search

openassistive / OpenATBackend

Back end api for Open Assistive built using nodeJS.
https://api.openassistive.org
4 stars 1 forks source link

Bump tar and sharp #33

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Removes tar. It's no longer used after updating ancestor dependency sharp. These dependencies need to be updated together.

Removes tar

Updates sharp from 0.16.2 to 0.31.3

Changelog

Sourced from sharp's changelog.

v0.31.3 - 21st December 2022

  • Add experimental support for JPEG-XL images. Requires libvips compiled with libjxl. #2731

  • Add runtime detection of V8 memory cage, ensures compatibility with Electron 21 onwards. #3384

  • Expose interFrameMaxError and interPaletteMaxError GIF optimisation properties. #3401

  • Allow installation on Linux with glibc patch versions e.g. Fedora 38. #3423

  • Expand range of existing sharpen parameters to match libvips. #3427

  • Prevent possible race condition awaiting metadata of Stream-based input. #3451

  • Improve extractChannel support for 16-bit output colourspaces. #3453

  • Ignore sequentialRead option when calculating image statistics. #3462

  • Small performance improvement for operations that introduce a non-opaque background. #3465

  • Ensure integral output of linear operation. #3468

v0.31.2 - 4th November 2022

  • Upgrade to libvips v8.13.3 for upstream bug fixes.

  • Ensure manual flip, rotate, resize operation ordering (regression in 0.31.1) #3391

  • Ensure auto-rotation works without resize (regression in 0.31.1) #3422

v0.31.1 - 29th September 2022

  • Upgrade to libvips v8.13.2 for upstream bug fixes.

  • Ensure close event occurs after end event for Stream-based output. #3313

  • Ensure limitInputPixels constructor option uses uint64.

... (truncated)

Commits
  • 844deaf Release v0.31.3
  • efbb0c2 Docs: add image with examples of resize fit property
  • da0b594 Docs: update benchmarks for latest versions, add ARM64 results
  • 78dada9 Tests: skip mapnik and tensorflow for Docker-run benchmarks
  • 15f5cd4 Tests: move mapnik to optional deps
  • 9eb2e94 Tests: update benchmark dependencies
  • e40b068 Tests: update leak suppresions for latest dependencies
  • 2c46528 Docs refresh
  • 584807b Add runtime detection of V8 memory cage #3384
  • a7fa701 Add experimental support for JPEG-XL, requires libvips with libjxl
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/openassistive/OpenATBackend/network/alerts).
dependabot[bot] commented 1 year ago

Looks like these dependencies are no longer a dependency, so this is no longer needed.