danielfsousa / express-rest-boilerplate

⌛️ Express starter for building RESTful APIs
MIT License
2.36k stars 623 forks source link

chore(deps): bump moment-timezone from 0.5.33 to 0.5.41 #687

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps moment-timezone from 0.5.33 to 0.5.41.

Release notes

Sourced from moment-timezone's releases.

Release 0.5.41

  • Updated moment npm dependency to 2.29.4 to remove automated warnings about insecure dependencies #1004. Moment Timezone still works with core Moment 2.9.0 and higher.
  • Updated all dev dependencies including UglifyJS, which produces the minified builds.
  • Added deprecation warning to the pre-built moment-timezone-with-data-2012-2022 bundles #1035. Use the rolling moment-timezone-with-data-10-year-range files instead.

Release 0.5.40

  • Updated data to IANA TZDB 2022g

Release 0.5.39

  • Updated data to IANA TZDB 2022f

Release 0.5.38

  • Updated data to IANA TZDB 2022e
  • Added moment.tz.dataVersion property to TypeScript definitions #930
  • Removed temporary .tar.gz files from npm releases #1000

Release 0.5.37

Release 0.5.36

  • Updated data to IANA TZDB 2022c
  • Improvements/fixes to data pipeline

Release 0.5.35

Thanks to the OpenSSF Alpha-Omega project for reporting these!

Release 0.5.34

  • Updated data to IANA TZDB 2021e
Changelog

Sourced from moment-timezone's changelog.

0.5.41 2023-02-25

  • Updated moment npm dependency to 2.29.4 to remove automated warnings about insecure dependencies. Moment Timezone still works with core Moment 2.9.0 and higher.
  • Updated all dev dependencies including UglifyJS, which produces the minified builds.
  • Added deprecation warning to the pre-built moment-timezone-with-data-2012-2022 bundles #1035. Use the rolling moment-timezone-with-data-10-year-range files instead.

0.5.40 2022-12-11

  • Updated data to IANA TZDB 2022g

0.5.39 2022-11-13

  • Updated data to IANA TZDB 2022f

0.5.38 2022-10-15

  • Updated data to IANA TZDB 2022e
  • Added moment.tz.dataVersion property to TypeScript definitions #930
  • Removed temporary .tar.gz files from npm releases #1000

0.5.37 2022-08-25

0.5.36 2022-08-25

  • IANA TZDB 2022c
  • improvements/fixes to data pipeline

0.5.35 2022-08-23

Thanks to the OpenSSF Alpha-Omega project for reporting these!

0.5.34 2021-11-10

  • Updated data to IANA TZDB 2021e
Commits
  • 98d3add Build moment-timezone 0.5.41
  • 78cf3ad changelog: Add 0.5.41
  • cd35dc6 Bump version to 0.5.41
  • 76f5a75 Re-number build tasks to match new running order
  • ace9a77 Fix broken badges in README
  • 8080504 Bump moment dependency to 2.29.4 (#1004)
  • 61b14d6 Add deprecation warning to 2012-2022 pre-built files (#1036)
  • fc29369 Bump remaining grunt-contrib packages
  • c83479e tests: Fix guess tests for 2023
  • e501621 Bump y18n from 4.0.0 to 4.0.3 (#1026)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by gilmoreorless, a new releaser for moment-timezone since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)