chore(deps-dev): bump mysql2 from 2.3.3 to 3.1.0 #3146
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
github-actions
bot
added
the
agent-nodejs
💔 Build Failed
Expand to view the summary
Build stats
Steps errors
Expand to view the steps failures
|
|
@dependabot ignore this major version See #3151 |
|
OK, I won't notify you about version 3.x.x again, unless you re-open this PR. 😢 |
|
Apparently this ancient "ignore this major version" was a blocker to dependabot doing mysql2@3 high security updates, even though we had subsequently updated to mysql2@3. See https://github.com/elastic/apm-agent-nodejs/security/dependabot/82 It is (or was) a known issue that dependabot ignores can get you into pickles and there is no dashboard or reasonable interface to resolve them. [dependabot]
However, the "Reopen and comment" button on this PR is disabled. Gah. |
Slightly subtle. One needs to "restore this branch" first, and then Re-open the PR. |
|
@dependabot recreate |
Bumps [mysql2](https://github.com/sidorares/node-mysql2) from 2.3.3 to 3.1.0. - [Release notes](https://github.com/sidorares/node-mysql2/releases) - [Changelog](https://github.com/sidorares/node-mysql2/blob/master/Changelog.md) - [Commits](sidorares/node-mysql2@v2.3.3...v3.1.0) --- updated-dependencies: - dependency-name: mysql2 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/mysql2-3.1.0
branch
from
80369ca
to
527a1a7
Compare
|
This should be obsoleted by #4021 |
|
@dependabot rebase |
|
Looks like mysql2 is up-to-date now, so this is no longer needed. |
Bumps mysql2 from 2.3.3 to 3.1.0.
Release notes
Sourced from mysql2's releases.
... (truncated)
Changelog
Sourced from mysql2's changelog.
... (truncated)
Commits
93fe86eMerge pull request #1811 from sidorares/release-please--branches--master--com...b33b597chore(master): release 3.1.0ec404e7Merge pull request #1805 from sidorares/bun-supporta2392e2feat: cleanup buffer/string conversions in hashing/xor helpers that were fail...703ecb2fix: when port is pased as a string convert it to a number (Bun's net.connect...8389bfebuild: add Bun to ci matrix8a000e0Merge pull request #1806 from sidorares/dependabot/npm_and_yarn/typescript-es...87fa5f8Merge pull request #1807 from sidorares/dependabot/npm_and_yarn/typescript-es...bc0cf01build(deps-dev): bump@typescript-eslint/parserfrom 5.48.2 to 5.49.02bdd24abuild(deps-dev): bump@typescript-eslint/eslint-pluginYou can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)