search

rtfeldman / elm-0.19-workshop

Elm 0.19 workshops. Includes Intro and Advanced courses.
MIT License
212 stars 121 forks source link

Bump qs and moleculer-web in /intro/server #54

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps qs to 6.5.3 and updates ancestor dependency moleculer-web. These dependencies need to be updated together.

Updates qs from 6.5.1 to 6.5.3

Changelog

Sourced from qs's changelog.

6.5.3

  • [Fix] parse: ignore __proto__ keys (#428)
  • [Fix] utils.merge`: avoid a crash with a null target and a truthy non-array source
  • [Fix] correctly parse nested arrays
  • [Fix] stringify: fix a crash with strictNullHandling and a custom filter/serializeDate (#279)
  • [Fix] utils: merge: fix crash when source is a truthy primitive & no options are provided
  • [Fix] when parseArrays is false, properly handle keys ending in []
  • [Fix] fix for an impossible situation: when the formatter is called with a non-string value
  • [Fix] utils.merge: avoid a crash with a null target and an array source
  • [Refactor] utils: reduce observable [[Get]]s
  • [Refactor] use cached Array.isArray
  • [Refactor] stringify: Avoid arr = arr.concat(...), push to the existing instance (#269)
  • [Refactor] parse: only need to reassign the var once
  • [Robustness] stringify: avoid relying on a global undefined (#427)
  • [readme] remove travis badge; add github actions/codecov badges; update URLs
  • [Docs] Clean up license text so it’s properly detected as BSD-3-Clause
  • [Docs] Clarify the need for "arrayLimit" option
  • [meta] fix README.md (#399)
  • [meta] add FUNDING.yml
  • [actions] backport actions from main
  • [Tests] always use String(x) over x.toString()
  • [Tests] remove nonexistent tape option
  • [Dev Deps] backport from main

6.5.2

  • [Fix] use safer-buffer instead of Buffer constructor
  • [Refactor] utils: module.exports one thing, instead of mutating exports (#230)
  • [Dev Deps] update browserify, eslint, iconv-lite, safer-buffer, tape, browserify
Commits
  • 298bfa5 v6.5.3
  • ed0f5dc [Fix] parse: ignore __proto__ keys (#428)
  • 691e739 [Robustness] stringify: avoid relying on a global undefined (#427)
  • 1072d57 [readme] remove travis badge; add github actions/codecov badges; update URLs
  • 12ac1c4 [meta] fix README.md (#399)
  • 0338716 [actions] backport actions from main
  • 5639c20 Clean up license text so it’s properly detected as BSD-3-Clause
  • 51b8a0b add FUNDING.yml
  • 45f6759 [Fix] fix for an impossible situation: when the formatter is called with a no...
  • f814a7f [Dev Deps] backport from main
  • Additional commits viewable in compare view


Updates moleculer-web from 0.6.0-beta7 to 0.10.4

Release notes

Sourced from moleculer-web's releases.

v0.10.4

What's Changed

New Contributors

Full Changelog: https://github.com/moleculerjs/moleculer-web/compare/v0.10.3...v0.10.4

v0.10.3

Named authenticate & authorize methods #275

You can define custom authentication and authorization methods for every routes. In this case you should set the method name instead of true value.

module.exports = {
    mixins: ApiGatewayService,

settings: {

    routes: [
        {
            path: "/aaa",
            authentication: "aaaAuthn",
            authorization: "aaaAuthz",
            aliases: {
                "GET hello": "test.hello"
            }
        },
        {
            path: "/bbb",
            authentication: "bbbAuthn",
            authorization: "bbbAuthz",
            aliases: {
                "GET hello": "test.hello"
            }
        },
        {
            path: "/ccc",
            authentication: true,
            authorization: true,
            aliases: {
                "GET hello": "test.hello"



</tr></table>

... (truncated)

Changelog

Sourced from moleculer-web's changelog.

0.10.4 (2022-01-09)

What's Changed

Other changes

  • update dependencies.
  • change to @​fastify/busboy implementation. #287

0.10.3 (2021-10-17)

Named authenticate & authorize methods #275

You can define custom authentication and authorization methods for every routes. In this case you should set the method name instead of true value.

module.exports = {
    mixins: ApiGatewayService,

settings: {

    routes: [
        {
            path: &quot;/aaa&quot;,
            authentication: &quot;aaaAuthn&quot;,
            authorization: &quot;aaaAuthz&quot;,
            aliases: {
                &quot;GET hello&quot;: &quot;test.hello&quot;
            }
        },
        {
            path: &quot;/bbb&quot;,
            authentication: &quot;bbbAuthn&quot;,
            authorization: &quot;bbbAuthz&quot;,
            aliases: {
                &quot;GET hello&quot;: &quot;test.hello&quot;
            }
        },
        {
            path: &quot;/ccc&quot;,
            authentication: true,
            authorization: true,
            aliases: {



</tr></table>

... (truncated)

Commits
  • b858f1e 0.10.4
  • 8703809 change busboy implementation. Fixes #287
  • 7328218 Merge branch 'master' of github.com:moleculerjs/moleculer-web
  • 7a07f42 update deps, fix audit
  • 6fba027 Merge pull request #292 from moleculerjs/alias-notify
  • 52c85de broadcast event after alias regeneration
  • 3880935 Merge pull request #289 from moonrailgun/moonrailgun/assets-cors-preflight-req
  • e461070 Add more test case for assets cors check
  • a502b7e Fix ci problem and change http cors check stage in httpHandler
  • 137cc0e Merge pull request #290 from moleculerjs/alias-in-onBeforeCall
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/rtfeldman/elm-0.19-workshop/network/alerts).