Changelog
*Sourced from [deep-extend's changelog](https://github.com/unclechu/node-deep-extend/blob/master/CHANGELOG.md).*
> v0.5.1
> ------
>
> - Fix prototype pollution vulnerability (thanks to [@mwakerman](https://github.com/mwakerman) for the PR)
> - Avoid using deprecated Buffer API (thanks to [@ChALkeR](https://github.com/ChALkeR) for the PR)
>
> v0.5.0
> ------
>
> - Auto-testing provided by Travis CI;
> - Support older Node.JS versions (`v0.11.x` and `v0.10.x`);
> - Removed tests files from npm package.
Commits
- [`2e0110e`](https://github.com/unclechu/node-deep-extend/commit/2e0110ed4c997bbd9bf29df1692d53494d9e90d4) prepared v0.5.1 release
- [`433ee51`](https://github.com/unclechu/node-deep-extend/commit/433ee51ed606f4e1867ece57b6ff5a47bebb492f) Avoid using deprecated Buffer API
- [`9d71360`](https://github.com/unclechu/node-deep-extend/commit/9d7136021548414171426ae17a297314f3906af5) .editorconfig: added max-line-length
- [`715555b`](https://github.com/unclechu/node-deep-extend/commit/715555bc334a4af3d317ad9018331c06ff3cde31) Merge branch 'pr-40' into dev
- [`9423fae`](https://github.com/unclechu/node-deep-extend/commit/9423fae877e2ab6b4aecc4db79a0ed63039d4703) Prevent Object prototype pollution.
- [`ffe04c3`](https://github.com/unclechu/node-deep-extend/commit/ffe04c39a4d0c58044789592fe7b686a3bfe44b5) added test for issue [#33](https://github-redirect.dependabot.com/unclechu/node-deep-extend/issues/33)
- [`9653940`](https://github.com/unclechu/node-deep-extend/commit/9653940a75c2ef2b1a503b24cbadd707cccffa8c) updated yarn.lock
- [`adb9c49`](https://github.com/unclechu/node-deep-extend/commit/adb9c495d1dccbff3e87cdae157dc856f3a05c65) 0.5.0
- [`7ef4965`](https://github.com/unclechu/node-deep-extend/commit/7ef49652336c48fc24b026792eb9c6c1dd2d33db) updated CHANGELOG.md
- [`6b5860e`](https://github.com/unclechu/node-deep-extend/commit/6b5860ed7431655733decd229d2c14484b959333) removed tests files for npm package files
- Additional commits viewable in [compare view](https://github.com/unclechu/node-deep-extend/compare/v0.4.2...v0.5.1)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/betocastillo86/huellitasv2/network/alerts).
Bumps deep-extend from 0.4.2 to 0.5.1.
Changelog
*Sourced from [deep-extend's changelog](https://github.com/unclechu/node-deep-extend/blob/master/CHANGELOG.md).* > v0.5.1 > ------ > > - Fix prototype pollution vulnerability (thanks to [@mwakerman](https://github.com/mwakerman) for the PR) > - Avoid using deprecated Buffer API (thanks to [@ChALkeR](https://github.com/ChALkeR) for the PR) > > v0.5.0 > ------ > > - Auto-testing provided by Travis CI; > - Support older Node.JS versions (`v0.11.x` and `v0.10.x`); > - Removed tests files from npm package.Commits
- [`2e0110e`](https://github.com/unclechu/node-deep-extend/commit/2e0110ed4c997bbd9bf29df1692d53494d9e90d4) prepared v0.5.1 release - [`433ee51`](https://github.com/unclechu/node-deep-extend/commit/433ee51ed606f4e1867ece57b6ff5a47bebb492f) Avoid using deprecated Buffer API - [`9d71360`](https://github.com/unclechu/node-deep-extend/commit/9d7136021548414171426ae17a297314f3906af5) .editorconfig: added max-line-length - [`715555b`](https://github.com/unclechu/node-deep-extend/commit/715555bc334a4af3d317ad9018331c06ff3cde31) Merge branch 'pr-40' into dev - [`9423fae`](https://github.com/unclechu/node-deep-extend/commit/9423fae877e2ab6b4aecc4db79a0ed63039d4703) Prevent Object prototype pollution. - [`ffe04c3`](https://github.com/unclechu/node-deep-extend/commit/ffe04c39a4d0c58044789592fe7b686a3bfe44b5) added test for issue [#33](https://github-redirect.dependabot.com/unclechu/node-deep-extend/issues/33) - [`9653940`](https://github.com/unclechu/node-deep-extend/commit/9653940a75c2ef2b1a503b24cbadd707cccffa8c) updated yarn.lock - [`adb9c49`](https://github.com/unclechu/node-deep-extend/commit/adb9c495d1dccbff3e87cdae157dc856f3a05c65) 0.5.0 - [`7ef4965`](https://github.com/unclechu/node-deep-extend/commit/7ef49652336c48fc24b026792eb9c6c1dd2d33db) updated CHANGELOG.md - [`6b5860e`](https://github.com/unclechu/node-deep-extend/commit/6b5860ed7431655733decd229d2c14484b959333) removed tests files for npm package files - Additional commits viewable in [compare view](https://github.com/unclechu/node-deep-extend/compare/v0.4.2...v0.5.1)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/betocastillo86/huellitasv2/network/alerts).