search

brianlovin / security-checklist

A checklist for staying safe on the internet
https://brianlovin.com/security
MIT License
925 stars 76 forks source link

Bump eslint-plugin-import from 2.21.2 to 2.22.0 #561

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps eslint-plugin-import from 2.21.2 to 2.22.0.

Changelog

Sourced from eslint-plugin-import's changelog.

[2.22.0] - 2020-06-26

Added

  • [no-unused-modules]: consider exported TypeScript interfaces, types and enums (#1819, thanks [@nicolashenry])
  • [no-cycle]: allow maxDepth option to be "∞" (thanks [@ljharb])

Fixed

  • [order]/TypeScript: properly support import = object expressions (#1823, thanks [@manuth])
  • [no-extraneous-dependencies]/TypeScript: do not error when importing type from dev dependencies (#1820, thanks [@fernandopasik])
  • [default]: avoid crash with export = (#1822, thanks [@AndrewLeedham])
  • [order]/[newline-after-import]: ignore TypeScript's "export import object" (#1830, thanks [@be5invis])
  • [dynamic-import-chunkname]/TypeScript: supports @typescript-eslint/parser (#1833, thanks [@noelebrun])
  • [order]/TypeScript: ignore ordering of object imports (#1831, thanks [@manuth])
  • [namespace]: do not report on shadowed import names (#518, thanks [@ljharb])
  • [export]: avoid warning on export * as non-conflicts (#1834, thanks [@ljharb])

Changed

  • [no-extraneous-dependencies]: add tests for importing types (#1824, thanks [@taye])
  • [docs] [no-default-export]: Fix docs url (#1836, thanks [@beatrizrezener])
  • [docs] [imports-first]: deprecation info and link to first docs (#1835, thanks [@beatrizrezener])
Commits
  • 878ce6e Bump to v2.22.0
  • 36a535b fixup: [Tests] export: skip export * as tests in eslint < 6
  • 7ceae48 [Tests] export: skip export * as tests in eslint < 6
  • 07dc92a [Fix] export: avoid warning on export * as non-conflicts
  • b944e94 [Fix] namespace: do not report on shadowed import names
  • a963e8d [Refactor] namespace: clean up the code a bit
  • a6cd6bd [docs] imports-first: deprecation info and link to first docs
  • 2468f10 [docs] no-default-export: Fix docs url
  • c38b169 [patch] order/TypeScript: ignore ordering of object imports
  • bfc50b7 [New] no-cycle: allow maxDepth option to be "∞"
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
vercel[bot] commented 4 years ago

This pull request is being automatically deployed with Vercel (learn more). To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/brianlovin/security-checklist/pbws97crt ✅ Preview: https://security-check-git-dependabot-npmandyarneslint-plugin-im-72aa8c.brianlovin.vercel.app

lighthouse-metrics[bot] commented 4 years ago

https://security-checklist-pbws97crt.vercel.app/:

Lighthouse Scores for https://security-checklist-pbws97crt.vercel.app/