Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

🐙 Dependabot deps upgrade octopus #567

Merged
merged 12 commits into from
Sep 29, 2019
Merged

🐙 Dependabot deps upgrade octopus #567

merged 12 commits into from
Sep 29, 2019

Conversation

dtinth
Copy link
Member

@dtinth dtinth commented Sep 15, 2019

Changelog

Updated some dependencies in response to GitHub security alerts for vulnerable dependencies.

dependabot bot and others added 12 commits September 15, 2019 04:41
Bumps [axios](https://github.com/axios/axios) from 0.17.1 to 0.18.1.
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v0.18.1/CHANGELOG.md)
- [Commits](axios/axios@v0.17.1...v0.18.1)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [jquery](https://github.com/jquery/jquery) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/jquery/jquery/releases)
- [Commits](jquery/jquery@3.3.1...3.4.0)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 3.12.0 to 3.13.1.
- [Release notes](https://github.com/nodeca/js-yaml/releases)
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](nodeca/js-yaml@3.12.0...3.13.1)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.13.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.11...4.17.13)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [eslint-utils](https://github.com/mysticatea/eslint-utils) from 1.3.1 to 1.4.2.
- [Release notes](https://github.com/mysticatea/eslint-utils/releases)
- [Commits](mysticatea/eslint-utils@v1.3.1...v1.4.2)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash.merge](https://github.com/lodash/lodash) from 4.6.1 to 4.6.2.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/commits)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [mixin-deep](https://github.com/jonschlinkert/mixin-deep) from 1.3.1 to 1.3.2.
- [Release notes](https://github.com/jonschlinkert/mixin-deep/releases)
- [Commits](jonschlinkert/mixin-deep@1.3.1...1.3.2)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash.mergewith](https://github.com/lodash/lodash) from 4.6.1 to 4.6.2.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/commits)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.11 to 4.17.15.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.11...4.17.15)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [fstream](https://github.com/npm/fstream) from 1.0.11 to 1.0.12.
- [Release notes](https://github.com/npm/fstream/releases)
- [Commits](npm/fstream@v1.0.11...v1.0.12)

Signed-off-by: dependabot[bot] <support@github.com>
…0.18.1', 'origin/dependabot/npm_and_yarn/eslint-utils-1.4.2', 'origin/dependabot/npm_and_yarn/fstream-1.0.12', 'origin/dependabot/npm_and_yarn/jquery-3.4.0', 'origin/dependabot/npm_and_yarn/js-yaml-3.13.1', 'origin/dependabot/npm_and_yarn/lodash-4.17.13', 'origin/dependabot/npm_and_yarn/lodash-es-4.17.15', 'origin/dependabot/npm_and_yarn/lodash.merge-4.6.2', 'origin/dependabot/npm_and_yarn/lodash.mergewith-4.6.2', 'origin/dependabot/npm_and_yarn/mixin-deep-1.3.2' and 'origin/dependabot/npm_and_yarn/webpack-dev-server-3.1.11' into HEAD
@dtinth dtinth changed the title Dependabot deps upgrade 🐙 Dependabot deps upgrade octopus Sep 15, 2019
@akibot
Copy link
Contributor

akibot commented Sep 15, 2019

Warnings
⚠️ Please include a description of your PR changes.

Generated by 🚫 dangerJS

@codecov-io
Copy link

codecov-io commented Sep 15, 2019

Codecov Report

Merging #567 into master will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##           master     #567   +/-   ##
=======================================
  Coverage   80.85%   80.85%           
=======================================
  Files         156      156           
  Lines        4764     4764           
  Branches      184      184           
=======================================
  Hits         3852     3852           
  Misses        863      863           
  Partials       49       49

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 48d7330...3f51c76. Read the comment docs.

@dtinth dtinth added the c:ready label Sep 15, 2019
release-train bot added a commit that referenced this pull request Sep 29, 2019
release-train bot added a commit that referenced this pull request Sep 29, 2019
@dtinth dtinth merged commit 3f51c76 into master Sep 29, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

3 participants