search

udsm-dhis2-lab / hris-maintenance-app

A collection of the services that help to interact with the maintenance resources in HRIS system
GNU General Public License v3.0
0 stars 0 forks source link

chore(deps-dev): bump @angular/cli from 8.3.22 to 9.1.3 #497

Open dependabot-preview[bot] opened 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps @angular/cli from 8.3.22 to 9.1.3.

Release notes

Sourced from @angular/cli's releases.

v9.1.2

Commits

@angular-devkit/build-angular (0.901.2)

Commit Description Notes
retain css declarations order when using `extractCss` and `@import` rule [Closes [#9475](https://github.com/angular/angular-cli/issues/9475)]

@angular/cli (9.1.2)

Commit Description Notes
... (truncated)
Commits
  • e07317b release: v9.1.3
  • 4060499 fix(@schematics/angular): generate new projects with Karma v5
  • 14d3198 docs: add notes about various release foot-guns
  • 6ef9065 fix(@angular-devkit/core): workspace reader spread/rest operator usage with f...
  • 8baede8 release: v9.1.2
  • a069073 fix(@angular/cli): ensure Node.js message is shown on old Node.js versions
  • 5023051 test: update ng-packagr tests tsconfig as per CLI default
  • 25ef78e fix(@ngtools/webpack): give higher priority to ivy-specific entry-points
  • 8c71aff fix(@angular-devkit/build-angular): retain css declarations order when using ...
  • 618b293 release: v9.1.1
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in the `.dependabot/config.yml` file in this repo: - Update frequency - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
guardrails[bot] commented 4 years ago

:warning: We detected security issues in this pull request:

Vulnerable Libraries (2) - [tree-kill@1.2.1](https://github.com/hisptz/hris-maintenance-app/blob/ce06f384968046b0287c86de563d78d836168e64/package.json#Lnull) upgrade to `>=1.2.2` - [ws@2.0.3](https://github.com/hisptz/hris-maintenance-app/blob/ce06f384968046b0287c86de563d78d836168e64/package.json#Lnull) upgrade to `>= 1.1.5 <2.0.0 || >=3.3.1` More info on how to fix Vulnerable Libraries in [Javascript](https://www.guardrails.io/docs/en/vulnerabilities/javascript/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.