saggiyogesh / micro-formidable

MIT License
2 stars 1 forks source link

An in-range update of request-promise is breaking the build 🚨 #5

Open greenkeeper[bot] opened 7 years ago

greenkeeper[bot] commented 7 years ago

Version 4.2.1 of request-promise just got published.

Branch Build failing 🚨
Dependency request-promise
Current Version 4.2.0
Type devDependency

This version is covered by your current version range and after updating it in your project the build failed.

As request-promise is “only” a devDependency of this project it might not break production or downstream projects, but “only” your build or test tools – preventing new deploys or publishes.

I recommend you give this issue a high priority. I’m sure you can resolve this :muscle:

Status Details - ✅ **bitHound - Dependencies** No failing dependencies. [Details](https://www.bithound.io/github/saggiyogesh/micro-formidable/9f019fd68738c44661fce3a78ee461b093e06ac8/dependencies/npm?status=passing),- ❌ **bitHound - Code** 2 failing files. [Details](https://www.bithound.io/github/saggiyogesh/micro-formidable/9f019fd68738c44661fce3a78ee461b093e06ac8/files#filter-failing-file)

Commits

The new version differs by 5 commits0.

  • ba7a320 Version 4.2.1
  • d65ff13 docs: example of cookie handling
  • 9ad707c fix: although this break backwards-compatibility with old request versions bumped up because of security vulnerability
  • cc30568 fix: depending on tough-cookie for npm < v3
  • fdc522a fix: using tough-cookie for the request

false

See the full diff

Not sure how things should work exactly? There is a collection of [frequently asked questions](https://greenkeeper.io/faq.html) and of course you may always [ask my humans](https://github.com/greenkeeperio/greenkeeper/issues/new).

Your Greenkeeper Bot :palm_tree:

greenkeeper[bot] commented 7 years ago

Version 4.2.2 just got published.

Your tests are still failing with this version. Compare the changes 🚨

Commits

The new version differs by 13 commits.

  • afaa3e6 Version 4.2.2
  • 894672d Merge pull request #226 from rouanw/upgrade_tough_cookie
  • 558729b fix: make sure to have only one tough-cookie installation
  • fb058fe fix: using latest allowed request version for old node.js environments
  • 60ba4eb fix: using latest allowed request version for old node.js environments
  • 672cb28 upgrade tough-cookie to a version without regex DoS vulnerability
  • 3c2c53c Merge pull request #216 from Syrok/patch-1
  • 001af69 Fixed mispell in doc
  • e882d03 docs: comment regarding exposing of methods
  • 5261ff4 docs: tabs to spaces
  • 32d9473 docs: polished form data example
  • 662c81a Merge pull request #207 from erf/formData
  • 6323753 fix and improve formData example

See the full diff

greenkeeper[bot] commented 4 years ago

Your tests are passing again with this update. Explicitly upgrade to this version 🚀

Commits

The new version differs by 22 commits.

  • fd52247 Version 4.2.5
  • a27ba86 chore: updated request-promise-core that updates lodash
  • 4e3b7ed Version 4.2.4
  • 94be6fe fix: tough-cookie version
  • 03f7030 chore: updated publish-please config
  • d831905 Version 4.2.3 (now really)
  • 37e8773 fix: updated indirect lodash dependency to fix security vulnerability
  • 229225e Version 4.2.3
  • 4f27097 chore: fix ci build for node v8+
  • c535eb6 Merge pull request #299 from aomdoa/fixToughCookieDep
  • 488947b Merge branch 'master' into fixToughCookieDep
  • 131abd7 fix: breaking change in tough-cookie v3
  • b454ddc chore: added node 8 and 10 to ci build
  • 6d11ddc fix: typo
  • 3a136ea Merge pull request #303 from lexjacobs/patch-1

There are 22 commits in total.

See the full diff