Bump moment-timezone and @grafana/runtime

[dependabot]

Bumps moment-timezone to 0.5.35 and updates ancestor dependency @grafana/runtime. These dependencies need to be updated together.

Updates moment-timezone from 0.5.34 to 0.5.35

Release notes

Sourced from moment-timezone's releases.

Release 0.5.35

• Fix command injection in data pipeline GHSA-56x4-j7p9-fcf9
• Fix cleartext transmission of sensitive information GHSA-v78c-4p63-2j6c

Thanks to the OpenSSF Alpha-Omega project for reporting these!

Changelog

Sourced from moment-timezone's changelog.

0.5.35 2022-08-23

• Fix command injection in data pipeline GHSA-56x4-j7p9-fcf9
• Fix cleartext transmission of sensitive information GHSA-v78c-4p63-2j6c

Thanks to the OpenSSF Alpha-Omega project for reporting these!

Commits

• b8fb1ba Build moment-timezone 0.5.35
• f1b5e5a Add changelog for 0.5.35
• 8b0eb0c Bump version to 0.5.35
• 7915ac5 Bugfix: Prevent cleartext transmission of tz data during build
• ce955a3 Bugfix: Fix command injection vulnerability in grunt tzdata pipeline
• 9430b4c Merge remote-tracking branch 'origin/master' into develop
• feaf900 Updated contributing.md + added 2021e files
• 704cfac updated contributing.md
• 877c863 Updated contributing.md + added 2021e files
• 5a3015c updated contributing.md
• Additional commits viewable in compare view

Updates @grafana/runtime from 8.5.14 to 9.2.1

Release notes

Sourced from @​grafana/runtime's releases.

9.2.1 (2022-10-18)

Download page What's new highlights

Features and enhancements

• Alerting: Improve notification policies created during migration. #52071, @​JacobsonMT
• AzureAD: Add option to force fetch the groups from the Graph API. #56916, @​gamab
• AzureAD: Add option to force fetch the groups from the Graph API (#56916). #56947, @​gamab
• Docs: Note end of release notes publication. #57013, @​gguillotte-grafana
• Inspect: Handle JSON tab crash when the provided object is too big to stringify. #55939, @​TsotosA
• TablePanel: Footer now updates values on column filtering. #56354, @​mdvictor

Bug fixes

• Alerting: Fix email image embedding on Windows. #56766, @​joeblubaugh
• Alerting: Fix mathexp.NoData for ConditionsCmd. #56816, @​grobinson-grafana
• Legacy Alerting: Fix duration calculation when testing a rule. #56616, @​jorgelbg
• Loki: Propagate additional headers from Grafana to Loki when querying data. #56896, @​alexweav
• Search: Sort alphabetically in the folder view, increase the limit of the folder search from 50 to 1000. #57141, @​ArturWierzbicki
• TablePanel: Fix last table column to be centered. #56047, @​gitstart

Plugin development fixes & changes

• Grafana UI: Export prop types for queryfield, modal and field components. #57097, @​jackw
• Toolkit: Fix Cannot use import statement outside... error in tests. #57071, @​jackw

9.2.0 (2022-10-11)

Download page What's new highlights

Features and enhancements

• Alerting: Add Notification error feedback on contact points view. #56225, @​soniaAguilarPeiron
• Alerting: Allow created by to be manually set when there's no creator for silences. #55952, @​gotjosh
• Alerting: Expose info about notification delivery errors in a new /receivers endpoint. #55429, @​santihernandezc
• Alerting: Update imported prometheus alertmanager version. #56228, @​joeblubaugh
• Alerting: Update imported prometheus alertmanager version. Backport (#56228). #56430, @​joeblubaugh
• Alerting: Write and Delete multiple alert instances. #55350, @​joeblubaugh
• Core: Implement aria attributes for query rows, improve a11y. #55563, @​L-M-K-B
• Custom Branding: Remove custom branding service. (Enterprise)
• Custom branding: Remove UI. (Enterprise)
• DevEnv: Adds docker block for clickhouse. #55702, @​owensmallwood
• Docker: removes unneccesary use of edge repo. #54567, @​xlson
• Explore: Revert split pane resize feature. #56310, @​Elfo404
• Frontend: Make local storage items propagate to different tabs immediately. #55810, @​oscarkilhed

... (truncated)

Changelog

Sourced from @​grafana/runtime's changelog.

9.2.1 (2022-10-18)

Features and enhancements

• Alerting: Improve notification policies created during migration. #52071, @​JacobsonMT
• AzureAD: Add option to force fetch the groups from the Graph API. #56916, @​gamab
• AzureAD: Add option to force fetch the groups from the Graph API (#56916). #56947, @​gamab
• Docs: Note end of release notes publication. #57013, @​gguillotte-grafana
• Inspect: Handle JSON tab crash when the provided object is too big to stringify. #55939, @​TsotosA
• TablePanel: Footer now updates values on column filtering. #56354, @​mdvictor

Bug fixes

• Alerting: Fix email image embedding on Windows. #56766, @​joeblubaugh
• Alerting: Fix mathexp.NoData for ConditionsCmd. #56816, @​grobinson-grafana
• Legacy Alerting: Fix duration calculation when testing a rule. #56616, @​jorgelbg
• Loki: Propagate additional headers from Grafana to Loki when querying data. #56896, @​alexweav
• Search: Sort alphabetically in the folder view, increase the limit of the folder search from 50 to 1000. #57141, @​ArturWierzbicki
• TablePanel: Fix last table column to be centered. #56047, @​gitstart

Plugin development fixes & changes

• Grafana UI: Export prop types for queryfield, modal and field components. #57097, @​jackw
• Toolkit: Fix Cannot use import statement outside... error in tests. #57071, @​jackw

9.2.0 (2022-10-11)

Features and enhancements

• Alerting: Add Notification error feedback on contact points view. #56225, @​soniaAguilarPeiron
• Alerting: Allow created by to be manually set when there's no creator for silences. #55952, @​gotjosh
• Alerting: Expose info about notification delivery errors in a new /receivers endpoint. #55429, @​santihernandezc
• Alerting: Update imported prometheus alertmanager version. #56228, @​joeblubaugh
• Alerting: Update imported prometheus alertmanager version. Backport (#56228). #56430, @​joeblubaugh
• Alerting: Write and Delete multiple alert instances. #55350, @​joeblubaugh
• Core: Implement aria attributes for query rows, improve a11y. #55563, @​L-M-K-B
• Custom Branding: Remove custom branding service. (Enterprise)
• Custom branding: Remove UI. (Enterprise)
• DevEnv: Adds docker block for clickhouse. #55702, @​owensmallwood
• Docker: removes unneccesary use of edge repo. #54567, @​xlson
• Explore: Revert split pane resize feature. #56310, @​Elfo404
• Frontend: Make local storage items propagate to different tabs immediately. #55810, @​oscarkilhed
• PublicDashboards: Allow disabling an existent public dashboard if it …. #55778, @​evictorero
• QueryEditorRow: Only pass error to query editor if panel is not in a loading state. #56350, @​kevinwcyu
• Reports: Refresh query variables on time range change. (Enterprise)
• XYChart: Beta release. #55973, @​mdvictor
• [9.2.x] Alerting: Start ticker only when scheduler starts (#56339). #56418, @​yuri-tceretian

... (truncated)

Commits

• 34f7bae "Release: Updated versions in package to 9.2.1" (#588)
• 50a5930 Toolkit: Fix script failures due to missing import paths (#55857) (#55981)
• 3931787 "Release: Updated versions in package to 9.2.0-beta.1" (#55787)
• d014a3a Echo: Add support for Google Analytics 4 (#55446)
• 3e2e9f9 Auth: Allow admins to manually change oauth user role if `oauth_skip_org_role...
• c95b530 DataSource: Adding possibility to hide queries from the inspector (#54892)
• 4c7732a Chore: Upgrade Typescript to 4.8.2 (#54901)
• ad19f01 Update dependency esbuild to v0.15.7 (#54928)
• 11de1df TopNav: Plugin page layouts / information architecture (#53174)
• b5b4198 Docs: Deprecating packages_api and removing it from our pipelines (#54473)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Looks like these dependencies are no longer updatable, so this is no longer needed.