss
from 8.4.21 to 8.4.38Release notes
Sourced from postcss's releases.
... (truncated)
Changelog
Sourced from postcss's changelog.
... (truncated)
Commits
a69d45e
Release 8.4.38 version64e35d9
Update dependenciesc1ad8fb
Merge pull request #1932 from romainmenke/fix-warning-end-index--inventive-nu...b45e7e9
fix endIndex1bea246
failing test: for endIndex 0 in rangeBy0fd1d86
Add changelog auto release on Github49c906e
Release 8.4.37 versionb5bd92c
Fix another broken prev source map issue2882039
Update dependenciese5ad939
Release 8.4.36 versionUpdates
@dotlottie/react-player
from 1.6.6 to 1.6.19Release notes
Sourced from
@dotlottie/react-player
's releases.... (truncated)
Commits
4ced077
chore: 🤖 update versions (#324)75a9885
fix: 🐛 playback ends on lastFrame (#323)2e3cfcb
chore: 🤖 update versions (#319)0587998
fix: 🐛 box-sizing css rule scope (#318)87708de
chore: 🤖 update versions (#316)9c78f2a
chore: 🤖 fix homepage link in package.json (#315)04bfbda
chore: 🤖 update versions (#312)163dcc2
refactor: 💡 theming from lss to lottie slots (#311)0687c9b
chore: 🤖 update versions (#305)82fa43d
chore: 🤖 add missing changeset (#303)Updates
follow-redirects
from 1.15.5 to 1.15.6Commits
35a517c
Release version 1.15.6 of the npm package.c4f847f
Drop Proxy-Authorization across hosts.8526b4a
Use GitHub for disclosure.Updates
ip
from 1.1.8 to 1.1.9Commits
1ecbf2f
1.1.96a3ada9
lib: fixed CVE-2023-42282 and added unit testUpdates
sharp
from 0.32.5 to 0.32.6Changelog
Sourced from sharp's changelog.
Commits
eefaa99
Release v0.32.6dbce6fa
Upgrade to libvips v8.14.5af0fcb3
Docs: changelog for #3799c6f54e5
Bump devDeps846563e
TypeScript: add definitions for block and unblock (#3799)9c217ab
Ensure withMetadata can add RGB16 profiles #3773e7381e5
Alternative fix for 4340d60, uses existing StaySequential4340d60
Ensure composite tile images fully decoded #37677f64d46
Docs: add missing returns property to raw67e927b
Docs: ensure all functions include method signature #3777Updates
webpack-dev-middleware
from 5.3.3 to 5.3.4Release notes
Sourced from webpack-dev-middleware's releases.
Changelog
Sourced from webpack-dev-middleware's changelog.
Commits
86071ea
chore(release): 5.3.4189c4ac
fix(security): do not allow to read files above (#1779)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show