Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Dependencies updated by Dependabot #155

Closed
wants to merge 12 commits into from
Closed

Dependencies updated by Dependabot #155

wants to merge 12 commits into from

Conversation

ghost
Copy link

@ghost ghost commented Feb 9, 2019

See individual commits for details

dependabot-support and others added 12 commits February 9, 2019 08:34
Bumps [npm-registry-fetch](https://github.com/npm/registry-fetch) from 3.8.0 to 3.9.0.
- [Release notes](https://github.com/npm/registry-fetch/releases)
- [Changelog](https://github.com/npm/npm-registry-fetch/blob/latest/CHANGELOG.md)
- [Commits](npm/npm-registry-fetch@v3.8.0...v3.9.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.10 to 4.17.11. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Changelog](https://github.com/lodash/lodash/blob/master/CHANGELOG)
- [Commits](lodash/lodash@4.17.10...4.17.11)

Signed-off-by: dependabot[bot] <support@dependabot.com>
Bumps [tacks](https://github.com/iarna/tacks) from 1.2.7 to 1.3.0.
- [Release notes](https://github.com/iarna/tacks/releases)
- [Changelog](https://github.com/iarna/tacks/blob/master/CHANGES.md)
- [Commits](iarna/tacks@v1.2.7...v1.3.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>
Bumps [npm-packlist](https://github.com/npm/npm-packlist) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/npm/npm-packlist/releases)
- [Commits](npm/npm-packlist@v1.2.0...v1.3.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>
Bumps [normalize-package-data](https://github.com/npm/normalize-package-data) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/npm/normalize-package-data/releases)
- [Commits](npm/normalize-package-data@v2.4.0...v2.5.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>
Bumps [lru-cache](https://github.com/isaacs/node-lru-cache) from 4.1.5 to 5.1.1.
- [Release notes](https://github.com/isaacs/node-lru-cache/releases)
- [Commits](isaacs/node-lru-cache@v4.1.5...v5.1.1)

Signed-off-by: dependabot[bot] <support@dependabot.com>
…cache-5.1.1

Bump lru-cache from 4.1.5 to 5.1.1
…alize-package-data-2.5.0

Bump normalize-package-data from 2.4.0 to 2.5.0
…packlist-1.3.0

Bump npm-packlist from 1.2.0 to 1.3.0
…sh-4.17.11

[Security] Bump lodash from 4.17.10 to 4.17.11
…registry-fetch-3.9.0

Bump npm-registry-fetch from 3.8.0 to 3.9.0
This pull request was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant