search

mozilla / nimbus-shared

Shared data and schemas for Project Nimbus
https://mozilla.github.io/nimbus-shared
Mozilla Public License 2.0
5 stars 15 forks source link

Bump node-fetch, @ampproject/toolbox-core and @ampproject/toolbox-validator-rules in /docs #216

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps node-fetch, @ampproject/toolbox-core and @ampproject/toolbox-validator-rules. These dependencies needed to be updated together. Updates node-fetch from 2.6.0 to 2.6.7

Release notes

Sourced from node-fetch's releases.

v2.6.7

Security patch release

Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred

What's Changed

Full Changelog: https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7

v2.6.6

What's Changed

Full Changelog: https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6

v2.6.2

fixed main path in package.json

v2.6.1

This is an important security release. It is strongly recommended to update as soon as possible.

See CHANGELOG for details.

Commits
  • 1ef4b56 backport of #1449 (#1453)
  • 8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (#1310)
  • f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (...
  • b5417ae fix: import whatwg-url in a way compatible with ESM Node (#1303)
  • 18193c5 fix v2.6.3 that did not sending query params (#1301)
  • ace7536 fix: properly encode url with unicode characters (#1291)
  • 152214c Fix(package.json): Corrected main file path in package.json (#1274)
  • b5e2e41 update version number
  • 2358a6c Honor the size option after following a redirect and revert data uri support
  • 8c197f8 docs: Fix typos and grammatical errors in README.md (#686)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by endless, a new releaser for node-fetch since your current version.


Updates @ampproject/toolbox-core from 2.5.4 to 2.9.0

Release notes

Sourced from @​ampproject/toolbox-core's releases.

v2.8.0

:rocket: Enhancement

:bug: Bug Fix

... (truncated)

Changelog

Sourced from @​ampproject/toolbox-core's changelog.

2.9.0 (2022-06-23)

:rocket: Enhancement

:bug: Bug Fix

  • optimizer
    • #1319 Fix i-amphtml-sizer responsive issue (@​ediamin)
    • #1312 More robust auto extension import (@​sebastianbenz)
    • #1303 Fix for issue #1302: "SSR: Duplicated ids in rendered markup, if there are nodes with attributes 'media', 'heights' or 'sizes'" (@​DK-Stern)
    • #1305 Fix for issue #1304: "SSR: Transforming of nodes with attribute 'heights' fails, if value contains multiple media queries" (@​DK-Stern)

:house: Internal

  • cache-url, cli, cloudflare-optimizer-scripts, linter, optimizer-docker, optimizer, page-experience, update-cache
  • cache-list, cache-url, cli, cloudflare-optimizer-scripts, core, cors, linter, optimizer-docker, optimizer-express, optimizer, page-experience, runtime-fetch, runtime-version, script-csp, update-cache, validator-rules

Committers: 6

v2.8.10

:bug: Bug Fix

  • optimizer
    • #1312 More robust auto extension import

v2.8.9

:bug: Bug Fix

  • optimizer
    • #1303 Fix for issue #1302: "SSR: Duplicated ids in rendered markup, if there are nodes with attributes 'media', 'heights' or 'sizes'"
    • #1305 Fix for issue #1304: "SSR: Transforming of nodes with attribute 'heights' fails, if value contains multiple media queries"

v2.8.8

:rocket: Enhancement

  • linter
    • Upgrade to latest amphtml validator version

v2.8.5

... (truncated)

Commits


Updates @ampproject/toolbox-validator-rules from 2.5.4 to 2.9.0

Release notes

Sourced from @​ampproject/toolbox-validator-rules's releases.

v2.8.0

:rocket: Enhancement

:bug: Bug Fix

... (truncated)

Changelog

Sourced from @​ampproject/toolbox-validator-rules's changelog.

2.9.0 (2022-06-23)

:rocket: Enhancement

:bug: Bug Fix

  • optimizer
    • #1319 Fix i-amphtml-sizer responsive issue (@​ediamin)
    • #1312 More robust auto extension import (@​sebastianbenz)
    • #1303 Fix for issue #1302: "SSR: Duplicated ids in rendered markup, if there are nodes with attributes 'media', 'heights' or 'sizes'" (@​DK-Stern)
    • #1305 Fix for issue #1304: "SSR: Transforming of nodes with attribute 'heights' fails, if value contains multiple media queries" (@​DK-Stern)

:house: Internal

  • cache-url, cli, cloudflare-optimizer-scripts, linter, optimizer-docker, optimizer, page-experience, update-cache
  • cache-list, cache-url, cli, cloudflare-optimizer-scripts, core, cors, linter, optimizer-docker, optimizer-express, optimizer, page-experience, runtime-fetch, runtime-version, script-csp, update-cache, validator-rules

Committers: 6

v2.8.10

:bug: Bug Fix

  • optimizer
    • #1312 More robust auto extension import

v2.8.9

:bug: Bug Fix

  • optimizer
    • #1303 Fix for issue #1302: "SSR: Duplicated ids in rendered markup, if there are nodes with attributes 'media', 'heights' or 'sizes'"
    • #1305 Fix for issue #1304: "SSR: Transforming of nodes with attribute 'heights' fails, if value contains multiple media queries"

v2.8.8

:rocket: Enhancement

  • linter
    • Upgrade to latest amphtml validator version

v2.8.5

... (truncated)

Commits


You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mozilla/nimbus-shared/network/alerts).
> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.
dependabot[bot] commented 1 year ago

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.