profile
viewpoint

pull request commentyourshoes/kalzate

build(deps-dev): bump electron from 2.0.18 to 9.1.0 in /packages/electron

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot[bot]

comment created time in a few seconds

delete branch Iturea/github-slideshow

delete branch : dependabot/bundler/nokogiri-1.10.8

delete time in a few seconds

delete branch Wellers0n/college

delete branch : dependabot/pip/1Semester/DR2-TP3/pyyaml-5.1

delete time in a few seconds

push eventWellers0n/college

dependabot[bot]

commit sha 0fe58a6d13f515aad56e5b7c1043a8120900c6f9

Bump httplib2 from 0.9.2 to 0.18.0 in /1Semester/DR2-TP3 Bumps [httplib2](https://github.com/httplib2/httplib2) from 0.9.2 to 0.18.0. - [Release notes](https://github.com/httplib2/httplib2/releases) - [Changelog](https://github.com/httplib2/httplib2/blob/master/CHANGELOG) - [Commits](https://github.com/httplib2/httplib2/compare/0.9.2...v0.18.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha 6552bee0c31adcf7073184d7c46b7412612bfea4

Bump pyxdg from 0.25 to 0.26 in /1Semester/DR2-TP3 Bumps [pyxdg](https://github.com/takluyver/pyxdg) from 0.25 to 0.26. - [Release notes](https://github.com/takluyver/pyxdg/releases) - [Changelog](https://github.com/takluyver/pyxdg/blob/master/ChangeLog) - [Commits](https://github.com/takluyver/pyxdg/compare/rel-0.25...rel-0.26) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha 3ea43c60b583d63fafc6fbc93af923d9923694ee

Bump pyxdg from 0.25 to 0.26 Bumps [pyxdg](http://freedesktop.org/wiki/Software/pyxdg) from 0.25 to 0.26. Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha c86a0ef47546775f7344b2cb33eb978c29932dd8

Bump httplib2 from 0.9.2 to 0.18.0 Bumps [httplib2](https://github.com/httplib2/httplib2) from 0.9.2 to 0.18.0. - [Release notes](https://github.com/httplib2/httplib2/releases) - [Changelog](https://github.com/httplib2/httplib2/blob/master/CHANGELOG) - [Commits](https://github.com/httplib2/httplib2/compare/0.9.2...v0.18.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha f840d9fd52e10fb1f492859e8f66a4a9d32c1ee0

Bump websocket-extensions from 0.1.3 to 0.1.4 in /firstBlock/my-pitch Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4. - [Release notes](https://github.com/faye/websocket-extensions-node/releases) - [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

Wellerson

commit sha 924b89f54c842e60231814e468e05b59af1a53a2

Merge pull request #13 from Wellers0n/dependabot/npm_and_yarn/firstBlock/my-pitch/websocket-extensions-0.1.4 Bump websocket-extensions from 0.1.3 to 0.1.4 in /firstBlock/my-pitch

view details

Wellerson

commit sha 3edc8633dac1e4080cf7424b85e32ce0af937ade

Merge pull request #12 from Wellers0n/dependabot/pip/1Semester/DR2-TP3/pyxdg-0.26 Bump pyxdg from 0.25 to 0.26 in /1Semester/DR2-TP3

view details

dependabot[bot]

commit sha 60e2c6d36957d60db41d224eedc5ce426f126e10

Bump requests from 2.18.4 to 2.20.0 in /1Semester/DR2-TP3 Bumps [requests](https://github.com/psf/requests) from 2.18.4 to 2.20.0. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/master/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.18.4...v2.20.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

Wellerson

commit sha 42844208a293e9e118627f0ec6be85f36c905104

Merge pull request #7 from Wellers0n/dependabot/pip/httplib2-0.18.0 Bump httplib2 from 0.9.2 to 0.18.0

view details

Wellerson

commit sha 634d8a26e7a924b086371a41aa6f34fdbf3e8fb9

Merge pull request #6 from Wellers0n/dependabot/pip/pyxdg-0.26 Bump pyxdg from 0.25 to 0.26

view details

Wellerson

commit sha 57a8e3e1cbeaf073106c99c4e79973374a2d2c3a

Merge pull request #14 from Wellers0n/dependabot/pip/1Semester/DR2-TP3/requests-2.20.0 Bump requests from 2.18.4 to 2.20.0 in /1Semester/DR2-TP3

view details

Wellerson

commit sha 2f02327ae6d75c8933f4057e60f12df0bfa281c4

Merge pull request #11 from Wellers0n/dependabot/pip/1Semester/DR2-TP3/httplib2-0.18.0 Bump httplib2 from 0.9.2 to 0.18.0 in /1Semester/DR2-TP3

view details

dependabot[bot]

commit sha e3c94f078297801adb37054dadedb8e45eff018f

Bump requests from 2.18.4 to 2.20.0 Bumps [requests](https://github.com/psf/requests) from 2.18.4 to 2.20.0. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/master/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.18.4...v2.20.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in a few seconds

push eventWellers0n/college

dependabot[bot]

commit sha 0fe58a6d13f515aad56e5b7c1043a8120900c6f9

Bump httplib2 from 0.9.2 to 0.18.0 in /1Semester/DR2-TP3 Bumps [httplib2](https://github.com/httplib2/httplib2) from 0.9.2 to 0.18.0. - [Release notes](https://github.com/httplib2/httplib2/releases) - [Changelog](https://github.com/httplib2/httplib2/blob/master/CHANGELOG) - [Commits](https://github.com/httplib2/httplib2/compare/0.9.2...v0.18.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha 6552bee0c31adcf7073184d7c46b7412612bfea4

Bump pyxdg from 0.25 to 0.26 in /1Semester/DR2-TP3 Bumps [pyxdg](https://github.com/takluyver/pyxdg) from 0.25 to 0.26. - [Release notes](https://github.com/takluyver/pyxdg/releases) - [Changelog](https://github.com/takluyver/pyxdg/blob/master/ChangeLog) - [Commits](https://github.com/takluyver/pyxdg/compare/rel-0.25...rel-0.26) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha 3ea43c60b583d63fafc6fbc93af923d9923694ee

Bump pyxdg from 0.25 to 0.26 Bumps [pyxdg](http://freedesktop.org/wiki/Software/pyxdg) from 0.25 to 0.26. Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha c86a0ef47546775f7344b2cb33eb978c29932dd8

Bump httplib2 from 0.9.2 to 0.18.0 Bumps [httplib2](https://github.com/httplib2/httplib2) from 0.9.2 to 0.18.0. - [Release notes](https://github.com/httplib2/httplib2/releases) - [Changelog](https://github.com/httplib2/httplib2/blob/master/CHANGELOG) - [Commits](https://github.com/httplib2/httplib2/compare/0.9.2...v0.18.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha f840d9fd52e10fb1f492859e8f66a4a9d32c1ee0

Bump websocket-extensions from 0.1.3 to 0.1.4 in /firstBlock/my-pitch Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4. - [Release notes](https://github.com/faye/websocket-extensions-node/releases) - [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

Wellerson

commit sha 924b89f54c842e60231814e468e05b59af1a53a2

Merge pull request #13 from Wellers0n/dependabot/npm_and_yarn/firstBlock/my-pitch/websocket-extensions-0.1.4 Bump websocket-extensions from 0.1.3 to 0.1.4 in /firstBlock/my-pitch

view details

Wellerson

commit sha 3edc8633dac1e4080cf7424b85e32ce0af937ade

Merge pull request #12 from Wellers0n/dependabot/pip/1Semester/DR2-TP3/pyxdg-0.26 Bump pyxdg from 0.25 to 0.26 in /1Semester/DR2-TP3

view details

dependabot[bot]

commit sha 60e2c6d36957d60db41d224eedc5ce426f126e10

Bump requests from 2.18.4 to 2.20.0 in /1Semester/DR2-TP3 Bumps [requests](https://github.com/psf/requests) from 2.18.4 to 2.20.0. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/master/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.18.4...v2.20.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

Wellerson

commit sha 42844208a293e9e118627f0ec6be85f36c905104

Merge pull request #7 from Wellers0n/dependabot/pip/httplib2-0.18.0 Bump httplib2 from 0.9.2 to 0.18.0

view details

Wellerson

commit sha 634d8a26e7a924b086371a41aa6f34fdbf3e8fb9

Merge pull request #6 from Wellers0n/dependabot/pip/pyxdg-0.26 Bump pyxdg from 0.25 to 0.26

view details

Wellerson

commit sha 57a8e3e1cbeaf073106c99c4e79973374a2d2c3a

Merge pull request #14 from Wellers0n/dependabot/pip/1Semester/DR2-TP3/requests-2.20.0 Bump requests from 2.18.4 to 2.20.0 in /1Semester/DR2-TP3

view details

Wellerson

commit sha 2f02327ae6d75c8933f4057e60f12df0bfa281c4

Merge pull request #11 from Wellers0n/dependabot/pip/1Semester/DR2-TP3/httplib2-0.18.0 Bump httplib2 from 0.9.2 to 0.18.0 in /1Semester/DR2-TP3

view details

dependabot[bot]

commit sha cb7cffc3fba4c1f6457a3076c948e141b5811921

Bump pyyaml from 3.12 to 5.1 Bumps [pyyaml](https://github.com/yaml/pyyaml) from 3.12 to 5.1. - [Release notes](https://github.com/yaml/pyyaml/releases) - [Changelog](https://github.com/yaml/pyyaml/blob/master/CHANGES) - [Commits](https://github.com/yaml/pyyaml/compare/3.12...5.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in a few seconds

pull request commentliviaw/hoogle

Bump websocket-extensions from 0.1.3 to 0.1.4 in /chat

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

dependabot[bot]

comment created time in a few seconds

delete branch Wellers0n/college

delete branch : dependabot/pip/1Semester/DR2-TP3/httplib2-0.18.0

delete time in a few seconds

PR opened WooSungJ/apollo-2020

Bump websocket-extensions from 0.1.3 to 0.1.4

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in a few seconds

create barnchWooSungJ/apollo-2020

branch : dependabot/npm_and_yarn/websocket-extensions-0.1.4

created branch time in a few seconds

PR opened AceroJuan/store_react

Bump websocket-extensions from 0.1.3 to 0.1.4

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in a few seconds

delete branch nawed1111/blog-wordskill-live

delete branch : dependabot/pip/django-3.0.7

delete time in a few seconds

delete branch Wellers0n/college

delete branch : dependabot/pip/1Semester/DR2-TP3/requests-2.20.0

delete time in a few seconds

push eventsutd-rms/secret_sauce

eugenechia95

commit sha 20f7c275bb076f5c946b89fa0497f03efb09cdf9

Added PR format

view details

Gerald Woo

commit sha 9b625702f66782a14b8cf175933fcb2a42fba3ac

Models endpoint (#6) * Initial commit for input parser * Completed basic data checks - headers and data type (ensure all values are numbers) * Moved headers to class variable, and fixed bug which skips checking the cell type of the first row of csv file * Generic serializers, views, urls done for: Project, Constraint, PredictionModels

view details

Gerald Woo

commit sha 7c6514ecc7924a2a7d4d5f6f5ffd74c5f35fcf1e

Account creation (#16) * Initial commit for input parser * Completed basic data checks - headers and data type (ensure all values are numbers) * Moved headers to class variable, and fixed bug which skips checking the cell type of the first row of csv file * Generic serializers, views, urls done for: Project, Constraint, PredictionModels * Updated accounts and added script to create superuser * Cleand up some naming errors * added migrations Co-authored-by: eugenechia95 <eugenechia95@gmail.com>

view details

eugenechia95

commit sha c69f236e0a11944156fbd0c5b6db936860bc2ba3

Set up email functionality (#15) * set up email functionality * Account creation (#16) * Initial commit for input parser * Completed basic data checks - headers and data type (ensure all values are numbers) * Moved headers to class variable, and fixed bug which skips checking the cell type of the first row of csv file * Generic serializers, views, urls done for: Project, Constraint, PredictionModels * Updated accounts and added script to create superuser * Cleand up some naming errors * added migrations Co-authored-by: eugenechia95 <eugenechia95@gmail.com> * set up email functionality * Added send_email for invitation creation Co-authored-by: Gerald Woo <woogerald@yahoo.com.sg>

view details

Gerald Woo

commit sha b6373be9ba5e2668a94c9fc12eafa17aacd459fd

Feature/update project model (#18) * Finalized Project endpoint * Added createadmin and fixed Patch * Updated requirements.txt * Fixed company url, removed irrelevant serializer fields

view details

Gerald Woo

commit sha aace9d55becc6497cba2cbde3f68bd968e7c41fd

Feature/constraints model (#19) * Done up constraints and some tests * Complete Constraints * Added rhs_constant and changed test

view details

eugenechia95

commit sha f2c078362a865bd5b32e7d1e3d2421dbeb049d7d

Merge branch 'master' into dev

view details

eugenechia95

commit sha 685691e6dff745a8bc75b57bbc8da722a7859004

fix migration issue

view details

Gerald Woo

commit sha 8004ad58c3c021e7ae39464fef5efa24e8c92f69

Test/crud tests (#25) * Rebase * Created some new CRUD tests, and fixed bugs related to User email -> id change * remove USER_ID_FIELD from djoser settings * Fixed account creation * fix email bug Co-authored-by: eugenechia95 <eugenechia95@gmail.com>

view details

Gerald Woo

commit sha 4502907577c99a09068b5a47d947b150079ad590

Feature/schemas (#27) * Added extraction of Schema for DataBlock workflow * Added ItemList (Costs) * Changed Schema, Header, and ItemList names to DataBlockSchema, DataBlockHeader, and ItemDirectory respectively.

view details

Gerald Woo

commit sha 68b10f022c5a635487bd249051fb075e9fb67603

Fixed minor bug in DataBlockList (#30)

view details

Gerald Woo

commit sha ea8e5164ecbc64c916a5d7eeebe3bb601210e4af

Feature/data visualizing processing (#29) * Added extraction of Schema for DataBlock workflow * Added ItemList (Costs) * Changed Schema, Header, and ItemList names to DataBlockSchema, DataBlockHeader, and ItemDirectory respectively. * Added functionality to query data from datablocks * Updated outputs to match Notion specification Co-authored-by: eugenechia95 <eugenechia95@gmail.com>

view details

dependabot[bot]

commit sha 22a13a0640d11b9cb34afe6ce390a64ddc8aaa7f

Bump django from 3.0.6 to 3.0.7 Bumps [django](https://github.com/django/django) from 3.0.6 to 3.0.7. - [Release notes](https://github.com/django/django/releases) - [Commits](https://github.com/django/django/compare/3.0.6...3.0.7) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in a few seconds

PR opened wwmoraes/alertmanager-telegram-bot

chore(deps-dev): bump eslint-plugin-jsdoc from 29.1.0 to 29.1.3

Bumps eslint-plugin-jsdoc from 29.1.0 to 29.1.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/gajus/eslint-plugin-jsdoc/releases">eslint-plugin-jsdoc's releases</a>.</em></p> <blockquote> <h2>v29.1.3</h2> <h2><a href="https://github.com/gajus/eslint-plugin-jsdoc/compare/v29.1.2...v29.1.3">29.1.3</a> (2020-07-09)</h2> <h3>Bug Fixes</h3> <ul> <li>with fixers, create proper inner indent (of an additional space) when a tab is in use; fixes <a href="https://github-redirect.dependabot.com/gajus/eslint-plugin-jsdoc/issues/607">#607</a> (<a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/4dfbc8df497013075028a3964bd546f45fa3abda">4dfbc8d</a>)</li> </ul> <h2>v29.1.2</h2> <h2><a href="https://github.com/gajus/eslint-plugin-jsdoc/compare/v29.1.1...v29.1.2">29.1.2</a> (2020-07-09)</h2> <h3>Bug Fixes</h3> <ul> <li><strong><code>check-param-names</code>:</strong> ensure mismatching quoted vs. non-quoted tag name is not treated as an extra property (<a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/0c1c763346269195b376d23bd4e95c6ecede5209">0c1c763</a>)</li> <li><strong><code>require-param</code>:</strong> Object destructuring in function parameters if key is string | number (quoted or otherwise) (<a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/1842fd2186a479477b00b542fd81b495cb0be726">1842fd2</a>)</li> </ul> <h2>v29.1.1</h2> <h2><a href="https://github.com/gajus/eslint-plugin-jsdoc/compare/v29.1.0...v29.1.1">29.1.1</a> (2020-07-09)</h2> <h3>Bug Fixes</h3> <ul> <li>Object destructuring in function parameters if key is string (<a href="https://github-redirect.dependabot.com/gajus/eslint-plugin-jsdoc/issues/599">#599</a>) (<a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/64e1b64beb18867f6c6973c579756c2d20a84a74">64e1b64</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/4dfbc8df497013075028a3964bd546f45fa3abda"><code>4dfbc8d</code></a> fix: with fixers, create proper inner indent (of an additional space) when a ...</li> <li><a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/1842fd2186a479477b00b542fd81b495cb0be726"><code>1842fd2</code></a> fix(<code>require-param</code>): Object destructuring in function parameters if key is s...</li> <li><a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/0c1c763346269195b376d23bd4e95c6ecede5209"><code>0c1c763</code></a> fix(<code>check-param-names</code>): ensure mismatching quoted vs. non-quoted tag name i...</li> <li><a href="https://github.com/gajus/eslint-plugin-jsdoc/commit/64e1b64beb18867f6c6973c579756c2d20a84a74"><code>64e1b64</code></a> fix: Object destructuring in function parameters if key is string (<a href="https://github-redirect.dependabot.com/gajus/eslint-plugin-jsdoc/issues/599">#599</a>)</li> <li>See full diff in <a href="https://github.com/gajus/eslint-plugin-jsdoc/compare/v29.1.0...v29.1.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+5 -5

0 comment

2 changed files

pr created time in a few seconds

PR opened wwmoraes/alertmanager-telegram-bot

chore(deps): bump @types/jest from 26.0.0 to 26.0.4

Bumps @types/jest from 26.0.0 to 26.0.4. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+5 -5

0 comment

2 changed files

pr created time in a few seconds

PR opened wwmoraes/alertmanager-telegram-bot

chore(deps): bump jest from 26.0.1 to 26.1.0

Bumps jest from 26.0.1 to 26.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/releases">jest's releases</a>.</em></p> <blockquote> <h2>26.1.0</h2> <h3>Features</h3> <ul> <li><code>[jest-mock]</code> Export <code>Mock</code>, <code>MockInstance</code>, <code>SpyInstance</code> types (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10138">#10138</a>)</li> <li><code>[jest-config]</code> Support config files exporting (<code>async</code>) <code>function</code>s (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10001">#10001</a>)</li> <li><code>[jest-cli, jest-core]</code> Add <code>--selectProjects</code> CLI argument to filter test suites by project name (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/8612">#8612</a>)</li> <li><code>[jest-cli, jest-init]</code> Add <code>coverageProvider</code> to <code>jest --init</code> prompts (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10044">#10044</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-console]</code> <code>getConsoleOutput</code> to receive global stack trace config and use it to format stack trace (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10081">#10081</a>)</li> <li><code>[jest-jasmine2]</code> Stop adding <code>:</code> after an error that has no message (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9990">#9990</a>)</li> <li><code>[jest-diff]</code> Control no diff message color with <code>commonColor</code> in diff options (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9997">#9997</a>)</li> <li><code>[jest-snapshot]</code> Fix TypeScript compilation (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10008">#10008</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[docs]</code> Correct confusing filename in <code>enableAutomock</code> example (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10055">#10055</a>)</li> <li><code>[jest-core]</code> 🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10000">#10000</a>)</li> <li><code>[jest-core, jest-reporters, jest-test-result, jest-types]</code> Cleanup <code>displayName</code> type (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10049">#10049</a>)</li> <li><code>[jest-runtime]</code> Jest-internal sandbox escape hatch (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9907">#9907</a>)</li> <li><code>[jest-fake-timers]</code> Update <code>now</code> param type to support <code>Date</code> in addition to <code>number</code>. (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10169">#10169</a>)</li> <li><code>[docs]</code> Add param to <code>setSystemTime</code> docs and remove preceding period from it and <code>getRealSystemTime</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10169">#10169</a>)</li> <li><code>[jest-snapshot, jest-util]</code> Replace <code>make-dir</code> with <code>fs.mkdir</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10136">#10136</a>)</li> </ul> <h3>Performance</h3> <ul> <li><code>[jest-core, jest-transform, jest-haste-map]</code> Improve Jest startup time and test runtime, particularly when running with coverage, by caching micromatch and avoiding recreating RegExp instances (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10131">#10131</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/blob/master/CHANGELOG.md">jest's changelog</a>.</em></p> <blockquote> <h2>26.1.0</h2> <h3>Features</h3> <ul> <li><code>[jest-mock]</code> Export <code>Mock</code>, <code>MockInstance</code>, <code>SpyInstance</code> types (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10138">#10138</a>)</li> <li><code>[jest-config]</code> Support config files exporting (<code>async</code>) <code>function</code>s (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10001">#10001</a>)</li> <li><code>[jest-cli, jest-core]</code> Add <code>--selectProjects</code> CLI argument to filter test suites by project name (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/8612">#8612</a>)</li> <li><code>[jest-cli, jest-init]</code> Add <code>coverageProvider</code> to <code>jest --init</code> prompts (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10044">#10044</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-console]</code> <code>getConsoleOutput</code> to receive global stack trace config and use it to format stack trace (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10081">#10081</a>)</li> <li><code>[jest-jasmine2]</code> Stop adding <code>:</code> after an error that has no message (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9990">#9990</a>)</li> <li><code>[jest-diff]</code> Control no diff message color with <code>commonColor</code> in diff options (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9997">#9997</a>)</li> <li><code>[jest-snapshot]</code> Fix TypeScript compilation (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10008">#10008</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[docs]</code> Correct confusing filename in <code>enableAutomock</code> example (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10055">#10055</a>)</li> <li><code>[jest-core]</code> 🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉🎉 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10000">#10000</a>)</li> <li><code>[jest-core, jest-reporters, jest-test-result, jest-types]</code> Cleanup <code>displayName</code> type (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10049">#10049</a>)</li> <li><code>[jest-runtime]</code> Jest-internal sandbox escape hatch (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/9907">#9907</a>)</li> <li><code>[jest-fake-timers]</code> Update <code>now</code> param type to support <code>Date</code> in addition to <code>number</code>. (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10169">#10169</a>)</li> <li><code>[docs]</code> Add param to <code>setSystemTime</code> docs and remove preceding period from it and <code>getRealSystemTime</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10169">#10169</a>)</li> <li><code>[jest-snapshot, jest-util]</code> Replace <code>make-dir</code> with <code>fs.mkdir</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10136">#10136</a>)</li> <li><code>[docs]</code> Added parcel-bundler documentation inside readme.md file</li> </ul> <h3>Performance</h3> <ul> <li><code>[jest-core, jest-transform, jest-haste-map]</code> Improve Jest startup time and test runtime, particularly when running with coverage, by caching micromatch and avoiding recreating RegExp instances (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10131">#10131</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/facebook/jest/commit/817d8b6aca845dd4fcfd7f8316293e69f3a116c5"><code>817d8b6</code></a> v26.1.0</li> <li><a href="https://github.com/facebook/jest/commit/30658c6fc0df37a758293f0731729dc764110963"><code>30658c6</code></a> chore: update changelog for release</li> <li><a href="https://github.com/facebook/jest/commit/a1fa77696513f048f58bf833895da76224955af2"><code>a1fa776</code></a> chore: quote globs in scripts (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10190">#10190</a>)</li> <li><a href="https://github.com/facebook/jest/commit/17c3f1405316cdcda6888015d29dba2950e990e0"><code>17c3f14</code></a> chore: replace <code>make-dir</code> with <code>fs.mkdir</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10136">#10136</a>)</li> <li><a href="https://github.com/facebook/jest/commit/ee40194a6757e34d7974908b4c634423ea2023e6"><code>ee40194</code></a> Update ExpectAPI.md (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10141">#10141</a>)</li> <li><a href="https://github.com/facebook/jest/commit/95b94e84cf60d919035d79112b18859909a8b831"><code>95b94e8</code></a> feat(jest-mock): Export Mock, MockInstance, SpyInstance types (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10138">#10138</a>)</li> <li><a href="https://github.com/facebook/jest/commit/504cacee18b844a974e76e5c45b2568bf023d3ac"><code>504cace</code></a> Improve Jest startup time and test runtime, particularly when running with co...</li> <li><a href="https://github.com/facebook/jest/commit/4471bbbb2d009a5d71c7beb702cb3cadb46d0a94"><code>4471bbb</code></a> Update GlobalAPI.md (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10157">#10157</a>)</li> <li><a href="https://github.com/facebook/jest/commit/15576d3d37a14050f302f213c655520590bafeee"><code>15576d3</code></a> Update links to Reactiflux (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10180">#10180</a>)</li> <li><a href="https://github.com/facebook/jest/commit/852819abc0de900f6d8ebb417e7d4fc3d7e647aa"><code>852819a</code></a> Update UsingMatchers.md (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10161">#10161</a>)</li> <li>Additional commits viewable in <a href="https://github.com/facebook/jest/compare/v26.0.1...v26.1.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+361 -287

0 comment

2 changed files

pr created time in a minute

delete branch Wellers0n/college

delete branch : dependabot/pip/pyxdg-0.26

delete time in a minute

delete branch tanaken0515/rails-girls-for-aws-cloud9-ubuntu

delete branch : dependabot/bundler/rack-2.2.3

delete time in a minute

push eventWellers0n/college

dependabot[bot]

commit sha 6552bee0c31adcf7073184d7c46b7412612bfea4

Bump pyxdg from 0.25 to 0.26 in /1Semester/DR2-TP3 Bumps [pyxdg](https://github.com/takluyver/pyxdg) from 0.25 to 0.26. - [Release notes](https://github.com/takluyver/pyxdg/releases) - [Changelog](https://github.com/takluyver/pyxdg/blob/master/ChangeLog) - [Commits](https://github.com/takluyver/pyxdg/compare/rel-0.25...rel-0.26) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha c86a0ef47546775f7344b2cb33eb978c29932dd8

Bump httplib2 from 0.9.2 to 0.18.0 Bumps [httplib2](https://github.com/httplib2/httplib2) from 0.9.2 to 0.18.0. - [Release notes](https://github.com/httplib2/httplib2/releases) - [Changelog](https://github.com/httplib2/httplib2/blob/master/CHANGELOG) - [Commits](https://github.com/httplib2/httplib2/compare/0.9.2...v0.18.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha f840d9fd52e10fb1f492859e8f66a4a9d32c1ee0

Bump websocket-extensions from 0.1.3 to 0.1.4 in /firstBlock/my-pitch Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4. - [Release notes](https://github.com/faye/websocket-extensions-node/releases) - [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

Wellerson

commit sha 924b89f54c842e60231814e468e05b59af1a53a2

Merge pull request #13 from Wellers0n/dependabot/npm_and_yarn/firstBlock/my-pitch/websocket-extensions-0.1.4 Bump websocket-extensions from 0.1.3 to 0.1.4 in /firstBlock/my-pitch

view details

Wellerson

commit sha 3edc8633dac1e4080cf7424b85e32ce0af937ade

Merge pull request #12 from Wellers0n/dependabot/pip/1Semester/DR2-TP3/pyxdg-0.26 Bump pyxdg from 0.25 to 0.26 in /1Semester/DR2-TP3

view details

Wellerson

commit sha 42844208a293e9e118627f0ec6be85f36c905104

Merge pull request #7 from Wellers0n/dependabot/pip/httplib2-0.18.0 Bump httplib2 from 0.9.2 to 0.18.0

view details

dependabot[bot]

commit sha 05ca01bb1c6dcfe4d571475c0945c832658e12ba

Bump pyyaml from 3.12 to 5.1 in /1Semester/DR2-TP3 Bumps [pyyaml](https://github.com/yaml/pyyaml) from 3.12 to 5.1. - [Release notes](https://github.com/yaml/pyyaml/releases) - [Changelog](https://github.com/yaml/pyyaml/blob/master/CHANGES) - [Commits](https://github.com/yaml/pyyaml/compare/3.12...5.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in a minute

PR opened Troytu/chat

Bump webpack-dev-server from 1.16.5 to 3.1.11

Bumps webpack-dev-server from 1.16.5 to 3.1.11. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack-dev-server/releases">webpack-dev-server's releases</a>.</em></p> <blockquote> <h2>v3.1.11</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.10...v3.1.11">3.1.11</a> (2018-12-21)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>bin/options:</strong> correct check for color support (<code>options.color</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1555">#1555</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/55398b5">55398b5</a>)</li> <li><strong>package:</strong> update <code>spdy</code> v3.4.1...4.0.0 (assertion error) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1491">#1491</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1563">#1563</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a3a257">7a3a257</a>)</li> <li><strong>Server:</strong> correct <code>node</code> version checks (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1543">#1543</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/927a2b3">927a2b3</a>)</li> <li><strong>Server:</strong> mime type for wasm in contentBase directory (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1575">#1575</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1580">#1580</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/fadae5d">fadae5d</a>)</li> <li>add url for compatibility with webpack@5 (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1598">#1598</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1599">#1599</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/68dd49a">68dd49a</a>)</li> <li>check origin header for websocket connection (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1603">#1603</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/b3217ca">b3217ca</a>)</li> </ul> <h2>v3.1.10</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.9...v3.1.10">2018-10-23</a></h2> <h3>Bug Fixes</h3> <ul> <li><strong>options:</strong> add <code>writeToDisk</code> option to schema (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1520">#1520</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/d2f4902">d2f4902</a>)</li> <li><strong>package:</strong> update <code>sockjs-client</code> v1.1.5...1.3.0 (<code>url-parse</code> vulnerability) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1537">#1537</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e719959">e719959</a>)</li> <li><strong>Server:</strong> set <code>tls.DEFAULT_ECDH_CURVE</code> to <code>'auto'</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1531">#1531</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/c12def3">c12def3</a>)</li> </ul> <h2>v3.1.9</h2> <p>No release notes provided.</p> <h2>v3.1.8</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.7...v3.1.8">2018-09-06</a></h2> <h3>Bug Fixes</h3> <ul> <li><strong>package:</strong> <code>yargs</code> security vulnerability (<code>dependencies</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1492">#1492</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8fb67c9">8fb67c9</a>)</li> <li><strong>utils/createLogger:</strong> ensure <code>quiet</code> always takes precedence (<code>options.quiet</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1486">#1486</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a6ca47">7a6ca47</a>)</li> </ul> <h2>v3.1.7</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.6...v3.1.7">2018-08-29</a></h2> <h3>Bug Fixes</h3> <ul> <li><strong>Server:</strong> don't use <code>spdy</code> on <code>node >= v10.0.0</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1451">#1451</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8ab9eb6">8ab9eb6</a>)</li> </ul> <h2>v3.1.6</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.5...v3.1.6">2018-08-26</a></h2> <h3>Bug Fixes</h3> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md">webpack-dev-server's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.10...v3.1.11">3.1.11</a> (2018-12-21)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>bin/options:</strong> correct check for color support (<code>options.color</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1555">#1555</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/55398b5">55398b5</a>)</li> <li><strong>package:</strong> update <code>spdy</code> v3.4.1...4.0.0 (assertion error) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1491">#1491</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1563">#1563</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a3a257">7a3a257</a>)</li> <li><strong>Server:</strong> correct <code>node</code> version checks (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1543">#1543</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/927a2b3">927a2b3</a>)</li> <li><strong>Server:</strong> mime type for wasm in contentBase directory (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1575">#1575</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1580">#1580</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/fadae5d">fadae5d</a>)</li> <li>add url for compatibility with webpack@5 (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1598">#1598</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1599">#1599</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/68dd49a">68dd49a</a>)</li> <li>check origin header for websocket connection (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1603">#1603</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/b3217ca">b3217ca</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.9...v3.1.10">3.1.10</a> (2018-10-23)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>options:</strong> add <code>writeToDisk</code> option to schema (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1520">#1520</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/d2f4902">d2f4902</a>)</li> <li><strong>package:</strong> update <code>sockjs-client</code> v1.1.5...1.3.0 (<code>url-parse</code> vulnerability) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1537">#1537</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e719959">e719959</a>)</li> <li><strong>Server:</strong> set <code>tls.DEFAULT_ECDH_CURVE</code> to <code>'auto'</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1531">#1531</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/c12def3">c12def3</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.8...v3.1.9">3.1.9</a> (2018-09-24)</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.7...v3.1.8">3.1.8</a> (2018-09-06)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>package:</strong> <code>yargs</code> security vulnerability (<code>dependencies</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1492">#1492</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8fb67c9">8fb67c9</a>)</li> <li><strong>utils/createLogger:</strong> ensure <code>quiet</code> always takes precedence (<code>options.quiet</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1486">#1486</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a6ca47">7a6ca47</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.6...v3.1.7">3.1.7</a> (2018-08-29)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>Server:</strong> don't use <code>spdy</code> on <code>node >= v10.0.0</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1451">#1451</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8ab9eb6">8ab9eb6</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack-dev-server/commit/ff2874f5f3a90e5727434cc10f69ac4d54896033"><code>ff2874f</code></a> chore(release): 3.1.11</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/b3217ca8dc6b371a160b6749b949ab09d7b9f6d7"><code>b3217ca</code></a> fix: check origin header for websocket connection (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1603">#1603</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/68dd49a5e44b270061e4746b2e01bbc72589ca3b"><code>68dd49a</code></a> fix: add url for compatibility with webpack@5 (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1598">#1598</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1599">#1599</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/fadae5da6ba0261cade08164feeaad99b1de6b79"><code>fadae5d</code></a> fix(Server): mime type for wasm in contentBase directory (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1575">#1575</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1580">#1580</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/7a3a2579179b2ca0fd91405d9872ba2c3ed8db3a"><code>7a3a257</code></a> fix(package): update <code>spdy</code> v3.4.1...4.0.0 (assertion error) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1491">#1491</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1563">#1563</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/1fe82dee4eef600946b2601a2d853cffbe65db0a"><code>1fe82de</code></a> ci(travis): Node 11 (on OS X) crashes, use 10 for now (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1588">#1588</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/55398b5de17b9a845b1ee5aaa90bb2002c25ddfb"><code>55398b5</code></a> fix(bin/options): correct check for color support (<code>options.color</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1555">#1555</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/927a2b38d4d3a5d8fd50dfce0343634d46fa8a92"><code>927a2b3</code></a> fix(Server): correct <code>node</code> version checks (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1543">#1543</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/fa96a76e9e5507bbf874044be0d95872768abf5e"><code>fa96a76</code></a> chore(PULL_REQUEST_TEMPLATE): allow features (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1539">#1539</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/fe3219f614ad84afbaab1ecbd1d9aec4ff337d37"><code>fe3219f</code></a> chore(release): 3.1.10</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack-dev-server/compare/v1.16.5...v3.1.11">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~evilebottnawi">evilebottnawi</a>, a new releaser for webpack-dev-server since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1542 -60

0 comment

2 changed files

pr created time in a minute

delete branch Wellers0n/college

delete branch : dependabot/pip/httplib2-0.18.0

delete time in a minute

create barnchTroytu/chat

branch : dependabot/npm_and_yarn/webpack-dev-server-3.1.11

created branch time in a minute

PR opened wwmoraes/alertmanager-telegram-bot

chore(deps-dev): bump @types/node from 14.0.12 to 14.0.22

Bumps @types/node from 14.0.12 to 14.0.22. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+5 -10

0 comment

2 changed files

pr created time in a minute

PR opened victorborg3s/send-ideas-to-your-politician

Bump websocket-extensions from 0.1.3 to 0.1.4

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in a minute

PR opened wwmoraes/alertmanager-telegram-bot

chore(deps): bump ts-jest from 26.1.0 to 26.1.1

Bumps ts-jest from 26.1.0 to 26.1.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kulshekhar/ts-jest/blob/master/CHANGELOG.md">ts-jest's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/kulshekhar/ts-jest/compare/v26.1.0...v26.1.1">26.1.1</a> (2020-06-21)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>compiler:</strong> generate source map correctly when tsconfig <code>mapRoot</code> is set (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1741">#1741</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/01ac417">01ac417</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1718">#1718</a></li> <li><strong>config:</strong> show version warning when using ts-jest without babel (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1729">#1729</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/e512bc0">e512bc0</a>), fixes <a href="https://github-redirect.dependabot.com//github-redirect.dependabot.com/kulshekhar/ts-jest/pull/1678/issues/issuecomment-641930332">#1678-issuecomment-641930332</a>, <a href="https://github-redirect.dependabot.com//github-redirect.dependabot.com/kulshekhar/ts-jest/pull/1678/issues/issuecomment-639528993">#1678-issuecomment-639528993</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kulshekhar/ts-jest/commit/258e5c48ae362336266930cf8ef9eed0be7fee8b"><code>258e5c4</code></a> chore(release): 26.1.1 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1744">#1744</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/a1bc6cb6e43570b9a39fcdf71fabbb3ca654a0ca"><code>a1bc6cb</code></a> test: add unit tests for source map, correct e2e typings (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1743">#1743</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/01ac417de6e057f0078f8f8c43f958fa517db87e"><code>01ac417</code></a> fix(compiler): generate source map correctly when tsconfig <code>mapRoot</code> is set (...</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/3247ae409af4d9e47acf1ac31707b970f829e990"><code>3247ae4</code></a> build(deps-dev): bump eslint-plugin-jsdoc from 27.1.1 to 27.1.2 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1740">#1740</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/2b8fec92fc98e9bdc3b9a5f698de0ed1027dd2ef"><code>2b8fec9</code></a> build(deps-dev): bump @types/react from 16.9.36 to 16.9.38 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1739">#1739</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/d9468fc0050a37aa421bea268bce035cad8a0b1f"><code>d9468fc</code></a> build(deps-dev): bump lint-staged from 10.2.10 to 10.2.11 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1738">#1738</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/e90b1d7b30db882d6e47ec6659a1890718ff2ed9"><code>e90b1d7</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1734">#1734</a> from kulshekhar/dependabot/npm_and_yarn/typescript-e...</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/693335b67e4b416b039570c605826b5cdda18963"><code>693335b</code></a> build(deps-dev): bump @typescript-eslint/eslint-plugin</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/7d69c62f77dbd775a0465c9dcc8bbadcf19dd1ed"><code>7d69c62</code></a> build(deps-dev): bump eslint-plugin-jsdoc from 27.1.0 to 27.1.1 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1737">#1737</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/f5d88e5c9e93dbdc022c35c086b321a54d79a299"><code>f5d88e5</code></a> build(deps-dev): bump eslint-plugin-jsdoc from 27.0.7 to 27.1.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1736">#1736</a>)</li> <li>Additional commits viewable in <a href="https://github.com/kulshekhar/ts-jest/compare/v26.1.0...v26.1.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+5 -5

0 comment

2 changed files

pr created time in a minute

PR opened jdanil/template

Reviewers
chore(deps): bump eslint-plugin-jest-dom from 3.1.1 to 3.1.2

Bumps eslint-plugin-jest-dom from 3.1.1 to 3.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/testing-library/eslint-plugin-jest-dom/releases">eslint-plugin-jest-dom's releases</a>.</em></p> <blockquote> <h2>v3.1.2</h2> <h2><a href="https://github.com/testing-library/eslint-plugin-jest-dom/compare/v3.1.1...v3.1.2">3.1.2</a> (2020-07-10)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>prefer-checked:</strong> don't auto-fix when 2nd argument is a non literal. (<a href="https://github-redirect.dependabot.com/testing-library/eslint-plugin-jest-dom/issues/62">#62</a>) (<a href="https://github.com/testing-library/eslint-plugin-jest-dom/commit/564178bb3837c3a88283842aca6538c95b7710f5">564178b</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/testing-library/eslint-plugin-jest-dom/commit/564178bb3837c3a88283842aca6538c95b7710f5"><code>564178b</code></a> fix(prefer-checked): don't auto-fix when 2nd argument is a non literal. (<a href="https://github-redirect.dependabot.com/testing-library/eslint-plugin-jest-dom/issues/62">#62</a>)</li> <li>See full diff in <a href="https://github.com/testing-library/eslint-plugin-jest-dom/compare/v3.1.1...v3.1.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

</details>

+5 -5

0 comment

2 changed files

pr created time in a minute

PR opened Wellers0n/college

Bump requests from 2.18.4 to 2.20.0 in /1Semester/DR2-TP3

Bumps requests from 2.18.4 to 2.20.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/psf/requests/blob/master/HISTORY.md">requests's changelog</a>.</em></p> <blockquote> <h2>2.20.0 (2018-10-18)</h2> <p><strong>Bugfixes</strong></p> <ul> <li>Content-Type header parsing is now case-insensitive (e.g. charset=utf8 v Charset=utf8).</li> <li>Fixed exception leak where certain redirect urls would raise uncaught urllib3 exceptions.</li> <li>Requests removes Authorization header from requests redirected from https to http on the same hostname. (CVE-2018-18074)</li> <li><code>should_bypass_proxies</code> now handles URIs without hostnames (e.g. files).</li> </ul> <p><strong>Dependencies</strong></p> <ul> <li>Requests now supports urllib3 v1.24.</li> </ul> <p><strong>Deprecations</strong></p> <ul> <li>Requests has officially stopped support for Python 2.6.</li> </ul> <h2>2.19.1 (2018-06-14)</h2> <p><strong>Bugfixes</strong></p> <ul> <li>Fixed issue where status_codes.py's <code>init</code> function failed trying to append to a <code>doc</code> value of <code>None</code>.</li> </ul> <h2>2.19.0 (2018-06-12)</h2> <p><strong>Improvements</strong></p> <ul> <li>Warn user about possible slowdown when using cryptography version < 1.3.4</li> <li>Check for invalid host in proxy URL, before forwarding request to adapter.</li> <li>Fragments are now properly maintained across redirects. (RFC7231 7.1.2)</li> <li>Removed use of cgi module to expedite library load time.</li> <li>Added support for SHA-256 and SHA-512 digest auth algorithms.</li> <li>Minor performance improvement to <code>Request.content</code>.</li> <li>Migrate to using collections.abc for 3.7 compatibility.</li> </ul> <p><strong>Bugfixes</strong></p> <ul> <li>Parsing empty <code>Link</code> headers with <code>parse_header_links()</code> no longer return one bogus entry.</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/psf/requests/commit/bd840450c0d1e9db3bf62382c15d96378cc3a056"><code>bd84045</code></a> v2.20.0</li> <li><a href="https://github.com/psf/requests/commit/7fd9267b3bab1d45f5e4ac0953629c5531ecbc55"><code>7fd9267</code></a> remove final remnants from 2.6</li> <li><a href="https://github.com/psf/requests/commit/6ae8a2189235b62d7c5b2a6b95528750f046097c"><code>6ae8a21</code></a> Add myself to AUTHORS</li> <li><a href="https://github.com/psf/requests/commit/89ab030cdb83a728a30e172bc65d27ba214d2eda"><code>89ab030</code></a> Use comprehensions whenever possible</li> <li><a href="https://github.com/psf/requests/commit/2c6a8426aebd853966747f2c851f551c583cb21a"><code>2c6a842</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/psf/requests/issues/4827">#4827</a> from webmaven/patch-1</li> <li><a href="https://github.com/psf/requests/commit/30be889651e7034eaa56edaf5794d68ffbfde9ed"><code>30be889</code></a> CVE URLs update: www sub-subdomain no longer valid</li> <li><a href="https://github.com/psf/requests/commit/a6cd380c640087218695bc7c62311a4843777e43"><code>a6cd380</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/psf/requests/issues/4765">#4765</a> from requests/encapsulate_urllib3_exc</li> <li><a href="https://github.com/psf/requests/commit/bbdbcc8f0553f112ff68b0950b4128bd8af000fc"><code>bbdbcc8</code></a> wrap url parsing exceptions from urllib3's PoolManager</li> <li><a href="https://github.com/psf/requests/commit/ff0c325014f817095de35013d385e137b111d6e8"><code>ff0c325</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/psf/requests/issues/4805">#4805</a> from jdufresne/https</li> <li><a href="https://github.com/psf/requests/commit/b0ad2499c8641d29affc90f565e6628d333d2a96"><code>b0ad249</code></a> Prefer https:// for URLs throughout project</li> <li>Additional commits viewable in <a href="https://github.com/psf/requests/compare/v2.18.4...v2.20.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in a minute

delete branch Wellers0n/college

delete branch : dependabot/pip/1Semester/DR2-TP3/pyxdg-0.26

delete time in 2 minutes

PR opened marvelopers/React

Bump websocket-extensions from 0.1.3 to 0.1.4 in /modern-react

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 2 minutes

PR opened imroz-19/Tasker

Bump lodash from 3.10.1 to 4.17.13

Bumps lodash from 3.10.1 to 4.17.13. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.0.0</h2> <h1><a href="https://github.com/lodash/lodash/wiki/Changelog#v400">lodash v4.0.0</a></h1> <p>2015 was big year! <a href="https://lodash.com/">Lodash</a> became the <a href="https://gist.github.com/anvaka/8e8fa57c7ee1350e3491#file-01-most-dependent-upon-md">most depended on</a> npm package, passed <a href="http://npm-stat.com/charts.html?package=&author=jdalton">1 billion</a> downloads, & its v3 release saw massive adoption!</p> <p>The year was also one of collaboration, as discussions began on <a href="https://github-redirect.dependabot.com/underdash/underdash/issues/14">merging Lodash & Underscore</a>. Much of Lodash v4 is proofing out the ideas from those discussions. Lodash v4 <strong>would not be possible</strong> without the collaboration & contributions of the Underscore core team. In the spirit of merging our teams have blended with <a href="https://github.com/orgs/lodash/people">several members</a> contributing to both libraries.</p> <p>For 2016 & <a href="https://github.com/lodash/lodash/wiki/Changelog#v400">lodash v4.0.0</a> we wanted to cut loose, push forward, & take things up a notch!</p> <h2>Modern only</h2> <p>With v4 we’re breaking free from <a href="https://github.com/lodash-archive">old projects</a>, old environments, & dropping <a href="https://www.microsoft.com/en-us/WindowsForBusiness/End-of-IE-support">old IE < 9 support</a>!</p> <h2>4 kB Core</h2> <p>Lodash’s kitchen-sink size will continue to grow as new methods & functionality are added. However, we now offer a 4 kB (gzipped) <a href="https://github.com/lodash/lodash/tree/4.0.0/dist">core build</a> that’s compatible with <a href="https://github-redirect.dependabot.com/jashkenas/backbone/issues/3839">Backbone v1.2.4</a> for folks who want Lodash without lugging around the kitchen sink.</p> <h2>More ES6</h2> <p>We’ve continued to embrace ES6 with methods like <a href="https://lodash.com/docs#isSymbol">.isSymbol</a>, added support for cloning & comparing array buffers, maps, sets, & symbols, converting iterators to arrays, & iterable <code>(…)</code>.</p> <p>In addition, we’ve published an <a href="https://github.com/lodash/lodash/tree/4.0.0-es/">es-build</a> & pulled <a href="https://github.com/lodash/babel-plugin-lodash">babel-plugin-lodash</a> into core to make tree-shaking a breeze.</p> <h2>More Modular</h2> <p>Pop quiz! 📣</p> <p>What category path does the <code>bindAll</code> method belong to? Is it</p> <p>A) <code>require('lodash/function/bindAll')</code> B) <code>require('lodash/utility/bindAll')</code> C) <code>require('lodash/util/bindAll')</code></p> <p>Don’t know? Well, with v4 it doesn’t matter because now module paths are as simple as</p> <pre lang="js"><code>var bindAll = require('lodash/bindAll'); </code></pre> <p>We’ve also reduced module complexity making it easier to create smaller bundles. This has helped Lodash adoption with libraries like <a href="https://github-redirect.dependabot.com/caolan/async/pull/996">Async</a> & <a href="https://github-redirect.dependabot.com/rackt/redux/pull/611">Redux</a>!</p> <h2>1st Class FP</h2> <p>With v3 we introduced <a href="https://github.com/lodash-archive/lodash-fp">lodash-fp</a>. We learned a lot & with v4 we decided to <a href="https://github.com/lodash/lodash/wiki/FP-Guide">pull it into core</a>.</p> <p>Now you can get immutable, auto-curried, iteratee-first, data-last methods as simply as</p> <pre lang="js"><code>var _ = require('lodash/fp'); var object = { 'a': 1 }; </tr></table> ... (truncated) </code></pre> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/e37182845f16715a0d1c391c8662d83c55609cee"><code>e371828</code></a> Bump to v4.17.13.</li> <li><a href="https://github.com/lodash/lodash/commit/357e899e685872b4af5403ecc4b2a928f961ae63"><code>357e899</code></a> Rebuild lodash and docs.</li> <li><a href="https://github.com/lodash/lodash/commit/fd9a062d57646450b61f74029315abd4cc834b08"><code>fd9a062</code></a> Bump to v4.17.12.</li> <li><a href="https://github.com/lodash/lodash/commit/e77d68121ff00ba86b53eed5893d35adfe94c9dd"><code>e77d681</code></a> Rebuild lodash and docs.</li> <li><a href="https://github.com/lodash/lodash/commit/629d1865793182cd967196716f4beff223aa4a91"><code>629d186</code></a> Update OpenJS references.</li> <li><a href="https://github.com/lodash/lodash/commit/2406eac542b2a1282be8d812a6d8a45433ade80a"><code>2406eac</code></a> Fix minified build.</li> <li><a href="https://github.com/lodash/lodash/commit/17a34bc5854bb982ef333bfe7ae469f4dfcee0ec"><code>17a34bc</code></a> Fix test bootstrap for core build.</li> <li><a href="https://github.com/lodash/lodash/commit/53838a38f8e4f6204ef2f837fecc4e07d09afe77"><code>53838a3</code></a> Fix tests in older browsers.</li> <li><a href="https://github.com/lodash/lodash/commit/29e258497b5ff45494a85cfa58743517aaeeff52"><code>29e2584</code></a> Fix style:test lint nits.</li> <li><a href="https://github.com/lodash/lodash/commit/8f4d3eb018884d96eb57fba3f724bfff494df724"><code>8f4d3eb</code></a> Update deps.</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/3.10.1...4.17.13">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+34 -15

0 comment

2 changed files

pr created time in 2 minutes

create barnchimroz-19/Tasker

branch : dependabot/npm_and_yarn/lodash-4.17.13

created branch time in 2 minutes

delete branch Wellers0n/college

delete branch : dependabot/npm_and_yarn/firstBlock/my-pitch/websocket-extensions-0.1.4

delete time in 2 minutes

PR opened anonymous-dev-rj/angular-personal-site

Bump npm-registry-fetch from 4.0.4 to 4.0.5

Bumps npm-registry-fetch from 4.0.4 to 4.0.5. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/npm/registry-fetch/commits">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~claudiahdz">claudiahdz</a>, a new releaser for npm-registry-fetch since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

pr created time in 2 minutes

PR opened anonymous-dev-rj/angular-personal-site

Bump websocket-extensions from 0.1.3 to 0.1.4

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 2 minutes

PR opened anonymous-dev-rj/angular-personal-site

Bump jquery from 3.4.1 to 3.5.0

Bumps jquery from 3.4.1 to 3.5.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/jquery/jquery/releases">jquery's releases</a>.</em></p> <blockquote> <h2>jQuery 3.5.0 Released!</h2> <p>See the blog post: <a href="https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/">https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/</a> and the upgrade guide: <a href="https://jquery.com/upgrade-guide/3.5/">https://jquery.com/upgrade-guide/3.5/</a></p> <p><strong>NOTE:</strong> Despite being a minor release, this update includes a breaking change that we had to make to fix <a href="https://github.com/advisories/GHSA-gxr4-xjj5-5px2">a security issue</a> ( <a href="https://nvd.nist.gov/vuln/detail/CVE-2020-11022"><code>CVE-2020-11022</code></a>). Please follow the blog post & the upgrade guide for more details.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jquery/jquery/commit/7a0a850f3d41c0412609c1d32b1e602d4afe2f4e"><code>7a0a850</code></a> 3.5.0</li> <li><a href="https://github.com/jquery/jquery/commit/8570a08f6689223aa06ca8cc51d488c6d81d44f9"><code>8570a08</code></a> Release: Update AUTHORS.txt</li> <li><a href="https://github.com/jquery/jquery/commit/da3dd85b63c4e3a6a768132c2a83a1a6eec24840"><code>da3dd85</code></a> Ajax: Do not execute scripts for unsuccessful HTTP responses</li> <li><a href="https://github.com/jquery/jquery/commit/065143c2e93512eb0c82d1b344b71d06eb7cf01c"><code>065143c</code></a> Ajax: Overwrite s.contentType with content-type header value, if any</li> <li><a href="https://github.com/jquery/jquery/commit/1a4f10ddc37c34c6dc3a451ee451b5c6cf367399"><code>1a4f10d</code></a> Tests: Blacklist one focusin test in IE</li> <li><a href="https://github.com/jquery/jquery/commit/9e15d6b469556eccfa607c5ecf53b20c84529125"><code>9e15d6b</code></a> Event: Use only one focusin/out handler per matching window & document</li> <li><a href="https://github.com/jquery/jquery/commit/966a70909019aa09632c87c0002c522fa4a1e30e"><code>966a709</code></a> Manipulation: Skip the select wrapper for <option> outside of IE 9</li> <li><a href="https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77"><code>1d61fd9</code></a> Manipulation: Make jQuery.htmlPrefilter an identity function</li> <li><a href="https://github.com/jquery/jquery/commit/04bf577e2f961c9dde85ddadc77f71bc7bc671cc"><code>04bf577</code></a> Selector: Update Sizzle from 2.3.4 to 2.3.5</li> <li><a href="https://github.com/jquery/jquery/commit/7506c9ca62a2f3ef773e19385918c31e9d62d412"><code>7506c9c</code></a> Build: Resolve Travis config warnings</li> <li>Additional commits viewable in <a href="https://github.com/jquery/jquery/compare/3.4.1...3.5.0">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mgol">mgol</a>, a new releaser for jquery since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+4 -4

0 comment

2 changed files

pr created time in 2 minutes

PR opened donny-sun/myself-parent

Bump mysql-connector-java from 8.0.15 to 8.0.16

Bumps mysql-connector-java from 8.0.15 to 8.0.16. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/mysql/mysql-connector-j/blob/release/8.0/CHANGES">mysql-connector-java's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h1><a href="https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/">https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/</a></h1> <p>Version 8.0.20</p> <ul> <li> <p>Fix for Bug#30805426, IN CASE OF ISAUTHMETHODSWITCHREQUESTPACKET , TOSERVERS > 1 ARE IGNORED.</p> </li> <li> <p>Fix for Bug#97714 (30570249), Contribution: Expose elapsed time for query interceptor to avoid hacky thread local implementations. Thanks to Matti Sillanpää and Johnathan Crawford for their contribution.</p> </li> <li> <p>Fix for Bug#97724 (30570721), Contribution: Allow '3.' formatted numbers. Thanks to Nick Pollett for his contribution.</p> </li> <li> <p>Fix for Bug#98536 (30877755), SIMPLEDATEFORMAT COULD CACHE A WRONG CALENDAR.</p> </li> <li> <p>Fix for Bug#91112 (28125069), AGAIN WRONG JAVA.SQL.DATE.</p> </li> <li> <p>Fix for Bug#30474158, CONNECTOR/J 8 DOES NOT HONOR THE REQUESTED RESULTSETTYPE SCROLL_INSENSITIVE ETC.</p> </li> <li> <p>Fix for Bug#98445 (30832513), Connection option clientInfoProvider=ClientInfoProviderSP causes NPE.</p> </li> <li> <p>WL#12248, DevAPI: Connection compression.</p> </li> <li> <p>Fix for Bug#30636056, ResultSetUtil.resultSetToMap() can be unsafe to use.</p> </li> <li> <p>Fix for Bug#97757 (30584907), NULLPOINTEREXCEPTION WITH CACHERESULTSETMETADATA=TRUE AND EXECUTEQUERY OF "SET".</p> </li> </ul> <p>Version 8.0.19</p> <ul> <li> <p>WL#13346, Support for mult-host and failover.</p> </li> <li> <p>Fix for Bug#97413 (30477722), DATABASEMETADATA IS BROKEN AFTER SERVER WL#13528.</p> </li> <li> <p>WL#13367, DNS SRV support.</p> </li> <li> <p>WL#12736, DevAPI: Specify TLS ciphers to be used by a client or session.</p> </li> <li> <p>Fix for regression tests broken by Bug#97079 fix.</p> </li> <li> <p>Fix for Bug#96383 (30119545) RS.GETTIMESTAMP() HAS DIFFERENT RESULTS FOR TIME FIELDS WITH USECURSORFETCH=TRUE.</p> </li> <li> <p>Fix for Bug#96059 (29999318), ERROR STREAMING MULTI RESULTSETS WITH MYSQL-CONNECTOR-JAVA 8.0.X.</p> </li> <li> <p>Fix for Bug#96442 (30151808), INCORRECT DATE ERROR WHEN CALLING GETMETADATA ON PREPARED STATEMENT.</p> </li> </ul> <p>Version 8.0.18</p> <ul> <li> <p>WL#13347, Connectors should handle expired password sandbox without SET operations.</p> </li> <li> <p>Fix for Bug#84098 (25223123), endless loop in LoadBalancedAutoCommitInterceptor.</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mysql/mysql-connector-j/commit/34cbc6bc61f72836e26327537a432d6db7c77de6"><code>34cbc6b</code></a> License book updated.</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/793bd554e7e815607a1f325ef998efa8d4a4bef7"><code>793bd55</code></a> Minor fix for tests failing with URL without parameters.</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/58600ccd78f6eeec3a15888f943a0475cd1d470f"><code>58600cc</code></a> WL#12825, Remove third-party libraries from sources and bundles.</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/5aa15d557811bbdf0f23b150f361bb42fb7591cb"><code>5aa15d5</code></a> Fix for Bug#93590 (29054329), javax.net.ssl.SSLException: closing inbound bef...</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/1fecc2ba0dd7e9275fc1961ba8900e9d312bd351"><code>1fecc2b</code></a> Fix for Bug#94414 (29384853), Connector/J RPM package have version number in ...</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/f5d24e32b05337320624788ccb99830171026483"><code>f5d24e3</code></a> Fix for Bug#27786499, REDUNDANT FILES IN DEBIAN PACKAGE FOR DEBIAN9(COMMUNITY...</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/c49db58bbc8b29d0c1cd1bbfeb086b2e3dfa74e6"><code>c49db58</code></a> WL#12246, DevAPI: Prepared statement support.</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/a5c3d29931a43429df84564d9e0c578468711a0d"><code>a5c3d29</code></a> Added definition file for msi building tools.</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/13045c22524afd757de1f1d56339211801aec99e"><code>13045c2</code></a> WL#10839, Adjust c/J tests to the new "ON" default for</li> <li><a href="https://github.com/mysql/mysql-connector-j/commit/2e350a5d66cda9317aa308954bafaf952e8054cb"><code>2e350a5</code></a> Fix for Bug#29329326, PLEASE AVOID SHOW PROCESSLIST IF POSSIBLE.</li> <li>Additional commits viewable in <a href="https://github.com/mysql/mysql-connector-j/compare/8.0.15...8.0.16">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 3 minutes

PR opened imroz-19/Tasker

Bump webpack-dev-server from 1.16.5 to 3.1.11

Bumps webpack-dev-server from 1.16.5 to 3.1.11. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack-dev-server/releases">webpack-dev-server's releases</a>.</em></p> <blockquote> <h2>v3.1.11</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.10...v3.1.11">3.1.11</a> (2018-12-21)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>bin/options:</strong> correct check for color support (<code>options.color</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1555">#1555</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/55398b5">55398b5</a>)</li> <li><strong>package:</strong> update <code>spdy</code> v3.4.1...4.0.0 (assertion error) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1491">#1491</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1563">#1563</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a3a257">7a3a257</a>)</li> <li><strong>Server:</strong> correct <code>node</code> version checks (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1543">#1543</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/927a2b3">927a2b3</a>)</li> <li><strong>Server:</strong> mime type for wasm in contentBase directory (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1575">#1575</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1580">#1580</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/fadae5d">fadae5d</a>)</li> <li>add url for compatibility with webpack@5 (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1598">#1598</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1599">#1599</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/68dd49a">68dd49a</a>)</li> <li>check origin header for websocket connection (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1603">#1603</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/b3217ca">b3217ca</a>)</li> </ul> <h2>v3.1.10</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.9...v3.1.10">2018-10-23</a></h2> <h3>Bug Fixes</h3> <ul> <li><strong>options:</strong> add <code>writeToDisk</code> option to schema (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1520">#1520</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/d2f4902">d2f4902</a>)</li> <li><strong>package:</strong> update <code>sockjs-client</code> v1.1.5...1.3.0 (<code>url-parse</code> vulnerability) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1537">#1537</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e719959">e719959</a>)</li> <li><strong>Server:</strong> set <code>tls.DEFAULT_ECDH_CURVE</code> to <code>'auto'</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1531">#1531</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/c12def3">c12def3</a>)</li> </ul> <h2>v3.1.9</h2> <p>No release notes provided.</p> <h2>v3.1.8</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.7...v3.1.8">2018-09-06</a></h2> <h3>Bug Fixes</h3> <ul> <li><strong>package:</strong> <code>yargs</code> security vulnerability (<code>dependencies</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1492">#1492</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8fb67c9">8fb67c9</a>)</li> <li><strong>utils/createLogger:</strong> ensure <code>quiet</code> always takes precedence (<code>options.quiet</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1486">#1486</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a6ca47">7a6ca47</a>)</li> </ul> <h2>v3.1.7</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.6...v3.1.7">2018-08-29</a></h2> <h3>Bug Fixes</h3> <ul> <li><strong>Server:</strong> don't use <code>spdy</code> on <code>node >= v10.0.0</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1451">#1451</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8ab9eb6">8ab9eb6</a>)</li> </ul> <h2>v3.1.6</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.5...v3.1.6">2018-08-26</a></h2> <h3>Bug Fixes</h3> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md">webpack-dev-server's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.10...v3.1.11">3.1.11</a> (2018-12-21)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>bin/options:</strong> correct check for color support (<code>options.color</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1555">#1555</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/55398b5">55398b5</a>)</li> <li><strong>package:</strong> update <code>spdy</code> v3.4.1...4.0.0 (assertion error) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1491">#1491</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1563">#1563</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a3a257">7a3a257</a>)</li> <li><strong>Server:</strong> correct <code>node</code> version checks (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1543">#1543</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/927a2b3">927a2b3</a>)</li> <li><strong>Server:</strong> mime type for wasm in contentBase directory (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1575">#1575</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1580">#1580</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/fadae5d">fadae5d</a>)</li> <li>add url for compatibility with webpack@5 (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1598">#1598</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1599">#1599</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/68dd49a">68dd49a</a>)</li> <li>check origin header for websocket connection (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1603">#1603</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/b3217ca">b3217ca</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.9...v3.1.10">3.1.10</a> (2018-10-23)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>options:</strong> add <code>writeToDisk</code> option to schema (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1520">#1520</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/d2f4902">d2f4902</a>)</li> <li><strong>package:</strong> update <code>sockjs-client</code> v1.1.5...1.3.0 (<code>url-parse</code> vulnerability) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1537">#1537</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e719959">e719959</a>)</li> <li><strong>Server:</strong> set <code>tls.DEFAULT_ECDH_CURVE</code> to <code>'auto'</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1531">#1531</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/c12def3">c12def3</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.8...v3.1.9">3.1.9</a> (2018-09-24)</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.7...v3.1.8">3.1.8</a> (2018-09-06)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>package:</strong> <code>yargs</code> security vulnerability (<code>dependencies</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1492">#1492</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8fb67c9">8fb67c9</a>)</li> <li><strong>utils/createLogger:</strong> ensure <code>quiet</code> always takes precedence (<code>options.quiet</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1486">#1486</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/7a6ca47">7a6ca47</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.1.6...v3.1.7">3.1.7</a> (2018-08-29)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>Server:</strong> don't use <code>spdy</code> on <code>node >= v10.0.0</code> (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1451">#1451</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8ab9eb6">8ab9eb6</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack-dev-server/commit/ff2874f5f3a90e5727434cc10f69ac4d54896033"><code>ff2874f</code></a> chore(release): 3.1.11</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/b3217ca8dc6b371a160b6749b949ab09d7b9f6d7"><code>b3217ca</code></a> fix: check origin header for websocket connection (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1603">#1603</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/68dd49a5e44b270061e4746b2e01bbc72589ca3b"><code>68dd49a</code></a> fix: add url for compatibility with webpack@5 (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1598">#1598</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1599">#1599</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/fadae5da6ba0261cade08164feeaad99b1de6b79"><code>fadae5d</code></a> fix(Server): mime type for wasm in contentBase directory (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1575">#1575</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1580">#1580</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/7a3a2579179b2ca0fd91405d9872ba2c3ed8db3a"><code>7a3a257</code></a> fix(package): update <code>spdy</code> v3.4.1...4.0.0 (assertion error) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1491">#1491</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1563">#1563</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/1fe82dee4eef600946b2601a2d853cffbe65db0a"><code>1fe82de</code></a> ci(travis): Node 11 (on OS X) crashes, use 10 for now (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1588">#1588</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/55398b5de17b9a845b1ee5aaa90bb2002c25ddfb"><code>55398b5</code></a> fix(bin/options): correct check for color support (<code>options.color</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1555">#1555</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/927a2b38d4d3a5d8fd50dfce0343634d46fa8a92"><code>927a2b3</code></a> fix(Server): correct <code>node</code> version checks (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1543">#1543</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/fa96a76e9e5507bbf874044be0d95872768abf5e"><code>fa96a76</code></a> chore(PULL_REQUEST_TEMPLATE): allow features (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1539">#1539</a>)</li> <li><a href="https://github.com/webpack/webpack-dev-server/commit/fe3219f614ad84afbaab1ecbd1d9aec4ff337d37"><code>fe3219f</code></a> chore(release): 3.1.10</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack-dev-server/compare/v1.16.5...v3.1.11">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~evilebottnawi">evilebottnawi</a>, a new releaser for webpack-dev-server since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3221 -383

0 comment

2 changed files

pr created time in 3 minutes

create barnchimroz-19/Tasker

branch : dependabot/npm_and_yarn/webpack-dev-server-3.1.11

created branch time in 3 minutes

PR opened alessandroargentieri/k8s_api_gw_https

Bump jackson-databind from 2.9.6 to 2.9.10.5 in /source-codes/backend/javalin-example

Bumps jackson-databind from 2.9.6 to 2.9.10.5. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/FasterXML/jackson/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 3 minutes

PR opened y-uka/Todo-List

Bump websocket-extensions from 0.1.3 to 0.1.4

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 3 minutes

push eventmcarpent87/expensify-budgeting-app

McLean Carpenter

commit sha ca2b9161283e2f155d1feddd86882085fbeb8181

updated yarn.lock

view details

McLean Carpenter

commit sha 5baed9394dd64e94262cf7e63b12a0737e65d4fd

removed package.lock.json file

view details

dependabot[bot]

commit sha 413f570ed3a4b0602fe786e9e0f2cb3c58741709

Bump webpack-dev-server from 2.5.1 to 3.1.11 Bumps [webpack-dev-server](https://github.com/webpack/webpack-dev-server) from 2.5.1 to 3.1.11. - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md) - [Commits](https://github.com/webpack/webpack-dev-server/compare/v2.5.1...v3.1.11) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 3 minutes

PR opened imroz-19/Tasker

Bump react-dom from 16.3.2 to 16.3.3

Bumps react-dom from 16.3.2 to 16.3.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/facebook/react/blob/master/CHANGELOG.md">react-dom's changelog</a>.</em></p> <blockquote> <h2>16.3.3 (August 1, 2018)</h2> <h3>React DOM Server</h3> <ul> <li>Fix a <a href="https://reactjs.org/blog/2018/08/01/react-v-16-4-2.html">potential XSS vulnerability when the attacker controls an attribute name</a> (<code>CVE-2018-6341</code>). This fix is available in the latest <code>react-dom@16.4.2</code>, as well as in previous affected minor versions: <code>react-dom@16.0.1</code>, <code>react-dom@16.1.2</code>, <code>react-dom@16.2.1</code>, and <code>react-dom@16.3.3</code>. (<a href="https://github.com/gaearon">@gaearon</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/13302">#13302</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/facebook/react/commits/HEAD/packages/react-dom">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+39 -20

0 comment

2 changed files

pr created time in 3 minutes

create barnchimroz-19/Tasker

branch : dependabot/npm_and_yarn/react-dom-16.3.3

created branch time in 3 minutes

PR opened iamogbz/jest-mock-props

chore(deps-dev): bump @babel/cli from 7.10.3 to 7.10.4

Bumps @babel/cli from 7.10.3 to 7.10.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/releases">@babel/cli's releases</a>.</em></p> <blockquote> <h2>v7.10.4 (2020-06-30)</h2> <p>Thanks <a href="https://github.com/penguingovernor">@penguingovernor</a>, <a href="https://github.com/sajadtorkamani">@sajadtorkamani</a> and <a href="https://github.com/wojtekmaj">@wojtekmaj</a> for their first PRs!</p> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11669">#11669</a> Add <code>delete obj?.#x.a</code> support (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-parser</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11652">#11652</a> fix: implement early errors for record and tuple (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11752">#11752</a> [regression] Don't validate file.comments in <code>@babel/types</code> (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-do-expressions</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11724">#11724</a> fix: do-statementlist behavior (<a href="https://github.com/wlawt">@wlawt</a>)</li> </ul> </li> </ul> <h4>:nail_care: Polish</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11722">#11722</a> Add better parser error when using jsx (<a href="https://github.com/penguingovernor">@penguingovernor</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>babel-core</code>, <code>babel-helper-fixtures</code>, <code>babel-standalone</code>, <code>babel-traverse</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11758">#11758</a> Replace non-inclusive "whitelist" and "blacklist" terms with "allowlist" etc. (<a href="https://github.com/wojtekmaj">@wojtekmaj</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11376">#11376</a> Add @babel/eslint-plugin-development-internal (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>Committers: 7</h4> <ul> <li>Huáng Jùnliàng (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li>Jorge Henriquez (<a href="https://github.com/penguingovernor">@penguingovernor</a>)</li> <li>Kai Cataldo (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> <li>Nicolò Ribaudo (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> <li>Simon Kotwicz (<a href="https://github.com/simonkotwicz">@simonkotwicz</a>)</li> <li>William Law (<a href="https://github.com/wlawt">@wlawt</a>)</li> <li>Wojciech Maj (<a href="https://github.com/wojtekmaj">@wojtekmaj</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/blob/main/CHANGELOG.md">@babel/cli's changelog</a>.</em></p> <blockquote> <h2>v7.10.4 (2020-06-30)</h2> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11669">#11669</a> Add <code>delete obj?.#x.a</code> support (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-parser</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11652">#11652</a> fix: implement early errors for record and tuple (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11752">#11752</a> [regression] Don't validate file.comments in <code>@babel/types</code> (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-do-expressions</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11724">#11724</a> fix: do-statementlist behavior (<a href="https://github.com/wlawt">@wlawt</a>)</li> </ul> </li> </ul> <h4>:nail_care: Polish</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11722">#11722</a> Add better parser error when using jsx (<a href="https://github.com/penguingovernor">@penguingovernor</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>babel-core</code>, <code>babel-helper-fixtures</code>, <code>babel-standalone</code>, <code>babel-traverse</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11758">#11758</a> Replace non-inclusive "whitelist" and "blacklist" terms with "allowlist" etc. (<a href="https://github.com/wojtekmaj">@wojtekmaj</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11376">#11376</a> Add @babel/eslint-plugin-development-internal (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/babel/babel/commit/7fd40d86a0d03ff0e9c3ea16b29689945433d4df"><code>7fd40d8</code></a> v7.10.4</li> <li>See full diff in <a href="https://github.com/babel/babel/commits/v7.10.4/packages/babel-cli">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+4 -4

0 comment

2 changed files

pr created time in 3 minutes

PR opened mozelli/marceloDinizSite

Bump websocket-extensions from 0.1.3 to 0.1.4

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 3 minutes

create barnchiamogbz/jest-mock-props

branch : dependabot/npm_and_yarn/babel/cli-7.10.4

created branch time in 3 minutes

push eventmcarpent87/expensify-budgeting-app

McLean Carpenter

commit sha ca2b9161283e2f155d1feddd86882085fbeb8181

updated yarn.lock

view details

McLean Carpenter

commit sha 5baed9394dd64e94262cf7e63b12a0737e65d4fd

removed package.lock.json file

view details

dependabot[bot]

commit sha 7fe4c01f2e91b683aeafd0e31095690db1cc2bd3

Bump handlebars from 4.1.2 to 4.7.6 Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.1.2 to 4.7.6. - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.7.6) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 3 minutes

delete branch tanaken0515/onw

delete branch : dependabot/bundler/rack-2.2.3

delete time in 3 minutes

PR closed tanaken0515/onw

Bump rack from 2.2.2 to 2.2.3 dependencies ruby

Bumps rack from 2.2.2 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li>See full diff in <a href="https://github.com/rack/rack/compare/v2.2.2...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

1 comment

1 changed file

dependabot[bot]

pr closed time in 3 minutes

pull request commenttanaken0515/onw

Bump rack from 2.2.2 to 2.2.3

Looks like rack is up-to-date now, so this is no longer needed.

dependabot[bot]

comment created time in 3 minutes

push eventmcarpent87/expensify-budgeting-app

McLean Carpenter

commit sha 5baed9394dd64e94262cf7e63b12a0737e65d4fd

removed package.lock.json file

view details

dependabot[bot]

commit sha 9dfffc7a82bba9afea82beefe03d0ed7bb58c139

Bump moment from 2.18.1 to 2.19.3 Bumps [moment](https://github.com/moment/moment) from 2.18.1 to 2.19.3. - [Release notes](https://github.com/moment/moment/releases) - [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md) - [Commits](https://github.com/moment/moment/compare/2.18.1...2.19.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 3 minutes

push eventmcarpent87/expensify-budgeting-app

McLean Carpenter

commit sha ca2b9161283e2f155d1feddd86882085fbeb8181

updated yarn.lock

view details

McLean Carpenter

commit sha 5baed9394dd64e94262cf7e63b12a0737e65d4fd

removed package.lock.json file

view details

dependabot[bot]

commit sha 016981130b2e8939197faff78431000d57ca9ccc

Bump websocket-extensions from 0.1.3 to 0.1.4 Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4. - [Release notes](https://github.com/faye/websocket-extensions-node/releases) - [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 3 minutes

PR opened iamogbz/jest-mock-props

chore(deps-dev): bump @types/node from 14.0.14 to 14.0.22

Bumps @types/node from 14.0.14 to 14.0.22. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+4 -4

0 comment

2 changed files

pr created time in 4 minutes

PR opened Eldurkar/CarND-Capstone-SystemIntegration-P9

Bump tensorflow from 1.3.0 to 1.15.2

Bumps tensorflow from 1.3.0 to 1.15.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tensorflow/tensorflow/releases">tensorflow's releases</a>.</em></p> <blockquote> <h2>TensorFlow 1.15.2</h2> <h1>Release 1.15.2</h1> <p>Note that this release no longer has a single pip package for GPU and CPU. Please see <a href="https://github-redirect.dependabot.com/tensorflow/tensorflow/issues/36347">#36347</a> for history and details</p> <h2>Bug Fixes and Other Changes</h2> <ul> <li>Fixes a security vulnerability where converting a Python string to a <code>tf.float16</code> value produces a segmentation fault (<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5215">CVE-2020-5215</a>)</li> <li>Updates <code>curl</code> to <code>7.66.0</code> to handle <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5482">CVE-2019-5482</a> and <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5481">CVE-2019-5481</a></li> <li>Updates <code>sqlite3</code> to <code>3.30.01</code> to handle <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19646">CVE-2019-19646</a>, <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19645">CVE-2019-19645</a> and <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16168">CVE-2019-16168</a></li> </ul> <h2>TensorFlow 1.15.0</h2> <h1>Release 1.15.0</h1> <p>This is the last 1.x release for TensorFlow. We do not expect to update the 1.x branch with features, although we will issue patch releases to fix vulnerabilities for at least one year.</p> <h2>Major Features and Improvements</h2> <ul> <li>As <a href="https://groups.google.com/a/tensorflow.org/forum/#!topic/developers/iRCt5m4qUz0">announced</a>, <code>tensorflow</code> pip package will by default include GPU support (same as <code>tensorflow-gpu</code> now) for the platforms we currently have GPU support (Linux and Windows). It will work on machines with and without Nvidia GPUs. <code>tensorflow-gpu</code> will still be available, and CPU-only packages can be downloaded at <code>tensorflow-cpu</code> for users who are concerned about package size.</li> <li>TensorFlow 1.15 contains a complete implementation of the 2.0 API in its <code>compat.v2</code> module. It contains a copy of the 1.15 main module (without <code>contrib</code>) in the <code>compat.v1</code> module. TensorFlow 1.15 is able to emulate 2.0 behavior using the <code>enable_v2_behavior()</code> function. This enables writing forward compatible code: by explicitly importing either <code>tensorflow.compat.v1</code> or <code>tensorflow.compat.v2</code>, you can ensure that your code works without modifications against an installation of 1.15 or 2.0.</li> <li><code>EagerTensor</code> now supports numpy buffer interface for tensors.</li> <li>Add toggles <code>tf.enable_control_flow_v2()</code> and <code>tf.disable_control_flow_v2()</code> for enabling/disabling v2 control flow.</li> <li>Enable v2 control flow as part of <code>tf.enable_v2_behavior()</code> and <code>TF2_BEHAVIOR=1</code>.</li> <li>AutoGraph translates Python control flow into TensorFlow expressions, allowing users to write regular Python inside <code>tf.function</code>-decorated functions. AutoGraph is also applied in functions used with <code>tf.data</code>, <code>tf.distribute</code> and <code>tf.keras</code> APIS.</li> <li>Adds <code>enable_tensor_equality()</code>, which switches the behavior such that: <ul> <li>Tensors are no longer hashable.</li> <li>Tensors can be compared with <code>==</code> and <code>!=</code>, yielding a Boolean Tensor with element-wise comparison results. This will be the default behavior in 2.0.</li> </ul> </li> <li>Auto Mixed-Precision graph optimizer simplifies converting models to <code>float16</code> for acceleration on Volta and Turing Tensor Cores. This feature can be enabled by wrapping an optimizer class with <code>tf.train.experimental.enable_mixed_precision_graph_rewrite()</code>.</li> <li>Add environment variable <code>TF_CUDNN_DETERMINISTIC</code>. Setting to "true" or "1" forces the selection of deterministic cuDNN convolution and max-pooling algorithms. When this is enabled, the algorithm selection procedure itself is also deterministic.</li> <li>TensorRT <ul> <li>Migrate TensorRT conversion sources from contrib to compiler directory in preparation for TF 2.0.</li> <li>Add additional, user friendly <code>TrtGraphConverter</code> API for TensorRT conversion.</li> <li>Expand support for TensorFlow operators in TensorRT conversion (e.g. <code>Gather</code>, <code>Slice</code>, <code>Pack</code>, <code>Unpack</code>, <code>ArgMin</code>, <code>ArgMax</code>,<code>DepthSpaceShuffle</code>).</li> <li>Support TensorFlow operator <code>CombinedNonMaxSuppression</code> in TensorRT conversion which significantly accelerates object detection models.</li> </ul> </li> </ul> <h2>Breaking Changes</h2> <ul> <li>Tensorflow code now produces 2 different pip packages: <code>tensorflow_core</code> containing all the code (in the future it will contain only the private implementation) and <code>tensorflow</code> which is a virtual pip package doing forwarding to <code>tensorflow_core</code> (and in the future will contain only the public API of tensorflow). We don't expect this to be breaking, unless you were importing directly from the implementation.</li> <li>TensorFlow 1.15 is built using devtoolset7 (GCC7) on Ubuntu 16. This may lead to ABI incompatibilities with extensions built against earlier versions of TensorFlow.</li> <li>Deprecated the use of <code>constraint=</code> and <code>.constraint</code> with ResourceVariable.</li> <li><code>tf.keras</code>: <ul> <li><code>OMP_NUM_THREADS</code> is no longer used by the default Keras config. To configure the number of threads, use <code>tf.config.threading</code> APIs.</li> <li><code>tf.keras.model.save_model</code> and <code>model.save</code> now defaults to saving a TensorFlow SavedModel.</li> <li><code>keras.backend.resize_images</code> (and consequently, <code>keras.layers.Upsampling2D</code>) behavior has changed, a bug in the resizing implementation was fixed.</li> <li>Layers now default to <code>float32</code>, and automatically cast their inputs to the layer's dtype. If you had a model that used <code>float64</code>, it will probably silently use <code>float32</code> in TensorFlow2, and a warning will be issued that starts with Layer "layer-name" is casting an input tensor from dtype float64 to the layer's dtype of float32. To fix, either set the default dtype to float64 with <code>tf.keras.backend.set_floatx('float64')</code>, or pass <code>dtype='float64'</code> to each of the Layer constructors. See <code>tf.keras.layers.Layer</code> for more information.</li> <li>Some <code>tf.assert_</code> methods now raise assertions at operation creation time (i.e. when this Python line executes) if the input tensors' values are known at that time, not during the session.run(). When this happens, a noop is returned and the input tensors are marked non-feedable. In other words, if they are used as keys in <code>feed_dict</code> argument to <code>session.run()</code>, an error will be raised. Also, because some assert ops don't make it into the graph, the graph structure changes. A different graph can result in different per-op random seeds when they are not given explicitly (most often).</li> </ul> </li> </ul> <h2>Bug Fixes and Other Changes</h2> <ul> <li><code>tf.estimator</code>: <ul> <li><code>tf.keras.estimator.model_to_estimator</code> now supports exporting to <code>tf.train.Checkpoint</code> format, which allows the saved checkpoints to be compatible with <code>model.load_weights</code>.</li> <li>Fix tests in canned estimators.</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/tensorflow/tensorflow/blob/master/RELEASE.md">tensorflow's changelog</a>.</em></p> <blockquote> <h1>Release 1.15.2</h1> <h2>Bug Fixes and Other Changes</h2> <ul> <li>Fixes a security vulnerability where converting a Python string to a <code>tf.float16</code> value produces a segmentation fault (<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5215">CVE-2020-5215</a>)</li> <li>Updates <code>curl</code> to <code>7.66.0</code> to handle <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5482">CVE-2019-5482</a> and <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5481">CVE-2019-5481</a></li> <li>Updates <code>sqlite3</code> to <code>3.30.01</code> to handle <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19646">CVE-2019-19646</a>, <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19645">CVE-2019-19645</a> and <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16168">CVE-2019-16168</a></li> </ul> <h1>Release 2.1.0</h1> <p>TensorFlow 2.1 will be the last TF release supporting Python 2. Python 2 support <a href="https://www.python.org/dev/peps/pep-0373/#update">officially ends an January 1, 2020</a>. <a href="https://groups.google.com/a/tensorflow.org/d/msg/announce/gVwS5RC8mds/dCt1ka2XAAAJ">As announced earlier</a>, TensorFlow will also stop supporting Python 2 starting January 1, 2020, and no more releases are expected in 2019.</p> <h2>Major Features and Improvements</h2> <ul> <li>The <code>tensorflow</code> pip package now includes GPU support by default (same as <code>tensorflow-gpu</code>) for both Linux and Windows. This runs on machines with and without NVIDIA GPUs. <code>tensorflow-gpu</code> is still available, and CPU-only packages can be downloaded at <code>tensorflow-cpu</code> for users who are concerned about package size.</li> <li><strong>Windows users:</strong> Officially-released <code>tensorflow</code> Pip packages are now built with Visual Studio 2019 version 16.4 in order to take advantage of the new <code>/d2ReducedOptimizeHugeFunctions</code> compiler flag. To use these new packages, you must install "Microsoft Visual C++ Redistributable for Visual Studio 2015, 2017 and 2019", available from Microsoft's website <a href="https://support.microsoft.com/help/2977003/the-latest-supported-visual-c-downloads">here</a>. <ul> <li>This does not change the minimum required version for building TensorFlow from source on Windows, but builds enabling <code>EIGEN_STRONG_INLINE</code> can take over 48 hours to compile without this flag. Refer to <code>configure.py</code> for more information about <code>EIGEN_STRONG_INLINE</code> and <code>/d2ReducedOptimizeHugeFunctions</code>.</li> <li>If either of the required DLLs, <code>msvcp140.dll</code> (old) or <code>msvcp140_1.dll</code> (new), are missing on your machine, <code>import tensorflow</code> will print a warning message.</li> </ul> </li> <li>The <code>tensorflow</code> pip package is built with CUDA 10.1 and cuDNN 7.6.</li> <li><code>tf.keras</code> <ul> <li>Experimental support for mixed precision is available on GPUs and Cloud TPUs. See <a href="https://www.tensorflow.org/guide/keras/mixed_precision">usage guide</a>.</li> <li>Introduced the <code>TextVectorization</code> layer, which takes as input raw strings and takes care of text standardization, tokenization, n-gram generation, and vocabulary indexing. See this <a href="https://colab.research.google.com/drive/1RvCnR7h0_l4Ekn5vINWToI9TNJdpUZB3">end-to-end text classification example</a>.</li> <li>Keras <code>.compile</code> <code>.fit</code> <code>.evaluate</code> and <code>.predict</code> are allowed to be outside of the DistributionStrategy scope, as long as the model was constructed inside of a scope.</li> <li>Experimental support for Keras <code>.compile</code>, <code>.fit</code>, <code>.evaluate</code>, and <code>.predict</code> is available for Cloud TPUs, Cloud TPU, for all types of Keras models (sequential, functional and subclassing models).</li> <li>Automatic outside compilation is now enabled for Cloud TPUs. This allows <code>tf.summary</code> to be used more conveniently with Cloud TPUs.</li> <li>Dynamic batch sizes with DistributionStrategy and Keras are supported on Cloud TPUs.</li> <li>Support for <code>.fit</code>, <code>.evaluate</code>, <code>.predict</code> on TPU using numpy data, in addition to <code>tf.data.Dataset</code>.</li> <li>Keras reference implementations for many popular models are available in the TensorFlow <a href="https://github.com/tensorflow/models/tree/master/official">Model Garden</a>.</li> </ul> </li> <li><code>tf.data</code> <ul> <li>Changes rebatching for <code>tf.data datasets</code> + DistributionStrategy for better performance. Note that the dataset also behaves slightly differently, in that the rebatched dataset cardinality will always be a multiple of the number of replicas.</li> <li><code>tf.data.Dataset</code> now supports automatic data distribution and sharding in distributed environments, including on TPU pods.</li> <li>Distribution policies for <code>tf.data.Dataset</code> can now be tuned with 1. <code>tf.data.experimental.AutoShardPolicy(OFF, AUTO, FILE, DATA)</code> 2. <code>tf.data.experimental.ExternalStatePolicy(WARN, IGNORE, FAIL)</code></li> </ul> </li> <li><code>tf.debugging</code> <ul> <li>Add <code>tf.debugging.enable_check_numerics()</code> and <code>tf.debugging.disable_check_numerics()</code> to help debugging the root causes of issues involving infinities and <code>NaN</code>s.</li> </ul> </li> <li><code>tf.distribute</code> <ul> <li>Custom training loop support on TPUs and TPU pods is avaiable through <code>strategy.experimental_distribute_dataset</code>, <code>strategy.experimental_distribute_datasets_from_function</code>, <code>strategy.experimental_run_v2</code>, <code>strategy.reduce</code>.</li> <li>Support for a global distribution strategy through <code>tf.distribute.experimental_set_strategy(),</code> in addition to <code>strategy.scope()</code>.</li> </ul> </li> <li><code>TensorRT</code> <ul> <li><a href="https://developer.nvidia.com/tensorrt#tensorrt-whats-new">TensorRT 6.0</a> is now supported and enabled by default. This adds support for more TensorFlow ops including Conv3D, Conv3DBackpropInputV2, AvgPool3D, MaxPool3D, ResizeBilinear, and ResizeNearestNeighbor. In addition, the TensorFlow-TensorRT python conversion API is exported as <code>tf.experimental.tensorrt.Converter</code>.</li> </ul> </li> <li>Environment variable <code>TF_DETERMINISTIC_OPS</code> has been added. When set to "true" or "1", this environment variable makes <code>tf.nn.bias_add</code> operate deterministically (i.e. reproducibly), but currently only when XLA JIT compilation is <em>not</em> enabled. Setting <code>TF_DETERMINISTIC_OPS</code> to "true" or "1" also makes cuDNN convolution and max-pooling operate deterministically. This makes Keras ConvD and MaxPoolD layers operate deterministically in both the forward and backward directions when running on a CUDA-enabled GPU.</li> </ul> <h2>Breaking Changes</h2> <ul> <li>Deletes <code>Operation.traceback_with_start_lines</code> for which we know of no usages.</li> <li>Removed <code>id</code> from <code>tf.Tensor.repr()</code> as <code>id</code> is not useful other than internal debugging.</li> <li>Some <code>tf.assert_</code> methods now raise assertions at operation creation time if the input tensors' values are known at that time, not during the <code>session.run()</code>. This only changes behavior when the graph execution would have resulted in an error. When this happens, a noop is returned and the input tensors are marked non-feedable. In other words, if they are used as keys in <code>feed_dict</code> argument to <code>session.run()</code>, an error will be raised. Also, because some assert ops don't make it into the graph, the graph structure changes. A different graph can result in different per-op random seeds when they are not given explicitly (most often).</li> <li>The following APIs are not longer experimental: <code>tf.config.list_logical_devices</code>, <code>tf.config.list_physical_devices</code>, <code>tf.config.get_visible_devices</code>, <code>tf.config.set_visible_devices</code>, <code>tf.config.get_logical_device_configuration</code>, <code>tf.config.set_logical_device_configuration</code>.</li> <li><code>tf.config.experimentalVirtualDeviceConfiguration</code> has been renamed to <code>tf.config.LogicalDeviceConfiguration</code>.</li> <li><code>tf.config.experimental_list_devices</code> has been removed, please use <code>tf.config.list_logical_devices</code>.</li> </ul> <h2>Bug Fixes and Other Changes</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/tensorflow/tensorflow/commit/5d80e1e8e6ee999be7db39461e0e79c90403a2e4"><code>5d80e1e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/tensorflow/tensorflow/issues/36215">#36215</a> from tensorflow-jenkins/version-numbers-1.15.2-8214</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/71e9d8f8eddfe283943d62554d4c676bdaf79372"><code>71e9d8f</code></a> Update version numbers to 1.15.2</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/e50120ee34e1e29252f4cbc8ac4cd328e9a9840c"><code>e50120e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/tensorflow/tensorflow/issues/36214">#36214</a> from tensorflow-jenkins/relnotes-1.15.2-2203</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/1a7e9fbf670ef9d03b2f8fdf1ae2276b2d100fab"><code>1a7e9fb</code></a> Releasing 1.15.2 instead of 1.15.1</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/85f7aab93b65ed1fcc589f54d40793b1afb65bf4"><code>85f7aab</code></a> Insert release notes place-fill</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/e75a6d6e6e20df83f19e72e04c7984587d768bd3"><code>e75a6d6</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/tensorflow/tensorflow/issues/36190">#36190</a> from tensorflow/mm-r1.15-fix-v2-build</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/a6d897351e483dfd0418e5cad2900ad9ef24188c"><code>a6d8973</code></a> Use <code>config=v1</code> as this is <code>r1.15</code> branch.</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/fdb85890df5df1e6b3867c842aabb44f561b446d"><code>fdb8589</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/tensorflow/tensorflow/issues/35912">#35912</a> from tensorflow-jenkins/relnotes-1.15.1-31298</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/a6051e8094c5e7d26ec9573a740246c92e4057a2"><code>a6051e8</code></a> Add CVE number for main patch</li> <li><a href="https://github.com/tensorflow/tensorflow/commit/360b2e318af2db59152e35be31c8aab1fb164088"><code>360b2e3</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/tensorflow/tensorflow/issues/34532">#34532</a> from ROCmSoftwarePlatform/r1.15-rccl-upstream-patch</li> <li>Additional commits viewable in <a href="https://github.com/tensorflow/tensorflow/compare/v1.3.0...v1.15.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 4 minutes

delete branch kirkovg/memory-card

delete branch : dependabot/npm_and_yarn/websocket-extensions-0.1.4

delete time in 4 minutes

delete branch melvinalmonte/native-app

delete branch : dependabot/npm_and_yarn/websocket-extensions-0.1.4

delete time in 4 minutes

PR closed melvinalmonte/native-app

Bump websocket-extensions from 0.1.3 to 0.1.4 dependencies

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

1 comment

1 changed file

dependabot[bot]

pr closed time in 4 minutes

pull request commentmelvinalmonte/native-app

Bump websocket-extensions from 0.1.3 to 0.1.4

Looks like websocket-extensions is up-to-date now, so this is no longer needed.

dependabot[bot]

comment created time in 4 minutes

PR opened rodrigoronin/ronin-pokedex

Bump websocket-extensions from 0.1.3 to 0.1.4

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 4 minutes

delete branch kirkovg/memory-card

delete branch : dependabot/npm_and_yarn/npm-registry-fetch-4.0.5

delete time in 4 minutes

PR opened wan-zhiyuan/WZYStudyRecord

Bump websocket-extensions from 0.1.3 to 0.1.4 in /React/ReactHooksDemo/demo01

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 5 minutes

delete branch TheSharks/WildBeast

delete branch : dependabot/npm_and_yarn/eslint-7.4.0

delete time in 5 minutes

delete branch TheSharks/WildBeast

delete branch : dependabot/npm_and_yarn/knex-0.21.2

delete time in 5 minutes

PR opened D-Gr3at/eaglestar

Bump acorn from 5.7.3 to 5.7.4

Bumps acorn from 5.7.3 to 5.7.4. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/acornjs/acorn/commit/6370e90067552022710190319cbbbd8c43001957"><code>6370e90</code></a> Mark version 5.7.4</li> <li><a href="https://github.com/acornjs/acorn/commit/fbc15b1344f6dfb992f67b4bbf1357436247c8a0"><code>fbc15b1</code></a> More rigorously check surrogate pairs in regexp validator</li> <li>See full diff in <a href="https://github.com/acornjs/acorn/compare/5.7.3...5.7.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+4 -4

0 comment

1 changed file

pr created time in 5 minutes

delete branch TheSharks/WildBeast

delete branch : dependabot/npm_and_yarn/sentry/integrations-5.19.1

delete time in 5 minutes

create barnchD-Gr3at/eaglestar

branch : dependabot/npm_and_yarn/acorn-5.7.4

created branch time in 5 minutes

delete branch TheSharks/WildBeast

delete branch : dependabot/npm_and_yarn/sentry/node-5.19.1

delete time in 5 minutes

PR closed TheSharks/WildBeast

Bump eslint from 7.3.1 to 7.4.0 dependencies

Bumps eslint from 7.3.1 to 7.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/eslint/eslint/releases">eslint's releases</a>.</em></p> <blockquote> <h2>v7.4.0</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/f21bad2680406a2671b877f8dba47f4475d0cc64"><code>f21bad2</code></a> Docs: fix description for <code>never</code> in multiline-ternary (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13368">#13368</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13452">#13452</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ada2c891298382f82dfabf37cacd59a1057b2bb7"><code>ada2c89</code></a> Fix: support typescript generics in arrow-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12570">#12570</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13451">#13451</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/89ee01e083f1e02293bf8d1447f9b0fdb3cb9384"><code>89ee01e</code></a> Fix: Revert config cloning (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13447">#13447</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13449">#13449</a>) (薛定谔的猫)</li> <li><a href="https://github.com/eslint/eslint/commit/0a463dbf7cc5a77d442879c9117204d4d38db972"><code>0a463db</code></a> Docs: fix no-multiple-empty-lines examples (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13432">#13432</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13433">#13433</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ff5317e93425f93cfdf808609551ee67b2032543"><code>ff5317e</code></a> Update: Improve array-callback-return report message (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13395">#13395</a>) (Philip (flip) Kromer)</li> <li><a href="https://github.com/eslint/eslint/commit/3f51930eea7cddc921a9ee3cb0328c7b649c0f83"><code>3f51930</code></a> Fix: false positive new with member in no-extra-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12740">#12740</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13375">#13375</a>) (YeonJuan)</li> <li><a href="https://github.com/eslint/eslint/commit/825a5b98d3d84f6eb72b75f7d8519de763cc8898"><code>825a5b9</code></a> Fix: Clarify documentation on implicit ignore behavior (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12348">#12348</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12600">#12600</a>) (Scott Hardin)</li> <li><a href="https://github.com/eslint/eslint/commit/c1391566a5f765f25716527de7b5cdee16c0ce36"><code>c139156</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/0c17e9d2ac307cc288eea6ed7971bd5a7d33321a"><code>0c17e9d</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/c680387ba61f6dccf0390d24a85d871fa83e9fea"><code>c680387</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/bf3939bbd9a33d0eb96cebe6a53bf61c855f9ba6"><code>bf3939b</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/7baf02e983af909800261263f125cca901a5bd0f"><code>7baf02e</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/5c4c3fdfbda18a13223ad36f44283adbfee8c496"><code>5c4c3fd</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/53912aab1856327b399cca26cbb2ba81fd01bfa2"><code>53912aa</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/51e42eca3e87d8259815d736ffe81e604f184057"><code>51e42ec</code></a> Update: Add option "ignoreGlobals" to camelcase rule (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/11716">#11716</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12782">#12782</a>) (David Gasperoni)</li> <li><a href="https://github.com/eslint/eslint/commit/0655f66525d167ca1288167b79a77087cfc8fcf6"><code>0655f66</code></a> Update: improve report location in arrow-body-style (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13424">#13424</a>) (YeonJuan)</li> <li><a href="https://github.com/eslint/eslint/commit/d53d69af08cfe55f42e0a0ca725b1014dabccc21"><code>d53d69a</code></a> Update: prefer-regex-literal detect regex literals (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12840">#12840</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12842">#12842</a>) (Mathias Schreck)</li> <li><a href="https://github.com/eslint/eslint/commit/004adae3f959414f56e44e5884f6221e9dcda142"><code>004adae</code></a> Update: rename id-blacklist to id-denylist (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13407">#13407</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13408">#13408</a>) (Kai Cataldo)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/eslint/eslint/blob/master/CHANGELOG.md">eslint's changelog</a>.</em></p> <blockquote> <p>v7.4.0 - July 3, 2020</p> <ul> <li><a href="https://github.com/eslint/eslint/commit/f21bad2680406a2671b877f8dba47f4475d0cc64"><code>f21bad2</code></a> Docs: fix description for <code>never</code> in multiline-ternary (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13368">#13368</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13452">#13452</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ada2c891298382f82dfabf37cacd59a1057b2bb7"><code>ada2c89</code></a> Fix: support typescript generics in arrow-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12570">#12570</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13451">#13451</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/89ee01e083f1e02293bf8d1447f9b0fdb3cb9384"><code>89ee01e</code></a> Fix: Revert config cloning (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13447">#13447</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13449">#13449</a>) (薛定谔的猫)</li> <li><a href="https://github.com/eslint/eslint/commit/0a463dbf7cc5a77d442879c9117204d4d38db972"><code>0a463db</code></a> Docs: fix no-multiple-empty-lines examples (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13432">#13432</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13433">#13433</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ff5317e93425f93cfdf808609551ee67b2032543"><code>ff5317e</code></a> Update: Improve array-callback-return report message (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13395">#13395</a>) (Philip (flip) Kromer)</li> <li><a href="https://github.com/eslint/eslint/commit/3f51930eea7cddc921a9ee3cb0328c7b649c0f83"><code>3f51930</code></a> Fix: false positive new with member in no-extra-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12740">#12740</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13375">#13375</a>) (YeonJuan)</li> <li><a href="https://github.com/eslint/eslint/commit/825a5b98d3d84f6eb72b75f7d8519de763cc8898"><code>825a5b9</code></a> Fix: Clarify documentation on implicit ignore behavior (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12348">#12348</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12600">#12600</a>) (Scott Hardin)</li> <li><a href="https://github.com/eslint/eslint/commit/c1391566a5f765f25716527de7b5cdee16c0ce36"><code>c139156</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/0c17e9d2ac307cc288eea6ed7971bd5a7d33321a"><code>0c17e9d</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/c680387ba61f6dccf0390d24a85d871fa83e9fea"><code>c680387</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/bf3939bbd9a33d0eb96cebe6a53bf61c855f9ba6"><code>bf3939b</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/7baf02e983af909800261263f125cca901a5bd0f"><code>7baf02e</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/5c4c3fdfbda18a13223ad36f44283adbfee8c496"><code>5c4c3fd</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/53912aab1856327b399cca26cbb2ba81fd01bfa2"><code>53912aa</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/51e42eca3e87d8259815d736ffe81e604f184057"><code>51e42ec</code></a> Update: Add option "ignoreGlobals" to camelcase rule (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/11716">#11716</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12782">#12782</a>) (David Gasperoni)</li> <li><a href="https://github.com/eslint/eslint/commit/0655f66525d167ca1288167b79a77087cfc8fcf6"><code>0655f66</code></a> Update: improve report location in arrow-body-style (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13424">#13424</a>) (YeonJuan)</li> <li><a href="https://github.com/eslint/eslint/commit/d53d69af08cfe55f42e0a0ca725b1014dabccc21"><code>d53d69a</code></a> Update: prefer-regex-literal detect regex literals (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12840">#12840</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12842">#12842</a>) (Mathias Schreck)</li> <li><a href="https://github.com/eslint/eslint/commit/004adae3f959414f56e44e5884f6221e9dcda142"><code>004adae</code></a> Update: rename id-blacklist to id-denylist (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13407">#13407</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13408">#13408</a>) (Kai Cataldo)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/eslint/eslint/commit/30fa423d2808cb0a21835895808a7862d00d2adf"><code>30fa423</code></a> 7.4.0</li> <li><a href="https://github.com/eslint/eslint/commit/ed86b158041ac04e118eadf5d5b8767f6b38e526"><code>ed86b15</code></a> Build: changelog update for 7.4.0</li> <li><a href="https://github.com/eslint/eslint/commit/f21bad2680406a2671b877f8dba47f4475d0cc64"><code>f21bad2</code></a> Docs: fix description for <code>never</code> in multiline-ternary (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13368">#13368</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13452">#13452</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/ada2c891298382f82dfabf37cacd59a1057b2bb7"><code>ada2c89</code></a> Fix: support typescript generics in arrow-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12570">#12570</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13451">#13451</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/89ee01e083f1e02293bf8d1447f9b0fdb3cb9384"><code>89ee01e</code></a> Fix: Revert config cloning (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13447">#13447</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13449">#13449</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/0a463dbf7cc5a77d442879c9117204d4d38db972"><code>0a463db</code></a> Docs: fix no-multiple-empty-lines examples (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13432">#13432</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13433">#13433</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/ff5317e93425f93cfdf808609551ee67b2032543"><code>ff5317e</code></a> Update: Improve array-callback-return report message (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13395">#13395</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/3f51930eea7cddc921a9ee3cb0328c7b649c0f83"><code>3f51930</code></a> Fix: false positive new with member in no-extra-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12740">#12740</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13375">#13375</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/825a5b98d3d84f6eb72b75f7d8519de763cc8898"><code>825a5b9</code></a> Fix: Clarify documentation on implicit ignore behavior (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12348">#12348</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12600">#12600</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/c1391566a5f765f25716527de7b5cdee16c0ce36"><code>c139156</code></a> Sponsors: Sync README with website</li> <li>Additional commits viewable in <a href="https://github.com/eslint/eslint/compare/v7.3.1...v7.4.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+11 -11

1 comment

2 changed files

dependabot[bot]

pr closed time in 5 minutes

PR closed TheSharks/WildBeast

Bump knex from 0.21.1 to 0.21.2 dependencies

Bumps knex from 0.21.1 to 0.21.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/knex/knex/blob/master/CHANGELOG.md">knex's changelog</a>.</em></p> <blockquote> <h1>0.21.2 - 10 July, 2020</h1> <h3>New features:</h3> <ul> <li>Warn user if custom migration source is being reset <a href="https://github-redirect.dependabot.com/knex/knex/issues/3839">#3839</a></li> <li>Prefer <code>void</code> as return type on migration generator ts stub <a href="https://github-redirect.dependabot.com/knex/knex/issues/3865">#3865</a></li> <li>MSSQL: Added the removal of a columns default constraint, before dropping the column <a href="https://github-redirect.dependabot.com/knex/knex/issues/3855">#3855</a></li> </ul> <h3>Typings:</h3> <ul> <li>Fix definition for raw querybuilders <a href="https://github-redirect.dependabot.com/knex/knex/issues/3846">#3846</a></li> </ul> <h3>Test / internal changes:</h3> <ul> <li>Refactor migration logic to use async/await <a href="https://github-redirect.dependabot.com/knex/knex/issues/3838">#3838</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/knex/knex/commit/ff56c28b69fa7e56123eaf693b481a961cfbf848"><code>ff56c28</code></a> Prepare 0.21.2 release (<a href="https://github-redirect.dependabot.com/knex/knex/issues/3917">#3917</a>)</li> <li><a href="https://github.com/knex/knex/commit/da54cf1ecf0acef4b3d3d51cd2656e4faf10d3e9"><code>da54cf1</code></a> Prefer <code>void</code> as return type on migration generator ts stub (<a href="https://github-redirect.dependabot.com/knex/knex/issues/3865">#3865</a>)</li> <li><a href="https://github.com/knex/knex/commit/2bd2ecd91c1694a3f47ab9d6e9dfa8dd48026cac"><code>2bd2ecd</code></a> MSSQL: Added the removal of a columns default constraint, before dropping the...</li> <li><a href="https://github.com/knex/knex/commit/4fa6e1f8c27fac59edb88c75e1f26f801fab2aa8"><code>4fa6e1f</code></a> fix definition for raw querybuilders (bindings should be one object or array,...</li> <li><a href="https://github.com/knex/knex/commit/ee725268d2fbc57603edf700eed0cf3654a1cbe0"><code>ee72526</code></a> Update README to reflect correct handling of native map function (<a href="https://github-redirect.dependabot.com/knex/knex/issues/3704">#3704</a>) (<a href="https://github-redirect.dependabot.com/knex/knex/issues/3845">#3845</a>)</li> <li><a href="https://github.com/knex/knex/commit/8956b444309d3209f88a078575f3ae6fa6bf55f4"><code>8956b44</code></a> Add development Docker configuration (<a href="https://github-redirect.dependabot.com/knex/knex/issues/3840">#3840</a>)</li> <li><a href="https://github.com/knex/knex/commit/c0afe14cdeb5cdd582d7fab8119791dc27b1a650"><code>c0afe14</code></a> Warn user if custom migration source is being reset (<a href="https://github-redirect.dependabot.com/knex/knex/issues/3839">#3839</a>)</li> <li><a href="https://github.com/knex/knex/commit/38f54ce8f01de291a29f1472757da858141d1517"><code>38f54ce</code></a> Refactor migration logic to use async/await. Add test case for using classes ...</li> <li>See full diff in <a href="https://github.com/knex/knex/compare/0.21.1...0.21.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+22 -16

1 comment

2 changed files

dependabot[bot]

pr closed time in 5 minutes

PR closed TheSharks/WildBeast

Bump @sentry/node from 5.19.0 to 5.19.1 dependencies

Bumps @sentry/node from 5.19.0 to 5.19.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-javascript/releases">@sentry/node's releases</a>.</em></p> <blockquote> <h2>5.19.1</h2> <ul> <li>[tracing] fix: APM CDN bundle expose startTransaction (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2726">#2726</a>)</li> <li>[browser] fix: Correctly remove all event listeners (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2725">#2725</a>)</li> <li>[tracing] fix: Add manual <code>DOMStringList</code> typing (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2718">#2718</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-javascript/blob/master/CHANGELOG.md">@sentry/node's changelog</a>.</em></p> <blockquote> <h2>5.19.1</h2> <ul> <li>[tracing] fix: APM CDN bundle expose startTransaction (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2726">#2726</a>)</li> <li>[browser] fix: Correctly remove all event listeners (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2725">#2725</a>)</li> <li>[tracing] fix: Add manual <code>DOMStringList</code> typing (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2718">#2718</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/getsentry/sentry-javascript/commit/da87469721e65dee23d8f94b728643ea705a9359"><code>da87469</code></a> release: 5.19.1</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/c318ff4d8d5fed61b1e32de8a7d29b319f543f1c"><code>c318ff4</code></a> prepare: 5.19.1</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/ea0002233012ce5910dd8df6954761fecf7fcd33"><code>ea00022</code></a> fix: CDN startTransaction (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2726">#2726</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/95edc3c68c1b1b02b1f06afc4d6a56d4bfb3d63c"><code>95edc3c</code></a> fix: Correctly remove all event listeners (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2725">#2725</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/3f12c544bfc26c0d5de12d2fd9ce3d0ab6b378f8"><code>3f12c54</code></a> fix: missing license plugin in es6 rollup configuration (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2722">#2722</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/04ed0c6d507b78f05d9bbb9c1da2fe2a2ccb46f7"><code>04ed0c6</code></a> fix: Update incorrect spelling of <code>cause</code> (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2721">#2721</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/30e710dacdce0790efb0a7a5c3f90fe82eab1ce0"><code>30e710d</code></a> fix(tracing): Add manual DOMStringList typing (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2718">#2718</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/eb225dd155edc6d4fb1d1b77bfc0e4ff2085384d"><code>eb225dd</code></a> Merge release/5.19.0 into master</li> <li>See full diff in <a href="https://github.com/getsentry/sentry-javascript/compare/5.19.0...5.19.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+130 -43

1 comment

2 changed files

dependabot[bot]

pr closed time in 5 minutes

PR closed TheSharks/WildBeast

Bump @sentry/integrations from 5.19.0 to 5.19.1 dependencies

Bumps @sentry/integrations from 5.19.0 to 5.19.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-javascript/releases">@sentry/integrations's releases</a>.</em></p> <blockquote> <h2>5.19.1</h2> <ul> <li>[tracing] fix: APM CDN bundle expose startTransaction (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2726">#2726</a>)</li> <li>[browser] fix: Correctly remove all event listeners (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2725">#2725</a>)</li> <li>[tracing] fix: Add manual <code>DOMStringList</code> typing (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2718">#2718</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-javascript/blob/master/CHANGELOG.md">@sentry/integrations's changelog</a>.</em></p> <blockquote> <h2>5.19.1</h2> <ul> <li>[tracing] fix: APM CDN bundle expose startTransaction (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2726">#2726</a>)</li> <li>[browser] fix: Correctly remove all event listeners (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2725">#2725</a>)</li> <li>[tracing] fix: Add manual <code>DOMStringList</code> typing (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2718">#2718</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/getsentry/sentry-javascript/commit/da87469721e65dee23d8f94b728643ea705a9359"><code>da87469</code></a> release: 5.19.1</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/c318ff4d8d5fed61b1e32de8a7d29b319f543f1c"><code>c318ff4</code></a> prepare: 5.19.1</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/ea0002233012ce5910dd8df6954761fecf7fcd33"><code>ea00022</code></a> fix: CDN startTransaction (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2726">#2726</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/95edc3c68c1b1b02b1f06afc4d6a56d4bfb3d63c"><code>95edc3c</code></a> fix: Correctly remove all event listeners (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2725">#2725</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/3f12c544bfc26c0d5de12d2fd9ce3d0ab6b378f8"><code>3f12c54</code></a> fix: missing license plugin in es6 rollup configuration (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2722">#2722</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/04ed0c6d507b78f05d9bbb9c1da2fe2a2ccb46f7"><code>04ed0c6</code></a> fix: Update incorrect spelling of <code>cause</code> (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2721">#2721</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/30e710dacdce0790efb0a7a5c3f90fe82eab1ce0"><code>30e710d</code></a> fix(tracing): Add manual DOMStringList typing (<a href="https://github-redirect.dependabot.com/getsentry/sentry-javascript/issues/2718">#2718</a>)</li> <li><a href="https://github.com/getsentry/sentry-javascript/commit/eb225dd155edc6d4fb1d1b77bfc0e4ff2085384d"><code>eb225dd</code></a> Merge release/5.19.0 into master</li> <li>See full diff in <a href="https://github.com/getsentry/sentry-javascript/compare/5.19.0...5.19.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+22 -6

1 comment

2 changed files

dependabot[bot]

pr closed time in 5 minutes

pull request commentTheSharks/WildBeast

Bump eslint from 7.3.1 to 7.4.0

Looks like eslint is up-to-date now, so this is no longer needed.

dependabot[bot]

comment created time in 5 minutes

pull request commentTheSharks/WildBeast

Bump knex from 0.21.1 to 0.21.2

Looks like knex is up-to-date now, so this is no longer needed.

dependabot[bot]

comment created time in 5 minutes

pull request commentTheSharks/WildBeast

Bump @sentry/node from 5.19.0 to 5.19.1

Looks like @sentry/node is up-to-date now, so this is no longer needed.

dependabot[bot]

comment created time in 5 minutes

pull request commentTheSharks/WildBeast

Bump @sentry/integrations from 5.19.0 to 5.19.1

Looks like @sentry/integrations is up-to-date now, so this is no longer needed.

dependabot[bot]

comment created time in 5 minutes

PR opened D-Gr3at/eaglestar

Bump phpmailer/phpmailer from 6.1.1 to 6.1.6

Bumps phpmailer/phpmailer from 6.1.1 to 6.1.6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/PHPMailer/PHPMailer/releases">phpmailer/phpmailer's releases</a>.</em></p> <blockquote> <h1>PHPMailer 6.1.6</h1> <p>This is a security release, with some other minor changes. For full details, refer to the <a href="https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-f7hx-fqxw-rvvj">advisory</a>.</p> <ul> <li><strong>SECURITY</strong> Fix insufficient output escaping bug in file attachment names. CVE-2020-13625. Reported by Elar Lang of Clarified Security.</li> <li>Correct Armenian ISO language code from <code>am</code> to <code>hy</code>, add mapping for fallback</li> <li>Use correct timeout property in debug output</li> </ul> <h2>PHPMailer 6.1.5</h2> <p>This is a maintenance release.</p> <ul> <li>Reject invalid custom headers that are empty or contain breaks</li> <li>Various fixes for DKIM issues, especially when using <code>mail()</code> transport</li> <li>Drop the <code>l=</code> length tag from DKIM signatures; it's a mild security risk</li> <li>Ensure CRLF is used explicitly when needed, rather than <code>static::$LE</code></li> <li>Add a method for trimming header content consistently</li> <li>Some minor tweaks to resolve static analyser complaints</li> <li>Check that attachment files are readable both when adding <em>and</em> when sending</li> <li>Work around Outlook bug in mishandling MIME preamble</li> <li>Danish translation improvements</li> </ul> <h2>PHPMailer 6.1.4</h2> <p>The RFC2047 folding added in 6.1.0 was a little overenthusiastic; It will now only happen when header lines exceed 998 chars.</p> <ul> <li>Clean up hostname handling</li> <li>Avoid IDN error on older PHP versions, prep for PHP 8.0</li> <li>Don't force RFC2047 folding unnecessarily</li> <li>Enable tests on full release of PHP 7.4</li> </ul> <h2>PHPMailer 6.1.3</h2> <ul> <li>Fix an issue preventing injected debug handlers from working</li> <li>Fix an issue relating to connection timeout</li> <li>Add <code>SMTP::MAX_REPLY_LENGTH</code> constant</li> <li>Remove some dev dependencies; phpdoc no longer included</li> <li>Fix an issue where non-compliant servers returning bare codes caused an SMTP hang</li> </ul> <h2>PHPMailer 6.1.2</h2> <ul> <li>Substantial revision of DKIM header generation</li> <li>Use shorter hashes for auto-generated CID values</li> <li>Fix format of content-id headers, and only use them for inline attachments</li> <li>Remove all use of XHTML</li> <li>Lots of coding standards cleanup</li> <li>API docs are now auto-updated via GitHub actions</li> <li>Fix header separation bug created in 6.1.1</li> <li>Fix misidentification of background attributes in SVG images in msgHTML</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md">phpmailer/phpmailer's changelog</a>.</em></p> <blockquote> <h2>Version 6.1.6 (May 27th, 2020)</h2> <ul> <li><strong>SECURITY</strong> Fix insufficient output escaping bug in file attachment names. CVE-2020-13625. Reported by Elar Lang of Clarified Security.</li> <li>Correct Armenian ISO language code from <code>am</code> to <code>hy</code>, add mapping for fallback</li> <li>Use correct timeout property in debug output</li> </ul> <h2>Version 6.1.5 (March 14th, 2020)</h2> <ul> <li>Reject invalid custom headers that are empty or contain breaks</li> <li>Various fixes for DKIM issues, especially when using <code>mail()</code> transport</li> <li>Drop the <code>l=</code> length tag from DKIM signatures; it's a mild security risk</li> <li>Ensure CRLF is used explicitly when needed, rather than <code>static::$LE</code></li> <li>Add a method for trimming header content consistently</li> <li>Some minor tweaks to resolve static analyser complaints</li> <li>Check that attachment files are readable both when adding <em>and</em> when sending</li> <li>Work around Outlook bug in mishandling MIME preamble</li> <li>Danish translation improvements</li> </ul> <h2>Version 6.1.4 (December 10th, 2019)</h2> <ul> <li>Clean up hostname handling</li> <li>Avoid IDN error on older PHP versions, prep for PHP 8.0</li> <li>Don't force RFC2047 folding unnecessarily</li> <li>Enable tests on full release of PHP 7.4</li> </ul> <h2>Version 6.1.3 (November 21st, 2019)</h2> <ul> <li>Fix an issue preventing injected debug handlers from working</li> <li>Fix an issue relating to connection timeout</li> <li>Add <code>SMTP::MAX_REPLY_LENGTH</code> constant</li> <li>Remove some dev dependencies; phpdoc no longer included</li> <li>Fix an issue where non-compliant servers returning bare codes caused an SMTP hang</li> </ul> <h2>Version 6.1.2 (November 13th, 2019)</h2> <ul> <li>Substantial revision of DKIM header generation</li> <li>Use shorter hashes for auto-generated CID values</li> <li>Fix format of content-id headers, and only use them for inline attachments</li> <li>Remove all use of XHTML</li> <li>Lots of coding standards cleanup</li> <li>API docs are now auto-updated via GitHub actions</li> <li>Fix header separation bug created in 6.1.1</li> <li>Fix misidentification of background attributes in SVG images in msgHTML</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/c2796cb1cb99d7717290b48c4e6f32cb6c60b7b3"><code>c2796cb</code></a> Merge pull request from GHSA-f7hx-fqxw-rvvj</li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/a7f1b23aae92c8a82e9726551f8238593f714a43"><code>a7f1b23</code></a> Add funding info</li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/5b63b3955c0a10d0933c6c3203df34ae950a6b30"><code>5b63b39</code></a> Fix typos (<a href="https://github-redirect.dependabot.com/PHPMailer/PHPMailer/issues/2037">#2037</a>)</li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/c1c38e32681e1ac431125ab846490bf5b04e2f18"><code>c1c38e3</code></a> Correct Armenian language code</li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/a12c95eb53f84ccaf145a4d892c9964c5916f653"><code>a12c95e</code></a> Use correct timeout property in debug output, clarify debug output, see <a href="https://github-redirect.dependabot.com/PHPMailer/PHPMailer/issues/2018">#2018</a></li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/a8bf068f64a580302026e484ee29511f661b2ad3"><code>a8bf068</code></a> 6.1.5</li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/2e727253d6746a08723ef8fd208823a37e28a1a5"><code>2e72725</code></a> Rewrite and extension of translation (<a href="https://github-redirect.dependabot.com/PHPMailer/PHPMailer/issues/1989">#1989</a>)</li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/55e0b34dea695e437d4a5bf3dfcd88942af4e900"><code>55e0b34</code></a> Fix issue <a href="https://github-redirect.dependabot.com/PHPMailer/PHPMailer/issues/2008">#2008</a> - MS Outlook corrupts formatting multipart EML files (<a href="https://github-redirect.dependabot.com/PHPMailer/PHPMailer/issues/2009">#2009</a>)</li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/a55152fb5a28ec4902d099127883852a65462128"><code>a55152f</code></a> Typo fix for <a href="https://github-redirect.dependabot.com/PHPMailer/PHPMailer/issues/2007">#2007</a></li> <li><a href="https://github.com/PHPMailer/PHPMailer/commit/e9710eece738fce4bb433be0b3f6e83b8efbf9bf"><code>e9710ee</code></a> Update README.md (<a href="https://github-redirect.dependabot.com/PHPMailer/PHPMailer/issues/2004">#2004</a>)</li> <li>Additional commits viewable in <a href="https://github.com/PHPMailer/PHPMailer/compare/v6.1.1...v6.1.6">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+21 -13

0 comment

1 changed file

pr created time in 5 minutes

create barnchD-Gr3at/eaglestar

branch : dependabot/composer/phpmailer/phpmailer-6.1.6

created branch time in 5 minutes

delete branch SivaInspy/TechM-Nissan

delete branch : dependabot/maven/Daily-Health-Checkup/Zeppelin_Notebooks/Json2Flat-master/json2flat/com.fasterxml.jackson.core-jackson-databind-2.9.10.5

delete time in 5 minutes

PR opened m4ta1l/Cortex

Bump webpack-dev-server from 2.11.5 to 3.11.0 in /www

Bumps webpack-dev-server from 2.11.5 to 3.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack-dev-server/releases">webpack-dev-server's releases</a>.</em></p> <blockquote> <h2>v3.11.0</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.3...v3.11.0">3.11.0</a> (2020-05-08)</h2> <h3>Features</h3> <ul> <li>add icons for directory viewer (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2441">#2441</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e953d01ca93764dabe38cedad8e7b9ef4e7f04bc">e953d01</a>)</li> <li>allow multiple <code>contentBasePublicPath</code> paths (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2489">#2489</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/c6bdfe4afb2ce3612c02142954c68a8e657c3915">c6bdfe4</a>)</li> <li>emit progress-update (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2498">#2498</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/4808abd434bac0511da688aee861f7e2d8b0c81c">4808abd</a>), closes <a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1666">#1666</a></li> <li>add invalidate endpoint (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2493">#2493</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/89ffb86cd26425c59e3937ca06a2c804a01b8f1d">89ffb86</a>)</li> <li>allow open option to accept an object (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2492">#2492</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/adeb92e1e37551a6cbf3063942d6c2c7efbdff10">adeb92e</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>do not swallow errors from server (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2512">#2512</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/06583f268b70f4a9715e4b747b1557055c419086">06583f2</a>)</li> <li>security vulnerability in yargs-parser (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2566">#2566</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/41d1d0cf99f53df0569991a85489d3c8bc095af5">41d1d0c</a>)</li> <li>don't crash on setupExitSignals(undefined) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2507">#2507</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/0d5c68143d780e631cdaf09081822fc87d7cb3ba">0d5c681</a>)</li> <li>support entry descriptor (closes <a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2453">#2453</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2465">#2465</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8bbef6adf6ae5f6a3109ecd4a6246223d2f77cb2">8bbef6a</a>)</li> <li>update jquery (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2516">#2516</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/99ccfd84d1db566aa4ed77c441c4674bc4e986df">99ccfd8</a>)</li> </ul> <h2>v3.10.3</h2> <h3><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.2...v3.10.3">3.10.3</a> (2020-02-05)</h3> <h3>Bug Fixes</h3> <ul> <li>forward error requests to the proxy (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2425">#2425</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e291cd4922f66c5c69dfd1fd3839812cfa502de5">e291cd4</a>)</li> </ul> <h2>v3.10.2</h2> <h3><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.0...v3.10.2">3.10.2</a> (2020-01-31)</h3> <h3>Bug Fixes</h3> <ul> <li>fallthrough non <code>GET</code> and <code>HEAD</code> request to routes (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2374">#2374</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/ebe8eca37957a9009f8627e7dfb82699606846de">ebe8eca</a>)</li> <li>add an optional peer dependency on webpack-cli (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2396">#2396</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/aa365dfd7e86c5dca31304bd5dcfe9bb9b767b40">aa365df</a>)</li> <li>add heartbeat for the websocket server (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2404">#2404</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/1a7c8273de5a5b164c63c9919950babd7ecfaadb">1a7c827</a>)</li> </ul> <h2>v3.10.1</h2> <h3><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.0...v3.10.1">3.10.1</a> (2019-12-19)</h3> <h3>Bug Fixes</h3> <ul> <li>ie11 compatibility (<a href="https://github.com/webpack/webpack-dev-server/commit/1306abeb8c5fd125952cdc177fdf38c2c31b3c4f">1306abe</a>)</li> </ul> <h2>v3.10.0</h2> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.9.0...v3.10.0">3.10.0</a> (2019-12-18)</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md">webpack-dev-server's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.3...v3.11.0">3.11.0</a> (2020-05-08)</h2> <h3>Features</h3> <ul> <li>add icons for directory viewer (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2441">#2441</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e953d01ca93764dabe38cedad8e7b9ef4e7f04bc">e953d01</a>)</li> <li>allow multiple <code>contentBasePublicPath</code> paths (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2489">#2489</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/c6bdfe4afb2ce3612c02142954c68a8e657c3915">c6bdfe4</a>)</li> <li>emit progress-update (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2498">#2498</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/4808abd434bac0511da688aee861f7e2d8b0c81c">4808abd</a>), closes <a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/1666">#1666</a></li> <li>add invalidate endpoint (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2493">#2493</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/89ffb86cd26425c59e3937ca06a2c804a01b8f1d">89ffb86</a>)</li> <li>allow open option to accept an object (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2492">#2492</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/adeb92e1e37551a6cbf3063942d6c2c7efbdff10">adeb92e</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>do not swallow errors from server (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2512">#2512</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/06583f268b70f4a9715e4b747b1557055c419086">06583f2</a>)</li> <li>security vulnerability in yargs-parser (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2566">#2566</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/41d1d0cf99f53df0569991a85489d3c8bc095af5">41d1d0c</a>)</li> <li>don't crash on setupExitSignals(undefined) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2507">#2507</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/0d5c68143d780e631cdaf09081822fc87d7cb3ba">0d5c681</a>)</li> <li>support entry descriptor (closes <a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2453">#2453</a>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2465">#2465</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/8bbef6adf6ae5f6a3109ecd4a6246223d2f77cb2">8bbef6a</a>)</li> <li>update jquery (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2516">#2516</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/99ccfd84d1db566aa4ed77c441c4674bc4e986df">99ccfd8</a>)</li> </ul> <h3><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.2...v3.10.3">3.10.3</a> (2020-02-05)</h3> <h3>Bug Fixes</h3> <ul> <li>forward error requests to the proxy (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2425">#2425</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/e291cd4922f66c5c69dfd1fd3839812cfa502de5">e291cd4</a>)</li> </ul> <h3><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.0...v3.10.2">3.10.2</a> (2020-01-31)</h3> <h3>Bug Fixes</h3> <ul> <li>fallthrough non <code>GET</code> and <code>HEAD</code> request to routes (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2374">#2374</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/ebe8eca37957a9009f8627e7dfb82699606846de">ebe8eca</a>)</li> <li>add an optional peer dependency on webpack-cli (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2396">#2396</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/aa365dfd7e86c5dca31304bd5dcfe9bb9b767b40">aa365df</a>)</li> <li>add heartbeat for the websocket server (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2404">#2404</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/1a7c8273de5a5b164c63c9919950babd7ecfaadb">1a7c827</a>)</li> </ul> <h3><a href="https://github.com/webpack/webpack-dev-server/compare/v3.10.0...v3.10.1">3.10.1</a> (2019-12-19)</h3> <h3>Bug Fixes</h3> <ul> <li>ie11 compatibility (<a href="https://github.com/webpack/webpack-dev-server/commit/1306abeb8c5fd125952cdc177fdf38c2c31b3c4f">1306abe</a>)</li> </ul> <h2><a href="https://github.com/webpack/webpack-dev-server/compare/v3.9.0...v3.10.0">3.10.0</a> (2019-12-18)</h2> <h3>Features</h3> <ul> <li><strong>client:</strong> allow sock port to use location's port (<code>sockPort: 'location'</code>) (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2341">#2341</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/dc10d0647413ad57814b684b5f6ef3659531f0f6">dc10d06</a>)</li> <li><strong>server:</strong> add <code>contentBasePublicPath</code> option (<a href="https://github-redirect.dependabot.com/webpack/webpack-dev-server/issues/2150">#2150</a>) (<a href="https://github.com/webpack/webpack-dev-server/commit/cee700d59aff644a499ee310c4a32d5c5693e559">cee700d</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/webpack/webpack-dev-server/commits/v3.11.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 5 minutes

more