dependabot[bot]
commented
1 year ago Looks like these dependencies are up-to-date now, so this is no longer needed.
Closed dependabot[bot] closed 1 year ago
dependabot[bot]
commented
1 year ago Looks like these dependencies are up-to-date now, so this is no longer needed.
Bumps lodash to 4.17.21 and updates ancestor dependency @floogulinc/cypress-mongo-seeder. These dependencies need to be updated together.
Updates
lodashfrom 4.17.20 to 4.17.21Commits
f299b52Bump to v4.17.21c4847ebImprove performance oftoNumber,trimandtrimEndon large input strings3469357Prevent command injection through_.template'svariableoptionUpdates
@floogulinc/cypress-mongo-seederfrom 1.1.0 to 1.1.1Release notes
Sourced from
@floogulinc/cypress-mongo-seeder's releases.Changelog
Sourced from
@floogulinc/cypress-mongo-seeder's changelog.Commits
81aee76v1.1.1187bf08Remove packagw-lock.jsond91cbc2Merge pull request #1 from helloworld12321/bump-lodash-to-4.17.213def1b7Update lodash to make dependabot alerts happyDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/UMM-CSci-3601/3601-lab4-mongo/network/alerts).