search

bcgov / traction

Traction is designed with an API-first architecture layered on top of Hyperledger Aries Cloud Agent Python (ACA-Py) and streamlines the process of sending and receiving digital credentials for governments and organizations.
https://digital.gov.bc.ca/digital-trust/tools/traction/
Apache License 2.0
53 stars 51 forks source link

chore(deps): Bump jsonpath-plus and vanilla-jsoneditor in /services/tenant-ui/frontend #1402

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps jsonpath-plus and vanilla-jsoneditor. These dependencies needed to be updated together. Updates jsonpath-plus from 9.0.0 to 10.0.1

Changelog

Sourced from jsonpath-plus's changelog.

10.0.1

  • fix(security): prohibit Function in "safe" vm

10.0.0

BREAKING CHANGES:

  • Require Node 18+

  • fix(security): use safe vm by default in Node

  • chore: bump jsep, devDeps. and lint

Commits
  • 0bf1665 fix(security): prohibit Function in "safe" vm; fixes #226
  • a04dcba chore: linting
  • 419029a chore: change browser targets to "defaults, not op_mini all"
  • 6b2f1b4 fix(security): use safe vm by default in Node
  • f20be14 chore: update lock file
  • 98caffc chore: bump jsep, devDeps. and lint
  • 8325b8c chore: add error reporting in demo for failing expressions
  • 34281ac chore: update cli test for node 20 compatibility
  • 6181be8 docs: update ignoreEvalErrors option in docs/demo
  • 0c8dbcf docs(CHANGES): credit
  • See full diff in compare view


Updates vanilla-jsoneditor from 1.0.1 to 1.0.8

Release notes

Sourced from vanilla-jsoneditor's releases.

v1.0.8

   🐞 Bug Fixes

    View changes on GitHub

v1.0.7

   🐞 Bug Fixes

    View changes on GitHub

v1.0.6

   🐞 Bug Fixes

  • Type definition of createJSONEditor not exported in the vanilla-jsoneditor library  -  by @​josdejong (e0aee)
    View changes on GitHub

v1.0.5

   🐞 Bug Fixes

  • Key not rendered when the value contains search results and vice versa  -  by @​josdejong (0c41c)
    View changes on GitHub

v1.0.4

   🐞 Bug Fixes

    View changes on GitHub

v1.0.3

   🐞 Bug Fixes

    View changes on GitHub

v1.0.2

   🐞 Bug Fixes

    View changes on GitHub
Changelog

Sourced from vanilla-jsoneditor's changelog.

1.0.8 (2024-10-14)

Bug Fixes

1.0.7 (2024-10-09)

Bug Fixes

  • #488 types JsonEditor and CreateJSONEditorProps not exported in vanilla-jsoneditor (337c33b)
  • #489 anchor styling defined in the TransformModal affecting the global style (a213583)

1.0.6 (2024-09-30)

Bug Fixes

  • type definition of createJSONEditor not exported in the vanilla-jsoneditor library (e0aee3e)

1.0.5 (2024-09-30)

Bug Fixes

  • key not rendered when the value contains search results and vice versa (0c41c79)

1.0.4 (2024-09-27)

Bug Fixes

  • #486 naming conflict for argument isMac in the type definitions (9fac7a3)

1.0.3 (2024-09-26)

Bug Fixes

  • invalid JSONPath query options could crash the Transform Modal (c90a54c)

1.0.2 (2024-09-26)

Bug Fixes

  • more robust positioning of the modal by adding margin: auto, see #384 (2302436)
Commits
  • 2fb3bed chore(release): 1.0.8
  • 13e7cef fix: upgrade dependencies
  • e7cb7a0 chore(release): 1.0.7
  • a213583 fix: #489 anchor styling defined in the TransformModal affecting the global s...
  • 337c33b fix: #488 types JsonEditor and CreateJSONEditorProps not exported in `van...
  • 45a7b74 chore(release): 1.0.6
  • e0aee3e fix: type definition of createJSONEditor not exported in the `vanilla-jsone...
  • ea0194f chore(release): 1.0.5
  • 0c41c79 fix: key not rendered when the value contains search results and vice versa
  • dd80ec9 chore(release): 1.0.4
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bcgov/traction/network/alerts).
dependabot[bot] commented 1 month ago

Looks like these dependencies are up-to-date now, so this is no longer needed.