railslove / kickerapp

https://www.kicker.cool
25 stars 13 forks source link

Bump ssri from 5.0.0 to 5.3.0 #131

Closed dependabot[bot] closed 4 years ago

dependabot[bot] commented 5 years ago

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps ssri from 5.0.0 to 5.3.0.

Changelog *Sourced from [ssri's changelog](https://github.com/npm/ssri/blob/latest/CHANGELOG.md).* > # [5.3.0](https://github.com/npm/ssri/compare/v5.2.4...v5.3.0) (2018-03-13) > > > ### Features > > * **checkData:** optionally throw when checkData fails ([bf26b84](https://github.com/npm/ssri/commit/bf26b84)) > > > > > ## [5.2.4](https://github.com/npm/ssri/compare/v5.2.3...v5.2.4) (2018-02-16) > > > > > ## [5.2.3](https://github.com/npm/ssri/compare/v5.2.2...v5.2.3) (2018-02-16) > > > ### Bug Fixes > > * **hashes:** filter hash priority list by available hashes ([2fa30b8](https://github.com/npm/ssri/commit/2fa30b8)) > * **integrityStream:** dedupe algorithms to generate ([d56c654](https://github.com/npm/ssri/commit/d56c654)) > > > > > ## [5.2.2](https://github.com/npm/ssri/compare/v5.2.1...v5.2.2) (2018-02-14) > > > ### Bug Fixes > > * **security:** tweak strict SRI regex ([#10](https://github-redirect.dependabot.com/npm/ssri/issues/10)) ([d0ebcdc](https://github.com/npm/ssri/commit/d0ebcdc)) > > > > > ## [5.2.1](https://github.com/npm/ssri/compare/v5.2.0...v5.2.1) (2018-02-06) > > > > > # [5.2.0](https://github.com/npm/ssri/compare/v5.1.0...v5.2.0) (2018-02-06) > > > ### Features > > * **match:** add integrity.match() ([3c49cc4](https://github.com/npm/ssri/commit/3c49cc4)) > > > > ... (truncated)
Commits - [`0ae0c23`](https://github.com/npm/ssri/commit/0ae0c237690d0b33613524a318ec617b8a61f8b0) chore(release): 5.3.0 - [`bf26b84`](https://github.com/npm/ssri/commit/bf26b842be775faf2961ac76355e9eecf262ed5a) feat(checkData): optionally throw when checkData fails - [`d0f7429`](https://github.com/npm/ssri/commit/d0f7429cb8d5c38a3aab1dde24a725c61fe2d69d) chore(release): 5.2.4 - [`38878b7`](https://github.com/npm/ssri/commit/38878b72be22161c54fb00748e0f74464e916455) docs: integrityStream docs were wrong - [`5e6fcee`](https://github.com/npm/ssri/commit/5e6fcee066a60e2a7dc505dc1912c0502844e39d) chore(release): 5.2.3 - [`58b8cfe`](https://github.com/npm/ssri/commit/58b8cfe43a1fcd6f8ca4a42e875c59303c581946) test: use strict for test/create.js - [`2fa30b8`](https://github.com/npm/ssri/commit/2fa30b8aba9e1fa24782629e6f2c0e9121603c43) fix(hashes): filter hash priority list by available hashes - [`d56c654`](https://github.com/npm/ssri/commit/d56c6541c6dff9ae68267925ddd11e6590389a48) fix(integrityStream): dedupe algorithms to generate - [`e3845d5`](https://github.com/npm/ssri/commit/e3845d53990f31aec9eea898d4e909f6f0b1691f) test: add tests for integrity-stream - [`0fb45e7`](https://github.com/npm/ssri/commit/0fb45e7e0eba615bf0080bf350c95e19412ff9a9) chore(release): 5.2.2 - Additional commits viewable in [compare view](https://github.com/npm/ssri/compare/v5.0.0...v5.3.0)


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/railslove/kickerapp/network/alerts).
Uepsilon commented 4 years ago

@dependabot rebase