Bump the npm_and_yarn group with 17 updates#90
Open
dependabot[bot] wants to merge 1 commit into
Open
Conversation
Bumps the npm_and_yarn group with 17 updates: | Package | From | To | | --- | --- | --- | | [node-sass](https://github.com/sass/node-sass) | `4.14.1` | `9.0.0` | | [vue-template-compiler](https://github.com/vuejs/vue) | `2.6.12` | `2.7.16` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.12.9` | `7.25.6` | | [async](https://github.com/caolan/async) | `2.6.3` | `2.6.4` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.2.1` | `4.2.3` | | [color-string](https://github.com/Qix-/color-string) | `1.5.4` | `1.9.1` | | [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` | | [eventsource](https://github.com/EventSource/eventsource) | `1.0.7` | `1.1.2` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.13.0` | `1.15.8` | | [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` | | [scss-tokenizer](https://github.com/sasstools/scss-tokenizer) | `0.2.3` | `0.4.3` | | [semver](https://github.com/npm/node-semver) | `5.3.0` | `5.7.1` | | [shell-quote](https://github.com/ljharb/shell-quote) | `1.7.2` | `1.8.1` | | [tar](https://github.com/isaacs/node-tar) | `2.2.2` | `6.2.1` | | [terser](https://github.com/terser/terser) | `4.8.0` | `4.8.1` | | [url-parse](https://github.com/unshiftio/url-parse) | `1.5.1` | `1.5.10` | | [word-wrap](https://github.com/jonschlinkert/word-wrap) | `1.2.3` | `1.2.5` | Updates `node-sass` from 4.14.1 to 9.0.0 - [Release notes](https://github.com/sass/node-sass/releases) - [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md) - [Commits](sass/node-sass@v4.14.1...v9.0.0) Updates `vue-template-compiler` from 2.6.12 to 2.7.16 - [Release notes](https://github.com/vuejs/vue/releases) - [Changelog](https://github.com/vuejs/vue/blob/main/CHANGELOG.md) - [Commits](vuejs/vue@v2.6.12...v2.7.16) Updates `@babel/traverse` from 7.12.9 to 7.25.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.6/packages/babel-traverse) Updates `async` from 2.6.3 to 2.6.4 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md) - [Commits](caolan/async@v2.6.3...v2.6.4) Updates `browserify-sign` from 4.2.1 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.2.1...v4.2.3) Updates `color-string` from 1.5.4 to 1.9.1 - [Release notes](https://github.com/Qix-/color-string/releases) - [Changelog](https://github.com/Qix-/color-string/blob/master/CHANGELOG.md) - [Commits](Qix-/color-string@1.5.4...1.9.1) Updates `decode-uri-component` from 0.2.0 to 0.2.2 - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) Updates `eventsource` from 1.0.7 to 1.1.2 - [Changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md) - [Commits](EventSource/eventsource@v1.0.7...v1.1.2) Updates `follow-redirects` from 1.13.0 to 1.15.8 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.13.0...v1.15.8) Updates `minimist` from 1.2.5 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.8) Updates `scss-tokenizer` from 0.2.3 to 0.4.3 - [Release notes](https://github.com/sasstools/scss-tokenizer/releases) - [Commits](sasstools/scss-tokenizer@v0.2.3...v0.4.3) Updates `semver` from 5.3.0 to 5.7.1 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v5.3.0...v5.7.1) Updates `shell-quote` from 1.7.2 to 1.8.1 - [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md) - [Commits](ljharb/shell-quote@v1.7.2...v1.8.1) Updates `tar` from 2.2.2 to 6.2.1 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v2.2.2...v6.2.1) Updates `terser` from 4.8.0 to 4.8.1 - [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md) - [Commits](terser/terser@v4.8.0...v4.8.1) Updates `url-parse` from 1.5.1 to 1.5.10 - [Commits](unshiftio/url-parse@1.5.1...1.5.10) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) --- updated-dependencies: - dependency-name: node-sass dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: vue-template-compiler dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: async dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: color-string dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: decode-uri-component dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: eventsource dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: scss-tokenizer dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: shell-quote dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: terser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: url-parse dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 17 updates:
4.14.19.0.02.6.122.7.167.12.97.25.62.6.32.6.44.2.14.2.31.5.41.9.10.2.00.2.21.0.71.1.21.13.01.15.81.2.51.2.80.2.30.4.35.3.05.7.11.7.21.8.12.2.26.2.14.8.04.8.11.5.11.5.101.2.31.2.5Updates
node-sassfrom 4.14.1 to 9.0.0Release notes
Sourced from node-sass's releases.
... (truncated)
Commits
87f3899feat: Node 20 support (#3355)06ae4c7build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 (#3350)e069f73build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0c34837dbuild(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0ee13eb98.0.098e75b3feat: Node 18 and 19 support and drop Node 17 (#3257)e9bb866Bump node-gyp and nan for node 19 support (#3314)ab7840bFix binaries being partially downloaded (#3313)d595abf7.0.33b556c17.0.2Updates
vue-template-compilerfrom 2.6.12 to 2.7.16Release notes
Sourced from vue-template-compiler's releases.
... (truncated)
Changelog
Sourced from vue-template-compiler's changelog.
... (truncated)
Commits
13f4e7drelease: v2.7.1656ce7f8fix(lifecycle): esnure component effect scopes are disconnected305e4aerelease: v2.7.16-beta.23e1037echore: bump vitest to 1.0.4db9c566fix: account for nested render calls895669ffix(types): export more types for v3 alignment (jsx / component options)73bdf14release: v2.7.16-beta.1e0747f4fix(keep-alive): fix memory leak without breaking transition tests2632249fix(keep-alive): fix keep-alive memory leak3650c12fix(types): provide types for built-in componentsUpdates
@babel/traversefrom 7.12.9 to 7.25.6Release notes
Sourced from
@babel/traverse's releases.... (truncated)
Changelog
Sourced from
@babel/traverse's changelog.... (truncated)
Commits
2f72b97v7.25.6faceae9fix:path.getAssignmentIdentifiersmay beundefined(#16727)46ee612Remove someNodePathmethods (#16655)2fdc8b5fix: Generate sequence expression parentheses correctly (#16764)cbf124cv7.25.42b289fbfix: skip computed key when renaming (#16756)575863cAvoid unnecessary parens around sequence expressions (#16722)5174ad1Clean all always enabled parser plugins (#16572)52718abDiscontinue babel-eslint-config-internal (#16718)dba45d3IgnoredevDependencieswhen generatingtsconfig.json(#16659)Updates
asyncfrom 2.6.3 to 2.6.4Changelog
Sourced from async's changelog.
Commits
c6bdacaVersion 2.6.48870da9Update built files4df6754update changelog8f7f903Fix prototype pollution vulnerability (#1828)Maintainer changes
This version was pushed to npm by hargasinski, a new releaser for async since your current version.
Updates
browserify-signfrom 4.2.1 to 4.2.3Changelog
Sourced from browserify-sign's changelog.
Commits
bf2c3ecv4.2.39247adf[patch] widen support to 0.12f427270[Deps] update `parse-asn187f3a35[Dev Deps] updateaud,npmignore,tapefb261ce[Deps] updateelliptic4d0ee49[patch] drop minimum node support to v19e2bf12[Deps] pinhash-baseto ~3.0, due to a breaking change168e16f[Deps] pinellipticdue to a breaking change37a4758[actions] remove redundant finisher4af5a90v4.2.2Maintainer changes
This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.
Updates
color-stringfrom 1.5.4 to 1.9.1Release notes
Sourced from color-string's releases.
... (truncated)
Commits
d9b04bb1.9.1937b690fix to.keyword returning Object.prototype values (#67)4daceef1.9.094a429eadd parsing of exponential alpha values for HWB and HSLfc2f8801.8.232f3e00fix incorrect handling of optional comma in rgb() regex (fixes #65)0766ca71.8.10710543Fix rgb alpha percentage parsing from int to floatab299a71.8.0bea8702add anchors to keyword regexUpdates
decode-uri-componentfrom 0.2.0 to 0.2.2Release notes
Sourced from decode-uri-component's releases.
Commits
a0eea460.2.2980e0bfPrevent overwriting previously decoded tokens3c8a3730.2.176abc93Switch to GitHub workflows746ca5dFix issue where decode throws - fixes #6486d7e2Update license (#1)a650457Tidelift tasks66e1c28Meta tweaksUpdates
eventsourcefrom 1.0.7 to 1.1.2Changelog
Sourced from eventsource's changelog.
Commits
0a8b85b1.1.2f99ae66docs: update history for 1.1.206c9721chore: rebuild polyfill9494642fix: inline origin resolution, droporiginaldependency (#281)aa7a4081.1.156d489echore: rebuild polyfill4a951e5docs: update history for 1.1.1f9f6416fix: strip sensitive headers on redirect to different origin9dd06871.1.049497baUpdate history for 1.1.0 (#146)Updates
follow-redirectsfrom 1.13.0 to 1.15.8Commits
62558f0Release version 1.15.8 of the npm package.a8d1ceeReturn subtlety.458ca8eFix native URL test for Node 20.ca49e44Handle KeepAlive connections in tests.f3711d7Test on Node 20 and 22.fda0fafFix typo.760757fRelease version 1.15.7 of the npm package.97d1f9aGraceful browser degradation.35a517cRelease version 1.15.6 of the npm package.c4f847fDrop Proxy-Authorization across hosts.Updates
minimistfrom 1.2.5 to 1.2.8Changelog
Sourced from minimist's changelog.
... (truncated)
Commits
6901ee2v1.2.8a026794Merge tag 'v0.2.3'c0b2661v0.2.363b8fee[Fix] Fix long option followed by single dash (#17)72239e6[Tests] Remove duplicate test (#12)34b0f1c[eslint] fix indentation3226afa[Dev Deps] add missingnpmignoredev dep098873c[Dev Deps] update@ljharb/eslint-config,aud9ec4d27[Fix] Fix long option followed by single dashba92fe6[actions] Avoid 0.6 tests due to build failuresMaintainer changes
This version was pushed to npm by ljharb, a new releaser for minimist since your current version.
Updates
scss-tokenizerfrom 0.2.3 to 0.4.3Release notes
Sourced from scss-tokenizer's releases.