Neo4j Spatial is a library of utilities for Neo4j that faciliates the enabling of spatial operations on data. In particular you can add spatial indexes to already located data, and perform spatial operations on the data like searching for data within specified regions or within a specified distance of a point of interest. In addition classes are provided to expose the data to geotools and thereby to geotools enabled applications like geoserver and uDig.
Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)
v2.2.2
Fix: Properties with the name __proto__ are added to objects and arrays.
(#199) This also fixes a prototype pollution vulnerability reported by
Jonathan Gregson! (#295).
v2.2.1
Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)
v2.2.0
New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)
Fix: Properties with the name __proto__ are added to objects and arrays.
(#199) This also fixes a prototype pollution vulnerability reported by
Jonathan Gregson! (#295).
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/neo4j-contrib/spatial/network/alerts).
Bumps json5 to 2.2.3 and updates ancestor dependencies json5, @antora/cli and @antora/site-generator-default. These dependencies need to be updated together.
Updates
json5
from 2.1.3 to 2.2.3Release notes
Sourced from json5's releases.
Changelog
Sourced from json5's changelog.
Commits
c3a7524
2.2.394fd06d
docs: update CHANGELOG for v2.2.33b8cebf
docs(security): use GitHub security advisoriesf0fd9e1
docs: publish a security policy6a91a05
docs(template): bug -> bug report14f8cb1
2.2.210cc7ca
docs: update CHANGELOG for v2.2.27774c10
fix: add proto to objects and arraysedde30a
Readme: slight tweak to intro97286f8
Improve example in readmeUpdates
@antora/cli
from 2.3.4 to 3.1.9Changelog
Sourced from
@antora/cli
's changelog.... (truncated)
Commits
5673513
release 3.1.9588374a
update what's new page for upcoming 3.1.9 releaseb3cc520
replace "AsciiDoc extension" with "Asciidoctor extension" in log messages6bd133a
merge !1051adbcc8e
resolves #1141 detect and warn when an AsciiDoc extension is registered as an...c843cc8
backport fix for #1139 wrap legacy stream on file when preparing files for ou...4a54d84
add test to verify file with stream when there is a single output destination315dcfa
use public methods to access object mode and destroyed on readable0ec1adb
remove environment variable in CI workflow to suppress Node.js warnings42d3089
clarify that page attributes cannot be referenced in antora.ymlUpdates
@antora/site-generator-default
from 2.3.4 to 3.1.9Changelog
Sourced from
@antora/site-generator-default
's changelog.... (truncated)
Commits
5673513
release 3.1.9588374a
update what's new page for upcoming 3.1.9 releaseb3cc520
replace "AsciiDoc extension" with "Asciidoctor extension" in log messages6bd133a
merge !1051adbcc8e
resolves #1141 detect and warn when an AsciiDoc extension is registered as an...c843cc8
backport fix for #1139 wrap legacy stream on file when preparing files for ou...4a54d84
add test to verify file with stream when there is a single output destination315dcfa
use public methods to access object mode and destroyed on readable0ec1adb
remove environment variable in CI workflow to suppress Node.js warnings42d3089
clarify that page attributes cannot be referenced in antora.ymlDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show