-
Notifications
You must be signed in to change notification settings - Fork 223
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps-dev): bump mysql2 from 2.3.3 to 3.1.0 #3146
Conversation
💔 Build Failed
Expand to view the summary
Build stats
Steps errors
Expand to view the steps failures
|
@dependabot ignore this major version See #3151 |
OK, I won't notify you about version 3.x.x again, unless you re-open this PR. 😢 |
Apparently this ancient "ignore this major version" was a blocker to dependabot doing mysql2@3 high security updates, even though we had subsequently updated to mysql2@3. See https://github.com/elastic/apm-agent-nodejs/security/dependabot/82 It is (or was) a known issue that dependabot ignores can get you into pickles and there is no dashboard or reasonable interface to resolve them. [dependabot]
However, the "Reopen and comment" button on this PR is disabled. Gah. |
Slightly subtle. One needs to "restore this branch" first, and then Re-open the PR. |
@dependabot recreate |
Bumps [mysql2](https://github.com/sidorares/node-mysql2) from 2.3.3 to 3.1.0. - [Release notes](https://github.com/sidorares/node-mysql2/releases) - [Changelog](https://github.com/sidorares/node-mysql2/blob/master/Changelog.md) - [Commits](sidorares/node-mysql2@v2.3.3...v3.1.0) --- updated-dependencies: - dependency-name: mysql2 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
80369ca
to
527a1a7
Compare
This should be obsoleted by #4021 |
@dependabot rebase |
Looks like mysql2 is up-to-date now, so this is no longer needed. |
Bumps mysql2 from 2.3.3 to 3.1.0.
Release notes
Sourced from mysql2's releases.
... (truncated)
Changelog
Sourced from mysql2's changelog.
... (truncated)
Commits
93fe86e
Merge pull request #1811 from sidorares/release-please--branches--master--com...b33b597
chore(master): release 3.1.0ec404e7
Merge pull request #1805 from sidorares/bun-supporta2392e2
feat: cleanup buffer/string conversions in hashing/xor helpers that were fail...703ecb2
fix: when port is pased as a string convert it to a number (Bun's net.connect...8389bfe
build: add Bun to ci matrix8a000e0
Merge pull request #1806 from sidorares/dependabot/npm_and_yarn/typescript-es...87fa5f8
Merge pull request #1807 from sidorares/dependabot/npm_and_yarn/typescript-es...bc0cf01
build(deps-dev): bump@typescript-eslint/parser
from 5.48.2 to 5.49.02bdd24a
build(deps-dev): bump@typescript-eslint/eslint-plugin
You can trigger a rebase of this PR by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)