Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/usnistgov/oar-pdr/network/alerts).
Bumps terser to 5.14.2 and updates ancestor dependency @angular-devkit/build-angular. These dependencies need to be updated together.
Updates
terser
from 5.10.0 to 5.14.2Changelog
Sourced from terser's changelog.
Commits
c5cb19d
5.14.2a4da734
fix potential regexp DDOS839b81b
Add source mapping for closing}
(#1211)645a092
Optimize property access evaluation (#1213)6706fec
5.14.14a56ef2
update changelogc558e12
Add keep_numbers option. Closes #1208f745ac7
fix parsing of nested template strings. Closes #12041707753
5.14.0cb82833
update changelogUpdates
@angular-devkit/build-angular
from 13.1.4 to 13.3.10Release notes
Sourced from
@angular-devkit/build-angular
's releases.... (truncated)
Changelog
Sourced from
@angular-devkit/build-angular
's changelog.... (truncated)
Commits
bc78fcd
release: cut the v13.3.10 release7eac5a4
test(@angular/cli
): fix version specifier teste8824b0
test(@angular/cli
): update the update test to address node.js incompatability...2fbeb04
ci: replace scheduled jobs with scheduled pipelinesf298ebb
fix(@angular-devkit/build-angular
): updateloader-utils
to3.2.1
d091bb0
release: cut the v13.3.9 release0d62716
fix(@angular-devkit/build-angular
): update terser to address CVE-2022-258580bb875d
build: mark external only bazel rules62f46c8
release: cut the v13.3.8 released27fc7e
test: always install a compatible version of@angular/material-moment-adapter
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/usnistgov/oar-pdr/network/alerts).