brave / sugarcoat-pipeline

CLI that implements the SugarCoat pipeline
Mozilla Public License 2.0
7 stars 3 forks source link

Bump nanoid and mocha #26

Closed dependabot[bot] closed 5 months ago

dependabot[bot] commented 1 year ago

Bumps nanoid to 3.3.1 and updates ancestor dependency mocha. These dependencies need to be updated together.

Updates nanoid from 3.1.23 to 3.3.1

Changelog

Sourced from nanoid's changelog.

3.3.1

  • Reduced package size.

3.3

  • Added size argument to function from customAlphabet (by Stefan Sundin).

3.2

  • Added --size and --alphabet arguments to binary (by Vitaly Baev).

3.1.32

  • Reduced async exports size (by Artyom Arutyunyan).
  • Moved from Jest to uvu (by Vitaly Baev).

3.1.31

  • Fixed collision vulnerability on object in size (by Artyom Arutyunyan).

3.1.30

  • Reduced size for project with brotli compression (by Anton Khlynovskiy).

3.1.29

  • Reduced npm package size.

3.1.28

  • Reduced npm package size.

3.1.27

  • Cleaned dependencies from development tools.

3.1.26

  • Improved performance (by Eitan Har-Shoshanim).
  • Reduced npm package size.

3.1.25

  • Fixed browserify support.

3.1.24

  • Fixed browserify support (by Artur Paikin).
Commits


Updates mocha from 9.0.2 to 9.2.2

Release notes

Sourced from mocha's releases.

v9.2.2

9.2.2 / 2022-03-11

Please also note our announcements.

:bug: Fixes

:nut_and_bolt: Other

v9.2.1

9.2.1 / 2022-02-19

Please also note our announcements.

:bug: Fixes

v9.2.0

9.2.0 / 2022-01-24

Please also note our announcements.

:tada: Enhancements

:nut_and_bolt: Other

v9.1.4

9.1.4 / 2022-01-14

Please also note our announcements.

:bug: Fixes

:nut_and_bolt: Other

... (truncated)

Changelog

Sourced from mocha's changelog.

9.2.2 / 2022-03-11

:bug: Fixes

:nut_and_bolt: Other

9.2.1 / 2022-02-19

:bug: Fixes

9.2.0 / 2022-01-24

:tada: Enhancements

:nut_and_bolt: Other

9.1.4 / 2022-01-14

:bug: Fixes

:nut_and_bolt: Other

9.1.3 / 2021-10-15

:bug: Fixes

:nut_and_bolt: Other

... (truncated)

Commits
  • 24b5243 build(v9.2.2): release
  • 22a1560 build(v9.2.2): update CHANGELOG [ci skip]
  • 632e602 chore: update dependencies (#4843)
  • 241964b fix: wrong error thrown while loading reporter (#4842)
  • 22f9306 fix(dry-run): potential call-stack crash with 'dry-run' option (#4839)
  • 547ffd7 build(v9.2.1): release
  • ca7432a build(v9.2.1): update CHANGELOG [ci skip]
  • 86305cf fix: wrong error thrown while loading config files (#4832)
  • 11c4560 fix: configurable max diff size (#4799)
  • 509938d doc: fix to show sponsors in narrow view (#4793)
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/brave-experiments/sugarcoat-pipeline/network/alerts).
dependabot[bot] commented 5 months ago

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.