[Snyk] Upgrade dotenv from 8.2.0 to 8.6.0 #5037
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
khanhtc1202
requested review from
nghialv,
kentakozuka,
ffjlabo,
t-kikuc and
Warashi
as code owners
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #5037 +/- ##
==========================================
+ Coverage 22.41% 22.73% +0.32%
==========================================
Files 522 410 -112
Lines 56915 43514 -13401
==========================================
- Hits 12760 9895 -2865
+ Misses 43129 32841 -10288
+ Partials 1026 778 -248 ☔ View full report in Codecov by Sentry. |
t-kikuc
approved these changes
Jul 25, 2024
There was a problem hiding this comment.
process.env.PIPECD_VERSION is displayed correctly as below:
And I successfully connected with my API server with .env file.
cf. https://github.com/pipe-cd/pipecd/tree/master/web#development
Snyk has created this PR to upgrade dotenv from 8.2.0 to 8.6.0. See this package in yarn: dotenv See this project in Snyk: https://app.snyk.io/org/pipecd/project/f41c5767-b506-4f59-beb9-ef662258eb9a?utm_source=github&utm_medium=referral&page=upgrade-pr Signed-off-by: t-kikuc <tkikuchi07f@gmail.com>
t-kikuc
force-pushed
the
snyk-upgrade-89f79a88c3d666e89a02d39f7beb6ddc
branch
from
9be9c17
to
f3a7572
Compare
Merged
ffjlabo
pushed a commit
that referenced
this pull request
Jul 29, 2024
Snyk has created this PR to upgrade dotenv from 8.2.0 to 8.6.0. See this package in yarn: dotenv See this project in Snyk: https://app.snyk.io/org/pipecd/project/f41c5767-b506-4f59-beb9-ef662258eb9a?utm_source=github&utm_medium=referral&page=upgrade-pr Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com>
t-kikuc
added a commit
that referenced
this pull request
Jul 29, 2024
) * fix: upgrade dotenv from 8.2.0 to 8.6.0 (#5037) Snyk has created this PR to upgrade dotenv from 8.2.0 to 8.6.0. See this package in yarn: dotenv See this project in Snyk: https://app.snyk.io/org/pipecd/project/f41c5767-b506-4f59-beb9-ef662258eb9a?utm_source=github&utm_medium=referral&page=upgrade-pr Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * fix: upgrade @types/yup from 0.29.11 to 0.29.14 (#5038) Snyk has created this PR to upgrade @types/yup from 0.29.11 to 0.29.14. See this package in yarn: @types/yup See this project in Snyk: https://app.snyk.io/org/pipecd/project/f41c5767-b506-4f59-beb9-ef662258eb9a?utm_source=github&utm_medium=referral&page=upgrade-pr Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * fix: upgrade react-draggable from 4.4.3 to 4.4.6 (#5039) Snyk has created this PR to upgrade react-draggable from 4.4.3 to 4.4.6. See this package in yarn: react-draggable See this project in Snyk: https://app.snyk.io/org/pipecd/project/f41c5767-b506-4f59-beb9-ef662258eb9a?utm_source=github&utm_medium=referral&page=upgrade-pr Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * fix: upgrade clsx from 1.1.1 to 1.2.1 (#5040) Snyk has created this PR to upgrade clsx from 1.1.1 to 1.2.1. See this package in yarn: clsx See this project in Snyk: https://app.snyk.io/org/pipecd/project/f41c5767-b506-4f59-beb9-ef662258eb9a?utm_source=github&utm_medium=referral&page=upgrade-pr Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * add EphemeralStorage to RegisterTaskDefinition() (#5063) Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * Remove platform provider migration ops task (#5065) Signed-off-by: khanhtc1202 <khanhtc1202@gmail.com> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * Remove unused dependencies: @date-io/dayjs, @material-ui/pickers (#5070) * yarn remove @date-io/dayjs Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> * yarn remove @material-ui/pickers Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> --------- Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * Fix type for grpcWeb.Error to grpcweb.RpcError (#5072) Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> * Release/init v0.48.3 (#5090) Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> --------- Signed-off-by: t-kikuc <tkikuchi07f@gmail.com> Signed-off-by: Yoshiki Fujikane <ffjlabo@gmail.com> Signed-off-by: khanhtc1202 <khanhtc1202@gmail.com> Co-authored-by: Khanh Tran <32532742+khanhtc1202@users.noreply.github.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> Co-authored-by: Tetsuya Kikuchi <97105818+t-kikuc@users.noreply.github.com>
This was referenced Aug 13, 2024
Merged
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade dotenv from 8.2.0 to 8.6.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 5 versions ahead of your current version.
The recommended version was released on 3 years ago.
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: