search

neo4j-contrib / spatial

Neo4j Spatial is a library of utilities for Neo4j that faciliates the enabling of spatial operations on data. In particular you can add spatial indexes to already located data, and perform spatial operations on the data like searching for data within specified regions or within a specified distance of a point of interest. In addition classes are provided to expose the data to geotools and thereby to geotools enabled applications like geoserver and uDig.
http://neo4j-contrib.github.io/spatial
Other
780 stars 192 forks source link

Bump json5, @antora/cli and @antora/site-generator-default in /docs #425

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps json5 to 2.2.3 and updates ancestor dependencies json5, @antora/cli and @antora/site-generator-default. These dependencies need to be updated together.

Updates json5 from 2.1.3 to 2.2.3

Release notes

Sourced from json5's releases.

v2.2.3

  • Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2

  • Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1

  • Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0

  • New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)
Changelog

Sourced from json5's changelog.

v2.2.3 [code, diff]

  • Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

  • Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

  • Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

  • New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)
Commits
  • c3a7524 2.2.3
  • 94fd06d docs: update CHANGELOG for v2.2.3
  • 3b8cebf docs(security): use GitHub security advisories
  • f0fd9e1 docs: publish a security policy
  • 6a91a05 docs(template): bug -> bug report
  • 14f8cb1 2.2.2
  • 10cc7ca docs: update CHANGELOG for v2.2.2
  • 7774c10 fix: add proto to objects and arrays
  • edde30a Readme: slight tweak to intro
  • 97286f8 Improve example in readme
  • Additional commits viewable in compare view


Updates @antora/cli from 2.3.4 to 3.1.9

Changelog

Sourced from @​antora/cli's changelog.

== 3.1.9 (2024-07-05)

=== Changed

  • site-generator: Detect and warn when an AsciiDoc extension is registered as an Antora extension, but do no skip it (#1141)
  • Replace "AsciiDoc extension" with "Asciidoctor extension" in log messages

=== Fixed

  • file-publisher: Wrap legacy stream on file when preparing files for output providers; remove listeners limit (#1139)

== 3.1.8 (2024-06-25)

=== Added

  • asciidoc-loader: Detect (and skip) Antora extension that's been registered as an AsciiDoc extension and log a warning (#1084)
  • site-generator: Detect (and skip) AsciiDoc extension registered as an Antora extension and log a warning (#1104)

=== Changed

  • content-aggregator: Replace new fs.Stats() with plain JavaScript object (#1121)
  • ui-loader: Replace @​vscode/gulp-vinyl-zip with low-level zip file reader using yauzl (#1128)
  • content-classifier: Log warning if nav entry cannot be resolved (#1088)
  • ui-loader: Replace new fs.Stats() with plain JavaScript object (#1121)
  • page-composer: Fix page.role assignment to read value from role attribute instead of from (non-existent) docrole attribute (#1109)
  • file-publisher: Replace @​vscode/gulp-vinyl-zip with low-level zip file writer using yazl (#1129)
  • file-publisher: Assign empty object to stat property of output file if file does not have stat property (#1121)
  • file-publisher: Replace vinyl-fs#dest with internal implementation (#1131)
  • file-publisher: Replace dependency on cloneable-readable with internal implementation
  • file-publisher: Don't include file in archive (zip) if contents property is null; matches behavior of fs publisher
  • cli: Update description for extension option to clarify it may be specified multiple times.
  • Upgrade vinyl and vinyl-fs to address security and deprecation warnings (#1133)

=== Fixed

  • content-aggregator: Throw clearer error if antora.yml is empty or the data is not an object (#1112)
  • asciidoc-loader: Apply include tag filtering update from Asciidoctor (see asciidoctor/asciidoctor#4233) to ported logic in Antora (#1110)
  • redirect-producer: Filter out cyclic aliases (i.e., redirect loops) (#1114)
  • file-publisher: Create files streams for file publishers to process eagerly to avoid race condition (#1134)
  • cli: Use raw value if attribute value set using --attribute option cannot be parsed as YAML (#1137)

== 3.1.7 (2024-01-02)

=== Changed

  • content-aggregator: Don't retry failed clone/fetch operation if playbook only has one content source URL
  • content-aggregator: Preserve all information in wrapped error (#1099)
  • content-aggregator: Upgrade isomorphic-git to incorporate patch for properly handling network error (#1098)
  • content-aggregator: Add cause in log message when retrying failed fetch/clone operations in series (#1098)
  • content-aggregator: Clear timeout and keep-alive settings on git HTTP connections that don't use custom agent (#1101)

... (truncated)

Commits
  • 5673513 release 3.1.9
  • 588374a update what's new page for upcoming 3.1.9 release
  • b3cc520 replace "AsciiDoc extension" with "Asciidoctor extension" in log messages
  • 6bd133a merge !1051
  • adbcc8e resolves #1141 detect and warn when an AsciiDoc extension is registered as an...
  • c843cc8 backport fix for #1139 wrap legacy stream on file when preparing files for ou...
  • 4a54d84 add test to verify file with stream when there is a single output destination
  • 315dcfa use public methods to access object mode and destroyed on readable
  • 0ec1adb remove environment variable in CI workflow to suppress Node.js warnings
  • 42d3089 clarify that page attributes cannot be referenced in antora.yml
  • Additional commits viewable in compare view


Updates @antora/site-generator-default from 2.3.4 to 3.1.9

Changelog

Sourced from @​antora/site-generator-default's changelog.

== 3.1.9 (2024-07-05)

=== Changed

  • site-generator: Detect and warn when an AsciiDoc extension is registered as an Antora extension, but do no skip it (#1141)
  • Replace "AsciiDoc extension" with "Asciidoctor extension" in log messages

=== Fixed

  • file-publisher: Wrap legacy stream on file when preparing files for output providers; remove listeners limit (#1139)

== 3.1.8 (2024-06-25)

=== Added

  • asciidoc-loader: Detect (and skip) Antora extension that's been registered as an AsciiDoc extension and log a warning (#1084)
  • site-generator: Detect (and skip) AsciiDoc extension registered as an Antora extension and log a warning (#1104)

=== Changed

  • content-aggregator: Replace new fs.Stats() with plain JavaScript object (#1121)
  • ui-loader: Replace @​vscode/gulp-vinyl-zip with low-level zip file reader using yauzl (#1128)
  • content-classifier: Log warning if nav entry cannot be resolved (#1088)
  • ui-loader: Replace new fs.Stats() with plain JavaScript object (#1121)
  • page-composer: Fix page.role assignment to read value from role attribute instead of from (non-existent) docrole attribute (#1109)
  • file-publisher: Replace @​vscode/gulp-vinyl-zip with low-level zip file writer using yazl (#1129)
  • file-publisher: Assign empty object to stat property of output file if file does not have stat property (#1121)
  • file-publisher: Replace vinyl-fs#dest with internal implementation (#1131)
  • file-publisher: Replace dependency on cloneable-readable with internal implementation
  • file-publisher: Don't include file in archive (zip) if contents property is null; matches behavior of fs publisher
  • cli: Update description for extension option to clarify it may be specified multiple times.
  • Upgrade vinyl and vinyl-fs to address security and deprecation warnings (#1133)

=== Fixed

  • content-aggregator: Throw clearer error if antora.yml is empty or the data is not an object (#1112)
  • asciidoc-loader: Apply include tag filtering update from Asciidoctor (see asciidoctor/asciidoctor#4233) to ported logic in Antora (#1110)
  • redirect-producer: Filter out cyclic aliases (i.e., redirect loops) (#1114)
  • file-publisher: Create files streams for file publishers to process eagerly to avoid race condition (#1134)
  • cli: Use raw value if attribute value set using --attribute option cannot be parsed as YAML (#1137)

== 3.1.7 (2024-01-02)

=== Changed

  • content-aggregator: Don't retry failed clone/fetch operation if playbook only has one content source URL
  • content-aggregator: Preserve all information in wrapped error (#1099)
  • content-aggregator: Upgrade isomorphic-git to incorporate patch for properly handling network error (#1098)
  • content-aggregator: Add cause in log message when retrying failed fetch/clone operations in series (#1098)
  • content-aggregator: Clear timeout and keep-alive settings on git HTTP connections that don't use custom agent (#1101)

... (truncated)

Commits
  • 5673513 release 3.1.9
  • 588374a update what's new page for upcoming 3.1.9 release
  • b3cc520 replace "AsciiDoc extension" with "Asciidoctor extension" in log messages
  • 6bd133a merge !1051
  • adbcc8e resolves #1141 detect and warn when an AsciiDoc extension is registered as an...
  • c843cc8 backport fix for #1139 wrap legacy stream on file when preparing files for ou...
  • 4a54d84 add test to verify file with stream when there is a single output destination
  • 315dcfa use public methods to access object mode and destroyed on readable
  • 0ec1adb remove environment variable in CI workflow to suppress Node.js warnings
  • 42d3089 clarify that page attributes cannot be referenced in antora.yml
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/neo4j-contrib/spatial/network/alerts).
dependabot[bot] commented 1 month ago

Looks like these dependencies are up-to-date now, so this is no longer needed.