search

thombergs / code-examples

A collection of code examples from blog posts etc.
MIT License
2.65k stars 2.63k forks source link

Bump minimist, karma, handlebars, protractor and @pact-foundation/pact-node in /pact/pact-angular #266

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps minimist to 1.2.8 and updates ancestor dependencies minimist, karma, handlebars, protractor and @pact-foundation/pact-node. These dependencies need to be updated together.

Updates minimist from 1.2.0 to 1.2.8

Changelog

Sourced from minimist's changelog.

v1.2.8 - 2023-02-09

Merged

Fixed

Commits

  • Merge tag 'v0.2.3' a026794
  • [eslint] fix indentation and whitespace 5368ca4
  • [eslint] fix indentation and whitespace e5f5067
  • [eslint] more cleanup 62fde7d
  • [eslint] more cleanup 36ac5d0
  • [meta] add auto-changelog 73923d2
  • [actions] add reusable workflows d80727d
  • [eslint] add eslint; rules to enable later are warnings 48bc06a
  • [eslint] fix indentation 34b0f1c
  • [readme] rename and add badges 5df0fe4
  • [Dev Deps] switch from covert to nyc a48b128
  • [Dev Deps] update covert, tape; remove unnecessary tap f0fb958
  • [meta] create FUNDING.yml; add funding in package.json 3639e0c
  • [meta] use npmignore to autogenerate an npmignore file be2e038
  • Only apps should have lockfiles 282b570
  • isConstructorOrProto adapted from PR ef9153f
  • [Dev Deps] update @ljharb/eslint-config, aud 098873c
  • [Dev Deps] update @ljharb/eslint-config, aud 3124ed3
  • [meta] add safe-publish-latest 4b927de
  • [Tests] add aud in posttest b32d9bd
  • [meta] update repo URLs f9fdfc0
  • [actions] Avoid 0.6 tests due to build failures ba92fe6
  • [Dev Deps] update tape 950eaa7
  • [Dev Deps] add missing npmignore dev dep 3226afa
  • Merge tag 'v0.2.2' 980d7ac

v1.2.7 - 2022-10-10

Commits

... (truncated)

Commits
  • 6901ee2 v1.2.8
  • a026794 Merge tag 'v0.2.3'
  • c0b2661 v0.2.3
  • 63b8fee [Fix] Fix long option followed by single dash (#17)
  • 72239e6 [Tests] Remove duplicate test (#12)
  • 34b0f1c [eslint] fix indentation
  • 3226afa [Dev Deps] add missing npmignore dev dep
  • 098873c [Dev Deps] update @ljharb/eslint-config, aud
  • 9ec4d27 [Fix] Fix long option followed by single dash
  • ba92fe6 [actions] Avoid 0.6 tests due to build failures
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by ljharb, a new releaser for minimist since your current version.


Updates karma from 1.7.1 to 6.4.1

Release notes

Sourced from karma's releases.

v6.4.1

6.4.1 (2022-09-19)

Bug Fixes

v6.4.0

6.4.0 (2022-06-14)

Features

  • support SRI verification of link tags (dc51a2e)
  • support SRI verification of script tags (6a54b1c)

v6.3.20

6.3.20 (2022-05-13)

Bug Fixes

  • prefer IPv4 addresses when resolving domains (e17698f), closes #3730

v6.3.19

6.3.19 (2022-04-19)

Bug Fixes

  • client: error out when opening a new tab fails (099b85e)

v6.3.18

6.3.18 (2022-04-13)

Bug Fixes

  • deps: upgrade socket.io to v4.4.1 (52a30bb)

v6.3.17

6.3.17 (2022-02-28)

Bug Fixes

  • deps: update colors to maintained version (#3763) (fca1884)

v6.3.16

... (truncated)

Changelog

Sourced from karma's changelog.

6.4.1 (2022-09-19)

Bug Fixes

6.4.0 (2022-06-14)

Features

  • support SRI verification of link tags (dc51a2e)
  • support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

  • prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

  • client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

  • deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

  • deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

  • security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

... (truncated)

Commits
  • 0013121 chore(release): 6.4.1 [skip ci]
  • 63d86be fix: pass integrity value
  • 84f7cc3 chore(release): 6.4.0 [skip ci]
  • f2d0663 docs: add integrity parameter
  • dc51a2e feat: support SRI verification of link tags
  • 6a54b1c feat: support SRI verification of script tags
  • 5e71cf5 chore(release): 6.3.20 [skip ci]
  • e17698f fix: prefer IPv4 addresses when resolving domains
  • 60f4f79 build: add Node 16 and 18 to the CI matrix
  • 6ff5aaf chore(release): 6.3.19 [skip ci]
  • Additional commits viewable in compare view


Updates handlebars from 4.0.11 to 4.7.7

Changelog

Sourced from handlebars's changelog.

v4.7.7 - February 15th, 2021

  • fix weird error in integration tests - eb860c0
  • fix: check prototype property access in strict-mode (#1736) - b6d3de7
  • fix: escape property names in compat mode (#1736) - f058970
  • refactor: In spec tests, use expectTemplate over equals and shouldThrow (#1683) - 77825f8
  • chore: start testing on Node.js 12 and 13 - 3789a30

(POSSIBLY) BREAKING CHANGES:

  • the changes from version 4.6.0 now also apply in when using the compile-option "strict: true". Access to prototype properties is forbidden completely by default, specific properties or methods can be allowed via runtime-options. See #1633 for details. If you are using Handlebars as documented, you should not be accessing prototype properties from your template anyway, so the changes should not be a problem for you. Only the use of undocumented features can break your build.

That is why we only bump the patch version despite mentioning breaking changes.

Commits

v4.7.6 - April 3rd, 2020

Chore/Housekeeping:

Compatibility notes:

  • Restored Node.js compatibility

Commits

v4.7.5 - April 2nd, 2020

Chore/Housekeeping:

  • Node.js version support has been changed to v6+ Reverted in 4.7.6

Compatibility notes:

  • Node.js < v6 is no longer supported Reverted in 4.7.6

Commits

v4.7.4 - April 1st, 2020

Chore/Housekeeping:

Compatibility notes:

... (truncated)

Commits


Updates protractor from 5.1.2 to 5.4.4

Release notes

Sourced from protractor's releases.

5.4.3

typescript 3.7 compatibility

Resolves #5348 which was causing incompatibility with TypeScript 3.7

Changelog

Sourced from protractor's changelog.

5.4.4

Fixes

  • fix: security prototype pollution

5.4.3

Fixes

fix(index.ts): Fix exports to unbreak TypeScript 3.7 build

5.4.2

Features

  • (db1b638) feat(saucelabs): add sauceRegion support for eu datacenters (#5083)

    This change allows user to define the backend region from sauce via the sauceRegion property, e.g.

       sauceUser: process.env.SAUCE_USERNAME,
   sauceKey: process.env.SAUCE_ACCESS_KEY,
   sauceRegion: 'eu',

    Will run the test against https://ondemand.eu-central-1.saucelabs.com:443/wd/hub/.

       sauceUser: process.env.SAUCE_USERNAME,
   sauceKey: process.env.SAUCE_ACCESS_KEY,
   sauceRegion: 'us',

    // the default
sauceUser: process.env.SAUCE_USERNAME,
sauceKey: process.env.SAUCE_ACCESS_KEY,

    Will run the test against https://ondemand.saucelabs.com:443/wd/hub/

Fixes

  • (f5dbe13) fix(deps): @​types/node is now a dev dependency

5.4.1

Features

... (truncated)

Commits
  • a0ffa9b release: 5.4.4
  • 8b3ebf8 fix: security prototype pollution
  • 162f9e5 ci: Log sauce connect proxy to stdout, remove travis_wait, upgrade proxy to 4...
  • eb1d0fc docs(release): Update release docs for 5.4 series.
  • 6c46098 chore(release): Update changelog
  • faf0895 fix(ci): Don't update webdriver in pretest
  • d77731c fix(release): Pin CircleCI to Chrome v74
  • efe7fdd chore(dependencies): Update natives, so we can continue to run Gulp on
  • 0442e51 chore(release): Bugfix release 5.4.3
  • 7999a08 fix(index.ts): Fix exports to unbreak TypeScript 3.7 build
  • Additional commits viewable in compare view


Updates @pact-foundation/pact-node from 6.5.0 to 10.17.7

Release notes

Sourced from @​pact-foundation/pact-node's releases.

Release v10.12.1

10.12.1 (2021-03-31)

Fixes and Improvements

  • package.json & package-lock.json to reduce vulnerabilities (8d76550)
  • update standalone to 1.88.41 (3916c88)
  • update standalone to 1.88.45 (fcab9f8)

Release v10.12.0

10.12.0 (2021-03-05)

Features

  • package-name: Pact-node renamed to pact-core (700ad09)

Release v10.11.11

10.11.11 (2021-02-28)

Fixes and Improvements

  • update standalone to 1.88.40 (618fb9d)

Release v10.11.10

10.11.10 (2021-02-25)

Fixes and Improvements

  • update standalone to 1.88.38 (de4aaf2)

Release v10.11.9

10.11.9 (2021-02-24)

Fixes and Improvements

  • 🐛 only download binary if PACT_SKIP_BINARY_INSTALL is true (69cbba0)

Release v10.11.8

10.11.8 (2021-02-09)

Fixes and Improvements

  • install: Use the current working directory instead of the installed directory when finding package.json (Fixes #234) (30c41dc)

... (truncated)

Changelog

Sourced from @​pact-foundation/pact-node's changelog.

10.17.7 (2022-12-22)

Fixes and Improvements

  • Update pact-ruby-standalone to 1.91.0, shortening the path for windows users (7f5bd51)

10.17.6 (2022-07-06)

10.17.5 (2022-07-06)

Fixes and Improvements

  • update standalone to 1.89.02-rc1 (09631af)

10.17.4 (2022-06-15)

Fixes and Improvements

  • update standalone to 1.89.01-rc1 (e03fb70)

10.17.3 (2022-06-08)

Fixes and Improvements

  • update standalone to 1.88.91-rc4 (1f69723)

10.17.2 (2022-03-15)

Fixes and Improvements

  • update standalone to 1.88.82 (10bfc19)
  • update standalone to 1.88.83 (515110e)

10.17.1 (2021-12-16)

Fixes and Improvements

  • update standalone to 1.88.81 (c2bace9)

10.17.0 (2021-12-15)

Features

... (truncated)

Commits
  • 33d0ed4 chore(release): 10.17.7
  • 7f5bd51 fix: Update pact-ruby-standalone to 1.91.0, shortening the path for windows u...
  • 1d63450 chore: fix install tests
  • 55a7bdf chore(release): 10.17.6
  • 07a16ef chore(release): 10.17.5
  • 09631af fix: update standalone to 1.89.02-rc1
  • 7389571 chore(release): 10.17.4
  • e03fb70 fix: update standalone to 1.89.01-rc1
  • 546a060 chore(release): 10.17.3
  • 1f69723 fix: update standalone to 1.88.91-rc4
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by mfellows, a new releaser for @​pact-foundation/pact-node since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/thombergs/code-examples/network/alerts).