search

manGoweb / mango-cli

A project scaffolding and build tool to accelerate your development
http://mangocli.org
MIT License
30 stars 9 forks source link

Bump xmldom and svg-sprite #361

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Removes xmldom. It's no longer used after updating ancestor dependency svg-sprite. These dependencies need to be updated together.

Removes xmldom

Updates svg-sprite from 1.5.0 to 1.5.4

Release notes

Sourced from svg-sprite's releases.

v1.5.4

  • Update patch dependencies
  • Fix doc badges

https://github.com/svg-sprite/svg-sprite/compare/v1.5.3...v1.5.4

v1.5.3

  • Fix lodash cloneDeep usage (#431)
  • Replace the deprecated image-diff with looks-same
  • Replace node-sass with sass. (#453)
  • CI: add Node.js 16
  • Update dependencies

https://github.com/svg-sprite/svg-sprite/compare/v1.5.2...v1.5.3

v1.5.2

  • logger: add milliseconds too
  • Update patch dependencies and regenerate package-lock.json
  • Backport #321: test: replace the zebra with a simple gene image
  • Update to @​xmldom/xmldom 0.7.2

https://github.com/svg-sprite/svg-sprite/compare/v1.5.1...v1.5.2

v1.5.1

  • Move mocha and should to devDependencies
  • bin/svg-sprite.js: use _.merge instead of the custom function (#442)
  • fix(logger): use Winston v3 format configuration
  • refactor(logger): remove dateformat dependency
  • Links with "target=_blank" should prevent phishing attacks
  • Remove lodash.pluck dependency and use _.map (#388)
  • Switch to Buffer.from (#389)
  • Switch to GitHub Actions
  • Update minor and patch dependencies and regenerate package-lock.json
  • test: add a separate css.packed.12.png file for Node.js > 10
  • Remove the unused vinyl-fs and mocha-lcov-reporter devDependencies
  • Update dependencies
  • Drop Node.js 6.x support from CI.
  • Remove pretest script
  • CI: run example too
  • Rename LICENSE and fix links to repo

https://github.com/svg-sprite/svg-sprite/compare/v1.5.0...v1.5.1

Changelog

Sourced from svg-sprite's changelog.

Newer release notes are published on the GitHub release page: https://github.com/svg-sprite/svg-sprite/releases

1.6.0-alpha Maintenance pre-release (2020-01-18)

  • Remove support for Node < 8.0
  • Update dependencies (#306, #310)
  • Update documentation to use updated SVGO plugin name (#275)
  • Move mocha and should dependencies back to devDependencies again (#297, #285)
  • Add built-in templating function to encode hash signs (#294)
  • Fix verbose logging output (#279, #291)
  • Add option to prefix auto-generated namespace IDs (#292, #293)
  • Update preview templates to use SVG checker image (#287)
Commits
Maintainer changes

This version was pushed to npm by xhmikosr, a new releaser for svg-sprite since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/manGoweb/mango-cli/network/alerts).