Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade @cyclonedx/cyclonedx-npm from 1.12.1 to 1.13.0 #291

Merged
merged 1 commit into from Jul 31, 2023
Merged

[Snyk] Upgrade @cyclonedx/cyclonedx-npm from 1.12.1 to 1.13.0 #291

merged 1 commit into from Jul 31, 2023

Conversation

lholmquist
Copy link
Member

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @cyclonedx/cyclonedx-npm from 1.12.1 to 1.13.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.
  • The recommended version was released 23 days ago, on 2023-07-07.
Release notes
Package name: @cyclonedx/cyclonedx-npm
  • 1.13.0 - 2023-07-07

    Added support for CycloneDX Specification-1.5.

    Changed

    • This tool supports CycloneDX Specification-1.5 now (#828 via #843)

    Added

    • CLI switch --spec-version now supports value 1.5 to reflect CycloneDX Specification-1.5 (#828 via #843)
      Default value for that option is unchanged - still 1.4.

    Build

    • Use TypeScript v5.1.6 now, was v5.1.3 (via #841)

    Misc

    • Raised dependency @ cyclonedx/cyclonedx-library@^3||^4, was @^2.0.0 (#828 via #843)

    Full Changelog: v1.12.1...v1.13.0

  • 1.12.1 - 2023-06-16

    Maintenance release

    Build

    • Use TypeScript v5.1.3 now, was v5.0.4 (via #764)
    • Disabled TypeScript compilerOption esModuleInterop (via #736)
    • Disabled TypeScript compilerOption allowSyntheticDefaultImports (via #736)

    Full Changelog: v1.12.0...v1.12.1

from @cyclonedx/cyclonedx-npm GitHub release notes
Commit messages
Package name: @cyclonedx/cyclonedx-npm
  • 1c76fe3 1.13.0
  • 6950114 chore: prep v1.13.0
  • 0afcd36 chore(deps): bump @ jest/reporters from 29.5.0 to 29.6.0 (#883)
  • e5c9e4e chore(deps): bump jest-cli from 29.5.0 to 29.6.0 (#895)
  • a3d04ca chore(deps): bump @ jest/fake-timers from 29.5.0 to 29.6.0 (#894)
  • f8aa308 chore(deps): bump @ jest/source-map from 29.4.3 to 29.6.0 (#893)
  • 88c9743 chore(deps): bump jest-validate from 29.5.0 to 29.6.0 (#892)
  • 1c7d925 chore(deps): bump expect from 29.5.0 to 29.6.0 (#891)
  • b76780c chore(deps): bump jest-message-util from 29.5.0 to 29.6.0 (#890)
  • bf47ced chore(deps): bump collect-v8-coverage from 1.0.1 to 1.0.2 (#889)
  • de85546 chore(deps): bump caniuse-lite from 1.0.30001509 to 1.0.30001512 (#888)
  • 6e8a610 chore(deps): bump @ babel/core from 7.22.5 to 7.22.6 (#887)
  • 04cdd17 chore(deps): bump jest-environment-node from 29.5.0 to 29.6.0 (#886)
  • 806df39 chore(deps): bump @ babel/helpers from 7.22.5 to 7.22.6 (#885)
  • 0cec698 chore(deps): bump @ jest/console from 29.5.0 to 29.6.0 (#884)
  • 998e80c chore(deps): bump jest-matcher-utils from 29.5.0 to 29.6.0 (#882)
  • 215ce51 chore(deps): bump @ jest/core from 29.5.0 to 29.6.0 (#881)
  • d65ca69 chore(deps): bump acorn from 8.9.0 to 8.10.0 (#880)
  • 92d1c97 chore(deps): bump jest-leak-detector from 29.5.0 to 29.6.0 (#879)
  • 36d1343 chore(deps): bump @ babel/traverse from 7.22.5 to 7.22.6 (#878)
  • b4db54d chore(deps): bump jest-config from 29.5.0 to 29.6.0 (#877)
  • 9286cd3 chore(deps): bump @ jest/environment from 29.5.0 to 29.6.0 (#871)
  • c4bdb43 chore(deps): bump @ babel/compat-data from 7.22.5 to 7.22.6 (#872)
  • 045f34c chore(deps): bump jest-diff from 29.5.0 to 29.6.0 (#873)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@codecov-commenter
Copy link

codecov-commenter commented Jul 29, 2023
edited

Codecov Report

Patch and project coverage have no change.

Comparison is base (9034862) 89.89% compared to head (6ed7c12) 89.89%.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main     #291   +/-   ##
=======================================
  Coverage   89.89%   89.89%           
=======================================
  Files           9        9           
  Lines         297      297           
=======================================
  Hits          267      267           
  Misses         30       30

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@lholmquist lholmquist merged commit 656b753 into main Jul 31, 2023
7 checks passed
@lholmquist lholmquist deleted the snyk-upgrade-4f524e86166a1239c2cbdf99df329d23 branch July 31, 2023 14:32
@lholmquist lholmquist mentioned this pull request Jul 31, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@lholmquist @codecov-commenter @snyk-bot