rvagg / polendina

Non-UI browser testing for JavaScript libraries from the command-line
Other
63 stars 6 forks source link

chore(deps): bump puppeteer from 14.4.1 to 19.1.1 #91

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps puppeteer from 14.4.1 to 19.1.1.

Release notes

Sourced from puppeteer's releases.

puppeteer-core: v19.1.1

19.1.1 (2022-10-24)

Bug Fixes

  • update documentation on configuring puppeteer (#9150) (f07ad2c)

puppeteer-core: v19.1.0

19.1.0 (2022-10-21)

Features

Bug Fixes

  • update BrowserFetcher deprecation message (#9141) (efcbc97)

puppeteer-core: v19.0.0

19.0.0 (2022-10-14)

⚠ BREAKING CHANGES

  • use ~/.cache/puppeteer for browser downloads (#9095)
  • deprecate createBrowserFetcher in favor of BrowserFetcher (#9079)
  • refactor custom query handler API (#9078)
  • remove puppeteer.devices in favor of KnownDevices (#9075)
  • deprecate indirect network condition imports (#9074)
  • deprecate indirect error imports (#9072)

Features

  • add ability to collect JS code coverage at the function level (#9027) (a032583)
  • deprecate createBrowserFetcher in favor of BrowserFetcher (#9079) (7294dfe), closes #8999
  • use ~/.cache/puppeteer for browser downloads (#9095) (3df375b)

Bug Fixes

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
socket-security[bot] commented 2 years ago

Socket Security Report

Dependency issues detected. If you merge this pull request, you will not be alerted to the instances of these issues again.

📜 New install scripts detected

A dependency change in this PR is introducing new install scripts to your install step.

Package Script field Location
puppeteer@19.1.1 (upgraded) postinstall package.json
Socket.dev scan summary
Issue Status
Did you mean? ✅ no new possible package typos
Install scripts ⚠️ 1 new install script detected
Telemetry ✅ no new telemetry
Troll package ✅ no new troll packages
Malware ✅ no new malware
Native code ✅ no new native modules
Bin Script Confusion ✅ no new bin script confusions
Bin script shell injection ✅ no new bin script shell injection
Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@2.4.2

  • @SocketSecurity ignore puppeteer@19.1.1

Powered by socket.dev

dependabot[bot] commented 2 years ago

Superseded by #92.