search

badges / shields

Concise, consistent, and legible badges in SVG and raster format
https://shields.io
Creative Commons Zero v1.0 Universal
23.87k stars 5.51k forks source link

chore(deps): bump qs from 6.13.0 to 6.13.1; run [wordpress] #10698

Closed dependabot[bot] closed 6 hours ago

dependabot[bot] commented 10 hours ago

Bumps qs from 6.13.0 to 6.13.1.

Changelog

Sourced from qs's changelog.

6.13.1

  • [Fix] stringify: avoid a crash when a filter key is null
  • [Fix] utils.merge: functions should not be stringified into keys
  • [Fix] parse: avoid a crash with interpretNumericEntities: true, comma: true, and iso charset
  • [Fix] stringify: ensure a non-string filter does not crash
  • [Refactor] use __proto__ syntax instead of Object.create for null objects
  • [Refactor] misc cleanup
  • [Tests] utils.merge: add some coverage
  • [Tests] fix a test case
  • [actions] split out node 10-20, and 20+
  • [Dev Deps] update es-value-fixtures, mock-property, object-inspect, tape
Commits
  • f1ee037 v6.13.1
  • afd20d0 [Dev Deps] update object-inspect
  • d185cee [actions] split out node 10-20, and 20+
  • 4cf5567 [Dev Deps] update es-value-fixtures, tape
  • 3c8a6f5 [Refactor] use __proto__ syntax instead of Object.create for null objects
  • 96f4d93 [Fix] stringify: avoid a crash when a filter key is null
  • aa1f0a8 [Fix] utils.merge: functions should not be stringified into keys
  • 2a548a9 [Tests] utils.merge: add some coverage
  • 3e750c1 [Refactor] misc cleanup
  • ca55d0f [Fix] parse: avoid a crash with interpretNumericEntities: true, comma: true...
  • Additional commits viewable in compare view


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
jNullj commented 7 hours ago

@dependabot rebase

socket-security[bot] commented 7 hours ago

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/eslint-plugin-sort-class-members@1.21.0 None 0 36.5 kB bryanrsmith

🚮 Removed packages: npm/@actions/core@1.11.1, npm/@actions/github@6.0.0

View full report↗︎

jNullj commented 7 hours ago

This is only used by WordPress services, see here: https://github.com/badges/shields/blob/e108e40930a7e468bea99fd12ffe79ddd83fef6e/services/wordpress/wordpress-base.js#L2C1-L2C20 We might want to start testing WordPress services when this updates.