Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade yaml from 1.10.0 to 1.10.2 #155

Merged
merged 1 commit into from Apr 6, 2021
Merged

[Snyk] Upgrade yaml from 1.10.0 to 1.10.2 #155

merged 1 commit into from Apr 6, 2021

Conversation

snyk-bot
Copy link
Contributor

@snyk-bot snyk-bot commented Apr 4, 2021

Snyk has created this PR to upgrade yaml from 1.10.0 to 1.10.2.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 2 versions ahead of your current version.
  • The recommended version was released 21 days ago, on 2021-03-13.
Release notes
Package name: yaml
  • 1.10.2 - 2021-03-13
  • 1.10.1 - 2021-03-13

    This release backports the following non-breaking fixes made during the work on yaml@2 on top of yaml@1.10.0:

    • Support for __proto__ as mapping key & anchor identifier (#192)
    • Fix broken TS type for BigInt toggle
    • Dump long keys properly (#195)
    • When folding highly indented lines, require at least minContentWidth chars on the first line (#196)
    • Fix YAML.stringify() for certain null values (#197)
    • Do not break escaped chars with escaped newlines (#237, cdk8s-team/cdk8s#494)
    • Set type: "module" within browser/dist/ (#208)
    • Use CommonJS for the browser endpoints yaml/types & yaml/util (#208)
    • Always stringify non-Node object keys using explicit notation (#218)
    • Specify node type of Document.Parsed.contents (#221)
    • Add missing type for CST Node.rangeAsLinePos (#222)
    • Prefer literal over folded block scalar when lineWidth=0 is set (#232)
    • Allow for empty lines after node props (#242)
    • Update dev dependencies
  • 1.10.0 - 2020-05-16

    This will probably be the last minor release of yaml@1. I'm aiming to release yaml@2 within a few months; prereleases of that will be published using the next dist-tag on npm. Patch releases for 1.10 may still happen, if necessary.

    New Features

    • Use Rollup for Node.js & browser builds (#165)
      • This removes most of the internal dist/ paths from the release. If you want/need to use a class or function that is no longer public, please file an issue and we can add it to the exports.
      • Drop dependency on @ babel/runtime. After this, the package has 0 runtime dependencies. 🎉
      • Add exports { Alias, Collection, Merge, Node } to 'yaml/types'
    • Document Schema.createPair() & make its ctx arg optional (#157)
    • Always indent top-level scalars with lines starting with document markers or % directives (#162)
    • Use double-space when forcing top-level block scalar indent, for clarity (#162)
    • Add getNodes(): string[] method to Anchors (#166)
    • Refactor Jest config, adding tests for compiled dist/ endpoints
    • Rename & refactor source files. This should have no effect on the results, but lots of stuff moved around

    Improved Errors & Warnings

    • Throw more helpful error when setting Pair.commentBefore incorrectly (#157)
    • Better errors for bad indents (#169)
    • Drop incorrect error for flow mapping keys with length > 1024 chars
    • Add errors for plain scalars that start with reserved indicators
    • Add more explicit errors for block scalar values with bad indents
    • Enable log prints during npm start debugging

    Improved TypeScript declarations

    • Fix/simplify export mapping of 'yaml/types' and 'yaml/util'
    • Fix types, dropping AST.{AstNode,ScalarNode,CollectionNode} (#160)
    • Add missing toString() methods to AST nodes (#159)
    • Add directivesEndMarker to Document type (#167)

    Bugfixes

    • Use CommonJS for top-level default-exporting browser endpoints (#163)
    • docs: Add note about simpleKeys for null values (#170)
    • Update dev & playground dependencies, including eslint 7 & jest 26
    • Update yaml-test-suite, fixing errors in remaining invalid-input tests
      • Add explicit error for block scalars with more-indented leading empty lines (S98Z)
      • Properly add error for tab-indented map values (4EJS)
      • Add error for multiline implicit flow sequence pair key (DK4H & ZXT5)
      • Require space after comma before comment in flow collections (CVW2)
      • Use mapAsMap: true for out.yaml tests (4FJ6)
from yaml GitHub release notes
Commit messages
Package name: yaml

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@ghost
Copy link

ghost commented Apr 4, 2021

CLA assistant check
Thank you for your submission, we really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.

❌ snyk-bot sign now
You have signed the CLA already but the status is still pending? Let us recheck it.

@manekinekko manekinekko merged commit 8a458ef into main Apr 6, 2021
@manekinekko manekinekko deleted the snyk-upgrade-025554c2d732923788f665c0ea9a92bc branch March 25, 2022 16:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@manekinekko manekinekko manekinekko approved these changes

@annaji-msft annaji-msft Awaiting requested review from annaji-msft

@anthonychu anthonychu Awaiting requested review from anthonychu

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@snyk-bot @manekinekko