search

julianpoy / RecipeSage

A Collaborative Recipe Keeper, Meal Planner, and Shopping List Organizer in PWA form.
https://recipesage.com
639 stars 64 forks source link

chore(deps): bump the npm_and_yarn group across 1 directory with 4 updates #1462

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the npm_and_yarn group with 4 updates in the / directory: firebase, jsdom, vite and @angular-devkit/build-angular.

Updates firebase from 10.12.4 to 10.14.1

Release notes

Sourced from firebase's releases.

firebase@10.14.1

For more detailed release notes, see Firebase JavaScript SDK Release Notes.

What's Changed

@​firebase/app@​0.10.13

Patch Changes

  • Update SDK_VERSION.

@​firebase/app-compat@​0.2.43

Patch Changes

  • Updated dependencies []:
  • @​firebase/app@​0.10.13

firebase@10.14.1

Patch Changes

  • Updated dependencies [d6fa58854]:
  • @​firebase/app@​0.10.13
  • @​firebase/messaging@​0.12.12
  • @​firebase/app-compat@​0.2.43
  • @​firebase/messaging-compat@​0.2.12

@​firebase/messaging@​0.12.12

Patch Changes

  • d6fa58854 #8534 - The logging endpoint has been updated to ensure proper logging of WebPush entries. This resolves an issue where BigQuery logs were missing WebPush data. The payload structure has also been updated in alignment with the latest logging requirements as specified in go/firelog.

@​firebase/messaging-compat@​0.2.12

Patch Changes

firebase@10.14.0

For more detailed release notes, see Firebase JavaScript SDK Release Notes.

What's Changed

@​firebase/data-connect@​0.1.0

Minor Changes

... (truncated)

Commits


Updates jsdom from 24.0.0 to 25.0.1

Release notes

Sourced from jsdom's releases.

Version 25.0.1

  • Updated dependencies, notably tough-cookie, which no longer prints a deprecation warning.

Version 25.0.0

This major release changes the prototype of a jsdom's EventTarget.prototype to point to the Object.prototype inside the jsdom, instead of pointing to the Node.js Object.prototype. Thus, the prototype chain of Window stays entirely within the jsdom, never crossing over into the Node.js realm.

This only occurs when runScripts is set to non-default values of "dangerously" or "outside-only", as with the default value, there is no separate Object.prototype inside the jsdom.

This will likely not impact many programs, but could cause some changes in instanceof behavior, and so out of an abundance of caution, we're releasing it as a new major version.

Version 24.1.3

  • Fixed calls to postMessage() that were done as a bare property (i.e., postMessage() instead of window.postMessage()).

Version 24.1.2

  • Fixed an issue with the in operator applied to EventTarget methods, e.g. 'addEventListener' in window, which only appeared in Node.js ≥22.5.0. (legendecas)
  • Fixed the events fired by blur(): it no longer fires focus and focusin on the Document, and blur and focusout no longer have their relatedTarget property set. (asamuzaK)

Version 24.1.1

  • Fixed selection methods to trigger the selectionchange event on the Document object. (piotr-oles)

Version 24.1.0

  • Added the getSetCookie() method to the Headers class. (ushiboy)
  • Fixed the creation and parsing of elements with names from Object.prototype, like "constructor" or "toString".
  • Updated rweb-cssom, which can now parse additional CSS constructs.
Changelog

Sourced from jsdom's changelog.

25.0.1

  • Updated dependencies, notably tough-cookie, which no longer prints a deprecation warning.

25.0.0

This major release changes the prototype of a jsdom's EventTarget.prototype to point to the Object.prototype inside the jsdom, instead of pointing to the Node.js Object.prototype. Thus, the prototype chain of Window stays entirely within the jsdom, never crossing over into the Node.js realm.

This only occurs when runScripts is set to non-default values of "dangerously" or "outside-only", as with the default value, there is no separate Object.prototype inside the jsdom.

This will likely not impact many programs, but could cause some changes in instanceof behavior, and so out of an abundance of caution, we're releasing it as a new major version.

24.1.3

  • Fixed calls to postMessage() that were done as a bare property (i.e., postMessage() instead of window.postMessage()).

24.1.2

  • Fixed an issue with the in operator applied to EventTarget methods, e.g. 'addEventListener' in window, which only appeared in Node.js ≥22.5.0. (legendecas)
  • Fixed the events fired by blur(): it no longer fires focus and focusin on the Document, and blur and focusout no longer have their relatedTarget property set. (asamuzaK)

24.1.1

  • Fixed selection methods to trigger the selectionchange event on the Document object. (piotr-oles)

24.1.0

  • Added the getSetCookie() method to the Headers class. (ushiboy)
  • Fixed the creation and parsing of elements with names from Object.prototype, like "constructor" or "toString".
  • Updated rweb-cssom, which can now parse additional CSS constructs.
Commits
  • 04541b3 Version 25.0.1
  • 96bd111 Update dependencies and dev dependencies
  • d08440c Upgrade tough-cookie to v5.0.0
  • c53efc8 Version 25.0.0
  • 784c8a5 Set EventTarget.prototype to the jsdom's Object.prototype
  • 0314f1e Version 24.1.3
  • 46d5d5c Fix postMessage referenced as a bare property
  • a241df6 Version 24.1.2
  • c3a9aed Remove upstreamed WPTs
  • 07fab37 Refactor Window object setup code
  • Additional commits viewable in compare view


Updates vite from 5.1.7 to 5.1.8

Release notes

Sourced from vite's releases.

v5.1.8

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

5.1.8 (2024-09-19)

Commits


Updates @angular-devkit/build-angular from 17.3.9 to 17.3.10

Release notes

Sourced from @​angular-devkit/build-angular's releases.

v17.3.10

17.3.10 (2024-09-25)

@​angular-devkit/build-angular

Commit Description
fix - 30489d8fd update vite to 5.1.8
Changelog

Sourced from @​angular-devkit/build-angular's changelog.

17.3.10 (2024-09-25)

@​angular-devkit/build-angular

Commit Type Description
30489d8fd fix update vite to 4.1.8

19.0.0-next.7 (2024-09-18)

@​angular/cli

Commit Type Description
f249e7e85 perf enable Node.js compile code cache when available

@​angular/build

Commit Type Description
f6b7cd925 fix support HTTP HEAD requests for virtual output files

@​angular/ssr

Commit Type Description
f346ee8a8 feat add isMainModule function
2640bf7a6 fix correct route extraction and error handling

18.2.5 (2024-09-18)

@​angular/build

Commit Type Description
707431625 fix support HTTP HEAD requests for virtual output files
1032b3da1 fix update vite to 5.4.6

... (truncated)

Commits
  • b6d1f68 release: cut the v17.3.10 release
  • 78a2ba7 test: update E2E snapshot versions to stable v17.3.x
  • 30489d8 fix(@​angular-devkit/build-angular): update vite to 4.1.8
  • See full diff in compare view


Most Recent Ignore Conditions Applied to This Pull Request | Dependency Name | Ignore Conditions | | --- | --- | | @angular-devkit/build-angular | [> 17.3.2] |

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Note: Dependabot was ignoring updates to this dependency, but since you've updated it yourself we've started tracking it for you again. 🤖

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/julianpoy/RecipeSage/network/alerts).