Closed renovate[bot] closed 11 months ago
Latest commit: 4fd2762b9827a543ac770d60a87238619f3524ec
Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.
Click here to learn what changesets are, and how to add one.
Click here if you're a maintainer who wants to add a changeset to this PR
This pull request is automatically built and testable in CodeSandbox.
To see build info of the built libraries, click here or the icon next to each commit SHA.
Latest deployment of this branch, based on commit 4fd2762b9827a543ac770d60a87238619f3524ec:
Sandbox | Source |
---|---|
apollo-server-integration-aws-lambda | Configuration |
This PR contains the following updates:
4.9.2
->4.9.3
4.9.2
->4.9.3
7.1.1
->7.2.0
3.0.2
->3.0.3
Release Notes
apollographql/apollo-server (@apollo/server)
### [`v4.9.3`](https://togithub.com/apollographql/apollo-server/blob/HEAD/packages/server/CHANGELOG.md#493) [Compare Source](https://togithub.com/apollographql/apollo-server/compare/@apollo/server@4.9.2...@apollo/server@4.9.3) ##### Patch Changes - [`a1c725eaf`](https://togithub.com/apollographql/apollo-server/commit/a1c725eaf53c901e32a15057211bcb3eb6a6109b) Thanks [@trevor-scheer](https://togithub.com/trevor-scheer)! - Ensure API keys are valid header values on startup Apollo Server previously performed no sanitization or validation of API keys on startup. In the case that an API key was provided which contained characters that are invalid as header values, Apollo Server could inadvertently log the API key in cleartext. This only affected users who: - Provide an API key with characters that are invalid as header values - Use either schema or usage reporting - Use the default fetcher provided by Apollo Server or configure their own `node-fetch` fetcher Apollo Server now trims whitespace from API keys and validates that they are valid header values. If an invalid API key is provided, Apollo Server will throw an error on startup. For more details, see the security advisory: https://github.com/apollographql/apollo-server/security/advisories/GHSA-j5g3-5c8r-7qfxapollographql/apollo-server (@apollo/server-integration-testsuite)
### [`v4.9.3`](https://togithub.com/apollographql/apollo-server/blob/HEAD/packages/integration-testsuite/CHANGELOG.md#493) [Compare Source](https://togithub.com/apollographql/apollo-server/compare/@apollo/server-integration-testsuite@4.9.2...@apollo/server-integration-testsuite@4.9.3) ##### Patch Changes - Updated dependencies \[[`a1c725eaf`](https://togithub.com/apollographql/apollo-server/commit/a1c725eaf53c901e32a15057211bcb3eb6a6109b)]: - [@apollo/server](https://togithub.com/apollo/server)[@4](https://togithub.com/4).9.3streetsidesoftware/cspell (cspell)
### [`v7.2.0`](https://togithub.com/streetsidesoftware/cspell/blob/HEAD/CHANGELOG.md#720-2023-08-29) [Compare Source](https://togithub.com/streetsidesoftware/cspell/compare/v7.1.1...v7.2.0) **Note:** Version bump only for package cspell-monorepoprettier/prettier (prettier)
### [`v3.0.3`](https://togithub.com/prettier/prettier/blob/HEAD/CHANGELOG.md#303) [Compare Source](https://togithub.com/prettier/prettier/compare/3.0.2...3.0.3) [diff](https://togithub.com/prettier/prettier/compare/3.0.2...3.0.3) ##### Add `preferUnplugged: true` to `package.json` ([#15169](https://togithub.com/prettier/prettier/pull/15169) by [@fisker](https://togithub.com/fisker) and [@so1ve](https://togithub.com/so1ve)) Prettier v3 uses dynamic imports, user [will need to unplug Prettier](https://togithub.com/yarnpkg/berry/pull/5411#issuecomment-1523502224) when Yarn's PnP mode is enabled, add [`preferUnplugged: true`](https://yarnpkg.com/configuration/manifest#preferUnplugged) to `package.json`, so Yarn will install Prettier as unplug by default. ##### Support shared config that forbids `require()` ([#15233](https://togithub.com/prettier/prettier/pull/15233) by [@fisker](https://togithub.com/fisker)) If an external shared config package is used, and the package `exports` don't have `require` or `default` export. In Prettier 3.0.2 Prettier fails when attempt to `require()` the package, and throws an error. ```text Error [ERR_PACKAGE_PATH_NOT_EXPORTED]: No "exports" main defined inConfiguration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.