Closed dependabot[bot] closed 1 month ago
@dependabot ignore axios minor version
OK, I won't notify you about version 1.7.x of axios again, unless you unignore it.
Looks like these dependencies are no longer updatable, so this is no longer needed.
Bumps the npm_and_yarn group with 4 updates: jose, mysql2, axios and @grpc/grpc-js.
Updates
jose
from 5.3.0 to 5.4.0Release notes
Sourced from jose's releases.
Changelog
Sourced from jose's changelog.
Commits
821b275
chore(release): 5.4.058bcffb
feat: expose JWT's payload in JWTClaimValidationFailed instancescc2b2d7
refactor: add explicit return types everywhere89a2604
test: deno debugd278530
chore: bump dev deps4261556
chore: bump dev depsc553e54
chore: cleanup after releaseUpdates
mysql2
from 3.9.7 to 3.9.8Release notes
Sourced from mysql2's releases.
Changelog
Sourced from mysql2's changelog.
Commits
f637d3f
chore(master): release 3.9.8 (#2700)efe3db5
fix(security): sanitize fields and tables when using nestTables (#2702)2e03694
fix: support deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (#2...8b5f691
fix(typings): typo fromjonServerPublicKey
toonServerPublicKey
(#2699)5c75802
build(deps-dev): bump tsx from 4.10.5 to 4.11.0 in /website (#2695)179769f
build(deps): bump@easyops-cn/docusaurus-search-local
in /website (#2696)56289e2
build(deps-dev): bump poku from 1.12.1 to 1.13.0 (#2698)b029308
build(deps-dev): bump poku from 1.12.1 to 1.13.0 in /website (#2697)539acb8
build(deps): bump lucide-react from 0.378.0 to 0.379.0 in /website (#2693)dc80580
build(deps-dev): bump@typescript-eslint/eslint-plugin
from 7.9.0 to 7.10.0 i...Updates
axios
from 0.28.1 to 1.7.0Release notes
Sourced from axios's releases.
... (truncated)
Changelog
Sourced from axios's changelog.
... (truncated)
Commits
3041c61
[Release] v1.7.0 (#6408)18b13cb
chore(docs): add fetch adapter docs; (#6407)e62099b
fix(fetch): fixed a possible memory leak in the AbortController for the strea...b49aa8e
chore(release): v1.7.0-beta.2 (#6403)d57f03a
chore(ci): bump create-pull-request version to fix a bug; (#6405)097b0d1
chore(ci): add tag resolution for npm releases based on package version; (#6404)870e0a7
fix(fetch): fix headers getting from a stream response; (#6401)95a3e8e
fix(fetch): fix & optimize progress capturing for cases when the request data...ad3174a
fix(fetch): capitalize HTTP method names; (#6395)b9f4848
chore(release): v1.7.0-beta.1 (#6383)Updates
@grpc/grpc-js
from 1.9.12 to 1.9.15Release notes
Sourced from
@grpc/grpc-js
's releases.Commits
08b0422
Merge pull request from GHSA-7v5v-9h63-cj86c75e048
grpc-js: Bump to 1.9.15d5d62b4
grpc-js: Avoid buffering significantly more than max_receive_message_size per...02d0344
Merge pull request #2741 from sergiitk/backport-1.9-psm-interop-common-prod-t...cf14020
Merge pull request #2729 from sergiitk/psm-interop-common-prod-testsda44229
Merge pull request #2738 from murgatroid99/backport-1.9-grpc-js_linkify-it_fix5ae7c8c
Merge pull request #2735 from murgatroid99/grpc-js_linkify-it_fixeed21ba
Merge pull request #2714 from sergiitk/backport-1.9-psm-interop-pkg-dev63763a4
Merge pull request #2712 from sergiitk/psm-interop-pkg-dev5be83dd
Merge pull request #2643 from murgatroid99/grpc-js_idle_timer_fixMost Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | axios | [>= 1.6.a, < 1.7] |Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show