fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults() when a process polyfill is used #4648@pichlermarc
getEnvWithoutDefaults() would use process.env if it was defined when running in a browser, while getEnv() would always use _globalThis. Now both use _globalThis when running in a browser.
fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults() when a process polyfill is used #4648@pichlermarc
getEnvWithoutDefaults() would use process.env if it was defined when running in a browser, while getEnv() would always use _globalThis. Now both use _globalThis when running in a browser.
Validate templateName and globals are valid JavaScript identifiers to prevent possible remote code execution if un-trusted user input is passed to the compilation options (#3438)
pug@3.0.3
Bug Fixes
Update pug-code-gen with the following fix: (#3438)
Validate templateName and globals are valid JavaScript identifiers to prevent possible remote code execution if un-trusted user input is passed to the compilation options
Commits
32acfe8 fix: ensure template names are valid identifiers (#3438)
4767caf refactor: convert pug-error to TypeScript (#3355)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the all-dependencies group with 10 updates in the /samples/AspireWithNode/NodeFrontend directory:
0.46.0
0.46.1
0.51.0
0.51.1
0.51.0
0.51.1
0.51.0
0.51.1
0.51.0
0.51.1
1.24.0
1.24.1
0.51.0
0.51.1
3.0.2
3.0.3
4.6.13
4.6.14
3.1.0
3.1.1
Updates
@opentelemetry/auto-instrumentations-node
from 0.46.0 to 0.46.1Release notes
Sourced from
@opentelemetry/auto-instrumentations-node
's releases.Commits
54365a9
chore: release main (#2172)330fbaa
chore: update to new release-please-action (#2208)b432929
fix(aws-lambda): update semconv package and readme (#2181)feb2720
docs: remove unused semconv packages and document (#2182)bb5d3bb
chore(instrumentation-bunyan): use strings exported for attributes (#2195)416337e
chore(instrumentation-net): use strings exported for attributes (#2194)7795ff6
chore(instrumentation-nestjs-core): use strings exported for attributes (#2193)025abda
chore(instrumentation-memcached): use exported strings for attributes (#2192)fbbd32c
chore(instrumentation-ioredis): use exported strings for attributes (#2191)b98e431
refactor(instr-graphql): use exported strings for attributes (#2156)Updates
@opentelemetry/exporter-logs-otlp-grpc
from 0.51.0 to 0.51.1Release notes
Sourced from
@opentelemetry/exporter-logs-otlp-grpc
's releases.Commits
41c2626
Merge pull request #4682 from dynatrace-oss-contrib/release/1.24.x-0.51.x-27cb72a6
chore: prepare release 1.24.1/0.51.18a6d03f
chore: sync package-lock.json, adapt changelogdfc883c
fix(exporter-metrics-otlp-grpc) Add explicit otlp-exporter-base depen… (#4678)75817d7
fix(deps): update dependency import-in-the-middle to v1.7.4 (#4667)fe132d7
fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults(...307e33a
fix(resources): prevent circular import (resource -> detector -> resource -> ...Updates
@opentelemetry/exporter-metrics-otlp-grpc
from 0.51.0 to 0.51.1Release notes
Sourced from
@opentelemetry/exporter-metrics-otlp-grpc
's releases.Commits
41c2626
Merge pull request #4682 from dynatrace-oss-contrib/release/1.24.x-0.51.x-27cb72a6
chore: prepare release 1.24.1/0.51.18a6d03f
chore: sync package-lock.json, adapt changelogdfc883c
fix(exporter-metrics-otlp-grpc) Add explicit otlp-exporter-base depen… (#4678)75817d7
fix(deps): update dependency import-in-the-middle to v1.7.4 (#4667)fe132d7
fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults(...307e33a
fix(resources): prevent circular import (resource -> detector -> resource -> ...Updates
@opentelemetry/exporter-trace-otlp-grpc
from 0.51.0 to 0.51.1Release notes
Sourced from
@opentelemetry/exporter-trace-otlp-grpc
's releases.Commits
41c2626
Merge pull request #4682 from dynatrace-oss-contrib/release/1.24.x-0.51.x-27cb72a6
chore: prepare release 1.24.1/0.51.18a6d03f
chore: sync package-lock.json, adapt changelogdfc883c
fix(exporter-metrics-otlp-grpc) Add explicit otlp-exporter-base depen… (#4678)75817d7
fix(deps): update dependency import-in-the-middle to v1.7.4 (#4667)fe132d7
fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults(...307e33a
fix(resources): prevent circular import (resource -> detector -> resource -> ...Updates
@opentelemetry/sdk-logs
from 0.51.0 to 0.51.1Release notes
Sourced from
@opentelemetry/sdk-logs
's releases.Commits
41c2626
Merge pull request #4682 from dynatrace-oss-contrib/release/1.24.x-0.51.x-27cb72a6
chore: prepare release 1.24.1/0.51.18a6d03f
chore: sync package-lock.json, adapt changelogdfc883c
fix(exporter-metrics-otlp-grpc) Add explicit otlp-exporter-base depen… (#4678)75817d7
fix(deps): update dependency import-in-the-middle to v1.7.4 (#4667)fe132d7
fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults(...307e33a
fix(resources): prevent circular import (resource -> detector -> resource -> ...Updates
@opentelemetry/sdk-metrics
from 1.24.0 to 1.24.1Release notes
Sourced from
@opentelemetry/sdk-metrics
's releases.Changelog
Sourced from
@opentelemetry/sdk-metrics
's changelog.Commits
41c2626
Merge pull request #4682 from dynatrace-oss-contrib/release/1.24.x-0.51.x-27cb72a6
chore: prepare release 1.24.1/0.51.18a6d03f
chore: sync package-lock.json, adapt changelogdfc883c
fix(exporter-metrics-otlp-grpc) Add explicit otlp-exporter-base depen… (#4678)75817d7
fix(deps): update dependency import-in-the-middle to v1.7.4 (#4667)fe132d7
fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults(...307e33a
fix(resources): prevent circular import (resource -> detector -> resource -> ...Updates
@opentelemetry/sdk-node
from 0.51.0 to 0.51.1Release notes
Sourced from
@opentelemetry/sdk-node
's releases.Commits
41c2626
Merge pull request #4682 from dynatrace-oss-contrib/release/1.24.x-0.51.x-27cb72a6
chore: prepare release 1.24.1/0.51.18a6d03f
chore: sync package-lock.json, adapt changelogdfc883c
fix(exporter-metrics-otlp-grpc) Add explicit otlp-exporter-base depen… (#4678)75817d7
fix(deps): update dependency import-in-the-middle to v1.7.4 (#4667)fe132d7
fix(core): align inconsistent behavior of getEnv() and getEnvWithoutDefaults(...307e33a
fix(resources): prevent circular import (resource -> detector -> resource -> ...Updates
pug
from 3.0.2 to 3.0.3Release notes
Sourced from pug's releases.
Commits
32acfe8
fix: ensure template names are valid identifiers (#3438)4767caf
refactor: convert pug-error to TypeScript (#3355)a724446
chore: update character-parser (#3354)6cca8f7
docs: fix GitHub format in README (#3335)Updates
redis
from 4.6.13 to 4.6.14Release notes
Sourced from redis's releases.
Commits
d5355d4
Release redis@4.6.14fcf4119
upgrade@redis/client
d5518e0
Release client@1.5.161a3ac1e
upgrade@redis/client
d7f7f79
Release client@1.5.15bfa803f
Fix race condition when slots are re-calculated (#2731)Updates
nodemon
from 3.1.0 to 3.1.1Release notes
Sourced from nodemon's releases.
Commits
cd27c0b
fix: add types to help with required nodemon usage (#2204)1707f92
chore: website502238c
chore: websitef35aa98
chore: website0bfd65a
chore: websitef8e3b8c
chore: website332f957
chore: website2835883
chore: website4a216c3
Merge branch 'main' of github.com:remy/nodemonfe67d04
chore: websiteDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show