search

moneyhub / moneyhub-api-client

Node.JS Client for the Moneyhub API
10 stars 7 forks source link

Bump cacheable-request, got and openid-client #58

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps cacheable-request to 10.2.7 and updates ancestor dependencies cacheable-request, got and openid-client. These dependencies need to be updated together.

Updates cacheable-request from 7.0.2 to 10.2.7

Release notes

Sourced from cacheable-request's releases.

v10.2.6

Fix for memory leak on Listeners

The listener was not being removed on response and just error but new handlers were being added causing a memory leak.

line 220 in src/index.ts was modified to remove the listener on response also 

         if (this.cache instanceof Keyv) {
                const cachek = this.cache;
                cachek.once('error', errorHandler);
                ee.on('error', () => cachek.removeListener('error', errorHandler));
                ee.on('response', () => cachek.removeListener('error', errorHandler));
            }

What's Changed

Full Changelog: https://github.com/jaredwray/cacheable-request/compare/v10.2.5...v10.2.6

v10.2.5

Types definition issue with http-cache-sematics as that type definition needs to be in dependencies. Thanks @​Maxim-Mazurok

What's Changed

Full Changelog: https://github.com/jaredwray/cacheable-request/compare/v10.2.4...v10.2.5

v10.2.4

Minor updates with one exception is that we removed @types/http-cache-semantics from the main dependencies as it does not look to be needed.

What's Changed

Full Changelog: https://github.com/jaredwray/cacheable-request/compare/v10.2.3...v10.2.4

v10.2.3 Maintenance Release

Upgrading core modules in the system such as keyv and also a minor fix to an uncaught exception that we were seeing referenced here: sindresorhus/got#1925

Additional update is moving normalize-url to 8.0.0 which after testing it looks to not affect anything but will post the release notes here: https://github.com/sindresorhus/normalize-url/releases/tag/v8.0.0

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by jaredwray, a new releaser for cacheable-request since your current version.


Updates got from 11.8.5 to 12.5.3

Release notes

Sourced from got's releases.

v12.5.3

  • Fix abort event listeners not always being cleaned up (#2162) 3cc40b5

https://github.com/sindresorhus/got/compare/v12.5.2...v12.5.3

v12.5.2

  • Improve TypeScript 4.9 compatibility (#2163) 39f83b6

https://github.com/sindresorhus/got/compare/v12.5.1...v12.5.2

v12.5.1

  • Fix compatibility with TypeScript and ESM 3b3ea67
  • Fix request body not being properly cached (#2150) 3e9d3af

https://github.com/sindresorhus/got/compare/v12.5.0...v12.5.1

v12.5.0

  • Disable method rewriting on 307 and 308 status codes (#2145) e049e94
  • Upgrade dependencies 8630815 f0ac0b3 4c3762a

https://github.com/sindresorhus/got/compare/v12.4.1...v12.5.0

v12.4.1

Fixes

  • Fix options.context being not extensible b671480715dbbff908e9a385f5e714570c663cd7
  • Don't emit uploadProgress after promise cancelation 693de217b030816f574d6e4cb505ee2e77b21c29

https://github.com/sindresorhus/got/compare/v12.4.0...v12.4.1

v12.4.0

Improvements

  • Support FormData without known length (#2120) 850773c

Fixes

  • Don't call beforeError hooks with HTTPError if the throwHttpErrors option is false (#2104) 3927348

https://github.com/sindresorhus/got/compare/v12.3.1...v12.4.0

v12.3.1

  • Don't freeze signal when freezing Options (#2100) 43b1467

https://github.com/sindresorhus/got/compare/v12.3.0...v12.3.1

v12.3.0

  • Add .off() method for events (#2092) 88056be

https://github.com/sindresorhus/got/compare/v12.2.0...v12.3.0

... (truncated)

Commits


Updates openid-client from 4.9.1 to 5.4.0

Release notes

Sourced from openid-client's releases.

v5.4.0

Features

  • allow third party initiated login requests to trigger strategy (568709a), closes #510 #564

v5.3.4

Refactor

Fixes

  • regression introduced in v5.3.3 (4f6e847)

v5.3.2

Fixes

  • passport: ignore static state and nonce passed to Strategy() (#556) (43daff3)

v5.3.1

Fixes

  • typescript: requestResource returns a Promise (#546) (8bc9519), closes #488

v5.3.0

Features

  • JARM is now a stable feature (10e3a37)

v5.2.1

Fixes

  • typescript: add client_id and logout_hint to EndSessionParameters (b7b5438)

v5.2.0

Features

  • add client_id to endSessionUrl query strings (6fd9350)

Fixes

  • allow endSessionUrl defaults to be overriden (7cc2402)

v5.1.10

Refactor

  • engines: remove package.json engines restriction (9aefba3)

v5.1.9

... (truncated)

Changelog

Sourced from openid-client's changelog.

5.4.0 (2023-02-05)

Features

  • allow third party initiated login requests to trigger strategy (568709a), closes #510 #564

5.3.4 (2023-02-02)

Fixes

  • regression introduced in v5.3.3 (4f6e847)

5.3.3 (2023-02-02)

Refactor

5.3.2 (2023-01-20)

Fixes

  • passport: ignore static state and nonce passed to Strategy() (#556) (43daff3)

5.3.1 (2022-11-28)

Fixes

  • typescript: requestResource returns a Promise (#546) (8bc9519), closes #488

5.3.0 (2022-11-09)

Features

  • JARM is now a stable feature (10e3a37)

5.2.1 (2022-10-20)

Fixes

  • typescript: add client_id and logout_hint to EndSessionParameters (b7b5438)

5.2.0 (2022-10-19)

... (truncated)

Commits
  • a6f3f0a chore(release): 5.4.0
  • 568709a feat: allow third party initiated login requests to trigger strategy
  • 363c215 chore(release): 5.3.4
  • 4f6e847 fix: regression introduced in v5.3.3
  • 5dbe8bc chore(release): 5.3.3
  • f1881bc refactor: remove use of Node.js v8 builtin
  • 7bd3e8d docs: link out to oauth4webapi
  • f73caad ci: update lock.yml
  • 7ffb0c1 chore(release): 5.3.2
  • 93f788d chore: fixup 43daff3
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/moneyhub/moneyhub-api-client/network/alerts).