search

bitwiseworks / qtwebengine-chromium-os2

Port of Chromium and related tools to OS/2
9 stars 2 forks source link

build(deps): bump glob-parent and pkg in /chromium/v8/tools/clusterfuzz/js_fuzzer #60

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps glob-parent to 5.1.2 and updates ancestor dependency pkg. These dependencies need to be updated together.

Updates glob-parent from 5.1.1 to 5.1.2

Release notes

Sourced from glob-parent's releases.

v5.1.2

Bug Fixes

Changelog

Sourced from glob-parent's changelog.

5.1.2 (2021-03-06)

Bug Fixes

6.0.2 (2021-09-29)

Bug Fixes

6.0.1 (2021-07-20)

Bug Fixes

  • Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

6.0.0 (2021-05-03)

⚠ BREAKING CHANGES

  • Correct mishandled escaped path separators (#34)
  • upgrade scaffold, dropping node <10 support

Bug Fixes

  • Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

  • upgrade scaffold, dropping node <10 support (e83d0c5)
Commits


Updates pkg from 4.3.4 to 4.5.1

Release notes

Sourced from pkg's releases.

4.5.1

  • Added documentation about NODE_OPTIONS: #996
  • Bootstrap: adjust for internalModuleReadJSON of newer Node.js: a20111e91d64c2380e4a10ce9a4a27848b427a5e
  • Bootstrap: support both old and new internalModuleReadJSON: 9598890350cc1d18672ddbc5032d142c4f019369
  • Chore: add ci, stale workflows and dependabot: #1074
  • Set up and run Prettier over entire codebase.: #1076
  • Drop dependabot.yml in favor of repo settings.: #1092
  • Remove incorrect \?\ prefix on windows and fs.promises fixes: #1095
  • Upgrade ESLint + move to eslint-config-airbnb-base.: #1088
  • Promisified exec and execFile should return a promise with ChildProcess instance attached: #880
  • Chore: make pkg-fetch dep static (temporarily).: #1100
  • Add pkg.outputPath as a configuration option.: #574

Credits

Huge thanks to @​SnakeDrak, @​robertsLando, @​hipstersmoothie, @​onip, and @​Symbitic for helping!

4.5.0

  • Branding change (#939)
  • Update badges in README (#949)
  • update tests test for node 14 CI (#977)
  • Bump lodash from 4.17.15 to 4.17.19 (#945)
  • Added environment var section on Readme (#684)
  • Add missing stat.isSocket (#720)
  • Fix configuration for node-notifier (#1021)
  • Add support for Node native addons (#837)
  • docs: MAKE_JOB_COUNT and PKG_IGNORE_TAG env var (#1053)
  • Bugfix for fs.readdir(), fs.readdirSync() (#992)
  • Replace deprecated assert.equal and assert.deepEqual. (#1063)
  • Update ZEIT to Vercel in package.json. (#1064)
  • Add cross-platform support for dot-node files. (#1066)
Commits
  • c332fbb 4.5.1
  • f08d083 Add pkg.outputPath as a configuration option. (#574)
  • 165fcd5 chore: make pkg-fetch dep static (temporarily). (#1100)
  • 9bb4f70 promisified exec and execFile should return a promise with ChildProcess insta...
  • e463acc Upgrade ESLint + move to eslint-config-airbnb-base. (#1088)
  • 1c219c8 Remove incorrect \?\ prefix on windows and fs.promises fixes (#1095)
  • 663f3f0 Drop dependabot.yml in favor of repo settings. (#1092)
  • ddf5217 Set up and run Prettier over entire codebase. (#1076)
  • 31e8bf7 chore: add ci, stale workflows and dependabot (#1074)
  • 9598890 bootstrap: support both old and new internalModuleReadJSON
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by leerobinson, a new releaser for pkg since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bitwiseworks/qtwebengine-chromium-os2/network/alerts).