search

eiriklv / react-masonry-component

A React.js component for using @desandro's Masonry
MIT License
1.43k stars 145 forks source link

Bump qs from 5.2.1 to 6.3.2 #159

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 3 years ago

Bumps qs from 5.2.1 to 6.3.2.

Changelog

Sourced from qs's changelog.

6.3.2

  • [Fix] follow allowPrototypes option during merge (#201, #200)
  • [Dev Deps] update eslint
  • [Fix] chmod a-x
  • [Fix] support keys starting with brackets (#202, #200)
  • [Tests] up to node v7.7, v6.10, v4.8; disable osx builds since they block linux builds

6.3.1

  • [Fix] ensure that allowPrototypes: false does not ever shadow Object.prototype properties (thanks, @​snyk!)
  • [Dev Deps] update eslint, @ljharb/eslint-config, browserify, iconv-lite, qs-iconv, tape
  • [Tests] on all node minors; improve test matrix
  • [Docs] document stringify option allowDots (#195)
  • [Docs] add empty object and array values example (#195)
  • [Docs] Fix minor inconsistency/typo (#192)
  • [Docs] document stringify option sort (#191)
  • [Refactor] stringify: throw faster with an invalid encoder
  • [Refactor] remove unnecessary escapes (#184)
  • Remove contributing.md, since qs is no longer part of hapi (#183)

6.3.0

  • [New] Add support for RFC 1738 (#174, #173)
  • [New] stringify: Add serializeDate option to customize Date serialization (#159)
  • [Fix] ensure utils.merge handles merging two arrays
  • [Refactor] only constructors should be capitalized
  • [Refactor] capitalized var names are for constructors only
  • [Refactor] avoid using a sparse array
  • [Robustness] formats: cache String#replace
  • [Dev Deps] update browserify, eslint, @ljharb/eslint-config; add safe-publish-latest
  • [Tests] up to node v6.8, v4.6; improve test matrix
  • [Tests] flesh out arrayLimit/arrayFormat tests (#107)
  • [Tests] skip Object.create tests when null objects are not available
  • [Tests] Turn on eslint for test files (#175)

6.2.3

  • [Fix] follow allowPrototypes option during merge (#201, #200)
  • [Fix] chmod a-x
  • [Fix] support keys starting with brackets (#202, #200)
  • [Tests] up to node v7.7, v6.10, v4.8; disable osx builds since they block linux builds

6.2.2

  • [Fix] ensure that allowPrototypes: false does not ever shadow Object.prototype properties

6.2.1

  • [Fix] ensure key[]=x&key[]&key[]=y results in 3, not 2, values
  • [Refactor] Be explicit and use Object.prototype.hasOwnProperty.call
  • [Tests] remove parallelshell since it does not reliably report failures
  • [Tests] up to node v6.3, v5.12
  • [Dev Deps] update tape, eslint, @ljharb/eslint-config, qs-iconv

6.2.0

... (truncated)

Commits
  • 9ee5612 v6.3.2
  • 0a63fc8 [Tests] up to node v7.7, v6.10, v4.8; disable osx builds since they b...
  • 8e1f3e7 [Fix] support keys starting with brackets.
  • febe81a [Fix] chmod a-x
  • e54c5ec [Dev Deps] update eslint
  • 8e2af08 [Fix] follow allowPrototypes option during merge
  • 153ce84 v6.3.1
  • d73b7a6 [Dev Deps] update eslint, @ljharb/eslint-config, browserify
  • beade02 [Fix] ensure that allowPrototypes: false does not ever shadow Object.protot...
  • 8bd4c6c Document allowDots option for stringify
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/eiriklv/react-masonry-component/network/alerts).
dependabot[bot] commented 1 year ago

Superseded by #176.