Support sameSite:none in cookie options (thanks @pixnlove!)
v1.3.1
Updated the machine-as-action dependency to include a reminder about escaping strings with dynamic data when they're injected (Thanks @dusterherz for letting us know about this)
v1.2.5
Added more info to the error message shown when an app fails to lift
Updated the sails-generate dependency
v1.2.4
Fix resourceful PubSub for the update blueprint action, resolving #6824 (thanks @Tarrask!)
Re-enable afterDestroy lifecycle callback for the destroy blueprint action, fixing #5630
Update CSRF hook to fix an issue with disabling CSRF for routes defined using regular expression syntax, resolving #6838
Update session hook to fix an issue with double-prefixes, resolving #6541 (thanks @travispwingo!)
Update minimist dependency to resolve potential vulnerabilities
Update various comments, error messages, and logs for clarity/consistency
v1.2.3
1.2.3
Update eslint dev depdendency to get rid of vulnerability warnings
Minor formatting/verbiage fixes
v1.2.2
• Update merge-defaults dependency to resolve potential vulnerabilities
• Update sails-stringfile dependency to resolve potential vulnerabilities
• Update sort-route-addresses dependency to resolve potential vulnerabilities
v1.2.1
Added sails migrate for quickly running auto-migrations by hand
The output of sails inspect no longer includes controller information
When loading user hooks, if sails.config.loadHooks is specified, skip hooks whose names aren't explicitly included
Increased time to display warning message in config/bootstrap.js from 5 seconds to 30 seconds
Switched to using updateOne in the "update" blueprint
Blueprint queries no longer include fetch: true by default, to avoid warnings from updateOne
Update error mesage in default serverError response to use flaverr
In lib/router/res.js, instead of always setting 'content-type' to 'application/json', only set it if res.get('content-type') is falsy
Update flaverr dependency
Update i18n-2 dependency to resolve deprecation warning
Update rc dependency to address potential vulnerabilities
Update machinepack-process dependency to address potential vulnerabilities
Update machinepack-redis dependency to address potential vulnerabilities
This version was pushed to npm by eashaw, a new releaser for sails-postgresql since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/the-chain/airmedfoundation-terminal/network/alerts).
Bumps minimist to 1.2.6 and updates ancestor dependencies minimist, mkdirp, nodemailer-html-to-text, sails and sails-postgresql. These dependencies need to be updated together.
Updates
minimistfrom 1.2.0 to 1.2.6Changelog
Sourced from minimist's changelog.
Commits
7efb22a1.2.6ef88b93security notice for additional prototype pollution issuec2b9819isConstructorOrProto adapted from PRbc8eceetest from prototype pollution PRaeb3e271.2.5278677b1.2.44cf1354security notice1043d21additional test for constructor prototype pollution6457d741.2.338a4d1ceven more aggressive checks for protocol pollutionUpdates
mkdirpfrom 0.5.1 to 0.5.6Commits
92f086d0.5.62a28125clean up testsc905d65update minimist049cf180.5.5bea6382Remove unnecessary umask calls42a012c0.5.42867920fix infinite loop on windows machinesd784e700.5.3d612c5dadd files list so this package isn't a monsterb2e7ba00.5.2Maintainer changes
This version was pushed to npm by isaacs, a new releaser for mkdirp since your current version.
Updates
nodemailer-html-to-textfrom 3.0.0 to 3.2.0Changelog
Sourced from nodemailer-html-to-text's changelog.
Commits
c068183v3.2.0c43da1fMerge pull request #13 from sseide/update_test_to_htmld8b8a02fix [DEP0005] DeprecationWarning in test casesad3720aupdate dev dependencies mocha and grunt to fix security warnings1917900update CHANGES filebecf5e4update html-to-text to 7.1.1 to fix possible memory exhaustion (cwe-400) on m...b64dfc2v3.1.0c8ba713Merge pull request #10 from DefJunx/update-dependencies0303767Reverted Buffer.from666e649- Updated dependencies and devDependenciesUpdates
sailsfrom 1.1.0 to 1.5.4Release notes
Sourced from sails's releases.
Changelog
Sourced from sails's changelog.
Commits
Maintainer changes
This version was pushed to npm by eashaw, a new releaser for sails since your current version.
Updates
sails-postgresqlfrom 1.0.2 to 5.0.1Release notes
Sourced from sails-postgresql's releases.
Commits
5a5d85d5.0.1c8f4a55Merge pull request #296 from balderdashy/update-async007fde4update travis config91847afUpdate package.jsonaf286895.0.0dd707b5Merge pull request #295 from balderdashy/upgrade-machinepackaf2c6f6test - Update travis config65e51bfRevert "update travis config"dfd2ab7update travis config43e03eaupdate node versions in Travis testsMaintainer changes
This version was pushed to npm by eashaw, a new releaser for sails-postgresql since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/the-chain/airmedfoundation-terminal/network/alerts).