bcgov / issuer-kit

Verifiable Credential Issuer Starter Kit
Apache License 2.0
51 stars 48 forks source link

Bump winston from 3.8.2 to 3.13.1 in /api #484

Closed dependabot[bot] closed 4 months ago

dependabot[bot] commented 4 months ago

Bumps winston from 3.8.2 to 3.13.1.

Release notes

Sourced from winston's releases.

v3.13.1

  • revert to rimraf 5.0.1, last known version to work with node 18 for now 1b3a500
  • Merge branch 'master' of github.com:winstonjs/winston b56117e
  • Update dependencies a5853b5
  • Bump @​types/node from 20.12.7 to 20.14.10 (#2483) 93b52ac
  • Bump mocha from 10.3.0 to 10.6.0 (#2484) 33611c9
  • Bump @​babel/preset-env from 7.24.0 to 7.24.7 (#2475) 4aa6550
  • Update minimum version logform (#2472) 7f5f014
  • Add Parseable transport (#2466) debf4fa
  • chore(docs): Update w/ MySQL transport (#2456) d567c57
  • fix typo at test/unit/winston/transports/http.test.js (#2453) 1d5d527
  • Bump @​babel/cli from 7.23.9 to 7.24.5 (#2454) d89a34e
  • Bump @​types/node from 20.11.29 to 20.12.7 (#2448) 947fa79
  • Bump @​babel/core from 7.24.0 to 7.24.5 (#2455) 8c58d0a

https://github.com/winstonjs/winston/compare/v3.13.0...v3.13.1

v3.13.0

  • fix(http): allow passing maximumDepth to prevent big object being stringified (#2425) a237865

https://github.com/winstonjs/winston/compare/v3.12.1...v3.13.0

v3.12.1

  • Bump @​types/node from 20.11.24 to 20.11.29 (#2431) b10b98f
  • Revert "Remove nonexistent Logger methods from types" (#2434) 0277035
  • fixed flaky test case (#2412) d95c948

https://github.com/winstonjs/winston/compare/v3.12.0...v3.12.1

v3.12.0

  • missing timestamp format in ready-to-use-pattern example (#2421) 9e5b407
  • bump deps (#2422) 4a85e6b
  • [chore] Run coveralls CI check on Node 20 not 16 (#2418) e153c68
  • Bump @​types/node from 20.8.6 to 20.11.19 (#2413) 587f40f
  • Update README.md (#2417) 8e99a00
  • docs: fix anchor in transports docs (#2416) 0bde36b
  • add winston-transport-vscode to transports docs (#2411) 8fb5b41
  • Bump @​babel/cli from 7.23.0 to 7.23.9 (#2406) a326743
  • Add winston-newrelic-agent-transport to transport documentation (#2382) cc731ef
  • Remove newrelic-winston transport entry. (#2405) f077f30
  • Bump eslint from 8.55.0 to 8.56.0 (#2397) 3943c41
  • Bump the npm_and_yarn group group with 1 update (#2391) 8260866
  • Fix unhandled rejection handling (#2390) 333b763
  • Fix all rimraf usages to the best of my ability; glob is not true by default in rimraf; file archive test only passed every other time using async rimraf, could use further investigation c3f3b5b
  • Fix rimraf usage in new test 8f3c653
  • Fix rimraf import in test (why didn't this break in PR CI?) f3836aa
  • Added functionality to long broken zippedArchive option (#2337) 02d4267
  • Bump async from 3.2.4 to 3.2.5 (#2378) 069a40d
  • Bump @​babel/preset-env from 7.23.2 to 7.23.7 (#2384) 79282e1
  • Bump winston-transport; fix test issue (#2386) 05788b9

... (truncated)

Changelog

Sourced from winston's changelog.

CHANGELOG

v3.9.0

Functionality changes

Dependency updates by @​dependabot + CI autotesting

Documentation changes

Build Infrastructure changes

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 4 months ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.