infosec-intern / vscode-yara

VSCode extension for the YARA pattern matching language
MIT License
63 stars 14 forks source link

Bump nanoid and mocha #68

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps nanoid to 3.3.3 and updates ancestor dependency mocha. These dependencies need to be updated together.

Updates nanoid from 3.1.20 to 3.3.3

Changelog

Sourced from nanoid's changelog.

3.3.3

  • Reduced size (by Anton Khlynovskiy).

3.3.2

  • Fixed enhanced-resolve support.

3.3.1

  • Reduced package size.

3.3

  • Added size argument to function from customAlphabet (by Stefan Sundin).

3.2

  • Added --size and --alphabet arguments to binary (by Vitaly Baev).

3.1.32

  • Reduced async exports size (by Artyom Arutyunyan).
  • Moved from Jest to uvu (by Vitaly Baev).

3.1.31

  • Fixed collision vulnerability on object in size (by Artyom Arutyunyan).

3.1.30

  • Reduced size for project with brotli compression (by Anton Khlynovskiy).

3.1.29

  • Reduced npm package size.

3.1.28

  • Reduced npm package size.

3.1.27

  • Cleaned dependencies from development tools.

3.1.26

  • Improved performance (by Eitan Har-Shoshanim).
  • Reduced npm package size.

3.1.25

  • Fixed browserify support.

3.1.24

  • Fixed browserify support (by Artur Paikin).

3.1.23

  • Fixed esbuild support.

3.1.22

  • Added default and browser.default to package.exports.

... (truncated)

Commits


Updates mocha from 8.3.1 to 10.1.0

Release notes

Sourced from mocha's releases.

v10.1.0

10.1.0 / 2022-10-16

:tada: Enhancements

:nut_and_bolt: Other

v10.0.0

10.0.0 / 2022-05-01

:boom: Breaking Changes

:nut_and_bolt: Other

Also thanks to @​ea2305 and @​SukkaW for improvements to our documentation.

v9.2.2

9.2.2 / 2022-03-11

Please also note our announcements.

:bug: Fixes

... (truncated)

Changelog

Sourced from mocha's changelog.

10.1.0 / 2022-10-16

:tada: Enhancements

:nut_and_bolt: Other

10.0.0 / 2022-05-01

:boom: Breaking Changes

:nut_and_bolt: Other

Also thanks to @​ea2305 and @​SukkaW for improvements to our documentation.

9.2.2 / 2022-03-11

:bug: Fixes

:nut_and_bolt: Other

... (truncated)

Commits
  • 5f96d51 build(v10.1.0): release
  • ed74f16 build(v10.1.0): update CHANGELOG
  • 51d4746 chore(devDeps): update 'ESLint' to v8 (#4926)
  • 4e06a6f fix(browser): increase contrast for replay buttons (#4912)
  • 41567df Support prefers-color-scheme: dark (#4896)
  • 61b4b92 fix the regular expression for function clean in utils.js (#4770)
  • 77c18d2 chore: use standard 'Promise.allSettled' instead of polyfill (#4905)
  • 84b2f84 chore(ci): upgrade GH actions to latest versions (#4899)
  • 023f548 build(v10.0.0): release
  • 62b1566 build(v10.0.0): update CHANGELOG
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/infosec-intern/vscode-yara/network/alerts).
dependabot[bot] commented 2 years ago

Looks like these dependencies are no longer updatable, so this is no longer needed.