Closed dependabot[bot] closed 2 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/async@3.2.6 | None | 0 |
808 kB | aearly |
🚮 Removed packages: npm/async@3.2.5)
Bumps async from 3.2.5 to 3.2.6.
Commits
85fb18f
Version 3.2.68c0c941
Update built files5f756b4
Fix ReDoS (#1980)39cdc9b
build(deps-dev): bump karma from 6.4.3 to 6.4.4 (#1985)7b8ddeb
build(deps-dev): bump@babel/core
from 7.24.7 to 7.25.2 (#1981)4634a9d
build(deps-dev): bump rollup from 4.18.0 to 4.19.2 (#1982)afb176c
build(deps-dev): bump chai from 4.4.1 to 4.5.0 (#1983)3568a74
build(deps-dev): bump@babel/eslint-parser
from 7.24.7 to 7.25.1 (#1984)9e885fd
build(deps-dev): bump babel-plugin-istanbul from 6.1.1 to 7.0.0 (#1986)f9c7f2a
build(deps-dev): bump semver from 7.6.2 to 7.6.3 (#1987)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show