-
Notifications
You must be signed in to change notification settings - Fork 8
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the npm_and_yarn group across 1 directory with 9 updates #292
Open
dependabot
wants to merge
1
commit into
main
Choose a base branch
from
dependabot/npm_and_yarn/npm_and_yarn-e91d141d03
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dependabot
bot
added
the
dependencies
Pull requests that update a dependency file
label
Oct 25, 2024
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/npm_and_yarn-e91d141d03
branch
3 times, most recently
from
November 2, 2024 16:04
141a3b6
to
10fae24
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/npm_and_yarn-e91d141d03
branch
from
November 8, 2024 16:54
10fae24
to
265b71f
Compare
Bumps the npm_and_yarn group with 3 updates in the / directory: [vue](https://github.com/vuejs/core), [@quasar/app](https://github.com/quasarframework/quasar) and [rollup](https://github.com/rollup/rollup). Updates `vue` from 2.7.16 to 3.0.0 - [Release notes](https://github.com/vuejs/core/releases) - [Changelog](https://github.com/vuejs/core/blob/v3.0.0/CHANGELOG.md) - [Commits](https://github.com/vuejs/core/commits/v3.0.0) Updates `@quasar/app` from 2.4.3 to 3.3.3 - [Release notes](https://github.com/quasarframework/quasar/releases) - [Commits](https://github.com/quasarframework/quasar/compare/@quasar/app-v2.4.3...@quasar/app-v3.3.3) Updates `postcss` from 7.0.39 to 8.4.38 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@7.0.39...8.4.38) Updates `body-parser` from 1.19.2 to 1.19.1 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.19.2...1.19.1) Updates `braces` from 2.3.2 to 3.0.2 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/braces/commits/3.0.2) Updates `cookie` from 0.4.2 to 0.4.1 - [Release notes](https://github.com/jshttp/cookie/releases) - [Changelog](https://github.com/jshttp/cookie/blob/v0.4.1/HISTORY.md) - [Commits](jshttp/cookie@v0.4.2...v0.4.1) Updates `express` from 4.17.3 to 4.17.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.3...4.17.2) Updates `rollup` from 2.79.1 to 2.79.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v2.79.1...v2.79.2) Updates `webpack-dev-middleware` from 3.7.3 to 5.3.4 - [Release notes](https://github.com/webpack/webpack-dev-middleware/releases) - [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md) - [Commits](webpack/webpack-dev-middleware@v3.7.3...v5.3.4) --- updated-dependencies: - dependency-name: vue dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@quasar/app" dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: body-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: rollup dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-middleware dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/npm_and_yarn-e91d141d03
branch
from
November 17, 2024 11:11
265b71f
to
fb402ef
Compare
Quality Gate passedIssues Measures |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 3 updates in the / directory: vue, @quasar/app and rollup.
Updates
vue
from 2.7.16 to 3.0.0Changelog
Sourced from vue's changelog.
... (truncated)
Commits
Updates
@quasar/app
from 2.4.3 to 3.3.3Commits
ad27458
chore(app): Bump versionf6856ac
feat(app): upgrade depsba04f89
feat(docs): update vue links (since v3 is now default/latest version)453dfda
feat(docs): update vue links (since v3 is now default/latest version)656a42d
fix(app): Capacitor not opening IDE when configured to do so (regression) #123682437d97
feat(docs): make some instances of quasar.conf more clear that they refer to ...9f8a083
chore(ui): Bump version7d9ab19
feat(ui): various small improvements7dfca62
feat(TS/QForm): broaden the definition of the submit event #12399dc6d64a
Merge branch 'dev' of github.com:quasarframework/quasar into devUpdates
postcss
from 7.0.39 to 8.4.38Release notes
Sourced from postcss's releases.
... (truncated)
Changelog
Sourced from postcss's changelog.
... (truncated)
Commits
a69d45e
Release 8.4.38 version64e35d9
Update dependenciesc1ad8fb
Merge pull request #1932 from romainmenke/fix-warning-end-index--inventive-nu...b45e7e9
fix endIndex1bea246
failing test: for endIndex 0 in rangeBy0fd1d86
Add changelog auto release on Github49c906e
Release 8.4.37 versionb5bd92c
Fix another broken prev source map issue2882039
Update dependenciese5ad939
Release 8.4.36 versionUpdates
body-parser
from 1.19.2 to 1.19.1Changelog
Sourced from body-parser's changelog.
... (truncated)
Commits
44f6bc1
build: [email protected]268d4a2
build: [email protected]13f195f
build: [email protected]88ad521
build: [email protected]d229294
deps: [email protected]26b1638
build: [email protected]ba7861e
build: [email protected]cd44381
build: support Node.js 16.x49980c5
build: [email protected]901dd77
build: [email protected]Updates
braces
from 2.3.2 to 3.0.2Changelog
Sourced from braces's changelog.
Commits
Updates
cookie
from 0.4.2 to 0.4.1Changelog
Sourced from cookie's changelog.
... (truncated)
Commits
b22458d
0.4.1fa5fe95
build: fix typo in Travis CI directive2436f3f
build: use nyc for code coverage08e98ee
build: [email protected]80372a4
build: remove deprecated Travis CI directivee248786
Fix maxAge option to reject invalid values7e1398f
build: [email protected]cb5746d
build: [email protected]9b4abbd
build: [email protected]004b693
build: [email protected]Updates
express
from 4.17.3 to 4.17.2Changelog
Sourced from express's changelog.
... (truncated)
Commits
ea537d9
4.17.2eee93a2
build: update example dependenciesb35773c
build: [email protected]c8a4200
build: [email protected]21cf522
examples: improve 404 message wordinga24f27a
deps: [email protected]a33266a
build: support Node.js 14.x6fe271e
build: support Node.js 13.xcbe25d6
deps: [email protected]3bb6d96
examples: demonstrate sub directory downloadUpdates
rollup
from 2.79.1 to 2.79.2Changelog
Sourced from rollup's changelog.
... (truncated)
Commits
c9bd03d
2.79.248aef33
fix: resolve DOM Clobbering CVE-2024-43788 (backport to v2) (#5677)Updates
webpack-dev-middleware
from 3.7.3 to 5.3.4Release notes
Sourced from webpack-dev-middleware's releases.
... (truncated)
Changelog
Sourced from webpack-dev-middleware's changelog.
... (truncated)
Commits
86071ea
chore(release): 5.3.4189c4ac
fix(security): do not allow to read files above (#1779)f3c62b8
chore(release): 5.3.3eeb8aa8
fix: types forRequest
andResponse
(#1271)1a45388
chore(release): 5.3.2b8fb945
chore(deps): memfs force update (#1269)f88067d
chore: update deps and ci (#1260)7186318
chore(deps-dev): bump@commitlint/cli
57c50ef
ci: updatecheckout
,setup-node
, andcodecov
actions (#1267)840146a
chore(deps-dev): bump@babel/preset-env
You can trigger a rebase of this PR by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.