etclabscore / expedition

🧭 A block explorer for the Ethereum stack.
https://expedition.dev/
Apache License 2.0
65 stars 121 forks source link

chore(deps): bump i18next from 17.3.1 to 19.8.7 #500

Closed dependabot-preview[bot] closed 3 years ago

dependabot-preview[bot] commented 3 years ago

Bumps i18next from 17.3.1 to 19.8.7.

Changelog

Sourced from i18next's changelog.

19.8.7

  • use "Object.prototype.hasOwnProperty" instead of "object.hasOwnProperty", fixes 1542

19.8.6

  • regression fix because of last prototype pollution fix in v19.8.5

19.8.5

  • fix potential prototype pollution when backend plugin resolves a malicious language value
  • use fallbackLng as default lng

19.8.4

  • update format function signature for TS 1520)

19.8.3

  • fix prototype pollution with constructor

19.8.2

  • allow nesting recursively with context (could theoretically generate infinite loop, prevented in 1480)

19.8.1

  • fix "no languageDetector is used" log statement
  • do not log "initialized" on cloned instances

19.8.0

  • allow fallbackLng as function 1508

19.7.0

  • resource manipulation functions are now chainable

19.6.3

  • plural rules for ht and iw

19.6.2

  • fix interpolation with option skipOnVariables when there are multiple placeholders 1490

19.6.1

  • extend interpolation option skipOnVariables 1488
  • typescript: Change bindStore to bindI18nStore in ReactOptions type and update default values 1489

... (truncated)

Commits
  • 203101c 19.8.7
  • 75c6294 fix #1542
  • ffc213c 19.8.6
  • 87a2449 regression fix because of last prototype pollution fix in v19.8.5
  • aeab3ca 19.8.5
  • f58c423 new version
  • 932f5f6 fix potential prototype pollution when backend plugin resolves a malicious la...
  • 2dc8267 Merge pull request #1533 from pravi/update-rollup-plugin-babel
  • dae2b32 chore: update build dependency (use @rollup/plugin-babel)
  • 4f9ef14 Merge pull request #1532 from pravi/update-node-resolve-plugin
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by adrai, a new releaser for i18next since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 3 years ago

Superseded by #510.