chimurai / http-proxy-middleware

:zap: The one-liner node.js http-proxy middleware for connect, express, next.js and more
MIT License
10.76k stars 849 forks source link

chore(deps): bump vm2 from 3.9.3 to 3.9.5 #674

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps vm2 from 3.9.3 to 3.9.5.

Release notes

Sourced from vm2's releases.

3.9.5

New Features

d9af94ca3a701b9ba6283264fafeef4827786702: Added editor config

Fixes

4f0db94bfa250089d903083fcd6c6cf6cd11b8a9: Fix Promise.then not working 419806086ccbef7b9f11abbd8420d01d9fe6d18c: Fix for missing CallSite properties

3.9.4

New Features

4ead241540bb3d6ffcca64ce98d3b263c8f15cb4: Added strict option

Fixes

b4f6e2bd2c4a1ef52fc4483d8e35f28bc4481886: Fix breakouts in VM. e95165b36fd07d20febd00a7b08fc8292ccc703e: Fix for bound function causes TypeError 42c7b83ce8dded5e3ae03142736dcf8306a2c2a8: Allow extending of frozen objects

Changelog

Sourced from vm2's changelog.

v3.9.5 (2021-10-17)

[new] Editor config (aubelsb2) [fix] Fix for Promise.then breaking [fix] Fix for missing properties on CallSite

v3.9.4 (2021-10-12)

[new] Added strict option
[fix] Security fixes (XmiliaH)
[fix] Fixed bound function causes TypeError (XmiliaH)
[fix] Allow extending of frozen objects

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/chimurai/http-proxy-middleware/network/alerts).
coveralls commented 3 years ago

Coverage Status

Coverage remained the same at 98.86% when pulling 086b3c13cff950263d53dee4fdb9120a3c1d5949 on dependabot/npm_and_yarn/vm2-3.9.5 into 625ba89413ca54accaa4c19a277b8ab7ddf0586e on master.

dependabot[bot] commented 3 years ago

Looks like vm2 is up-to-date now, so this is no longer needed.