search

npm / minipass-fetch

An implementation of window.fetch in Node.js using Minipass streams
Other
54 stars 11 forks source link

chore: bump whatwg-url from 7.1.0 to 11.0.0 #36

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps whatwg-url from 7.1.0 to 11.0.0.

Release notes

Sourced from whatwg-url's releases.

11.0.0

The breaking changes in this release are only to the Low-level URL Standard API. No actual URL parsing or serialization behavior has changed, and users of the URL and URLSearchParams exports are not affected.

These changes follow https://github.com/whatwg/url/commit/fbaa03cb19ee5718953f5f6d179e0339e31f1ede.

  • Removed the URL record type's cannotBeABaseURL property.
  • Changed the URL record type's path from always being an array of strings, to being either a single string or an array of strings.
  • Renamed the "cannot-be-a-base-URL path" parser state (i.e. value for stateOverride) to "opaque path".
  • Added the serializePath(urlRecord) export.
  • Added the hasAnOpaquePath(urlRecord) export.

10.0.0

The breaking changes in this release are to the API exported by the whatwg-url/webidl2js-wrapper module. In particular it now is based on webidl2js v17, which changes some of the exported function signatures, and changes the realms of any errors thrown on misuse.

9.1.0

Made the host parser reject non-IPv4 domains that end in numbers, per https://github.com/whatwg/url/commit/ab0e820b0b559610b30c731b7f2c1a8094181680.

9.0.0

Breaking changes:

  • Removed Node.js v10 support.

  • The percentDecode() export was renamed percentDecodeBytes(), and now returns a Uint8Array instead of a Node.js Buffer.

Other changes:

  • The package's main module now exports the percentDecodeString() helper.

  • The punycode and lodash dependencies were removed.

8.7.0

Make the pathname setter not mess up the URL's path state tracking when given the empty string, per https://github.com/whatwg/url/commit/0672f2e2ef43aca18b59d90abb6dac21712399bb.

8.6.0

Made the hostname setter do nothing if the given string contains a colon, per https://github.com/whatwg/url/commit/ec96993653a70d063843e0198694028c63348db4.

Updated punycode processing to support Unicode v13.

8.5.0

Disallowed | in host parsing, per https://github.com/whatwg/url/commit/40252530f93fe37f092be90583f82e9f337da1ab.

8.4.0

Fixed file: URL parsing cases which would cause different results when serialized-then-reparsed, per https://github.com/whatwg/url/commit/a19495e27ad95154543b46f751d1a1bf25553808.

8.3.0

Updated file: URL path normalization, per https://github.com/whatwg/url/commit/47efa0043d677fb51169cde72b60703bd8de83e3.

8.2.2

Fixed percentDecode to return a Buffer, like it did in v8.1.0, instead of a Uint8Array.

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
wraithgar commented 2 years ago

https://github.com/npm/minipass-fetch/pull/37

dependabot[bot] commented 2 years ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.