97fde2c: Support the use of -B in place of the default -b in checkout methods
0a623e5: Adds vulnerability detection to prevent use of --upload-pack and --receive-pack without explicitly opting in.
Patch Changes
ec97a39: Include restricting the use of git push --exec with other allowUnsafePack exclusions, thanks to @stsewd for the suggestion.
simple-git@3.15.1
Patch Changes
de570ac: Resolves an issue whereby non-strings can be passed into the config switch detector.
simple-git@3.15.0
Minor Changes
7746480: Disables the use of inline configuration arguments to prevent unitentionally allowing non-standard remote protocols without explicitly opting in to this practice with the new allowUnsafeProtocolOverride property having been enabled.
Patch Changes
7746480: - Upgrade repo dependencies - lerna and jest
Include node@19 in the test matrix
simple-git@3.14.1
Patch Changes
5a2e7e4: Add version parsing support for non-numeric patches (including "built from source" style 1.11.GIT)
simple-git@3.14.0
Minor Changes
19029fc: Create the abort plugin to allow cancelling all pending and future tasks.
4259b26: Add .version to return git version information, including whether the git binary is installed.
simple-git@3.13.0
Minor Changes
87b0d75: Increase the level of deprecation notices for use of simple-git/promise, which will be fully removed in the next major
d0dceda: Allow supplying just one of to/from in the options supplied to git.log
Patch Changes
6b3e05c: Use shared test utilities bundle in simple-git tests, to enable consistent testing across packages in the future
simple-git@3.12.0
Minor Changes
bfd652b: Add a new configuration option to enable trimming white-space from the response to git.raw
97fde2c: Support the use of -B in place of the default -b in checkout methods
0a623e5: Adds vulnerability detection to prevent use of --upload-pack and --receive-pack without explicitly opting in.
Patch Changes
ec97a39: Include restricting the use of git push --exec with other allowUnsafePack exclusions, thanks to @stsewd for the suggestion.
3.15.1
Patch Changes
de570ac: Resolves an issue whereby non-strings can be passed into the config switch detector.
3.15.0
Minor Changes
7746480: Disables the use of inline configuration arguments to prevent unitentionally allowing non-standard remote protocols without explicitly opting in to this practice with the new allowUnsafeProtocolOverride property having been enabled.
Patch Changes
7746480: - Upgrade repo dependencies - lerna and jest
Include node@19 in the test matrix
3.14.1
Patch Changes
5a2e7e4: Add version parsing support for non-numeric patches (including "built from source" style 1.11.GIT)
3.14.0
Minor Changes
19029fc: Create the abort plugin to allow cancelling all pending and future tasks.
4259b26: Add .version to return git version information, including whether the git binary is installed.
3.13.0
Minor Changes
87b0d75: Increase the level of deprecation notices for use of simple-git/promise, which will be fully removed in the next major
d0dceda: Allow supplying just one of to/from in the options supplied to git.log
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/wizeline/serverless-fullstack/network/alerts).
Bumps simple-git to 3.16.0 and updates ancestor dependencies simple-git, serverless and serverless-apigateway-service-proxy. These dependencies need to be updated together.
Updates
simple-gitfrom 1.132.0 to 3.16.0Release notes
Sourced from simple-git's releases.
... (truncated)
Changelog
Sourced from simple-git's changelog.
... (truncated)
Commits
1a12952Version Packagesec97a39Block unsafe pack (push --exec) (#882)0a623e5Feat/unsafe pack (#881)97fde2cAdd support for using the-Bmodifier instead of the default-bwhen usin...edfd459Update readme.mdc9fc61fVersion Packagesde570acFix/non strings (#867)d4764bfVersion Packages7746480Chore: bump lerna, jest and create prettier workflow (#862)6b3c631Create theunsafeplugin to configure howsimple-gittreats known potenti...Updates
serverlessfrom 1.72.0 to 3.27.0Release notes
Sourced from serverless's releases.
... (truncated)
Changelog
Sourced from serverless's changelog.
... (truncated)
Commits
0249ddechore: Release v3.27.0a969a38chore: Bump dependencies2198799refactor: Improve warning message741847ddocs: Mark support for google cloud as experimental (#11706)87bc501docs: Fix openwhisk documentation (#11705)e076453test(AWS CloudFront): Upgrade to rely onrunServerless(#11693)6591504feat(AWS Lambda): Recognizeap-southeast-4Melbourne region (#11700)b5509cfdocs: Improve local installation example (#11695)b925c4cfeat(AWS EventBridge): Supportfunctions[].events[].eventBridge.name1df93f0test(AWS CloudFront): Upgrade to rely onrunServerless(#11683)Updates
serverless-apigateway-service-proxyfrom 1.7.0 to 1.15.0Release notes
Sourced from serverless-apigateway-service-proxy's releases.
... (truncated)
Commits
342812cfeat: drop serverlessv2 drop \n\n BREAKING CHANGE: v3.0.0 requireda4a31fdMerge branch 'master' of github.com:serverless-operations/serverless-apigatew...f371099feat: drop v2. BREAKING CHANGE upgrade to v3791db20Merge pull request #165 from serverless-operations/upgrade-v391009e6chore: update test code45ef81cchore: fix sls core path0ca7496chore: debug53d7989chore: update ci1967c22chore: update cache keye3d874cchore: update package-lock.jsonDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/wizeline/serverless-fullstack/network/alerts).