sonarcloud[bot]
commented
2 years ago Kudos, SonarCloud Quality Gate passed! 
0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells
No Coverage information
0.0% Duplication
Open renovate[bot] opened 3 years ago
sonarcloud[bot]
commented
2 years ago Kudos, SonarCloud Quality Gate passed!
0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells
No Coverage information
0.0% Duplication
renovate[bot]
commented
1 year ago Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.
You can manually request rebase by checking the rebase/retry box above.
ā Warning: custom changes will be lost.
This PR contains the following updates:
^3.13.1->^4.0.0Release Notes
nodeca/js-yaml
### [`v4.1.0`](https://togithub.com/nodeca/js-yaml/blob/HEAD/CHANGELOG.md#410---2021-04-15) [Compare Source](https://togithub.com/nodeca/js-yaml/compare/4.0.0...4.1.0) ##### Added - Types are now exported as `yaml.types.XXX`. - Every type now has `options` property with original arguments kept as they were (see `yaml.types.int.options` as an example). ##### Changed - `Schema.extend()` now keeps old type order in case of conflicts (e.g. Schema.extend(\[ a, b, c ]).extend(\[ b, a, d ]) is now ordered as `abcd` instead of `cbad`). ### [`v4.0.0`](https://togithub.com/nodeca/js-yaml/blob/HEAD/CHANGELOG.md#400---2021-01-03) [Compare Source](https://togithub.com/nodeca/js-yaml/compare/3.14.1...4.0.0) ##### Changed - Check [migration guide](migrate_v3\_to_v4.md) to see details for all breaking changes. - Breaking: "unsafe" tags `!!js/function`, `!!js/regexp`, `!!js/undefined` are moved to [js-yaml-js-types](https://togithub.com/nodeca/js-yaml-js-types) package. - Breaking: removed `safe*` functions. Use `load`, `loadAll`, `dump` instead which are all now safe by default. - `yaml.DEFAULT_SAFE_SCHEMA` and `yaml.DEFAULT_FULL_SCHEMA` are removed, use `yaml.DEFAULT_SCHEMA` instead. - `yaml.Schema.create(schema, tags)` is removed, use `schema.extend(tags)` instead. - `!!binary` now always mapped to `Uint8Array` on load. - Reduced nesting of `/lib` folder. - Parse numbers according to YAML 1.2 instead of YAML 1.1 (`01234` is now decimal, `0o1234` is octal, `1:23` is parsed as string instead of base60). - `dump()` no longer quotes `:`, `[`, `]`, `(`, `)` except when necessary, [#470](https://togithub.com/nodeca/js-yaml/issues/470), [#557](https://togithub.com/nodeca/js-yaml/issues/557). - Line and column in exceptions are now formatted as `(X:Y)` instead of `at line X, column Y` (also present in compact format), [#332](https://togithub.com/nodeca/js-yaml/issues/332). - Code snippet created in exceptions now contains multiple lines with line numbers. - `dump()` now serializes `undefined` as `null` in collections and removes keys with `undefined` in mappings, [#571](https://togithub.com/nodeca/js-yaml/issues/571). - `dump()` with `skipInvalid=true` now serializes invalid items in collections as null. - Custom tags starting with `!` are now dumped as `!tag` instead of `!`, [#576](https://togithub.com/nodeca/js-yaml/issues/576). - Custom tags starting with `tag:yaml.org,2002:` are now shorthanded using `!!`, [#258](https://togithub.com/nodeca/js-yaml/issues/258). ##### Added - Added `.mjs` (es modules) support. - Added `quotingType` and `forceQuotes` options for dumper to configure string literal style, [#290](https://togithub.com/nodeca/js-yaml/issues/290), [#529](https://togithub.com/nodeca/js-yaml/issues/529). - Added `styles: { '!!null': 'empty' }` option for dumper (serializes `{ foo: null }` as "` foo: `"), [#570](https://togithub.com/nodeca/js-yaml/issues/570). - Added `replacer` option (similar to option in JSON.stringify), [#339](https://togithub.com/nodeca/js-yaml/issues/339). - Custom `Tag` can now handle all tags or multiple tags with the same prefix, [#385](https://togithub.com/nodeca/js-yaml/issues/385). ##### Fixed - Astral characters are no longer encoded by `dump()`, [#587](https://togithub.com/nodeca/js-yaml/issues/587). - "duplicate mapping key" exception now points at the correct column, [#452](https://togithub.com/nodeca/js-yaml/issues/452). - Extra commas in flow collections (e.g. `[foo,,bar]`) now throw an exception instead of producing null, [#321](https://togithub.com/nodeca/js-yaml/issues/321). - `__proto__` key no longer overrides object prototype, [#164](https://togithub.com/nodeca/js-yaml/issues/164). - Removed `bower.json`. - Tags are now url-decoded in `load()` and url-encoded in `dump()` (previously usage of custom non-ascii tags may have led to invalid YAML that can't be parsed). - Anchors now work correctly with empty nodes, [#301](https://togithub.com/nodeca/js-yaml/issues/301). - Fix incorrect parsing of invalid block mapping syntax, [#418](https://togithub.com/nodeca/js-yaml/issues/418). - Throw an error if block sequence/mapping indent contains a tab, [#80](https://togithub.com/nodeca/js-yaml/issues/80). ### [`v3.14.1`](https://togithub.com/nodeca/js-yaml/blob/HEAD/CHANGELOG.md#3141---2020-12-07) [Compare Source](https://togithub.com/nodeca/js-yaml/compare/3.14.0...3.14.1) ##### Security - Fix possible code execution in (already unsafe) `.load()` (in \&anchor). ### [`v3.14.0`](https://togithub.com/nodeca/js-yaml/blob/HEAD/CHANGELOG.md#3140---2020-05-22) [Compare Source](https://togithub.com/nodeca/js-yaml/compare/3.13.1...3.14.0) ##### Changed - Support `safe/loadAll(input, options)` variant of call. - CI: drop outdated nodejs versions. - Dev deps bump. ##### Fixed - Quote `=` in plain scalars [#519](https://togithub.com/nodeca/js-yaml/issues/519). - Check the node type for `!` tag in case user manually specifies it. - Verify that there are no null-bytes in input. - Fix wrong quote position when writing condensed flow, [#526](https://togithub.com/nodeca/js-yaml/issues/526).Configuration
š Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
š¦ Automerge: Disabled by config. Please merge this manually once you are satisfied.
ā» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
š Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.