search

dmitriz / cpsfy

🚀 Tiny goodies for Continuation-Passing-Style functions, fully tested
https://www.npmjs.com/package/cpsfy
MIT License
69 stars 1 forks source link

chore(deps-dev): bump tape from 4.16.1 to 5.6.3 #248

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps tape from 4.16.1 to 5.6.3.

Changelog

Sourced from tape's changelog.

v5.6.3 - 2023-01-15

v5.6.2 - 2023-01-15

Fixed

Commits

  • [eslint] fix indentation b035590
  • [meta] add auto-changelog b467b85
  • [eslint] enforce no-use-before-define 87deb68
  • [eclint] fix editorconfig ce81cbe
  • [eslint] clean up config a bit 3171edd
  • [Tests] stackTrace: use the common getDiag utility 65df5a4
  • [Fix] throws: avoid crashing on a nonconfigurable or nonextensible expected 0cd7a2c
  • [meta] fix repo URLs 85d86a4
  • Revert "[Tests] handle a broken error cause in node 16.9/16.10" 775ba37
  • [meta] use npmignore to autogenerate an npmignore file 1645abb
  • [eslint] enable func-style 75c0c3a
  • [actions] update rebase action b3d724e
  • [Deps] update array.prototype.every, deep-equal, string.prototype.trim e9c9aba
  • [Deps] update defined, minimist, resolve 83695c0
  • [Deps] update deep-equal, object-inspect 09906f3
  • [Dev Deps] update @ljharb/eslint-config, aud afd8f64
  • [Dev Deps] update array.prototype.flatmap 8b8bf07
  • [Dev Deps] update aud f0fe7c0
  • [Dev Deps] update tap-parser 2f61eac
  • Merge tag 'v4.16.1' 96ff863
  • [readme] fix version badge 20ea48d

v5.6.1 - 2022-09-19

Commits

  • [eslint] fix indentation 2151e06
  • [meta] add auto-changelog 86cbbd1
  • [eslint] enforce no-use-before-define f8a8a7f
  • [meta] fix repo URLs a9ae3c2
  • [Tests] stackTrace: use the common getDiag utility 298cb80
  • [eslint] enable func-style 98b9623
  • [New] bin/tape: include the exact arg when there are no glob results; use require on --require files 6a1ce43
  • [eslint] clean up config a bit 67ad201
  • [meta] create FUNDING.yml 5b4752f
  • [Refactor] bin/tape: make it a bit more functional, for easier v5 backporting fbdbfc9
  • [Deps] update glob, object-inspect, resolve, string.prototype.trim 6a3c200
  • [Dev Deps] update @ljharb/eslint-config, array.prototype.flatmap, es-value-fixtures, falafel 934d49b
  • [Tests] fix no_only tests on Windows f35f71b
  • Revert "[Tests] handle a broken error cause in node 16.9/16.10" 23fac16

... (truncated)

Commits
  • 23aa477 v5.6.3
  • 40f6ad3 v5.6.2
  • 0cd7a2c [Fix] throws: avoid crashing on a nonconfigurable or nonextensible expected
  • 09906f3 [Deps] update deep-equal, object-inspect
  • afd8f64 [Dev Deps] update @ljharb/eslint-config, aud
  • 8c9fe8e [New] bin/tape: add --ignore-pattern flag
  • e9c9aba [Deps] update array.prototype.every, deep-equal, string.prototype.trim
  • 8b8bf07 [Dev Deps] update array.prototype.flatmap
  • b3d724e [actions] update rebase action
  • 83695c0 [Deps] update defined, minimist, resolve
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov[bot] commented 1 year ago

Codecov Report

Merging #248 (b37efed) into master (7e6b3ec) will not change coverage. The diff coverage is n/a.

@@            Coverage Diff            @@
##            master      #248   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            2         2           
  Lines           80        80           
=========================================
  Hits            80        80
Flag Coverage Δ
unittests 100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

guardrails[bot] commented 1 year ago

:warning: We detected 4 security issues in this pull request:

Vulnerable Libraries (4)
Severity | Details ----- | -------- High | [pkg:npm/lodash.template@4.5.0@4.5.0](https://github.com/dmitriz/cpsfy/blob/b37efedfbb771c3a4843248447ecf3711a2feae8/package-lock.json) (t) - **no patch available** Critical | [pkg:npm/set-getter@0.1.1@0.1.1](https://github.com/dmitriz/cpsfy/blob/b37efedfbb771c3a4843248447ecf3711a2feae8/package-lock.json) (t) - **no patch available** Medium | [pkg:npm/remarkable@1.7.4@1.7.4](https://github.com/dmitriz/cpsfy/blob/b37efedfbb771c3a4843248447ecf3711a2feae8/package-lock.json) (t) - **no patch available** High | [pkg:npm/autolinker@0.28.1@0.28.1](https://github.com/dmitriz/cpsfy/blob/b37efedfbb771c3a4843248447ecf3711a2feae8/package-lock.json) (t) - **no patch available** More info on how to fix Vulnerable Libraries in [JavaScript](https://docs.guardrails.io/docs/en/vulnerabilities/javascript/using_vulnerable_libraries.html?utm_source=ghpr#).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

dependabot[bot] commented 1 year ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.