bcgov / child-support-lookup-tool

Apache License 2.0
0 stars 0 forks source link

Bump debug, testem, compression, express and serve-index #20

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps debug to 2.6.9 and updates ancestor dependencies debug, testem, compression, express and serve-index. These dependencies need to be updated together.

Updates debug from 2.6.8 to 2.6.9

Release notes

Sourced from debug's releases.

2.6.9

Patches

  • Remove ReDoS regexp in %o formatter: #504

Credits

Huge thanks to @​zhuangya for their help!

Changelog

Sourced from debug's changelog.

2.6.9 / 2017-09-22

  • remove ReDoS regexp in %o formatter (#504)
Commits


Updates testem from 1.18.3 to 1.18.5

Release notes

Sourced from testem's releases.

v1.18.4

Fixed

#1167 Fix Mocha's duplicate failure logs for real

Commits
  • 69ae58a release v1.18.5
  • 5feacdf [BACKPORT] QUICKFIX: Ignore `kevent: Invalid Argument’ warnings
  • 523b331 1.18.4
  • 6d46372 Merge pull request #1167 from getsnoopy/getsnoopy/mocha-duplicate-failure-log
  • 55c78f1 Merge pull request #1168 from testem/greenkeeper/tmp-0.0.33
  • ffa3f8c chore(package): update tmp to version 0.0.33
  • 4345b38 Fix Mocha's duplicate error messages on failure
  • See full diff in compare view
Maintainer changes

This version was pushed to npm by stefanpenner, a new releaser for testem since your current version.


Updates compression from 1.7.0 to 1.7.4

Release notes

Sourced from compression's releases.

1.7.4

  • deps: compressible@~2.0.16
    • Mark text/less as compressible
    • deps: mime-db@'>= 1.38.0 < 2'
  • deps: on-headers@~1.0.2
    • Fix res.writeHead patch missing return value
  • perf: prevent unnecessary buffer copy

1.7.3

  • deps: accepts@~1.3.5
    • deps: mime-types@~2.1.18
  • deps: compressible@~2.0.14
    • Mark all XML-derived types as compressible
    • deps: mime-db@'>= 1.34.0 < 2'
  • deps: safe-buffer@5.1.2

1.7.2

  • deps: compressible@~2.0.13
    • deps: mime-db@'>= 1.33.0 < 2'

1.7.1

  • deps: accepts@~1.3.4
    • deps: mime-types@~2.1.16
  • deps: bytes@3.0.0
  • deps: compressible@~2.0.11
    • deps: mime-db@'>= 1.29.0 < 2'
  • deps: debug@2.6.9
  • deps: vary@~1.1.2
    • perf: improve header token parsing speed
Changelog

Sourced from compression's changelog.

1.7.4 / 2019-03-18

  • deps: compressible@~2.0.16
    • Mark text/less as compressible
    • deps: mime-db@'>= 1.38.0 < 2'
  • deps: on-headers@~1.0.2
    • Fix res.writeHead patch missing return value
  • perf: prevent unnecessary buffer copy

1.7.3 / 2018-07-15

  • deps: accepts@~1.3.5
    • deps: mime-types@~2.1.18
  • deps: compressible@~2.0.14
    • Mark all XML-derived types as compressible
    • deps: mime-db@'>= 1.34.0 < 2'
  • deps: safe-buffer@5.1.2

1.7.2 / 2018-02-18

  • deps: compressible@~2.0.13
    • deps: mime-db@'>= 1.33.0 < 2'

1.7.1 / 2017-09-26

  • deps: accepts@~1.3.4
    • deps: mime-types@~2.1.16
  • deps: bytes@3.0.0
  • deps: compressible@~2.0.11
    • deps: mime-db@'>= 1.29.0 < 2'
  • deps: debug@2.6.9
  • deps: vary@~1.1.2
    • perf: improve header token parsing speed
Commits


Updates express from 4.15.4 to 4.18.2

Release notes

Sourced from express's releases.

4.18.2

  • Fix regression routing a large stack in a single route
  • deps: body-parser@1.20.1
    • deps: qs@6.11.0
    • perf: remove unnecessary object clone
  • deps: qs@6.11.0

4.18.1

  • Fix hanging on large stack of sync routes

4.18.0

  • Add "root" option to res.download
  • Allow options without filename in res.download
  • Deprecate string and non-integer arguments to res.status
  • Fix behavior of null/undefined as maxAge in res.cookie
  • Fix handling very large stacks of sync middleware
  • Ignore Object.prototype values in settings through app.set/app.get
  • Invoke default with same arguments as types in res.format
  • Support proper 205 responses using res.send
  • Use http-errors for res.format error
  • deps: body-parser@1.20.0
    • Fix error message for json parse whitespace in strict
    • Fix internal error when inflated body exceeds limit
    • Prevent loss of async hooks context
    • Prevent hanging when request already read
    • deps: depd@2.0.0
    • deps: http-errors@2.0.0
    • deps: on-finished@2.4.1
    • deps: qs@6.10.3
    • deps: raw-body@2.5.1
  • deps: cookie@0.5.0
    • Add priority option
    • Fix expires option to reject invalid dates
  • deps: depd@2.0.0
    • Replace internal eval usage with Function constructor
    • Use instance methods on process to check for listeners
  • deps: finalhandler@1.2.0
    • Remove set content headers that break response
    • deps: on-finished@2.4.1
    • deps: statuses@2.0.1
  • deps: on-finished@2.4.1
    • Prevent loss of async hooks context
  • deps: qs@6.10.3
  • deps: send@0.18.0
    • Fix emitted 416 error missing headers property
    • Limit the headers removed for 304 response
    • deps: depd@2.0.0
    • deps: destroy@1.2.0
    • deps: http-errors@2.0.0
    • deps: on-finished@2.4.1

... (truncated)

Changelog

Sourced from express's changelog.

4.18.2 / 2022-10-08

  • Fix regression routing a large stack in a single route
  • deps: body-parser@1.20.1
    • deps: qs@6.11.0
    • perf: remove unnecessary object clone
  • deps: qs@6.11.0

4.18.1 / 2022-04-29

  • Fix hanging on large stack of sync routes

4.18.0 / 2022-04-25

  • Add "root" option to res.download
  • Allow options without filename in res.download
  • Deprecate string and non-integer arguments to res.status
  • Fix behavior of null/undefined as maxAge in res.cookie
  • Fix handling very large stacks of sync middleware
  • Ignore Object.prototype values in settings through app.set/app.get
  • Invoke default with same arguments as types in res.format
  • Support proper 205 responses using res.send
  • Use http-errors for res.format error
  • deps: body-parser@1.20.0
    • Fix error message for json parse whitespace in strict
    • Fix internal error when inflated body exceeds limit
    • Prevent loss of async hooks context
    • Prevent hanging when request already read
    • deps: depd@2.0.0
    • deps: http-errors@2.0.0
    • deps: on-finished@2.4.1
    • deps: qs@6.10.3
    • deps: raw-body@2.5.1
  • deps: cookie@0.5.0
    • Add priority option
    • Fix expires option to reject invalid dates
  • deps: depd@2.0.0
    • Replace internal eval usage with Function constructor
    • Use instance methods on process to check for listeners
  • deps: finalhandler@1.2.0
    • Remove set content headers that break response
    • deps: on-finished@2.4.1
    • deps: statuses@2.0.1
  • deps: on-finished@2.4.1
    • Prevent loss of async hooks context
  • deps: qs@6.10.3
  • deps: send@0.18.0

... (truncated)

Commits


Updates serve-index from 1.9.0 to 1.9.1

Release notes

Sourced from serve-index's releases.

1.9.1

  • deps: accepts@~1.3.4
    • deps: mime-types@~2.1.16
  • deps: debug@2.6.9
  • deps: http-errors@~1.6.2
    • deps: depd@1.1.1
  • deps: mime-types@~2.1.17
    • Add new mime types
    • deps: mime-db@~1.30.0
  • deps: parseurl@~1.3.2
    • perf: reduce overhead for full URLs
    • perf: unroll the "fast-path" RegExp
Changelog

Sourced from serve-index's changelog.

1.9.1 / 2017-09-28

  • deps: accepts@~1.3.4
    • deps: mime-types@~2.1.16
  • deps: debug@2.6.9
  • deps: http-errors@~1.6.2
    • deps: depd@1.1.1
  • deps: mime-types@~2.1.17
    • Add new mime types
    • deps: mime-db@~1.30.0
  • deps: parseurl@~1.3.2
    • perf: reduce overhead for full URLs
    • perf: unroll the "fast-path" RegExp
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bcgov/child-support-lookup-tool/network/alerts).