search

openstreetmap / openstreetmap-website

The Rails application that powers OpenStreetMap
https://www.openstreetmap.org/
GNU General Public License v2.0
2.21k stars 918 forks source link

Bump qs from 6.13.0 to 6.13.1 #5341

Closed dependabot[bot] closed 2 days ago

dependabot[bot] commented 3 days ago

Bumps qs from 6.13.0 to 6.13.1.

Changelog

Sourced from qs's changelog.

6.13.1

  • [Fix] stringify: avoid a crash when a filter key is null
  • [Fix] utils.merge: functions should not be stringified into keys
  • [Fix] parse: avoid a crash with interpretNumericEntities: true, comma: true, and iso charset
  • [Fix] stringify: ensure a non-string filter does not crash
  • [Refactor] use __proto__ syntax instead of Object.create for null objects
  • [Refactor] misc cleanup
  • [Tests] utils.merge: add some coverage
  • [Tests] fix a test case
  • [actions] split out node 10-20, and 20+
  • [Dev Deps] update es-value-fixtures, mock-property, object-inspect, tape
Commits
  • f1ee037 v6.13.1
  • afd20d0 [Dev Deps] update object-inspect
  • d185cee [actions] split out node 10-20, and 20+
  • 4cf5567 [Dev Deps] update es-value-fixtures, tape
  • 3c8a6f5 [Refactor] use __proto__ syntax instead of Object.create for null objects
  • 96f4d93 [Fix] stringify: avoid a crash when a filter key is null
  • aa1f0a8 [Fix] utils.merge: functions should not be stringified into keys
  • 2a548a9 [Tests] utils.merge: add some coverage
  • 3e750c1 [Refactor] misc cleanup
  • ca55d0f [Fix] parse: avoid a crash with interpretNumericEntities: true, comma: true...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)