search

jesus-collective / mobile

Jesus Collective website and mobile app
https://www.jesuscollective.com
4 stars 2 forks source link

Bump minimist and mapbox-gl #1301

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps minimist and mapbox-gl. These dependencies needed to be updated together. Updates minimist from 0.0.5 to 1.2.7

Changelog

Sourced from minimist's changelog.

v1.2.7 - 2022-10-10

Commits

  • [meta] add auto-changelog 0ebf4eb
  • [actions] add reusable workflows e115b63
  • [eslint] add eslint; rules to enable later are warnings f58745b
  • [Dev Deps] switch from covert to nyc ab03356
  • [readme] rename and add badges 236f4a0
  • [meta] create FUNDING.yml; add funding in package.json 783a49b
  • [meta] use npmignore to autogenerate an npmignore file f81ece6
  • Only apps should have lockfiles 56cad44
  • [Dev Deps] update covert, tape; remove unnecessary tap 49c5f9f
  • [Tests] add aud in posttest 228ae93
  • [meta] add safe-publish-latest 01fc23f
  • [meta] update repo URLs 6b164c7

v1.2.6 - 2022-03-21

Commits

  • test from prototype pollution PR bc8ecee
  • isConstructorOrProto adapted from PR c2b9819
  • security notice for additional prototype pollution issue ef88b93

v1.2.5 - 2020-03-12

v1.2.4 - 2020-03-11

Commits

  • security notice 4cf1354
  • additional test for constructor prototype pollution 1043d21

v1.2.3 - 2020-03-10

Commits

  • more failing proto pollution tests 13c01a5
  • even more aggressive checks for protocol pollution 38a4d1c

v1.2.2 - 2020-03-10

Commits

... (truncated)

Commits
  • c590d75 v1.2.7
  • 0ebf4eb [meta] add auto-changelog
  • e115b63 [actions] add reusable workflows
  • 01fc23f [meta] add safe-publish-latest
  • f58745b [eslint] add eslint; rules to enable later are warnings
  • 228ae93 [Tests] add aud in posttest
  • 236f4a0 [readme] rename and add badges
  • ab03356 [Dev Deps] switch from covert to nyc
  • 49c5f9f [Dev Deps] update covert, tape; remove unnecessary tap
  • 783a49b [meta] create FUNDING.yml; add funding in package.json
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by ljharb, a new releaser for minimist since your current version.


Updates mapbox-gl from 0.51.0 to 1.13.3

Release notes

Sourced from mapbox-gl's releases.

v1.13.3

🐞 Bug fixes

  • Fix incorrect billing when customAccessToken is provided along with non-Mapbox tiles (#12520)
  • Prevent video sources from entering fullscreen on iOS Safari (#11067)
  • Upgrade minimist to ^1.2.7 to avoid CVE-2021-44906 (#12442) (h/t @​Spasfonx)

v1.13.2

🐞 Bug fixes

  • Backport a fix for an iOS 15 issue where the iOS Safari tab bar interrupts touch interactions. (#11084)

v1.13.1

1.13.1

🐞 Bug fixes

  • Fix ImageSource not working in some cases in Firefox & Safari. #10230

v1.13.0

✨ Features and improvements

🐞 Bug fixes

  • Fix a bug where queryRenderedFeatures didn't properly expose the paint values if they were data-driven. #10074 (h/t @​osvodef)
  • Fix a bug where attribution didn't update when layer visibility changed during zooming. #9943
  • Fix a bug where hash control conflicted with external history manipulation (e.g. in single-page apps). #9960 (h/t @​raegen)
  • Fix a bug where fitBounds had an unexpected result with non-zero bearing and uneven padding. #9821 (h/t @​allison-strandberg)
  • Fix HTTP support when running GL JS against Mapbox Atlas. #10090
  • Fix a bug where the within expression didn't work in querySourceFeatures. #9933
  • Fix a bug where Popup content HTML element was removed on setDOMContent. #10036
  • Fix a compatibility bug when icon-image is used as a legacy categorical function. #10060
  • Reduce rapid memory growth in Safari by ensuring Image dataURI's are released. #10118

⚠️ Note on IE11

We intend to remove support for Internet Explorer 11 in a future release of GL JS later this year.

v1.12.0

✨ Features and improvements

  • Add methods for changing a vector tile source dynamically (e.g. setTiles, setUrl). #8048 (h/t @​stepankuzmin)
  • Add a filter option for GeoJSON sources to filter out features prior to processing (e.g. before clustering). #9864

... (truncated)

Changelog

Sourced from mapbox-gl's changelog.

1.13.3

🐞 Bug fixes

  • Fix incorrect billing when customAccessToken is provided along with non-Mapbox tiles (#12520)
  • Prevent video sources from entering fullscreen on iOS Safari (#11067)
  • Upgrade minimist to ^1.2.7 to avoid CVE-2021-44906 (#12442) (h/t @​Spasfonx)

1.13.2

🐞 Bug fixes

  • Fix an iOS 15 issue where the iOS Safari tab bar interrupts touch interactions. (#11084)

1.13.1

🐞 Bug fixes

  • Fix ImageSource not working in some cases in Firefox & Safari. #10230

1.13.0

✨ Features and improvements

🐞 Bug fixes

  • Fix a bug where queryRenderedFeatures didn't properly expose the paint values if they were data-driven. #10074 (h/t @​osvodef)
  • Fix a bug where attribution didn't update when layer visibility changed during zooming. #9943
  • Fix a bug where hash control conflicted with external history manipulation (e.g. in single-page apps). #9960 (h/t @​raegen)
  • Fix a bug where fitBounds had an unexpected result with non-zero bearing and uneven padding. #9821 (h/t @​allison-strandberg)
  • Fix HTTP support when running GL JS against Mapbox Atlas. #10090
  • Fix a bug where the within expression didn't work in querySourceFeatures. #9933
  • Fix a bug where Popup content HTML element was removed on setDOMContent. #10036
  • Fix a compatibility bug when icon-image is used as a legacy categorical function. #10060
  • Reduce rapid memory growth in Safari by ensuring Image dataURI's are released. #10118

⚠️ Note on IE11

We intend to remove support for Internet Explorer 11 in a future release of GL JS later this year.

1.12.0

✨ Features and improvements

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by mapbox-npm-05, a new releaser for mapbox-gl since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/jesus-collective/mobile/network/alerts).