profile
viewpoint
Anand Chowdhary AnandChowdhary @OswaldLabsOpenSource Enschede, the Netherlands https://anandchowdhary.com Creative technologist & entrepreneur • Forbes 30 Under 30 • Oswald Labs CEO

AnandChowdhary/add-to-calendar 10

Send calendar invitations

AnandChowdhary/a11yisimportant 5

🐦 Twitter bot for @a11yisimportant × #a11y

AnandChowdhary/accessibilityguidelines.com 4

♿ Universal accessibility guidelines for the web

AnandChowdhary/auto-i18n 4

🌐 Automatically translate your JSON I18N files

AnandChowdhary/anandchowdhary.com 3

🌐 Anand Chowdhary's personal website, blog, and portfolio

AnandChowdhary/archiver 2

🗄️ Auto-archive your webpages on the Internet Archive

AnandChowdhary/.github 1

🔧 Default default community health files for my GitHub projects

AnandChowdhary/abendgebet 1

A game based on the painting Abendgebet by Milan Kunc

AnandChowdhary/analytics-icons 1

📈 Icons for browsers, OSes, devices, flags, and more

push eventkoj-co/twt

Anand Chowdhary

commit sha 2f64434933c129d50a99f731279ae91cf3e01999

:sparkles: Remove period from TWT

view details

Anand Chowdhary

commit sha 53afa4a65afe3d0d5ceb9660baa31401d3ec0849

:white_check_mark: Add tests after removing period

view details

Anand Chowdhary

commit sha 90634bf4043cf26e3c9054c979d465a314eab192

:recycle: Use MD5 instead of SHA-1

view details

Anand Chowdhary

commit sha 2b173f9640228799d39d37fd732ef55303435750

:recycle: Change length to 32

view details

Anand Chowdhary

commit sha b9828cddf8ac6853115a36884419323bf138051b

:white_check_mark: Add tests for MD5

view details

Anand Chowdhary

commit sha fb58fc14ab8cada771e84243dea04c6d1db3d610

:pencil: Document new features

view details

Anand Chowdhary

commit sha 7b81461bec584cbcb6c226d7c22e6dfc2bc7f4f4

:sparkles: Add support for length parameter

view details

Anand Chowdhary

commit sha 668db47d92509747320e119c863f85705a4572a8

:white_check_mark: Add tests for length param

view details

push time in 7 hours

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha d508ffd4a50bba17ef9fb267c013b8c930893e72

Deploy to GitHub pages

view details

push time in 8 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha 16149a7afbdf834e6ca39319ceaf11a9bf2f2fb0

:wrench: Run Trigger CI on data update [skip ci]

view details

push time in 10 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha 02720e4e7ae4af3e8550d4b201a84f0e75a5372b

:fire: Remove French translation

view details

push time in 10 hours

pull request commentcla-assistant/github-action

Add support for custom commit messages

No, it's a GitHub account with a personal access token being used instead of the default GITHUB_TOKEN: https://github.com/KojBot

AnandChowdhary

comment created time in 12 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha c443424fa5020a13652eb4f7fef6991587e2dc92

:page_facing_up: Add description of LICENSE

view details

push time in 15 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha 1c6c5b7ffee98f3e066f022f6b499a2753254b6e

:page_facing_up: Add CC-BY-4.0 license

view details

push time in 15 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha 05df8bd05a0cc9cc573cd22e045562d79fdd3efa

:page_facing_up: Add MIT license

view details

push time in 15 hours

pull request commentcla-assistant/github-action

Add support for custom commit messages

This works great!

Screen Shot 2020-08-07 at 12 03 56@2x

For people using Gitmoji, this is our configuration:

signed-commit-message: ":wrench: @$contributorName has signed the CLA in #$pullRequestNo"
signed-empty-commit-message: ":wrench: @$contributorName has signed the CLA"
create-file-commit-message: ":wrench: Creating a file for storing CLA signatures"
all-signed-comment-message: "✍️ All contributors have signed the CLA"
request-comment-message: "Thanks for your submission! We ask that $you sign our [Contributor License Agreement]($pathToCLADocument) before we can accept your contribution. You can sign the CLA by adding a comment below using this text:"
AnandChowdhary

comment created time in 15 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha f4e8f3f9e4daaa2603776f65671a87fc0d54bbda

:pencil: Update spreadsheet layout

view details

push time in 15 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha 9b20287e7df0240418f3163ffe5c6eb76bc8ef23

:pencil: Add project docs

view details

push time in 15 hours

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha b186ee0b03ec0fbc4fcd60afbd4c6efbe5e17a3d

Deploy to GitHub pages

view details

push time in 20 hours

push eventkoj-co/i18n

Anand Chowdhary

commit sha 912c0a5a38a63f8826620f4e975e7df3ad273f4f

:rotating_light: Lint JSON files before commit

view details

push time in a day

push eventkoj-co/i18n

Anand Chowdhary

commit sha 1f1c6a301cf119791715cfb1c25472a6b391cf8f

:wrench: Check for skip flag

view details

push time in a day

push eventkoj-co/i18n

Anand Chowdhary

commit sha 3eb1cd13f13c810f2e49f36abdecce31a8385a6b

:construction_worker: Add webhook trigger CI [skip ci]

view details

push time in a day

create barnchkoj-co/i18n

branch : master

created branch time in a day

created repositorykoj-co/i18n

🌐 Automated Google Sheets to language files for koj.co

created time in a day

pull request commentcla-assistant/github-action

Add support for custom commit messages

Forgot to add docs here, can you please add the new options to README?

AnandChowdhary

comment created time in a day

delete branch AnandChowdhary/github-action

delete branch : patch-1

delete time in a day

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha 212ccea47298cdaa5d6576c231a62322a940c6a6

Deploy to GitHub pages

view details

push time in a day

push eventcarlobadini/carlobadini.com

Anand Chowdhary

commit sha cf6fd38b92e5cb23dd8c4c17b5ca8aa7b330db58

:iphone: Make header responsive

view details

Anand Chowdhary

commit sha ca97fe2876ff408b2cc0cc8348ecbc746b7ea74f

:iphone: Make main text responsive

view details

Anand Chowdhary

commit sha 8e84b08291f4ead5e5d1446428e8328da000fe66

:recycle: Change order of close nav button

view details

Anand Chowdhary

commit sha 43abb37441bca830f4bde323e7b9ed07a2633250

:lipstick: Add list style for experiences

view details

Anand Chowdhary

commit sha def661100e290d6ce4dcd34c1555a1dcc944423c

:bento: Add logos

view details

Anand Chowdhary

commit sha 8e90efdf50abe8e6a02fdc671775d34f5b30b072

:recycle: Add logos for other jobs

view details

Anand Chowdhary

commit sha 9f8e53d79514dcf2befbef325ed8773ce47df20b

:recycle: Add logos and other works

view details

Anand Chowdhary

commit sha b82040a0eae0e5e0ec717905cf12e09195c40c5f

:recycle: Add logos for speaking

view details

Anand Chowdhary

commit sha d72d7fd654483ebfc31c1ed14e503d41ff87209a

:recycle: Add press items

view details

push time in a day

startedsimdjson/simdjson

started time in a day

push eventOswaldLabsOpenSource/deployer

dependabot[bot]

commit sha f5dfc83f61aca12bd29dd67634781f0d8da4fd62

:arrow_up: Bump axios from 0.18.0 to 0.18.1 Bumps [axios](https://github.com/axios/axios) from 0.18.0 to 0.18.1. - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v0.18.1/CHANGELOG.md) - [Commits](https://github.com/axios/axios/compare/v0.18.0...v0.18.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

Anand Chowdhary

commit sha 466434771fc187db676e837feb0d73461d17f7d1

Merge pull request #2 from OswaldLabsOpenSource/dependabot/npm_and_yarn/axios-0.18.1 ⬆️ Bump axios from 0.18.0 to 0.18.1

view details

push time in 2 days

PR merged OswaldLabsOpenSource/deployer

⬆️ Bump axios from 0.18.0 to 0.18.1 dependencies

Bumps axios from 0.18.0 to 0.18.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/axios/axios/releases">axios's releases</a>.</em></p> <blockquote> <h2>v0.18.1</h2> <p>Security Fix:</p> <ul> <li>Destroy stream on exceeding maxContentLength (fixes <a href="https://github-redirect.dependabot.com/axios/axios/issues/1098">#1098</a>) (<a href="https://github-redirect.dependabot.com/axios/axios/issues/1485">#1485</a>) - Gadzhi Gadzhiev</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/axios/axios/blob/v0.18.1/CHANGELOG.md">axios's changelog</a>.</em></p> <blockquote> <h3>0.18.1 (May 31, 2019)</h3> <p>Security Fix:</p> <ul> <li>Destroy stream on exceeding maxContentLength (fixes <a href="https://github-redirect.dependabot.com/axios/axios/issues/1098">#1098</a>) (<a href="https://github-redirect.dependabot.com/axios/axios/pull/1485">#1485</a>) - Gadzhi Gadzhiev</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/axios/axios/commit/face0165de613696d10b1fd2a0e2f7b3852fa018"><code>face016</code></a> Releasing 0.18.1</li> <li><a href="https://github.com/axios/axios/commit/062876378b2e46aa12cb084dce56dddde1f8172c"><code>0628763</code></a> Update Changelog for release (0.18.1)</li> <li><a href="https://github.com/axios/axios/commit/dc9b29c3411f160009570d369013585693deb154"><code>dc9b29c</code></a> adjust README to match IE support</li> <li><a href="https://github.com/axios/axios/commit/16326d5fe93bb2bf9d793fe04786e3198f298429"><code>16326d5</code></a> Remove usages of isOldIE in tests</li> <li><a href="https://github.com/axios/axios/commit/5a4228b9f82ef9dfb695e10c95d237f4b7afdc14"><code>5a4228b</code></a> Remove IE10 launcher from karma config</li> <li><a href="https://github.com/axios/axios/commit/695b5f7241d7a3b339a768e3d04cfa5d1efd758e"><code>695b5f7</code></a> Remove isOldIE check in tests</li> <li><a href="https://github.com/axios/axios/commit/e314ab00b48be01283f4c48fc2ecaef73fac7c85"><code>e314ab0</code></a> Remove HTTP 1223 handling</li> <li><a href="https://github.com/axios/axios/commit/7efa822b2e8ac47c54f3eafc7fb0c6b52ffaa0c6"><code>7efa822</code></a> Remove btoa polyfill tests</li> <li><a href="https://github.com/axios/axios/commit/f3cdcc7f0125a069998bb3c74337fea99dd98f7b"><code>f3cdcc7</code></a> Delete btoa polyfill</li> <li><a href="https://github.com/axios/axios/commit/efc0b581c828fe0e5e6d39a40d65d1c73181e05c"><code>efc0b58</code></a> Remove ie8/9 special CORS treatment and btoa polyfill</li> <li>Additional commits viewable in <a href="https://github.com/axios/axios/compare/v0.18.0...v0.18.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+26 -21

0 comment

2 changed files

dependabot[bot]

pr closed time in 2 days

push eventelninotech/uppload

dependabot-preview[bot]

commit sha 3603556519e7f8adedd23cc52c8777a5edef18da

:arrow_up: Bump @types/jest from 26.0.3 to 26.0.9 Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 26.0.3 to 26.0.9. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Anand Chowdhary

commit sha d57ba27465edb3b6617f2e01ff16b76905afbb99

Merge pull request #291 from elninotech/dependabot/npm_and_yarn/types/jest-26.0.9 ⬆️ Bump @types/jest from 26.0.3 to 26.0.9

view details

push time in 2 days

delete branch elninotech/uppload

delete branch : dependabot/npm_and_yarn/types/jest-26.0.9

delete time in 2 days

PR merged elninotech/uppload

⬆️ Bump @types/jest from 26.0.3 to 26.0.9 dependencies

Bumps @types/jest from 26.0.3 to 26.0.9. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

push eventOswaldLabsOpenSource/deployer

dependabot[bot]

commit sha 1fb6bf58140b79373e8b722ac4758a9a6d183ec9

:arrow_up: Bump fastify from 2.1.0 to 2.15.1 Bumps [fastify](https://github.com/fastify/fastify) from 2.1.0 to 2.15.1. - [Release notes](https://github.com/fastify/fastify/releases) - [Commits](https://github.com/fastify/fastify/compare/v2.1.0...v2.15.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

Anand Chowdhary

commit sha f128dad2dce78993965c62efd279d6c18a04ef59

Merge pull request #1 from OswaldLabsOpenSource/dependabot/npm_and_yarn/fastify-2.15.1 ⬆️ Bump fastify from 2.1.0 to 2.15.1

view details

push time in 2 days

PR merged OswaldLabsOpenSource/deployer

⬆️ Bump fastify from 2.1.0 to 2.15.1 dependencies

Bumps fastify from 2.1.0 to 2.15.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/fastify/fastify/releases">fastify's releases</a>.</em></p> <blockquote> <h2>v2.15.1</h2> <h2>Breaking Change</h2> <p>For security reasons we changed the default in the <code>ajv</code>configuration. Unfortunately <code>allErrors: true</code> is a DoS attack vector for certain schemas. So this changed to <code>allErrors: false</code>.</p> <p>See: ajv-validator/ajv@334071a Ref: <a href="https://hackerone.com/reports/903521">https://hackerone.com/reports/903521</a></p> <h2>📚 PR:</h2> <ul> <li>Add <code>PATCH</code> to <code>body</code> validation (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2351">#2351</a>)</li> </ul> <h2>v2.15.0</h2> <p>📚 PR:</p> <ul> <li>Bind error handler to instance (v2) (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2305">#2305</a>)</li> <li>Fix custom JSON support (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2309">#2309</a>)</li> <li>On ready backport (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2296">#2296</a>)</li> </ul> <h2>v2.14.1</h2> <ul> <li>Tweak haproxy config for issue <a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2036">#2036</a> (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2270">#2270</a>) (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2271">#2271</a>)</li> <li>Fix: call preHandler on reply.callNotFound (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2256">#2256</a>) (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2264">#2264</a>)</li> <li>doc: doc example to use ajv-errors (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2254">#2254</a>)</li> <li>Log clientError as trace to avoid dev confusion (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2241">#2241</a>) (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2242">#2242</a>)</li> </ul> <h2>v2.14.0</h2> <p>📚 PR:</p> <ul> <li>Support builder-style injection (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2209">#2209</a>)</li> <li>fix <a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2214">#2214</a> (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2218">#2218</a>)</li> <li>http2: fix HEAD requests hanging (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2233">#2233</a>) (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2239">#2239</a>)</li> </ul> <h2>v2.13.1</h2> <p>📚 PR:</p> <ul> <li>Ignore pino@6.</li> <li>ignore fast-json-stringify in dependabot</li> <li>Fix link to Fastify Create (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2146">#2146</a>)</li> <li>test for issue <a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2148">#2148</a> where typedefs for query params object were wrong (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2149">#2149</a>)</li> <li>Replace greenkeeper with dependabot (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2162">#2162</a>)</li> <li>add fastify-method-override to ecosystem (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2165">#2165</a>)</li> <li>Update Logging.md (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2171">#2171</a>)</li> <li>Add to fastify-qrcode into Ecosystem (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2170">#2170</a>)</li> <li>docs: errors in async hook (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2176">#2176</a>)</li> <li>docs: use direct references in the "Schema Resolver" example (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2155">#2155</a>)</li> <li>fix: typo in routes doc (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2182">#2182</a>)</li> <li>Add google cloud trace API plugin (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2185">#2185</a>)</li> <li>Fixes crash when using a non-standard error code (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2184">#2184</a>)</li> <li>Fix package-manager CI (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2189">#2189</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/fastify/fastify/commit/2cfe0df1682f293becfcb435469befd0c470603e"><code>2cfe0df</code></a> Bumped v2.15.1</li> <li><a href="https://github.com/fastify/fastify/commit/74c3157ca90c3ffed9e4434f63c2017471ec970e"><code>74c3157</code></a> Disable allErrors in default Ajv config.</li> <li><a href="https://github.com/fastify/fastify/commit/854e150c0d78e7c31f4f6eca57908f9da19c379f"><code>854e150</code></a> Revert "correct typings for ready() (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2345">#2345</a>)"</li> <li><a href="https://github.com/fastify/fastify/commit/6de894352871089027a3b4b29bed3012520c4579"><code>6de8943</code></a> Add <code>PATCH</code> to <code>body</code> validation (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2351">#2351</a>)</li> <li><a href="https://github.com/fastify/fastify/commit/65d0e5b15769f67881c37aed8d84b802adf44106"><code>65d0e5b</code></a> correct typings for ready() (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2345">#2345</a>)</li> <li><a href="https://github.com/fastify/fastify/commit/fd94ad3bf4bb1c415a92ecf89ee6f4f038448c39"><code>fd94ad3</code></a> Bumped v2.15.0</li> <li><a href="https://github.com/fastify/fastify/commit/655f28fcc36679b4538e0120eecb1f5524325298"><code>655f28f</code></a> On ready backport (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2296">#2296</a>)</li> <li><a href="https://github.com/fastify/fastify/commit/12fa71451237e7db202afe1235977cd34e7d8d71"><code>12fa714</code></a> Fix custom JSON support (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2309">#2309</a>)</li> <li><a href="https://github.com/fastify/fastify/commit/39e23753240eb18d4f86af736c65e192b4071248"><code>39e2375</code></a> Bind error handler to instance (v2) (<a href="https://github-redirect.dependabot.com/fastify/fastify/issues/2305">#2305</a>)</li> <li><a href="https://github.com/fastify/fastify/commit/6b0ffc6672fb2bf4ba8e4337958c5ee46e6e0300"><code>6b0ffc6</code></a> Bumped v2.14.1</li> <li>Additional commits viewable in <a href="https://github.com/fastify/fastify/compare/v2.1.0...v2.15.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+148 -124

0 comment

2 changed files

dependabot[bot]

pr closed time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha fff46bd2c54f6e6ef1f6498ad5ff8fd41565a825

Add comment/commit message flags to action.yml

view details

push time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha 6a610563aa85820bd9a1a8b6c25674bd65cc5c52

Use all-signed-comment message when everyone has signed

view details

push time in 2 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha cb84b87402787230134b400c6162507eaf7fab25

Deploy to GitHub pages

view details

push time in 2 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha 32daaa13249249c9a2708db04ec4c042437565c2

Deploy to GitHub pages

view details

push time in 2 days

push eventAnandChowdhary/hello-bar

dependabot-preview[bot]

commit sha 928ae7b4dc96931d2f54f7752a20e0c62d4e765d

Bump terser-webpack-plugin from 3.1.0 to 4.0.0 Bumps [terser-webpack-plugin](https://github.com/webpack-contrib/terser-webpack-plugin) from 3.1.0 to 4.0.0. - [Release notes](https://github.com/webpack-contrib/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack-contrib/terser-webpack-plugin/blob/master/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/terser-webpack-plugin/compare/v3.1.0...v4.0.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Anand Chowdhary

commit sha 483bec1a82b3cd4f144ed7d9b69b3bf042ed78e7

Merge pull request #586 from AnandChowdhary/dependabot/npm_and_yarn/terser-webpack-plugin-4.0.0 Bump terser-webpack-plugin from 3.1.0 to 4.0.0

view details

push time in 2 days

PR merged AnandChowdhary/hello-bar

Bump terser-webpack-plugin from 3.1.0 to 4.0.0 dependencies

Bumps terser-webpack-plugin from 3.1.0 to 4.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack-contrib/terser-webpack-plugin/releases">terser-webpack-plugin's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h2><a href="https://github.com/webpack-contrib/terser-webpack-plugin/compare/v3.1.0...v4.0.0">4.0.0</a> (2020-08-04)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li>the <code>warningsFilter</code> option was remove without replacement,</li> <li><code>terser</code> version is <code>5</code>,</li> <li>returned value of the <code>minify</code> option was changes, only <code>code</code>/<code>map</code>/<code>extractedComments</code> are valid</li> </ul> <h3>Features</h3> <ul> <li>improved compatibility with webpack@5</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/webpack-contrib/terser-webpack-plugin/blob/master/CHANGELOG.md">terser-webpack-plugin's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/webpack-contrib/terser-webpack-plugin/compare/v3.1.0...v4.0.0">4.0.0</a> (2020-08-04)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li>the <code>warningsFilter</code> option was remove without replacement,</li> <li><code>terser</code> version is <code>5</code>,</li> <li>returned value of the <code>minify</code> option was changes, only <code>code</code>/<code>map</code>/<code>extractedComments</code> are valid</li> </ul> <h3>Features</h3> <ul> <li>improved compatibility with webpack@5</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack-contrib/terser-webpack-plugin/commit/b91a4e848c14a7e260c0a25b677cd1cb47692f8d"><code>b91a4e8</code></a> chore(release): 4.0.0</li> <li><a href="https://github.com/webpack-contrib/terser-webpack-plugin/commit/10bbebfe713f3b685255747d4c1cc87190350f1f"><code>10bbebf</code></a> refactor: migrate on processAssets hook</li> <li><a href="https://github.com/webpack-contrib/terser-webpack-plugin/commit/2e3598c65f3c7cfc10318d7f5e4ff32b8d69006e"><code>2e3598c</code></a> refactor: code(<a href="https://github-redirect.dependabot.com/webpack-contrib/terser-webpack-plugin/issues/291">#291</a>)</li> <li><a href="https://github.com/webpack-contrib/terser-webpack-plugin/commit/b5e6b8d62d17339264116a2d72bc03cdf11e60e5"><code>b5e6b8d</code></a> feat: update terser to version 5 (<a href="https://github-redirect.dependabot.com/webpack-contrib/terser-webpack-plugin/issues/285">#285</a>)</li> <li>See full diff in <a href="https://github.com/webpack-contrib/terser-webpack-plugin/compare/v3.1.0...v4.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a development dependency.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+16 -7

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 2 days

push eventstaart/api

dependabot-preview[bot]

commit sha 2a39e91e620e91aaf64be193e3808ee391bcc97b

build(deps-dev): Bump @prisma/cli from 2.3.0 to 2.4.0 Bumps [@prisma/cli](https://github.com/prisma/prisma) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/prisma/prisma/releases) - [Changelog](https://github.com/prisma/prisma/blob/master/docs/releases.md) - [Commits](https://github.com/prisma/prisma/compare/2.3.0...2.4.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Anand Chowdhary

commit sha 6b79e8480c490d0df31c6a248a9bddee5cf08b53

Merge pull request #1306 from staart/dependabot/npm_and_yarn/prisma/cli-2.4.0 build(deps-dev): Bump @prisma/cli from 2.3.0 to 2.4.0

view details

push time in 2 days

PR merged staart/api

build(deps-dev): Bump @prisma/cli from 2.3.0 to 2.4.0 dependencies

Bumps @prisma/cli from 2.3.0 to 2.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prisma/prisma/releases">@prisma/cli's releases</a>.</em></p> <blockquote> <h2>2.4.0</h2> <p>Today, we are issuing the <code>2.4.0</code> stable release.</p> <p>🌟 <strong>Help us spread the word about Prisma by starring the repo ☝️ or <a href="https://twitter.com/intent/tweet?text=Check%20out%20the%20latest%20Prisma%20release%202.4.0%20%F0%9F%9A%80%0D%0A%0D%0Ahttps://github.com/prisma/prisma/releases/tag/2.4.0">tweeting about the release</a></strong> 🌟</p> <h2>Major improvements</h2> <h3>Order by multiple fields</h3> <p>A long-awaited feature - the ability to order by multiple fields in Prisma Client is finally here!</p> <p>Until now you could only order by a single scalar field of a model. The API design however was already prepared for ordering multiple fields with the object syntax we have. Instead of just one property, that <code>orderBy</code> object can now have as many fields as you want! The order of the fields hereby determines the order of the returned list (see example below).</p> <blockquote> <p><strong>Note</strong>: As this is an <em>incremental</em> change in the API, we introduce this feature without a feature flag.</p> </blockquote> <p>You can use it like so:</p> <pre lang="ts"><code>// order by age descending and then by name ascending const users = await prisma.user.findMany({ orderBy: { age: 'desc', name: 'asc' } }) </code></pre> <p>As mentioned by the comment, the returned objects in <code>users</code> are ordered <em>first</em> by <code>age</code> (descending), and <em>then</em> by <code>name</code> (ascending).</p> <p>📚 <strong>Documentation</strong>: <a href="https://www.prisma.io/docs/reference/tools-and-interfaces/prisma-client/sorting#sort-user-by-multiple-fields---email-and-role">Sort on multiple fields</a></p> <h3>Top-level Client Methods: <code>$</code> dollar prefix for top-level Prisma Client methods</h3> <p>In recent versions, we introduced a couple of top-level methods in Prisma Client (e.g. <code>prisma.transaction()</code> and <code>prisma.use()</code>) in <em>preview</em> mode. The immediate feedback was that the denylist for model names grew - which <a href="https://github-redirect.dependabot.com/prisma/prisma/issues/3049">breaks Prisma schemas</a> where a model is called <code>Transaction</code>, <code>transaction</code>, <code>use</code>, or <code>Use</code>. And the list goes on...</p> <p>In order to have a future-proof API, that allows maximum expressibility in terms of model names, we decided to prefix all non-query methods with a dollar sign <code>$</code>. That means Prisma Client will from now on ship with the following methods:</p> <h4>Pre-existing</h4> <ul> <li><code>$disconnect</code></li> <li><code>$connect</code></li> <li><code>$on</code></li> <li><code>$queryRaw</code></li> <li><code>$executeRaw</code></li> </ul> <h4>Still in preview</h4> <ul> <li><code>$use</code></li> <li><code>$transaction</code></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prisma/prisma/commit/7d36455d7304ad7b998c9e314c063aed965732e0"><code>7d36455</code></a> chore: bump checkpoint version</li> <li><a href="https://github.com/prisma/prisma/commit/1320528bd19b1853b06726fc21b2ce4737fbfbd1"><code>1320528</code></a> Bump Studio [skip ci]</li> <li><a href="https://github.com/prisma/prisma/commit/56e57f3d762b052b3d1d6ee07794c1d1adfadb9a"><code>56e57f3</code></a> chore: update checkpoint</li> <li><a href="https://github.com/prisma/prisma/commit/a7764b1277671a71c7d5885f6c39d40e498e1347"><code>a7764b1</code></a> chore: remove debug [skip ci]</li> <li><a href="https://github.com/prisma/prisma/commit/0c9ded6923ed0cd5662af37367cbc6e0f0e853f1"><code>0c9ded6</code></a> Bump Studio [skip ci]</li> <li><a href="https://github.com/prisma/prisma/commit/68dde064d87e66fbbdafd7935e05a616e49278a4"><code>68dde06</code></a> fix(introspection) error message if invalid schema reintrospection (<a href="https://github-redirect.dependabot.com/prisma/prisma/issues/3200">#3200</a>)</li> <li><a href="https://github.com/prisma/prisma/commit/06353600a8aedc7a4eccdc11286dfdde88c37171"><code>0635360</code></a> chore: fix build [skip ci]</li> <li><a href="https://github.com/prisma/prisma/commit/3d718c773212ed671c8e2335fc3e2847b9533719"><code>3d718c7</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/prisma/prisma/issues/3195">#3195</a> from prisma/dollar-prefix</li> <li><a href="https://github.com/prisma/prisma/commit/20225bd4923232dd57f4aa8df4ea2607a55aa171"><code>20225bd</code></a> chore: fix tests</li> <li><a href="https://github.com/prisma/prisma/commit/e758f881fa4ead85989b8d6561f14f04927b4500"><code>e758f88</code></a> Merge branch 'new-order-by' into dollar-prefix</li> <li>Additional commits viewable in <a href="https://github.com/prisma/prisma/compare/2.3.0...2.4.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 2 days

push eventstaart/ui

dependabot-preview[bot]

commit sha 26d4edcf84649df446b6f108062d1e6b2639b84f

:arrow_up: Bump nuxt from 2.14.0 to 2.14.1 Bumps [nuxt](https://github.com/nuxt/nuxt.js) from 2.14.0 to 2.14.1. - [Release notes](https://github.com/nuxt/nuxt.js/releases) - [Changelog](https://github.com/nuxt/nuxt.js/blob/dev/RELEASE_PLAN.md) - [Commits](https://github.com/nuxt/nuxt.js/compare/v2.14.0...v2.14.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Anand Chowdhary

commit sha 5071fb5c9a7eddac28fef2c2484de8245aa69d9d

Merge pull request #934 from staart/dependabot/npm_and_yarn/nuxt-2.14.1 ⬆️ Bump nuxt from 2.14.0 to 2.14.1

view details

push time in 2 days

PR merged staart/ui

⬆️ Bump nuxt from 2.14.0 to 2.14.1 dependencies

Bumps nuxt from 2.14.0 to 2.14.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nuxt/nuxt.js/releases">nuxt's releases</a>.</em></p> <blockquote> <h2>v2.14.1</h2> <h3>🐛 Bug Fixes</h3> <ul> <li><code>router</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7843">#7843</a> Optional dynamic routing in children routes (resolves <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7571">#7571</a>)</li> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7845">#7845</a> Remove optional params in routes ending with <code>index</code> (resolves <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/5874">#5874</a>)</li> </ul> </li> <li><code>vue-app</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7801">#7801</a> Handle server-side router errors (resolves <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7798">#7798</a>)</li> </ul> </li> <li><code>core, config</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7839">#7839</a> Disabe esm cache (resolves <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7838">#7838</a>)</li> </ul> </li> <li><code>builder</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7789">#7789</a>, <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7849">#7849</a> Add types for <code>build.corejs</code> option</li> </ul> </li> <li><code>crawler</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7806">#7806</a> Skip external links with no schema (resolves <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7805">#7805</a>)</li> </ul> </li> <li><code>webpack</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7808">#7808</a> Avoid grouping with default name (resolves <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7795">#7795</a>)</li> </ul> </li> <li><code>cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7802">#7802</a> Generate still runs when cache disabled</li> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7796">#7796</a> Normalize win32 paths for <code>nuxt generate</code> cache (resolves <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7792">#7792</a>)</li> </ul> </li> </ul> <h3>📝 Examples</h3> <ul> <li><code>tailwindcss-purgecss</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7800">#7800</a> Update tailwindcss from <code>0.6</code> to <code>1.6</code> using purgecss</li> </ul> </li> </ul> <h3>🏡 Chore</h3> <ul> <li><code>stale</code> <ul> <li><a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7828">#7828</a>, <a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7844">#7844</a> Ignore feature request issues</li> </ul> </li> </ul> <h3>💖 Thanks to</h3> <ul> <li>Ahad Birang (<a href="https://github.com/farnabaz">@farnabaz</a>)</li> <li><a href="https://github.com/ChangJoo-Park">@ChangJoo-Park</a></li> <li>Matthieu Sieben (<a href="https://github.com/matthieusieben">@matthieusieben</a>)</li> <li>Rafał Chłodnicki (<a href="https://github.com/rchl">@rchl</a>)</li> <li><a href="https://github.com/lihbr">@lihbr</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nuxt/nuxt.js/commit/c30499d7e02cd6d8b51d97ee7d7a537d8a59f63b"><code>c30499d</code></a> v2.14.1</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/bd3c34f0e19ec353813f0f304ec036aff3758a5f"><code>bd3c34f</code></a> chore(deps): update <code>@nuxt/components</code> to 1.1.0</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/c609b4b93d511fd7761197d3f7690a1c2346d713"><code>c609b4b</code></a> fix(webpack): support string values for <code>corejsVersion</code> (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7849">#7849</a>)</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/2eb42876a28d009ccd0b673a9457ef19a3e68423"><code>2eb4287</code></a> fix(utils): remove optional params in routes ending with <code>index</code> (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7845">#7845</a>)</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/ec534d05b9e80c13ccd5e1f0cb3a7b5100fd9a03"><code>ec534d0</code></a> fix(router): optional dynamic routing in children routes (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7843">#7843</a>)</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/c16d199f0ff6c701ec32f16dbbdbd7de4e98ae18"><code>c16d199</code></a> chore(deps): update dependency caniuse-lite to ^1.0.30001110 (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7842">#7842</a>)</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/adf0cb8fb507430429d18e334597086611352997"><code>adf0cb8</code></a> chore(deps): lock file maintenance (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7837">#7837</a>)</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/128c9743c40bf776af428e5ed36ea1a09a0ef7b8"><code>128c974</code></a> fix(vue-app): handle server-side routing errors (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7801">#7801</a>)</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/f130901ab1405159cf8d3228879962fe58d28879"><code>f130901</code></a> fix(core, config): disabe esm cache (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7839">#7839</a>)</li> <li><a href="https://github.com/nuxt/nuxt.js/commit/e6eae8ff6961b509b30b2aaae04ac044104c239d"><code>e6eae8f</code></a> chore(stale): add missing quote (<a href="https://github-redirect.dependabot.com/nuxt/nuxt.js/issues/7844">#7844</a>)</li> <li>Additional commits viewable in <a href="https://github.com/nuxt/nuxt.js/compare/v2.14.0...v2.14.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+359 -976

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha c8808bef5b1ed1c6eed670cd6ab2f6664c7adee5

Add support for custom comments

view details

push time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha b6e5243a12c38aab8f89553dec73a0afe70896b8

Add support for custom comments

view details

push time in 2 days

pull request commentcla-assistant/github-action

Add support for custom commit messages

Two new options have been added:

  • signed-comment-message is the message when everyone has signed, defaults to **CLA Assistant Lite** All Contributors have signed the CLA.
  • request-comment-message is the message when a user is requested to sign the CLA, defaults to **CLA Assistant Lite:** <br/>Thank you for your submission, we really appreciate it. Like many open-source projects, we ask that $you sign our [Contributor License Agreement]($pathToCLADocument) before we can accept your contribution. You can sign the CLA by just posting a Pull Request Comment same as the below format.
AnandChowdhary

comment created time in 2 days

pull request commentcla-assistant/github-action

Add support for custom commit messages

Please go ahead and feel free to do it

On it!

The only thing you need to ensure is that I have read the CLA Document and I hereby sign the CLA content shouldn't be changed as we are recognizing this content as a signature. I'd like to keep this content as static.

Yep, agreed, let's keep this static.

AnandChowdhary

comment created time in 2 days

pull request commentcla-assistant/github-action

Add support for custom commit messages

Now that I think about it, it would also be nice if we add support for a intro message by changing this line: https://github.com/cla-assistant/github-action/blob/master/src/pullRequestComment.ts#L34.

AnandChowdhary

comment created time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha 46b315a22ce30f1f967250d581d1a49048b03401

Add support for "signed-empty-commit-message" for empty ocmmit

view details

push time in 2 days

PR opened cla-assistant/github-action

Add support for custom commit messages

This PR fixes #32 by adding these options:

  • signed-commit-message is the commit message when a new contributor signs the CLA in a PR
  • signed-empty-commit-message is the commit message when a new contributor signs the CLA (empty)
  • create-file-commit-message is the commit message when a new file is created

Usage example:

jobs:
  CLAssistant:
    runs-on: ubuntu-latest
    steps:
      - name: "CLA Assistant"
        if: (github.event.comment.body == 'recheckcla' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request'
        uses: cla-assistant/github-action@v1.4.2-alpha
        env: 
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        with: 
          path-to-signatures: 'signatures/version1/cla.json'
          signed-commit-message: 'chore(cla): $contributorName has signed the CLA in #$pullRequestNo'
          create-file-commit-message: 'chore(cla): Creating file for storing CLA Signatures'
+11 -3

0 comment

2 changed files

pr created time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha f7fd798611cf9f98606e1d511e9f41102e9ad298

Add support for custom commit message in updateFile

view details

push time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha 361bb7774cbb17ca53f659e6b108ca63217e2e6f

Add support for "create-file-commit-message" option

view details

push time in 2 days

push eventAnandChowdhary/github-action

Anand Chowdhary

commit sha 0e2a50abf3ebad64a58a23c5076c014bcd95aa43

Add support for "signed-commit-message" input

view details

push time in 2 days

issue openedcla-assistant/github-action

Commit message config

Would love it if we can have support for a custom commit message for "@#contributorname# has signed the CLA" and "Creating file for storing CLA Signatures". In our case, we're using Gitmoji so we'd love to change it to ":wrench: @#contributorname# has signed the CLA", for example. People using Semantic Release will also be able to do "chore(cla): @#contributorname# has signed the CLA".

created time in 2 days

push eventkoj-co/.github

Anand Chowdhary

commit sha 9cba6fd39e7391e75634cac7e6971519b9cf3a97

:pencil: Add Support

view details

push time in 3 days

push eventkoj-co/.github

Anand Chowdhary

commit sha 75be55611dbfb1547a9dc7e4cf4623e4f1c9ef77

:pencil: Add Security Guidelines

view details

push time in 3 days

push eventkoj-co/.github

Anand Chowdhary

commit sha 7ed16b819f38b82cdce850712579d15130aac1c2

:pencil: Add Contributing Guidelines

view details

push time in 3 days

push eventkoj-co/.github

Anand Chowdhary

commit sha 743a5d76d6bbae737df4099547185498594c92c2

:pencil: Add Contributor Covenant Code of Conduct

view details

push time in 3 days

create barnchkoj-co/.github

branch : master

created branch time in 3 days

created repositorykoj-co/.github

🏥 Community health files for Koj's open source projects

created time in 3 days

push eventkoj-co/handbook

Anand Chowdhary

commit sha 07000ded3abd926b64352625817a9199978a0755

:bento: Add screenshots for blog post

view details

push time in 3 days

push eventAnandChowdhary/anandchowdhary.com

dependabot-preview[bot]

commit sha 5dce0bb8bb4526a21413c09c73f50ce374bfd001

Deploy to GitHub pages

view details

push time in 3 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha ae4f957943dd954f66b2908d614d36ded6ab4a4b

Deploy to GitHub pages

view details

push time in 3 days

push eventkoj-co/deploy-pr-action

Anand Chowdhary

commit sha 30f7276a0343a5021354c548eeb263266530e3a9

:pencil: Add Slack feature

view details

push time in 3 days

create barnchkoj-co/deploy-pr-action

branch : master

created branch time in 3 days

created repositorykoj-co/deploy-pr-action

🚀🎬 Deploy every pull request to a static URL, like Vercel

created time in 3 days

push eventkoj-co/handbook

Anand Chowdhary

commit sha c2beb457e0625e84128b47f686e905be18ac9c31

:construction: Add idea for Surge host post

view details

push time in 3 days

issue commentelninotech/uppload

Add a settings option to choose where to render the Uppload modal

Thanks, @crevizzle! This is definitely a todo. @plibither8 is also planning on using Uppload in a Svelte project, so we'll see who can get to this first! 😄

crevizzle

comment created time in 3 days

push eventkoj-co/staart

Anand Chowdhary

commit sha 39232206d35b8a5453fbb0382c5459eb3860bfc6

:card_file_box: Set prefersEmail to optional

view details

Anand Chowdhary

commit sha 47ceb5bc940d3d2d17d651047c7bbf03b7151a79

:sparkles: Add support for login links

view details

Anand Chowdhary

commit sha 170ba999584d45948ea06c82395525dc8bb9c2f2

:recycle: Add login link token to email

view details

Anand Chowdhary

commit sha cf4a8fd7c88c23458764104e79e2dd9fb7ad9dfa

:bug: Wait for token to be generated

view details

Anand Chowdhary

commit sha 128d995b8fac3c6f2bfcf76b437b6b0a83d7d15a

:bug: Use Tokens.LOGIN_LINK to verify JWT

view details

Anand Chowdhary

commit sha f883ec658d5626602612225dfb3f917657e9fea5

:wrench: Only send ID in post-login token

view details

Anand Chowdhary

commit sha 5edf233a2283f778c230a82d5d4f132842a5d21b

:recycle: Use number ID for user, validate number

view details

Anand Chowdhary

commit sha a3535905beb3fab9fa61762bb1a581346c1d8280

:recycle: Use number for org ID

view details

push time in 3 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha f43e490914cfb2e9ce656ed2b091e08506af0477

Deploy to GitHub pages

view details

push time in 3 days

startedspencermountain/wtf_wikipedia

started time in 3 days

push eventkoj-co/staart

Anand Chowdhary

commit sha 3dadf22ff6e51cf01965a3d1adf2744712174d6c

:recycle: Change snake to camel case

view details

Anand Chowdhary

commit sha e7ab0eb787caae6e38f3f1123a401a6b209121a5

:recycle: Change organization to group

view details

Anand Chowdhary

commit sha 5cd080ea31b8cc7eb258d3f6b28d2a32c4b8482a

:recycle: Update organization group

view details

Anand Chowdhary

commit sha 7bc2fbe93f3c233c9ed7af66f8f613e3f6937e6b

:truck: Rename org.service to group.service

view details

Anand Chowdhary

commit sha 9691e797e3295edec94122583f692370a5bf21d4

:recycle: Update user service references

view details

Anand Chowdhary

commit sha dd86fb40d3ae7127bd34f8a2ffb588b5a5a77e15

:recycle: Update org

view details

Anand Chowdhary

commit sha 29997acd4e1e2be5ce1c75f80c8639c2560b9e26

:truck: Rename org to group

view details

Anand Chowdhary

commit sha efbc78f9cb16e83f000063e10539051f6a37363e

:recycle: Organize imports, update user rest

view details

Anand Chowdhary

commit sha cabd9e132071a174a4cf4ad732865f599c445ff8

:recycle: Make login password optional

view details

Anand Chowdhary

commit sha 71d4a2dd231a1679a7497942f6d83a1aed505d69

:card_file_box: Migrate Prisma database

view details

Anand Chowdhary

commit sha d6deceb4773bf171e98e003da6b001f3bd76db65

:fire: Remove oauth controller

view details

Anand Chowdhary

commit sha 8b2e8e1238d1d96eb9af934c2b8cbfce0bb5a5b3

:recycle: Use object param for mail

view details

Anand Chowdhary

commit sha 6b09c3e34903f29018c5ee24dc9794fb823d6fbe

:recycle: Allow all attributes in mail

view details

Anand Chowdhary

commit sha 56d952f61afb5e1d8909b37070f64c6e112e21b4

:fire: Remove child OAuth controller

view details

Anand Chowdhary

commit sha b9e775fda1180dab7b472f5506d9232eb5b7eb1f

:arrow_up: Update @staart/scripts to v1.17.0

view details

Anand Chowdhary

commit sha 582e8ef14e2721476b1df5e6c8d6d2ae2d555a31

:rotating_light: Organize TS imports

view details

Anand Chowdhary

commit sha 4dc4bf697889ec70f77c21694a4bf97054850fd9

:recycle: Update helpers

view details

Anand Chowdhary

commit sha 22ce3412adb427c8f7d35eca97db14a295d13c1b

:heavy_plus_sign: Add TWT

view details

Anand Chowdhary

commit sha 91ac3cc6c263120e68c60bc7dee12749f91ff629

:recycle: Use TWT instead of username

view details

Anand Chowdhary

commit sha 713dc5af0b06a85f4cd5d9ed2d900c75c83ce363

:arrow_up: Update @staart/payments to v4.0.0

view details

push time in 4 days

push eventstaart/packages

Anand Chowdhary

commit sha 7b1c2abe9c105349afdf709cf1b2bac223b3eae7

:arrow_up: Update payments dependencies

view details

Anand Chowdhary

commit sha 2f7f4a660def1f4bdf4b1836ec08f0b885809194

:boom: Use number of org ID, not string

view details

push time in 4 days

push eventstaart/packages

Anand Chowdhary

commit sha 16eeb1c25a62218eb0747352e0e59c6ffb37b562

:arrow_up: Update all dependencies

view details

Anand Chowdhary

commit sha 1f1b7f93b14fdced56f0b24442c7cce3a70ebaab

:sparkles: Inject @Controller

view details

Anand Chowdhary

commit sha a59096c2db90598b1e9718f148fca08d2c895ba2

:rocket: Publish v1.17.0

view details

push time in 4 days

PR closed staart/site

⬆️ Bump cosmiconfig from 6.0.0 to 7.0.0 dependencies

Bumps cosmiconfig from 6.0.0 to 7.0.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/davidtheclark/cosmiconfig/blob/master/CHANGELOG.md">cosmiconfig's changelog</a>.</em></p> <blockquote> <h2>7.0.0</h2> <ul> <li><strong>Breaking change:</strong> Add <code>${moduleName}rc.cjs</code> and <code>${moduleName}.config.cjs</code> to the default <code>searchPlaces</code>, to support users of <code>"type": "module"</code> in recent versions of Node.</li> <li><strong>Breaking change:</strong> Drop support for Node 8. Now requires Node 10+.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/07e7637b74cb01b23f351bc1586390d20eed881f"><code>07e7637</code></a> 7.0.0</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/71289f8576f91dc5be2ab177d3aa35c134013103"><code>71289f8</code></a> Update Babel Node target</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/abc031f78a6a1947bc7ee7e791a94df524ab6f09"><code>abc031f</code></a> Remove readme section about v5 docs</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/965f6d0dd3611641003d6da4d8c87e72e3b3ed80"><code>965f6d0</code></a> Fix typo</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/1e6261c4b303d6776f4731ae4f677753f693ca3c"><code>1e6261c</code></a> Prepare .cjs addition to searchPlaces</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/f25f3785a36990a9ab24d6c998ed464884c27b23"><code>f25f378</code></a> Added cjs support (<a href="https://github-redirect.dependabot.com/davidtheclark/cosmiconfig/issues/238">#238</a>)</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/285289a0d08710f27f3e7daf72726438baff3e2c"><code>285289a</code></a> Readme Node version</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/ba1d0e1344c2553ea6a0bc03605b5a8bd3c37d77"><code>ba1d0e1</code></a> Address linting problems</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/4b12a721bf4a702afcad31739abf2d691c438e95"><code>4b12a72</code></a> Update dev dependencies</li> <li><a href="https://github.com/davidtheclark/cosmiconfig/commit/89c3d2e0a6b24ba4c7664ef310a3c235f03dd527"><code>89c3d2e</code></a> Update prod dependencies</li> <li>Additional commits viewable in <a href="https://github.com/davidtheclark/cosmiconfig/compare/6.0.0...v7.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a production dependency.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+22 -9

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 4 days

PR closed staart/site

⬆️ Bump @types/node from 14.0.13 to 14.0.27 dependencies

Bumps @types/node from 14.0.13 to 14.0.27. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 4 days

PR closed staart/site

⬆️ Bump highlight.js from 10.0.3 to 10.1.2 dependencies

Bumps highlight.js from 10.0.3 to 10.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/highlightjs/highlight.js/releases">highlight.js's releases</a>.</em></p> <blockquote> <h2>10.1.2</h2> <p>Fixes:</p> <ul> <li>fix(night) Prevent object prototype values from being returned by <code>getLanguage</code> (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2636">#2636</a>) <a href="https://github.com/night">night</a></li> </ul> <h2>10.1.1</h2> <p>Fixes:</p> <ul> <li>Resolve issue on Node 6 due to dangling comma (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2608">#2608</a>) [Edwin Hoogerbeets][]</li> <li>Resolve <code>index.d.ts is not a module</code> error (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2603">#2603</a>) [Josh Goebel][]</li> </ul> <h2>10.1.0</h2> <p>Just your typical minor release. Plenty of fixes and enhancements, few new themes.</p> <p>Some deprecations language maintainers might want to pay attention to:</p> <ul> <li><code>htmlbars</code> grammar is now deprecated. Use <code>handlebars</code> instead. (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2344">#2344</a>) [Nils Knappmeier][]</li> <li>when using <code>highlightBlock</code> <code>result.re</code> deprecated. Use <code>result.relevance</code> instead. (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2552">#2552</a>) [Josh Goebel][]</li> <li>ditto for <code>result.second_best.re</code> => <code>result.second_best.relevance</code> (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2552">#2552</a>)</li> <li><code>lexemes</code> is now deprecated in favor of <code>keywords.$pattern</code> key (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2519">#2519</a>) [Josh Goebel][]</li> <li><code>endSameAsBegin</code> is now deprecated. (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2261">#2261</a>) [Josh Goebel][]</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/highlightjs/highlight.js/blob/10.1.2/CHANGES.md">highlight.js's changelog</a>.</em></p> <blockquote> <h2>Version 10.1.2</h2> <p>Fixes:</p> <ul> <li>fix(night) Prevent object prototype values from being returned by <code>getLanguage</code> (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2636">#2636</a>) <a href="https://github.com/night">night</a></li> </ul> <h2>Version 10.1.1</h2> <p>Fixes:</p> <ul> <li>Resolve issue on Node 6 due to dangling comma (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2608">#2608</a>) <a href="https://github.com/ehoogerbeets">Edwin Hoogerbeets</a></li> <li>Resolve <code>index.d.ts is not a module</code> error (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2603">#2603</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> </ul> <h2>Version 10.1.0</h2> <p>New themes:</p> <ul> <li><em>NNFX</em> and <em>NNFX-dark</em> by [Jim Mason][]</li> <li><em>lioshi</em> by [lioshi][]</li> </ul> <p>Parser Engine:</p> <ul> <li>(parser) Now escapes quotes in text content when escaping HTML (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2564">#2564</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>(parser) Adds <code>keywords.$pattern</code> key to grammar definitions (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2519">#2519</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>(parser) Adds SHEBANG utility mode <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>(parser) Adds <code>registerAliases</code> method (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2540">#2540</a>) [Taufik Nurrohman][]</li> <li>(enh) Added <code>on:begin</code> callback for modes (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2261">#2261</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>(enh) Added <code>on:end</code> callback for modes (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2261">#2261</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>(enh) Added ability to programatically ignore begin and end matches (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2261">#2261</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>(enh) Added <code>END_SAME_AS_BEGIN</code> mode to replace <code>endSameAsBegin</code> parser attribute (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2261">#2261</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>(fix) <code>fixMarkup</code> would rarely destroy markup when <code>useBR</code> was enabled (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2532">#2532</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> </ul> <p>Deprecations:</p> <ul> <li><code>htmlbars</code> grammar is now deprecated. Use <code>handlebars</code> instead. (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2344">#2344</a>) [Nils Knappmeier][]</li> <li>when using <code>highlightBlock</code> <code>result.re</code> deprecated. Use <code>result.relevance</code> instead. (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2552">#2552</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li>ditto for <code>result.second_best.re</code> => <code>result.second_best.relevance</code> (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2552">#2552</a>)</li> <li><code>lexemes</code> is now deprecated in favor of <code>keywords.$pattern</code> key (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2519">#2519</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> <li><code>endSameAsBegin</code> is now deprecated. (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2261">#2261</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> </ul> <p>Language Improvements:</p> <ul> <li>fix(groovy) strings are not allowed inside ternary clauses (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2217">#2217</a>) <a href="https://github.com/yyyc514">Josh Goebel</a></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/highlightjs/highlight.js/commit/edd73d2402b3d66706d141e9fadda004d237925d"><code>edd73d2</code></a> bump v10.1.2</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/7241013ae011a585983e176ddc0489a7a52f6bb0"><code>7241013</code></a> (parser) use null prototype objects for languages/aliases (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2636">#2636</a>)</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/93fd0d7335e2b8b94dd122dc2898db8c86343257"><code>93fd0d7</code></a> bump v10.1.1; (chore) add changelog for 10.1.1</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/c5783d2ffca795ccbae7045f66553adaf78303a2"><code>c5783d2</code></a> (chore) clean up types just a little</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/a4ee4e40263aad8586bfe7d1d0fc42a0683080f7"><code>a4ee4e4</code></a> (chore) declare ambient modules for lib/core & languges</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/06565885c7c8d2717b0f8d655c3157f02551686c"><code>0656588</code></a> (chore) removed dangling comma (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2612">#2612</a>)</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/b1bce6e3ada485b89696f554878b2ef44a73d94a"><code>b1bce6e</code></a> (chore) more import below metadata comment</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/74de6eaa1d4dddd2ce1b167abda91913a77c48e6"><code>74de6ea</code></a> (chore) bump copyright</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/b2d19b038882b32935325d7f73531c8dfde2f7c4"><code>b2d19b0</code></a> bump v10.1.0</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/84f7fa3c8d9742a2f890a406ac2cebf88830d139"><code>84f7fa3</code></a> (chore) upgrade some dev stuff to newer versions</li> <li>Additional commits viewable in <a href="https://github.com/highlightjs/highlight.js/compare/10.0.3...10.1.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 4 days

PR closed staart/site

⬆️🔒 Bump npm from 6.14.5 to 6.14.7 dependencies security

Bumps npm from 6.14.5 to 6.14.7. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-93f3-23rq-pjfp">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Sensitive information exposure through logs in npm CLI</strong> Versions of the npm CLI prior to 6.14.6 are vulnerable to an information exposure vulnerability through log files. The CLI supports URLs like <code>://[[:]@][:][:][/]</code>. The password value is not redacted and is printed to stdout and also to any generated log files.</p> <p>Affected versions: < 6.14.6</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/npm/cli/releases">npm's releases</a>.</em></p> <blockquote> <h2>v6.14.7</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/de5108836189bddf28d4d3542f9bd5869cc5c2e9"><code>de5108836</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/784">#784</a> npm explore spawn shell correctly (<a href="https://github.com/jasisk">@jasisk</a>)</li> <li><a href="https://github.com/npm/cli/commit/36e6c01d334c4db75018bc6a4a0bef726fd41ce4"><code>36e6c01d3</code></a> git tag handling regression on shrinkwrap (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/1961c9369c92bf8fe530cecba9834ca3c7f5567c"><code>1961c9369</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/288">#288</a> Fix package id in shrinkwrap lifecycle step output (<a href="https://github.com/bz2">@bz2</a>)</li> <li><a href="https://github.com/npm/cli/commit/87888892a1282cc3edae968c3ae4ec279189271c"><code>87888892a</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1009">#1009</a> gracefully handle error during npm install (<a href="https://github.com/danielleadams">@danielleadams</a>)</li> <li><a href="https://github.com/npm/cli/commit/6fe2bdc25e7961956e5c0067fa4db54ff1bd0dbd"><code>6fe2bdc25</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1547">#1547</a> npm ls --parseable --long output (<a href="https://github.com/ruyadorno">@ruyadorno</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/2d78481c7ec178e628ce23df940f73a05d5c6367"><code>2d78481c7</code></a> update mkdirp on tacks (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/4e129d105eba3b12d474caa6e5ca216a98deb75a"><code>4e129d105</code></a> uninstall npm-registry-couchapp (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/8e1869e278d1dd37ddefd6b4e961d1bb17fc9d09"><code>8e1869e27</code></a> update marked dev dep (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a6151f377063c6aca852c859c01910edd235ec6"><code>6a6151f37</code></a> <code>libnpx@10.2.4</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/dc21422eb1ca1a4a19f160fad0e924566e08c496"><code>dc21422eb</code></a> <code>bin-links@1.1.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/d341f88ce6feb3df1dcb37f34910fcc6c1db85f2"><code>d341f88ce</code></a> <code>gentle-fs@2.3.1</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/3e168d49b41574809cae2ad013776a00d3f20ff4"><code>3e168d49b</code></a> <code>libcipm@4.0.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6ae942a510520b7dff11b5b78eebeff1706e38af"><code>6ae942a51</code></a> <code>npm-audit-report@1.3.3</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a35e3deec275bf2ae76603acd424a0640458047"><code>6a35e3dee</code></a> <code>npm-lifecycle@3.1.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> </ul> <h2>v6.14.6</h2> <h2>6.14.6 (2020-07-07)</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/a9857b8f6869451ff058789c4631fadfde5bbcbc"><code>a9857b8f6</code></a> chore: remove auth info from logs (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/b7ad77598112908d60195d0fbc472b3c84275fd5"><code>b7ad77598</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1416">#1416</a> fix: wrong <code>npm doctor</code> command result (<a href="https://github.com/vanishcode">@vanishcode</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/94eca637756376b949edfb697e179a1fdcc231ee"><code>94eca6377</code></a> <code>npm-registry-fetch@4.0.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/c49b6ae28791ff7184288be16654f97168aa9705"><code>c49b6ae28</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1418">#1418</a> <code>spdx-license-ids@3.0.5</code> (<a href="https://github.com/kemitchell">@kemitchell</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/npm/cli/blob/latest/CHANGELOG.md">npm's changelog</a>.</em></p> <blockquote> <h2>6.14.7 (2020-07-21)</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/de5108836189bddf28d4d3542f9bd5869cc5c2e9"><code>de5108836</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/784">#784</a> npm explore spawn shell correctly (<a href="https://github.com/jasisk">@jasisk</a>)</li> <li><a href="https://github.com/npm/cli/commit/36e6c01d334c4db75018bc6a4a0bef726fd41ce4"><code>36e6c01d3</code></a> git tag handling regression on shrinkwrap (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/1961c9369c92bf8fe530cecba9834ca3c7f5567c"><code>1961c9369</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/288">#288</a> Fix package id in shrinkwrap lifecycle step output (<a href="https://github.com/bz2">@bz2</a>)</li> <li><a href="https://github.com/npm/cli/commit/87888892a1282cc3edae968c3ae4ec279189271c"><code>87888892a</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1009">#1009</a> gracefully handle error during npm install (<a href="https://github.com/danielleadams">@danielleadams</a>)</li> <li><a href="https://github.com/npm/cli/commit/6fe2bdc25e7961956e5c0067fa4db54ff1bd0dbd"><code>6fe2bdc25</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1547">#1547</a> npm ls --parseable --long output (<a href="https://github.com/ruyadorno">@ruyadorno</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/2d78481c7ec178e628ce23df940f73a05d5c6367"><code>2d78481c7</code></a> update mkdirp on tacks (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/4e129d105eba3b12d474caa6e5ca216a98deb75a"><code>4e129d105</code></a> uninstall npm-registry-couchapp (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/8e1869e278d1dd37ddefd6b4e961d1bb17fc9d09"><code>8e1869e27</code></a> update marked dev dep (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a6151f377063c6aca852c859c01910edd235ec6"><code>6a6151f37</code></a> <code>libnpx@10.2.4</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/dc21422eb1ca1a4a19f160fad0e924566e08c496"><code>dc21422eb</code></a> <code>bin-links@1.1.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/d341f88ce6feb3df1dcb37f34910fcc6c1db85f2"><code>d341f88ce</code></a> <code>gentle-fs@2.3.1</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/3e168d49b41574809cae2ad013776a00d3f20ff4"><code>3e168d49b</code></a> <code>libcipm@4.0.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6ae942a510520b7dff11b5b78eebeff1706e38af"><code>6ae942a51</code></a> <code>npm-audit-report@1.3.3</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a35e3deec275bf2ae76603acd424a0640458047"><code>6a35e3dee</code></a> <code>npm-lifecycle@3.1.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> </ul> <h2>6.14.6 (2020-07-07)</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/a9857b8f6869451ff058789c4631fadfde5bbcbc"><code>a9857b8f6</code></a> chore: remove auth info from logs (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/b7ad77598112908d60195d0fbc472b3c84275fd5"><code>b7ad77598</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1416">#1416</a> fix: wrong <code>npm doctor</code> command result (<a href="https://github.com/vanishcode">@vanishcode</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/94eca637756376b949edfb697e179a1fdcc231ee"><code>94eca6377</code></a> <code>npm-registry-fetch@4.0.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/c49b6ae28791ff7184288be16654f97168aa9705"><code>c49b6ae28</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1418">#1418</a> <code>spdx-license-ids@3.0.5</code> (<a href="https://github.com/kemitchell">@kemitchell</a>)</li> </ul> <h3>DOCUMENTATION</h3> <ul> <li><a href="https://github.com/npm/cli/commit/2e052984b08c09115ed75387fb2c961631d85d77"><code>2e052984b</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1459">#1459</a> chore(docs): fixed links to cli commands (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/0ca3509ca940865392daeeabb39192f7d5af9f5e"><code>0ca3509ca</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1283">#1283</a> Update npm-link.md (<a href="https://github.com/peterfich">@peterfich</a>)</li> <li><a href="https://github.com/npm/cli/commit/3dd429e9aad760ce2ff9e522b34ebfebd85b460c"><code>3dd429e9a</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1377">#1377</a> Add note about dropped <code>*</code> filenames (<a href="https://github.com/maxwellgerber">@maxwellgerber</a>)</li> <li><a href="https://github.com/npm/cli/commit/9a2e2e797e5c91e7f4f261583a1906e2c440cc2f"><code>9a2e2e797</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1429">#1429</a> Fix typo (<a href="https://github.com/seanpoulter">@seanpoulter</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/cli/commit/42e46256156eb6446862f208896d844acf3b8c5d"><code>42e4625</code></a> 6.14.7</li> <li><a href="https://github.com/npm/cli/commit/a81da2bff8694f95994a1732bd6a85ed7c6444ab"><code>a81da2b</code></a> update AUTHORS</li> <li><a href="https://github.com/npm/cli/commit/e6e8d29de8d9f953ec466c9666402db19ff14f82"><code>e6e8d29</code></a> docs: changelog for 6.14.7</li> <li><a href="https://github.com/npm/cli/commit/6a35e3deec275bf2ae76603acd424a0640458047"><code>6a35e3d</code></a> npm-lifecycle@3.1.5</li> <li><a href="https://github.com/npm/cli/commit/6ae942a510520b7dff11b5b78eebeff1706e38af"><code>6ae942a</code></a> npm-audit-report@1.3.3</li> <li><a href="https://github.com/npm/cli/commit/3e168d49b41574809cae2ad013776a00d3f20ff4"><code>3e168d4</code></a> libcipm@4.0.8</li> <li><a href="https://github.com/npm/cli/commit/d341f88ce6feb3df1dcb37f34910fcc6c1db85f2"><code>d341f88</code></a> gentle-fs@2.3.1</li> <li><a href="https://github.com/npm/cli/commit/dc21422eb1ca1a4a19f160fad0e924566e08c496"><code>dc21422</code></a> bin-links@1.1.8</li> <li><a href="https://github.com/npm/cli/commit/6fe2bdc25e7961956e5c0067fa4db54ff1bd0dbd"><code>6fe2bdc</code></a> fix: npm ls --parseable --long output</li> <li><a href="https://github.com/npm/cli/commit/87888892a1282cc3edae968c3ae4ec279189271c"><code>8788889</code></a> fix: gracefully handle error during npm install</li> <li>Additional commits viewable in <a href="https://github.com/npm/cli/compare/v6.14.5...v6.14.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+158 -180

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha 2041233356c8fc9a78446c4e5c2cc9a80b09fb1e

Deploy to GitHub pages

view details

push time in 4 days

PR closed elninotech/uppload

⬆️ Bump ts-loader from 8.0.0 to 8.0.2 dependencies

Bumps ts-loader from 8.0.0 to 8.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/TypeStrong/ts-loader/releases">ts-loader's releases</a>.</em></p> <blockquote> <h2>v8.0.2</h2> <ul> <li><a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/pull/1159">Fix 2 issues with experimentalWatchApi</a> - thanks <a href="https://github.com/appzuka">@appzuka</a></li> </ul> <h2>v8.0.2 attempt <a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/2">#2</a></h2> <ul> <li><a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/pull/1159">Fix 2 issues with experimentalWatchApi</a> - thanks <a href="https://github.com/appzuka">@appzuka</a></li> </ul> <p>Required a fix to the release mechanism <a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/pull/1166">TypeStrong/ts-loader#1166</a></p> <h2>v8.0.1</h2> <ul> <li><a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/pull/1135">Fix webpack deprecations</a> - thanks <a href="https://github.com/g-plane">@g-plane</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/TypeStrong/ts-loader/blob/master/CHANGELOG.md">ts-loader's changelog</a>.</em></p> <blockquote> <h2>v8.0.2</h2> <ul> <li><a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/pull/1159">Fix 2 issues with experimentalWatchApi</a> - thanks <a href="https://github.com/appzuka">@appzuka</a></li> </ul> <h2>v8.0.1</h2> <ul> <li><a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/pull/1135">Fix webpack deprecations</a> - thanks <a href="https://github.com/g-plane">@g-plane</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/TypeStrong/ts-loader/commit/2f6cbe84777e07364f89be5db97d1a02358554c5"><code>2f6cbe8</code></a> Fix 2 issues with experimentalWatchApi (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1159">#1159</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/a77470f9072bf24dc7165653c2ee86b243b65040"><code>a77470f</code></a> Bump elliptic from 6.4.0 to 6.5.3 in /examples/react-babel-karma-gulp (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1165">#1165</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/fb8a90ec5b0e5be2cc17a5a7495efb2dd1b724c2"><code>fb8a90e</code></a> Bump elliptic from 6.4.0 to 6.5.3 in /examples/thread-loader (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1164">#1164</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/83ab73b03f67e7defb19fb0ed203632296a4654a"><code>83ab73b</code></a> Bump elliptic from 6.4.1 to 6.5.3 in /examples/vanilla (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1163">#1163</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/8d40313075a77ecff612e42fa293cc44162d56bb"><code>8d40313</code></a> Bump elliptic in /examples/fork-ts-checker-webpack-plugin (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1162">#1162</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/dfee22bbb09c4d016b013657e9357c404b9f26e1"><code>dfee22b</code></a> Bump lodash in /test/execution-tests/2.1.4_babel-allowJsImportTypes (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1149">#1149</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/cd59216c2a46e64116bdedb664ce20249624b89d"><code>cd59216</code></a> Fixed TsconfigPathsPlugin config path in Readme (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1081">#1081</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/74bf40066ba113792b738241cf5a5b7d4b8a7f6d"><code>74bf400</code></a> update GitHub Actions (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1144">#1144</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/abae5fdf31e7db59ceb6f267c46aab0fd391cc91"><code>abae5fd</code></a> Fix webpack deprecations (fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1126">#1126</a>) (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1135">#1135</a>)</li> <li><a href="https://github.com/TypeStrong/ts-loader/commit/c2bc68cd813474cebe01907b93594b3489650728"><code>c2bc68c</code></a> devcontainer for ts-loader (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-loader/issues/1143">#1143</a>)</li> <li>Additional commits viewable in <a href="https://github.com/TypeStrong/ts-loader/compare/v8.0.0...v8.0.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

PR closed elninotech/uppload

⬆️ Bump jest from 26.1.0 to 26.2.2 dependencies

Bumps jest from 26.1.0 to 26.2.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/releases">jest's releases</a>.</em></p> <blockquote> <h2>26.2.2</h2> <h3>Fixes</h3> <ul> <li><code>[jest-cli]</code> Use correct file name to override existing jest config on init (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10337">#10337</a>)</li> <li><code>[jest-haste-map]</code> Properly detect support for native <code>find</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10346">#10346</a>)</li> </ul> <h2>26.2.1</h2> <h3>Fixes</h3> <ul> <li><code>[jest-worker]</code> Make sure to work with Node TS typings v12 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10336">#10336</a>)</li> </ul> <h2>26.2.0</h2> <h3>Features</h3> <ul> <li><code>[jest-core, jest-circus, jest-reporter, jest-runner]</code> Added support for reporting individual test cases using jest-circus (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10227">#10227</a>)</li> <li><code>[jest-config, jest-reporter, jest-runner, jest-test-sequencer]</code> Add <code>slowTestThreshold</code> configuration option (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9366">#9366</a>)</li> <li><code>[jest-haste-map]</code> Watchman crawler now includes dotfiles (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10075">#10075</a>)</li> <li><code>[jest-worker]</code> Added support for workers to send custom messages to parent in jest-worker (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10293">#10293</a>)</li> <li><code>[jest-worker]</code> Support passing <code>resourceLimits</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10335">#10335</a>)</li> <li><code>[pretty-format]</code> Added support for serializing custom elements (web components) (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10237">#10217</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[expect]</code> Match symbols and bigints in <code>any()</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10223">#10223</a>)</li> <li><code>[jest-changed-files]</code> Use <code>git diff</code> instead of <code>git log</code> for <code>--changedSince</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10155">#10155</a>)</li> <li><code>[jest-console]</code> Add missing <code>console.timeLog</code> for compatibility with Node (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10209">#10209</a>)</li> <li><code>[jest-haste-map]</code> Check <code>find</code> binary supports the <code>-iname</code> parameter (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10308">#10308</a>)</li> <li><code>[jest-snapshot]</code> Strip added indentation for inline error snapshots (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10217">#10217</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[]</code> Add missing dependency on <code>@types/node</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10248">#10248</a>)</li> <li><code>[jest-jasmine2]</code> Convert <code>PCancelable</code> to TypeScript (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10215">#10215</a>)</li> <li><code>[jest-jasmine2]</code> Refine typings of <code>queueRunner</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10215">#10215</a>)</li> <li><code>[jest-jasmine2]</code> Remove usage of <code>Function</code> type (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10216">#10216</a>)</li> <li><code>[jest-resolve]</code> Improve types (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10239">#10239</a>)</li> <li><code>[docs]</code> Clarify the <a href="https://jestjs.io/docs/en/jest-object#jestrequireactualmodulename"><code>jest.requireActual(moduleName)</code></a> example</li> <li><code>[jest-types]</code> Refine typings of <code>coverageReporters</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10275">#10275</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/blob/master/CHANGELOG.md">jest's changelog</a>.</em></p> <blockquote> <h2>26.2.2</h2> <h3>Fixes</h3> <ul> <li><code>[jest-cli]</code> Use correct file name to override existing jest config on init (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10337">#10337</a>)</li> <li><code>[jest-haste-map]</code> Properly detect support for native <code>find</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10346">#10346</a>)</li> </ul> <h2>26.2.1</h2> <h3>Fixes</h3> <ul> <li><code>[jest-worker]</code> Make sure to work with Node TS typings v12 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10336">#10336</a>)</li> </ul> <h2>26.2.0</h2> <h3>Features</h3> <ul> <li><code>[jest-core, jest-circus, jest-reporter, jest-runner]</code> Added support for reporting individual test cases using jest-circus (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10227">#10227</a>)</li> <li><code>[jest-config, jest-reporter, jest-runner, jest-test-sequencer]</code> Add <code>slowTestThreshold</code> configuration option (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9366">#9366</a>)</li> <li><code>[jest-haste-map]</code> Watchman crawler now includes dotfiles (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10075">#10075</a>)</li> <li><code>[jest-worker]</code> Added support for workers to send custom messages to parent in jest-worker (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10293">#10293</a>)</li> <li><code>[jest-worker]</code> Support passing <code>resourceLimits</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10335">#10335</a>)</li> <li><code>[pretty-format]</code> Added support for serializing custom elements (web components) (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10237">#10217</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[expect]</code> Match symbols and bigints in <code>any()</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10223">#10223</a>)</li> <li><code>[jest-changed-files]</code> Use <code>git diff</code> instead of <code>git log</code> for <code>--changedSince</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10155">#10155</a>)</li> <li><code>[jest-console]</code> Add missing <code>console.timeLog</code> for compatibility with Node (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10209">#10209</a>)</li> <li><code>[jest-haste-map]</code> Check <code>find</code> binary supports the <code>-iname</code> parameter (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10308">#10308</a>)</li> <li><code>[jest-snapshot]</code> Strip added indentation for inline error snapshots (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10217">#10217</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[]</code> Add missing dependency on <code>@types/node</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10248">#10248</a>)</li> <li><code>[jest-jasmine2]</code> Convert <code>PCancelable</code> to TypeScript (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10215">#10215</a>)</li> <li><code>[jest-jasmine2]</code> Refine typings of <code>queueRunner</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10215">#10215</a>)</li> <li><code>[jest-jasmine2]</code> Remove usage of <code>Function</code> type (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10216">#10216</a>)</li> <li><code>[jest-resolve]</code> Improve types (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10239">#10239</a>)</li> <li><code>[docs]</code> Clarify the <a href="https://jestjs.io/docs/en/jest-object#jestrequireactualmodulename"><code>jest.requireActual(moduleName)</code></a> example</li> <li><code>[jest-types]</code> Refine typings of <code>coverageReporters</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10275">#10275</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/facebook/jest/commit/a6a5abb7ef47ed2c31bf8987771a79f97ae65430"><code>a6a5abb</code></a> v26.2.2</li> <li><a href="https://github.com/facebook/jest/commit/72bba2795d514420bf3598b1a988ec94a2b6e543"><code>72bba27</code></a> chore: update changelog for release</li> <li><a href="https://github.com/facebook/jest/commit/2ab3fb2a098bec607904ef6f6a14d6c0656de034"><code>2ab3fb2</code></a> fix: correct check for compatible <code>find</code> binary (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10346">#10346</a>)</li> <li><a href="https://github.com/facebook/jest/commit/0708dafce34ad7704e3733859453897af1495a68"><code>0708daf</code></a> fix(jest-cli): use correct filename to override config (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10337">#10337</a>)</li> <li><a href="https://github.com/facebook/jest/commit/104a5710cd4f2a25e796de0c450f715a0899f521"><code>104a571</code></a> chore: update yarn</li> <li><a href="https://github.com/facebook/jest/commit/ca8bf7c8b7a6f295712250c0867e813a8ef8cc85"><code>ca8bf7c</code></a> chore: tweak git ignore for yarn</li> <li><a href="https://github.com/facebook/jest/commit/a51f41b434c436bf99e9440c78bb5f39379090d9"><code>a51f41b</code></a> chore: update lockfile after publish</li> <li><a href="https://github.com/facebook/jest/commit/da61421faee6fdbf2a2b355b10d4e6eb1a842233"><code>da61421</code></a> v26.2.1</li> <li><a href="https://github.com/facebook/jest/commit/3de08dd041006f62039f65900b514e39ec87cbbc"><code>3de08dd</code></a> chore: update changelog for release</li> <li><a href="https://github.com/facebook/jest/commit/2db6aa11ef482167cd84114c2ec3b93a3da5f82f"><code>2db6aa1</code></a> fix(worker): support v12 node typings (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10336">#10336</a>)</li> <li>Additional commits viewable in <a href="https://github.com/facebook/jest/compare/v26.1.0...v26.2.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1500 -521

2 comments

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

PR closed elninotech/uppload

⬆️ Bump @types/jest from 26.0.3 to 26.0.8 dependencies

Bumps @types/jest from 26.0.3 to 26.0.8. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

PR closed elninotech/uppload

⬆️ Bump webpack from 4.43.0 to 4.44.1 dependencies

Bumps webpack from 4.43.0 to 4.44.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack/releases">webpack's releases</a>.</em></p> <blockquote> <h2>v4.44.1</h2> <h1>Bugfixes</h1> <ul> <li>fix bug in sideEffects optimization when using <code>export * from "non-esm"</code> and a default export.</li> <li>add missing optional peerDependencies for webpack-cli and webpack-command to support Yarn 2</li> </ul> <h2>v4.44.0</h2> <h1>Features</h1> <ul> <li>Improve <code>sideEffects</code> flag behavior when dynamic modules are part of the tree <ul> <li>Fixes a bug which causes empty modules (or type-only modules) to "break" Tree Shaking</li> </ul> </li> <li>add <code>splitChunks.enforceSizeThreshold</code> to allow enfore splitting larger chunks unrelated from other limiations <ul> <li>Not set by default to avoid breaking change</li> <li>It will be set by default to 50k in webpack 5</li> <li>It's recommended to set it in webpack 4 too</li> </ul> </li> <li>add support for <code>resolve.roots</code> and default <code>resolve.roots: [context]</code> <ul> <li>This allows to resolve server-relative urls (e.g. <code>/src/abc</code>) to the project root (or other locations when configured)</li> <li>This allows to use loaders that rely on that behavior</li> </ul> </li> </ul> <h1>Bugfixes</h1> <ul> <li>fix bug where splitChunks produced non-optimal results when <code>minSize</code> is set to <code>0</code> <ul> <li>This lead to <code>NaN</code>s in some places which breaks ordering</li> </ul> </li> <li>Fix bug which lead to HMR not working for splitChunks in entrypoints</li> <li>force update watchpack and chokidar for chokidar bugfix which causes files to stop being watched</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack/commit/cd4af164784f3938353102179adfcbcf8f53949d"><code>cd4af16</code></a> 4.44.1</li> <li><a href="https://github.com/webpack/webpack/commit/7895778cacbd1dd1d51659ac32971db279659aaf"><code>7895778</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11244">#11244</a> from webpack/bugfix/dynamic-reexport-default</li> <li><a href="https://github.com/webpack/webpack/commit/46304c888f2b066e358339df62ac7fd89606d433"><code>46304c8</code></a> ignore default export when reexporting a dynamic module</li> <li><a href="https://github.com/webpack/webpack/commit/91e81c8d19fa9e03768797a6fda34231b65963b1"><code>91e81c8</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11190">#11190</a> from merceyz/patch-2</li> <li><a href="https://github.com/webpack/webpack/commit/087af7c2e60c152ab7f7728c44b9f3bba2c0a7d0"><code>087af7c</code></a> Merge branch 'webpack-4' into patch-2</li> <li><a href="https://github.com/webpack/webpack/commit/d4603c6d7ef4acfbe956ef49d8476c7368526989"><code>d4603c6</code></a> 4.44.0</li> <li><a href="https://github.com/webpack/webpack/commit/ea06f033756fe21bc73698e8449a7cbf1fedeb13"><code>ea06f03</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11225">#11225</a> from webpack/deps/watchpack</li> <li><a href="https://github.com/webpack/webpack/commit/eae1ba05bb116d0b6db2968e078e6a8d67a2e5c6"><code>eae1ba0</code></a> update watchpack</li> <li><a href="https://github.com/webpack/webpack/commit/42dc03852b4dfddaf33aa3b000ee8c255ba4ffd1"><code>42dc038</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11210">#11210</a> from webpack/ci/timeout-4</li> <li><a href="https://github.com/webpack/webpack/commit/21e3c11a26e405395bb7777024a1fc7fb9a99484"><code>21e3c11</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11207">#11207</a> from webpack/backport/add-roots</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack/compare/v4.43.0...v4.44.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+172 -24

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

PR closed elninotech/uppload

⬆️🔒 Bump elliptic from 6.5.2 to 6.5.3 dependencies security

Bumps elliptic from 6.5.2 to 6.5.3. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-vh7m-p724-62c2">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Signature Malleabillity in elliptic</strong> The Elliptic package before version 6.5.3 for Node.js allows ECDSA signature malleability via variations in encoding, leading '\0' bytes, or integer overflows. This could conceivably have a security-relevant impact if an application relied on a single canonical signature.</p> <p>Affected versions: < 6.5.3</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

PR closed elninotech/uppload

⬆️ Bump ts-jest from 26.1.2 to 26.1.4 dependencies

Bumps ts-jest from 26.1.2 to 26.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kulshekhar/ts-jest/blob/master/CHANGELOG.md">ts-jest's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/kulshekhar/ts-jest/compare/v26.1.3...v26.1.4">26.1.4</a> (2020-07-28)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>compiler:</strong> check if test file exists before doing type check (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1827">#1827</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/cc89d5b1f912975cd29114c5b3b0bf18426816da">cc89d5b</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1506">#1506</a></li> </ul> <h2><a href="https://github.com/kulshekhar/ts-jest/compare/v26.1.2...v26.1.3">26.1.3</a> (2020-07-16)</h2> <h3>Bug Fixes</h3> <ul> <li>revert <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1793">#1793</a> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1804">#1804</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/5095525333c8579c9c5e7f3149294b31f28d6774">5095525</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kulshekhar/ts-jest/commit/220f4fbfd2544ad23af494c2d5acd53d28fdac74"><code>220f4fb</code></a> chore(release): 26.1.4 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1835">#1835</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/cc89d5b1f912975cd29114c5b3b0bf18426816da"><code>cc89d5b</code></a> fix(compiler): check if test file exists before doing type check (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1827">#1827</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/6706bd6808fa91059003ae559dcc93b372012ba5"><code>6706bd6</code></a> chore(release): 26.1.3 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1810">#1810</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/656e24956d5a79c3a43ac2c1ab9672dc3e9ffd1c"><code>656e249</code></a> build(deps-dev): bump typescript from 3.9.6 to 3.9.7 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1809">#1809</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/9c0bc98d4ed20194789e99b33528b8c2f4c0ad36"><code>9c0bc98</code></a> build(deps): bump lodash in /e2e/<strong>templates</strong>/default (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1807">#1807</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/cadbf585279aafe83eaa95aa6478dedf58680859"><code>cadbf58</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1806">#1806</a> from kulshekhar/dependabot/npm_and_yarn/lodash-4.17.19</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/2d3705dcf9a4811d4625ac2f35f4a842b48dd959"><code>2d3705d</code></a> build(deps): [security] bump lodash from 4.17.14 to 4.17.19</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/5095525333c8579c9c5e7f3149294b31f28d6774"><code>5095525</code></a> fix: revert <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1793">#1793</a> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1804">#1804</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/4df30ac98feb225befe2552cd94ce1c2643809ae"><code>4df30ac</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1802">#1802</a> from kulshekhar/dependabot/npm_and_yarn/typescript-e...</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/0f196332c0405df5f3a3f80ef3c333b0a8c9d681"><code>0f19633</code></a> build(deps-dev): bump @typescript-eslint/parser from 3.6.0 to 3.6.1</li> <li>Additional commits viewable in <a href="https://github.com/kulshekhar/ts-jest/compare/v26.1.2...v26.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

PR closed elninotech/uppload

⬆️ Bump rollup from 2.19.0 to 2.23.0 dependencies

Bumps rollup from 2.19.0 to 2.23.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/releases">rollup's releases</a>.</em></p> <blockquote> <h2>v2.23.0</h2> <p><em>2020-07-23</em></p> <h3>Features</h3> <ul> <li>Handle environments with only globalThis in UMD output (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3691">#3691</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3691">#3691</a>: Check for globalThis in UMD wrapper (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.22.2</h2> <p><em>2020-07-21</em></p> <h3>Bug Fixes</h3> <ul> <li>Always generate correct exports when an implicit entry is reexporting from another module (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3688">#3688</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3688">#3688</a>: Include all relevant modules to generate reexports for implicit dependencies (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.22.1</h2> <p><em>2020-07-18</em></p> <h3>Bug Fixes</h3> <ul> <li>Remove unused arguments when calling a conditional expression (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3680">#3680</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3680">#3680</a>: Allow tree-shaking of arguments of functions that are returned by conditional expressions (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.22.0</h2> <p><em>2020-07-18</em></p> <h3>Features</h3> <ul> <li>Allow resolving snythetic named exports via an arbitrary export name (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3657">#3657</a>)</li> <li>Display a warning when the user does not explicitly select an export mode and would generate a chunk with default export mode when targeting CommonJS (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3657">#3657</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3657">#3657</a>: Add basic support for using a non-default export for syntheticNamedExports (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3659">#3659</a>: Warn when implicitly using default export mode (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.21.0</h2> <p><em>2020-07-07</em></p> <h3>Features</h3> <ul> <li>Allow plugins to disable tree-shaking for individual modules to ensure even empty modules are associated with chunks (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3663">#3663</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3663">#3663</a>: Disable treeshaking per module (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.20.0</h2> <p><em>2020-07-06</em></p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/blob/master/CHANGELOG.md">rollup's changelog</a>.</em></p> <blockquote> <h2>2.23.0</h2> <p><em>2020-07-23</em></p> <h3>Features</h3> <ul> <li>Handle environments with only globalThis in UMD output (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3691">#3691</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3691">#3691</a>: Check for globalThis in UMD wrapper (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.22.2</h2> <p><em>2020-07-21</em></p> <h3>Bug Fixes</h3> <ul> <li>Always generate correct exports when an implicit entry is reexporting from another module (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3688">#3688</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3688">#3688</a>: Include all relevant modules to generate reexports for implicit dependencies (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.22.1</h2> <p><em>2020-07-18</em></p> <h3>Bug Fixes</h3> <ul> <li>Remove unused arguments when calling a conditional expression (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3680">#3680</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3680">#3680</a>: Allow tree-shaking of arguments of functions that are returned by conditional expressions (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.22.0</h2> <p><em>2020-07-18</em></p> <h3>Features</h3> <ul> <li>Allow resolving snythetic named exports via an arbitrary export name (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3657">#3657</a>)</li> <li>Display a warning when the user does not explicitly select an export mode and would generate a chunk with default export mode when targeting CommonJS (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3657">#3657</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3657">#3657</a>: Add basic support for using a non-default export for syntheticNamedExports (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3659">#3659</a>: Warn when implicitly using default export mode (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.21.0</h2> <p><em>2020-07-07</em></p> <h3>Features</h3> <ul> <li>Allow plugins to disable tree-shaking for individual modules to ensure even empty modules are associated with chunks (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3663">#3663</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3663">#3663</a>: Disable treeshaking per module (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.20.0</h2> <p><em>2020-07-06</em></p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rollup/rollup/commit/966838a6f9745d5e93f9889108fd19fbf2a7c429"><code>966838a</code></a> 2.23.0</li> <li><a href="https://github.com/rollup/rollup/commit/2ab44dcbf8b23c3a0675cadb26c1a774f77eda3b"><code>2ab44dc</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/ee1cb64f3cacf52c6a3e9816069f5a850478d6b8"><code>ee1cb64</code></a> Check for globalThis in UMD wrapper (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3691">#3691</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/e59dda1008cfd30e8201ea33a579e347bbe148a2"><code>e59dda1</code></a> 2.22.2</li> <li><a href="https://github.com/rollup/rollup/commit/df1943a09ca3202ca3cf472bc6c2ca1aa08b7f51"><code>df1943a</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/9f84284cd440ab453c900b1b5d8d55e8de686d77"><code>9f84284</code></a> Include all relevant modules to generate reexports for implicit dependencies ...</li> <li><a href="https://github.com/rollup/rollup/commit/21cc03d6b7cf797d948e78b35f82a190e1104bfd"><code>21cc03d</code></a> 2.22.1</li> <li><a href="https://github.com/rollup/rollup/commit/b2f5ef004419b98c38c9d4c9dd1d1839216ed280"><code>b2f5ef0</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/a2d82671d16d62d8a8e48d8b83f3daf5cfb874c0"><code>a2d8267</code></a> Allow treeshaking of arguments of functions that are returned by conditional ...</li> <li><a href="https://github.com/rollup/rollup/commit/aa68627f289c1b7f64035ef29f3fcfd7baedf1c7"><code>aa68627</code></a> 2.22.0</li> <li>Additional commits viewable in <a href="https://github.com/rollup/rollup/compare/v2.19.0...v2.23.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

PR closed elninotech/uppload

⬆️🔒 Bump npm from 6.14.5 to 6.14.7 dependencies security

Bumps npm from 6.14.5 to 6.14.7. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-93f3-23rq-pjfp">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Sensitive information exposure through logs in npm CLI</strong> Versions of the npm CLI prior to 6.14.6 are vulnerable to an information exposure vulnerability through log files. The CLI supports URLs like <code>://[[:]@][:][:][/]</code>. The password value is not redacted and is printed to stdout and also to any generated log files.</p> <p>Affected versions: < 6.14.6</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/npm/cli/releases">npm's releases</a>.</em></p> <blockquote> <h2>v6.14.7</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/de5108836189bddf28d4d3542f9bd5869cc5c2e9"><code>de5108836</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/784">#784</a> npm explore spawn shell correctly (<a href="https://github.com/jasisk">@jasisk</a>)</li> <li><a href="https://github.com/npm/cli/commit/36e6c01d334c4db75018bc6a4a0bef726fd41ce4"><code>36e6c01d3</code></a> git tag handling regression on shrinkwrap (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/1961c9369c92bf8fe530cecba9834ca3c7f5567c"><code>1961c9369</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/288">#288</a> Fix package id in shrinkwrap lifecycle step output (<a href="https://github.com/bz2">@bz2</a>)</li> <li><a href="https://github.com/npm/cli/commit/87888892a1282cc3edae968c3ae4ec279189271c"><code>87888892a</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1009">#1009</a> gracefully handle error during npm install (<a href="https://github.com/danielleadams">@danielleadams</a>)</li> <li><a href="https://github.com/npm/cli/commit/6fe2bdc25e7961956e5c0067fa4db54ff1bd0dbd"><code>6fe2bdc25</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1547">#1547</a> npm ls --parseable --long output (<a href="https://github.com/ruyadorno">@ruyadorno</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/2d78481c7ec178e628ce23df940f73a05d5c6367"><code>2d78481c7</code></a> update mkdirp on tacks (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/4e129d105eba3b12d474caa6e5ca216a98deb75a"><code>4e129d105</code></a> uninstall npm-registry-couchapp (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/8e1869e278d1dd37ddefd6b4e961d1bb17fc9d09"><code>8e1869e27</code></a> update marked dev dep (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a6151f377063c6aca852c859c01910edd235ec6"><code>6a6151f37</code></a> <code>libnpx@10.2.4</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/dc21422eb1ca1a4a19f160fad0e924566e08c496"><code>dc21422eb</code></a> <code>bin-links@1.1.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/d341f88ce6feb3df1dcb37f34910fcc6c1db85f2"><code>d341f88ce</code></a> <code>gentle-fs@2.3.1</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/3e168d49b41574809cae2ad013776a00d3f20ff4"><code>3e168d49b</code></a> <code>libcipm@4.0.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6ae942a510520b7dff11b5b78eebeff1706e38af"><code>6ae942a51</code></a> <code>npm-audit-report@1.3.3</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a35e3deec275bf2ae76603acd424a0640458047"><code>6a35e3dee</code></a> <code>npm-lifecycle@3.1.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> </ul> <h2>v6.14.6</h2> <h2>6.14.6 (2020-07-07)</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/a9857b8f6869451ff058789c4631fadfde5bbcbc"><code>a9857b8f6</code></a> chore: remove auth info from logs (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/b7ad77598112908d60195d0fbc472b3c84275fd5"><code>b7ad77598</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1416">#1416</a> fix: wrong <code>npm doctor</code> command result (<a href="https://github.com/vanishcode">@vanishcode</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/94eca637756376b949edfb697e179a1fdcc231ee"><code>94eca6377</code></a> <code>npm-registry-fetch@4.0.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/c49b6ae28791ff7184288be16654f97168aa9705"><code>c49b6ae28</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1418">#1418</a> <code>spdx-license-ids@3.0.5</code> (<a href="https://github.com/kemitchell">@kemitchell</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/npm/cli/blob/latest/CHANGELOG.md">npm's changelog</a>.</em></p> <blockquote> <h2>6.14.7 (2020-07-21)</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/de5108836189bddf28d4d3542f9bd5869cc5c2e9"><code>de5108836</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/784">#784</a> npm explore spawn shell correctly (<a href="https://github.com/jasisk">@jasisk</a>)</li> <li><a href="https://github.com/npm/cli/commit/36e6c01d334c4db75018bc6a4a0bef726fd41ce4"><code>36e6c01d3</code></a> git tag handling regression on shrinkwrap (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/1961c9369c92bf8fe530cecba9834ca3c7f5567c"><code>1961c9369</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/288">#288</a> Fix package id in shrinkwrap lifecycle step output (<a href="https://github.com/bz2">@bz2</a>)</li> <li><a href="https://github.com/npm/cli/commit/87888892a1282cc3edae968c3ae4ec279189271c"><code>87888892a</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1009">#1009</a> gracefully handle error during npm install (<a href="https://github.com/danielleadams">@danielleadams</a>)</li> <li><a href="https://github.com/npm/cli/commit/6fe2bdc25e7961956e5c0067fa4db54ff1bd0dbd"><code>6fe2bdc25</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1547">#1547</a> npm ls --parseable --long output (<a href="https://github.com/ruyadorno">@ruyadorno</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/2d78481c7ec178e628ce23df940f73a05d5c6367"><code>2d78481c7</code></a> update mkdirp on tacks (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/4e129d105eba3b12d474caa6e5ca216a98deb75a"><code>4e129d105</code></a> uninstall npm-registry-couchapp (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/8e1869e278d1dd37ddefd6b4e961d1bb17fc9d09"><code>8e1869e27</code></a> update marked dev dep (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a6151f377063c6aca852c859c01910edd235ec6"><code>6a6151f37</code></a> <code>libnpx@10.2.4</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/dc21422eb1ca1a4a19f160fad0e924566e08c496"><code>dc21422eb</code></a> <code>bin-links@1.1.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/d341f88ce6feb3df1dcb37f34910fcc6c1db85f2"><code>d341f88ce</code></a> <code>gentle-fs@2.3.1</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/3e168d49b41574809cae2ad013776a00d3f20ff4"><code>3e168d49b</code></a> <code>libcipm@4.0.8</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6ae942a510520b7dff11b5b78eebeff1706e38af"><code>6ae942a51</code></a> <code>npm-audit-report@1.3.3</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/6a35e3deec275bf2ae76603acd424a0640458047"><code>6a35e3dee</code></a> <code>npm-lifecycle@3.1.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> </ul> <h2>6.14.6 (2020-07-07)</h2> <h3>BUG FIXES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/a9857b8f6869451ff058789c4631fadfde5bbcbc"><code>a9857b8f6</code></a> chore: remove auth info from logs (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/b7ad77598112908d60195d0fbc472b3c84275fd5"><code>b7ad77598</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1416">#1416</a> fix: wrong <code>npm doctor</code> command result (<a href="https://github.com/vanishcode">@vanishcode</a>)</li> </ul> <h3>DEPENDENCIES</h3> <ul> <li><a href="https://github.com/npm/cli/commit/94eca637756376b949edfb697e179a1fdcc231ee"><code>94eca6377</code></a> <code>npm-registry-fetch@4.0.5</code> (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/c49b6ae28791ff7184288be16654f97168aa9705"><code>c49b6ae28</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1418">#1418</a> <code>spdx-license-ids@3.0.5</code> (<a href="https://github.com/kemitchell">@kemitchell</a>)</li> </ul> <h3>DOCUMENTATION</h3> <ul> <li><a href="https://github.com/npm/cli/commit/2e052984b08c09115ed75387fb2c961631d85d77"><code>2e052984b</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1459">#1459</a> chore(docs): fixed links to cli commands (<a href="https://github.com/claudiahdz">@claudiahdz</a>)</li> <li><a href="https://github.com/npm/cli/commit/0ca3509ca940865392daeeabb39192f7d5af9f5e"><code>0ca3509ca</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1283">#1283</a> Update npm-link.md (<a href="https://github.com/peterfich">@peterfich</a>)</li> <li><a href="https://github.com/npm/cli/commit/3dd429e9aad760ce2ff9e522b34ebfebd85b460c"><code>3dd429e9a</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1377">#1377</a> Add note about dropped <code>*</code> filenames (<a href="https://github.com/maxwellgerber">@maxwellgerber</a>)</li> <li><a href="https://github.com/npm/cli/commit/9a2e2e797e5c91e7f4f261583a1906e2c440cc2f"><code>9a2e2e797</code></a> <a href="https://github-redirect.dependabot.com/npm/cli/pull/1429">#1429</a> Fix typo (<a href="https://github.com/seanpoulter">@seanpoulter</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/cli/commit/42e46256156eb6446862f208896d844acf3b8c5d"><code>42e4625</code></a> 6.14.7</li> <li><a href="https://github.com/npm/cli/commit/a81da2bff8694f95994a1732bd6a85ed7c6444ab"><code>a81da2b</code></a> update AUTHORS</li> <li><a href="https://github.com/npm/cli/commit/e6e8d29de8d9f953ec466c9666402db19ff14f82"><code>e6e8d29</code></a> docs: changelog for 6.14.7</li> <li><a href="https://github.com/npm/cli/commit/6a35e3deec275bf2ae76603acd424a0640458047"><code>6a35e3d</code></a> npm-lifecycle@3.1.5</li> <li><a href="https://github.com/npm/cli/commit/6ae942a510520b7dff11b5b78eebeff1706e38af"><code>6ae942a</code></a> npm-audit-report@1.3.3</li> <li><a href="https://github.com/npm/cli/commit/3e168d49b41574809cae2ad013776a00d3f20ff4"><code>3e168d4</code></a> libcipm@4.0.8</li> <li><a href="https://github.com/npm/cli/commit/d341f88ce6feb3df1dcb37f34910fcc6c1db85f2"><code>d341f88</code></a> gentle-fs@2.3.1</li> <li><a href="https://github.com/npm/cli/commit/dc21422eb1ca1a4a19f160fad0e924566e08c496"><code>dc21422</code></a> bin-links@1.1.8</li> <li><a href="https://github.com/npm/cli/commit/6fe2bdc25e7961956e5c0067fa4db54ff1bd0dbd"><code>6fe2bdc</code></a> fix: npm ls --parseable --long output</li> <li><a href="https://github.com/npm/cli/commit/87888892a1282cc3edae968c3ae4ec279189271c"><code>8788889</code></a> fix: gracefully handle error during npm install</li> <li>Additional commits viewable in <a href="https://github.com/npm/cli/compare/v6.14.5...v6.14.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+158 -180

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha e485782b968ced0a80535a68a8fa0abad4fa851a

Deploy to GitHub pages

view details

push time in 4 days

push eventKaruna2020/karuna2020.org

Anand Chowdhary

commit sha 11ed174dc652b4d2b36cc840d836aa5e3c347fa9

:sparkles: Add masks distributed

view details

push time in 5 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha 918b0d70bdae19165536fcb58783fde857a2c415

Deploy to GitHub pages

view details

push time in 5 days

push eventkoj-co/staart

Anand Chowdhary

commit sha 029928a117a338d445727c37743acd1f1093af26

:fire: Remove Prisma migrations

view details

Anand Chowdhary

commit sha f8857798e63802c1519aee01aa9a617114573294

:card_file_box: Update database schema

view details

Anand Chowdhary

commit sha 7cb5ea073741e272e5d449135588590514291f62

:heavy_plus_sign: Add cosmic for config

view details

Anand Chowdhary

commit sha 6bcdd425a2f572625741c6da29cadcbbcd534cf0

:wrench: Add .staartrc

view details

Anand Chowdhary

commit sha 5693784bda8dc7ab6f101cc5c5ff4e40b02a1314

:arrow_up: Update @staart/redis

view details

Anand Chowdhary

commit sha c38e046439f635dc28d679c90bdf684192d7f970

:arrow_up: Update @staart/redis to v2.3.0

view details

Anand Chowdhary

commit sha 482e15658b6c2a55e4d84961a4cf9581dcd7e6aa

:heavy_minus_sign: Remove systeminformation pkg

view details

push time in 5 days

push eventstaart/packages

Anand Chowdhary

commit sha 80627fead8285cc25997af43b978f745d9509656

:arrow_up: Update redis

view details

Anand Chowdhary

commit sha 43c26f692da013b144e41ee84a7993bac70e9d6e

:wrench: Update npm version

view details

push time in 5 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha 72b23f55e6cf56f14ceaeb8e21ecb4b5d2b77a2d

Deploy to GitHub pages

view details

push time in 5 days

startedtechnote-space/toc-generator

started time in 5 days

push eventkoj-co/staart

Anand Chowdhary

commit sha 326697e4eec045058905bcfbc514f60090de534f

:pencil: Update README

view details

Anand Chowdhary

commit sha 7d439a93ece3576a8dd4e16f4e9586649eb0963c

:fire: Remove unnecessary files

view details

push time in 5 days

push eventstaart/api

Anand Chowdhary

commit sha 235c10c4cc00aae45306960814b97ce183cb14ad

:arrow_up: Update jest, ts-jest

view details

Anand Chowdhary

commit sha e37dd95d1f219d26063f91607a8b6f6ef9da05bb

:lock: Run npm audit fix

view details

push time in 5 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha e0e34cf4c499458d5b1eadb6f51bfd29e4c21f86

Deploy to GitHub pages

view details

push time in 6 days

startedtylerhall/DefaultApp

started time in 6 days

push eventAnandChowdhary/anandchowdhary.com

AnandChowdhary

commit sha 338922fb252f3845356bd6c670d0d330329a81cf

Deploy to GitHub pages

view details

push time in 6 days

push eventAnandChowdhary/auto-i18n

dependabot-preview[bot]

commit sha a80f6e3b4135b99d765b451b82ba5bd3a214bc19

Bump @types/jest from 26.0.7 to 26.0.8 Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 26.0.7 to 26.0.8. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Anand Chowdhary

commit sha 382fdcc4ab852b6de04bdfb6a8e0e948269823e0

Merge pull request #326 from AnandChowdhary/dependabot/npm_and_yarn/types/jest-26.0.8 Bump @types/jest from 26.0.7 to 26.0.8

view details

push time in 6 days

PR merged AnandChowdhary/auto-i18n

Bump @types/jest from 26.0.7 to 26.0.8 dependencies

Bumps @types/jest from 26.0.7 to 26.0.8. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 6 days

push eventOswaldLabsOpenSource/live-subtitles

dependabot[bot]

commit sha 0a7ff8a73d2ad7a35b5b8aabbbfb7e03e003e3f5

:arrow_up: Bump elliptic from 6.5.1 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.1 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.1...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Anand Chowdhary

commit sha abde5381960054de483c336ce9bf4850e265c7ed

Merge pull request #4 from OswaldLabsOpenSource/dependabot/npm_and_yarn/elliptic-6.5.3 ⬆️ Bump elliptic from 6.5.1 to 6.5.3

view details

push time in 6 days

PR merged OswaldLabsOpenSource/live-subtitles

⬆️ Bump elliptic from 6.5.1 to 6.5.3 dependencies

Bumps elliptic from 6.5.1 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li><a href="https://github.com/indutny/elliptic/commit/60489415e545efdfd3010ae74b9726facbf08ca8"><code>6048941</code></a> 6.5.2</li> <li><a href="https://github.com/indutny/elliptic/commit/9984964457c9f8a63b91b01ea103260417eca237"><code>9984964</code></a> package: bump dependencies</li> <li><a href="https://github.com/indutny/elliptic/commit/ec735edde187a43693197f6fa3667ceade751a3a"><code>ec735ed</code></a> utils: leak less information in <code>getNAF()</code></li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.1...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

1 comment

1 changed file

dependabot[bot]

pr closed time in 6 days

more