profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/mddubey/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Mritunjay Dubey mddubey @thoughtworks Bengaluru The woods are lovely, dark and deep, But I have bugs to fix and introduce few before I sleep. 👻

ICT4H/bahmni-shiny 0

Shiny web app for exploring and viewing Bahmni data interactively

KajalJadhav/StudDetails 0

Repository for web App Student Details

kumarRaj/stocks 0

A simple app use to keep tab of your stocks, sale purchase.

mddubey/ant-demo-classroom 0

A repo to demo Ant with Java and Junit 4 in the STEP classroom.

mddubey/aws-cicd 0

Learning

pull request commentBahmni/openmrs-module-appointments-frontend

Bump postcss from 7.0.18 to 7.0.36

CLA assistant check <br/>Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.<br/><sub>You have signed the CLA already but the status is still pending? Let us recheck it.</sub>

dependabot[bot]

comment created time in a day

PR opened Bahmni/openmrs-module-appointments-frontend

Bump postcss from 7.0.18 to 7.0.36

Bumps postcss from 7.0.18 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add <a href="https://github.com/postcss/postcss/wiki/PostCSS-8-for-end-users">migration guide link</a> to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by <a href="https://github.com/emzoumpo"><code>@​emzoumpo</code></a>).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by <a href="https://github.com/tomrav"><code>@​tomrav</code></a>)</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/keithamus"><code>@​keithamus</code></a>).</li> </ul> <h2>7.0.23</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.22</h2> <ul> <li>Add funding link for <code>npm fund</code>.</li> </ul> <h2>7.0.21</h2> <ul> <li>Revert passing <code>nodes</code> property to node constructor.</li> </ul> <h2>7.0.20</h2> <ul> <li>Allow to pass PostCSS’s nodes in <code>nodes</code> property to node constructor.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by Emmanouil Zoumpoulakis).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by Tom Raviv).</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by Keith Cirkel).</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li><a href="https://github.com/postcss/postcss/commit/12832f3d203474bd273bd06bd3b2407567bfe09e"><code>12832f3</code></a> Release 7.0.35 version</li> <li><a href="https://github.com/postcss/postcss/commit/4455ef6baf84ceea87cb662131f95d798063896c"><code>4455ef6</code></a> Use OpenCollective in funding</li> <li><a href="https://github.com/postcss/postcss/commit/e867c794b5d646839350dd4b76f3cc81423413e6"><code>e867c79</code></a> Add migration guide to PostCSS 8 error</li> <li><a href="https://github.com/postcss/postcss/commit/32a22a98bc4de9c7a2489041ceae24eedc62144f"><code>32a22a9</code></a> Release 7.0.34 version</li> <li><a href="https://github.com/postcss/postcss/commit/22939829688574b9acdbd29106ca2ec9470b2b17"><code>2293982</code></a> Lock build targets</li> <li><a href="https://github.com/postcss/postcss/commit/2c3a111a940b373a60fae196e63931b3b6e9d8ca"><code>2c3a111</code></a> Release 7.0.33 version</li> <li><a href="https://github.com/postcss/postcss/commit/4105f21b48d75847e822e89746633792c478922b"><code>4105f21</code></a> Use yaspeller instead of yaspeller-ci</li> <li><a href="https://github.com/postcss/postcss/commit/c8d02a0da503f9fa5d96a854a2c9244710c18c72"><code>c8d02a0</code></a> Revert yaspeller-ci removal</li> <li>Additional commits viewable in <a href="https://github.com/postcss/postcss/compare/7.0.18...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+4 -4

0 comment

1 changed file

pr created time in a day

PR opened openmrs/openmrs-esm-refapp-navigation

Bump postcss from 7.0.17 to 7.0.36

Bumps postcss from 7.0.17 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add <a href="https://github.com/postcss/postcss/wiki/PostCSS-8-for-end-users">migration guide link</a> to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by <a href="https://github.com/emzoumpo"><code>@​emzoumpo</code></a>).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by <a href="https://github.com/tomrav"><code>@​tomrav</code></a>)</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/keithamus"><code>@​keithamus</code></a>).</li> </ul> <h2>7.0.23</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.22</h2> <ul> <li>Add funding link for <code>npm fund</code>.</li> </ul> <h2>7.0.21</h2> <ul> <li>Revert passing <code>nodes</code> property to node constructor.</li> </ul> <h2>7.0.20</h2> <ul> <li>Allow to pass PostCSS’s nodes in <code>nodes</code> property to node constructor.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by Emmanouil Zoumpoulakis).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by Tom Raviv).</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by Keith Cirkel).</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li><a href="https://github.com/postcss/postcss/commit/12832f3d203474bd273bd06bd3b2407567bfe09e"><code>12832f3</code></a> Release 7.0.35 version</li> <li><a href="https://github.com/postcss/postcss/commit/4455ef6baf84ceea87cb662131f95d798063896c"><code>4455ef6</code></a> Use OpenCollective in funding</li> <li><a href="https://github.com/postcss/postcss/commit/e867c794b5d646839350dd4b76f3cc81423413e6"><code>e867c79</code></a> Add migration guide to PostCSS 8 error</li> <li><a href="https://github.com/postcss/postcss/commit/32a22a98bc4de9c7a2489041ceae24eedc62144f"><code>32a22a9</code></a> Release 7.0.34 version</li> <li><a href="https://github.com/postcss/postcss/commit/22939829688574b9acdbd29106ca2ec9470b2b17"><code>2293982</code></a> Lock build targets</li> <li><a href="https://github.com/postcss/postcss/commit/2c3a111a940b373a60fae196e63931b3b6e9d8ca"><code>2c3a111</code></a> Release 7.0.33 version</li> <li><a href="https://github.com/postcss/postcss/commit/4105f21b48d75847e822e89746633792c478922b"><code>4105f21</code></a> Use yaspeller instead of yaspeller-ci</li> <li><a href="https://github.com/postcss/postcss/commit/c8d02a0da503f9fa5d96a854a2c9244710c18c72"><code>c8d02a0</code></a> Revert yaspeller-ci removal</li> <li>Additional commits viewable in <a href="https://github.com/postcss/postcss/compare/7.0.17...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in a day

PR opened openmrs/openmrs-esm-refapp-styleguide

Bump postcss from 7.0.18 to 7.0.36

Bumps postcss from 7.0.18 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add <a href="https://github.com/postcss/postcss/wiki/PostCSS-8-for-end-users">migration guide link</a> to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by <a href="https://github.com/emzoumpo"><code>@​emzoumpo</code></a>).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by <a href="https://github.com/tomrav"><code>@​tomrav</code></a>)</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/keithamus"><code>@​keithamus</code></a>).</li> </ul> <h2>7.0.23</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.22</h2> <ul> <li>Add funding link for <code>npm fund</code>.</li> </ul> <h2>7.0.21</h2> <ul> <li>Revert passing <code>nodes</code> property to node constructor.</li> </ul> <h2>7.0.20</h2> <ul> <li>Allow to pass PostCSS’s nodes in <code>nodes</code> property to node constructor.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by Emmanouil Zoumpoulakis).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by Tom Raviv).</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by Keith Cirkel).</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li><a href="https://github.com/postcss/postcss/commit/12832f3d203474bd273bd06bd3b2407567bfe09e"><code>12832f3</code></a> Release 7.0.35 version</li> <li><a href="https://github.com/postcss/postcss/commit/4455ef6baf84ceea87cb662131f95d798063896c"><code>4455ef6</code></a> Use OpenCollective in funding</li> <li><a href="https://github.com/postcss/postcss/commit/e867c794b5d646839350dd4b76f3cc81423413e6"><code>e867c79</code></a> Add migration guide to PostCSS 8 error</li> <li><a href="https://github.com/postcss/postcss/commit/32a22a98bc4de9c7a2489041ceae24eedc62144f"><code>32a22a9</code></a> Release 7.0.34 version</li> <li><a href="https://github.com/postcss/postcss/commit/22939829688574b9acdbd29106ca2ec9470b2b17"><code>2293982</code></a> Lock build targets</li> <li><a href="https://github.com/postcss/postcss/commit/2c3a111a940b373a60fae196e63931b3b6e9d8ca"><code>2c3a111</code></a> Release 7.0.33 version</li> <li><a href="https://github.com/postcss/postcss/commit/4105f21b48d75847e822e89746633792c478922b"><code>4105f21</code></a> Use yaspeller instead of yaspeller-ci</li> <li><a href="https://github.com/postcss/postcss/commit/c8d02a0da503f9fa5d96a854a2c9244710c18c72"><code>c8d02a0</code></a> Revert yaspeller-ci removal</li> <li>Additional commits viewable in <a href="https://github.com/postcss/postcss/compare/7.0.18...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in a day

PR opened openmrs/openmrs-esm-user-dashboard-widgets

Bump postcss from 7.0.23 to 7.0.36

Bumps postcss from 7.0.23 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add <a href="https://github.com/postcss/postcss/wiki/PostCSS-8-for-end-users">migration guide link</a> to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by <a href="https://github.com/emzoumpo"><code>@​emzoumpo</code></a>).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by <a href="https://github.com/tomrav"><code>@​tomrav</code></a>)</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/keithamus"><code>@​keithamus</code></a>).</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by Emmanouil Zoumpoulakis).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by Tom Raviv).</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by Keith Cirkel).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li><a href="https://github.com/postcss/postcss/commit/12832f3d203474bd273bd06bd3b2407567bfe09e"><code>12832f3</code></a> Release 7.0.35 version</li> <li><a href="https://github.com/postcss/postcss/commit/4455ef6baf84ceea87cb662131f95d798063896c"><code>4455ef6</code></a> Use OpenCollective in funding</li> <li><a href="https://github.com/postcss/postcss/commit/e867c794b5d646839350dd4b76f3cc81423413e6"><code>e867c79</code></a> Add migration guide to PostCSS 8 error</li> <li><a href="https://github.com/postcss/postcss/commit/32a22a98bc4de9c7a2489041ceae24eedc62144f"><code>32a22a9</code></a> Release 7.0.34 version</li> <li><a href="https://github.com/postcss/postcss/commit/22939829688574b9acdbd29106ca2ec9470b2b17"><code>2293982</code></a> Lock build targets</li> <li><a href="https://github.com/postcss/postcss/commit/2c3a111a940b373a60fae196e63931b3b6e9d8ca"><code>2c3a111</code></a> Release 7.0.33 version</li> <li><a href="https://github.com/postcss/postcss/commit/4105f21b48d75847e822e89746633792c478922b"><code>4105f21</code></a> Use yaspeller instead of yaspeller-ci</li> <li><a href="https://github.com/postcss/postcss/commit/c8d02a0da503f9fa5d96a854a2c9244710c18c72"><code>c8d02a0</code></a> Revert yaspeller-ci removal</li> <li>Additional commits viewable in <a href="https://github.com/postcss/postcss/compare/7.0.23...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in a day

PR opened openmrs/openmrs-esm-user-dashboard

Bump postcss from 7.0.17 to 7.0.36

Bumps postcss from 7.0.17 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add <a href="https://github.com/postcss/postcss/wiki/PostCSS-8-for-end-users">migration guide link</a> to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by <a href="https://github.com/emzoumpo"><code>@​emzoumpo</code></a>).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by <a href="https://github.com/tomrav"><code>@​tomrav</code></a>)</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/keithamus"><code>@​keithamus</code></a>).</li> </ul> <h2>7.0.23</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.22</h2> <ul> <li>Add funding link for <code>npm fund</code>.</li> </ul> <h2>7.0.21</h2> <ul> <li>Revert passing <code>nodes</code> property to node constructor.</li> </ul> <h2>7.0.20</h2> <ul> <li>Allow to pass PostCSS’s nodes in <code>nodes</code> property to node constructor.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by Emmanouil Zoumpoulakis).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by Tom Raviv).</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by Keith Cirkel).</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li><a href="https://github.com/postcss/postcss/commit/12832f3d203474bd273bd06bd3b2407567bfe09e"><code>12832f3</code></a> Release 7.0.35 version</li> <li><a href="https://github.com/postcss/postcss/commit/4455ef6baf84ceea87cb662131f95d798063896c"><code>4455ef6</code></a> Use OpenCollective in funding</li> <li><a href="https://github.com/postcss/postcss/commit/e867c794b5d646839350dd4b76f3cc81423413e6"><code>e867c79</code></a> Add migration guide to PostCSS 8 error</li> <li><a href="https://github.com/postcss/postcss/commit/32a22a98bc4de9c7a2489041ceae24eedc62144f"><code>32a22a9</code></a> Release 7.0.34 version</li> <li><a href="https://github.com/postcss/postcss/commit/22939829688574b9acdbd29106ca2ec9470b2b17"><code>2293982</code></a> Lock build targets</li> <li><a href="https://github.com/postcss/postcss/commit/2c3a111a940b373a60fae196e63931b3b6e9d8ca"><code>2c3a111</code></a> Release 7.0.33 version</li> <li><a href="https://github.com/postcss/postcss/commit/4105f21b48d75847e822e89746633792c478922b"><code>4105f21</code></a> Use yaspeller instead of yaspeller-ci</li> <li><a href="https://github.com/postcss/postcss/commit/c8d02a0da503f9fa5d96a854a2c9244710c18c72"><code>c8d02a0</code></a> Revert yaspeller-ci removal</li> <li>Additional commits viewable in <a href="https://github.com/postcss/postcss/compare/7.0.17...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in a day

PR opened mddubey/bahmni-openmrs-appointments

Bump postcss from 7.0.18 to 7.0.36

Bumps postcss from 7.0.18 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add <a href="https://github.com/postcss/postcss/wiki/PostCSS-8-for-end-users">migration guide link</a> to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by <a href="https://github.com/emzoumpo"><code>@​emzoumpo</code></a>).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by <a href="https://github.com/tomrav"><code>@​tomrav</code></a>)</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/keithamus"><code>@​keithamus</code></a>).</li> </ul> <h2>7.0.23</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.22</h2> <ul> <li>Add funding link for <code>npm fund</code>.</li> </ul> <h2>7.0.21</h2> <ul> <li>Revert passing <code>nodes</code> property to node constructor.</li> </ul> <h2>7.0.20</h2> <ul> <li>Allow to pass PostCSS’s nodes in <code>nodes</code> property to node constructor.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by Emmanouil Zoumpoulakis).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by Tom Raviv).</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by Keith Cirkel).</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li><a href="https://github.com/postcss/postcss/commit/12832f3d203474bd273bd06bd3b2407567bfe09e"><code>12832f3</code></a> Release 7.0.35 version</li> <li><a href="https://github.com/postcss/postcss/commit/4455ef6baf84ceea87cb662131f95d798063896c"><code>4455ef6</code></a> Use OpenCollective in funding</li> <li><a href="https://github.com/postcss/postcss/commit/e867c794b5d646839350dd4b76f3cc81423413e6"><code>e867c79</code></a> Add migration guide to PostCSS 8 error</li> <li><a href="https://github.com/postcss/postcss/commit/32a22a98bc4de9c7a2489041ceae24eedc62144f"><code>32a22a9</code></a> Release 7.0.34 version</li> <li><a href="https://github.com/postcss/postcss/commit/22939829688574b9acdbd29106ca2ec9470b2b17"><code>2293982</code></a> Lock build targets</li> <li><a href="https://github.com/postcss/postcss/commit/2c3a111a940b373a60fae196e63931b3b6e9d8ca"><code>2c3a111</code></a> Release 7.0.33 version</li> <li><a href="https://github.com/postcss/postcss/commit/4105f21b48d75847e822e89746633792c478922b"><code>4105f21</code></a> Use yaspeller instead of yaspeller-ci</li> <li><a href="https://github.com/postcss/postcss/commit/c8d02a0da503f9fa5d96a854a2c9244710c18c72"><code>c8d02a0</code></a> Revert yaspeller-ci removal</li> <li>Additional commits viewable in <a href="https://github.com/postcss/postcss/compare/7.0.18...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+9 -9

0 comment

1 changed file

pr created time in a day

PR opened mddubey/openmrs-bed-management-ui

Bump postcss from 7.0.17 to 7.0.36

Bumps postcss from 7.0.17 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add <a href="https://github.com/postcss/postcss/wiki/PostCSS-8-for-end-users">migration guide link</a> to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by <a href="https://github.com/emzoumpo"><code>@​emzoumpo</code></a>).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/nex3"><code>@​nex3</code></a>)</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by <a href="https://github.com/tomrav"><code>@​tomrav</code></a>)</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by <a href="https://github.com/keithamus"><code>@​keithamus</code></a>).</li> </ul> <h2>7.0.23</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.22</h2> <ul> <li>Add funding link for <code>npm fund</code>.</li> </ul> <h2>7.0.21</h2> <ul> <li>Revert passing <code>nodes</code> property to node constructor.</li> </ul> <h2>7.0.20</h2> <ul> <li>Allow to pass PostCSS’s nodes in <code>nodes</code> property to node constructor.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> <h2>7.0.35</h2> <ul> <li>Add migration guide link to PostCSS 8 error text.</li> </ul> <h2>7.0.34</h2> <ul> <li>Fix compatibility with <code>postcss-scss</code> 2.</li> </ul> <h2>7.0.33</h2> <ul> <li>Add error message for PostCSS 8 plugins.</li> </ul> <h2>7.0.32</h2> <ul> <li>Fix error message (by <a href="https://github.com/admosity"><code>@​admosity</code></a>).</li> </ul> <h2>7.0.31</h2> <ul> <li>Use only the latest source map annotation (by Emmanouil Zoumpoulakis).</li> </ul> <h2>7.0.30</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.29</h2> <ul> <li>Update <code>Processor#version</code>.</li> </ul> <h2>7.0.28</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.27</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.26</h2> <ul> <li>Fix TypeScript definition (by Natalie Weizenbaum).</li> </ul> <h2>7.0.25</h2> <ul> <li>Fix absolute path support for Windows (by Tom Raviv).</li> </ul> <h2>7.0.24</h2> <ul> <li>Fix TypeScript definition (by Keith Cirkel).</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li><a href="https://github.com/postcss/postcss/commit/12832f3d203474bd273bd06bd3b2407567bfe09e"><code>12832f3</code></a> Release 7.0.35 version</li> <li><a href="https://github.com/postcss/postcss/commit/4455ef6baf84ceea87cb662131f95d798063896c"><code>4455ef6</code></a> Use OpenCollective in funding</li> <li><a href="https://github.com/postcss/postcss/commit/e867c794b5d646839350dd4b76f3cc81423413e6"><code>e867c79</code></a> Add migration guide to PostCSS 8 error</li> <li><a href="https://github.com/postcss/postcss/commit/32a22a98bc4de9c7a2489041ceae24eedc62144f"><code>32a22a9</code></a> Release 7.0.34 version</li> <li><a href="https://github.com/postcss/postcss/commit/22939829688574b9acdbd29106ca2ec9470b2b17"><code>2293982</code></a> Lock build targets</li> <li><a href="https://github.com/postcss/postcss/commit/2c3a111a940b373a60fae196e63931b3b6e9d8ca"><code>2c3a111</code></a> Release 7.0.33 version</li> <li><a href="https://github.com/postcss/postcss/commit/4105f21b48d75847e822e89746633792c478922b"><code>4105f21</code></a> Use yaspeller instead of yaspeller-ci</li> <li><a href="https://github.com/postcss/postcss/commit/c8d02a0da503f9fa5d96a854a2c9244710c18c72"><code>c8d02a0</code></a> Revert yaspeller-ci removal</li> <li>Additional commits viewable in <a href="https://github.com/postcss/postcss/compare/7.0.17...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+33 -14

0 comment

1 changed file

pr created time in a day

delete branch ProjectEKA/health-information-user

delete branch : dependabot/gradle/ca.uhn.hapi.fhir-hapi-fhir-structures-r4-5.4.0

delete time in 3 days

PR closed ProjectEKA/health-information-user

Bump hapi-fhir-structures-r4 from 4.2.0 to 5.4.0 dependencies

Bumps hapi-fhir-structures-r4 from 4.2.0 to 5.4.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 3 days

pull request commentProjectEKA/health-information-user

Bump hapi-fhir-structures-r4 from 4.2.0 to 5.4.0

Superseded by #431.

dependabot-preview[bot]

comment created time in 3 days

PR opened ProjectEKA/health-information-user

Bump hapi-fhir-structures-r4 from 4.2.0 to 5.4.1

Bumps hapi-fhir-structures-r4 from 4.2.0 to 5.4.1.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

pr created time in 3 days

delete branch ProjectEKA/health-information-user

delete branch : dependabot/gradle/ca.uhn.hapi.fhir-hapi-fhir-base-5.4.0

delete time in 3 days

PR closed ProjectEKA/health-information-user

Bump hapi-fhir-base from 4.2.0 to 5.4.0 dependencies

Bumps hapi-fhir-base from 4.2.0 to 5.4.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 3 days

pull request commentProjectEKA/health-information-user

Bump hapi-fhir-base from 4.2.0 to 5.4.0

Superseded by #430.

dependabot-preview[bot]

comment created time in 3 days

PR opened ProjectEKA/health-information-user

Bump hapi-fhir-base from 4.2.0 to 5.4.1

Bumps hapi-fhir-base from 4.2.0 to 5.4.1.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

pr created time in 3 days

pull request commentBahmni/openmrs-module-appointments-frontend

[Snyk] Upgrade react-redux from 7.1.1 to 7.2.4

CLA assistant check <br/>Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.<br/><sub>You have signed the CLA already but the status is still pending? Let us recheck it.</sub>

snyk-bot

comment created time in 5 days

pull request commentBahmni/openmrs-module-appointments-frontend

[Snyk] Upgrade react-datepicker from 2.10.1 to 2.16.0

CLA assistant check <br/>Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.<br/><sub>You have signed the CLA already but the status is still pending? Let us recheck it.</sub>

snyk-bot

comment created time in 5 days

pull request commentBahmni/openmrs-module-appointments-frontend

[Snyk] Upgrade: react, react-dom

CLA assistant check <br/>Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.<br/><sub>You have signed the CLA already but the status is still pending? Let us recheck it.</sub>

snyk-bot

comment created time in 5 days

PR opened Bahmni/openmrs-module-appointments-frontend

[Snyk] Upgrade react-redux from 7.1.1 to 7.2.4

<h3>Snyk has created this PR to upgrade react-redux from 7.1.1 to 7.2.4.</h3>

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project. <hr/>

  • The recommended version is 8 versions ahead of your current version.
  • The recommended version was released 2 months ago, on 2021-04-24.

<details> <summary><b>Release notes</b></summary> <br/> <details> <summary>Package name: <b>react-redux</b></summary> <ul> <li> <b>7.2.4</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.2.4">2021-04-24</a></br><p>This release drops our dependency on the core <code>redux</code> package by inlining <code>bindActionCreators</code>, and tweaks <code>useSelector</code> to ensure that selectors aren't run an extra time while re-rendering.</p> <h2>Changelog</h2> <h3>Redux Dependency Removal</h3> <p>React-Redux has always imported the <code>bindActionCreators</code> utility from the core <code>redux</code> package for use in <code>connect</code>. However, that meant that we had to have a peer dependency on <code>redux</code>, and this was the <em>only</em> reason we actually required that <code>redux</code> be installed. This became more annoying with the arrival of Redux Toolkit, which has its own dependency on <code>redux</code> internally, and thus users typically saw peer dependency warnings saying that "<code>redux</code> isn't listed as a dependency in your app".</p> <p>Code reuse across separate packages is a great thing, but sometimes the right thing to do is duplicate code. So, we've inlined <code>bindActionCreators</code> directly into React-Redux, and we've completely dropped the dependency on Redux. This means that React-Redux will no longer produce a peerDep warning when used with Redux Toolkit, and <code><Provider></code> and <code>connect</code> really only need a Redux-store-compatible value to work right.</p> <h3><code>useSelector</code> Fixes</h3> <p>Users reported that <code>useSelector</code> was re-running selector functions again unnecessarily while rendering after a dispatch. We've tweaked the logic to ensure that doesn't happen.</p> <p><code>useSelector</code> also now has checks in development to ensure that <code>selector</code> and <code>equalityFn</code> are functions.</p> <h2>Changes</h2> <ul> <li>Remove wrapActionCreators (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="854149673" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1709" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1709/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1709">#1709</a> - <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/xty/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/xty">@ xty</a>)</li> <li>Verify that selector and equalityF of useSelector are functions (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="845537256" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1706" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1706/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1706">#1706</a> - <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/gshilin/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/gshilin">@ gshilin</a>)</li> <li>Import bindActionCreators from redux (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="844916318" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1705" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1705/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1705">#1705</a> - <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/timdorr/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/timdorr">@ timdorr</a>)</li> <li>Don't re-run the selector after update (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="840958616" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1701" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1701/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1701">#1701</a> - <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/timdorr/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/timdorr">@ timdorr</a>)</li> </ul> <p><a class="commit-link" href="https://snyk.io/redirect/github/reduxjs/react-redux/compare/v7.2.3...v7.2.4"><tt>v7.2.3...v7.2.4</tt></a></p> </li> <li> <b>7.2.3</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.2.3">2021-03-23</a></br><p>This release improves behavior in <code>useSelector</code> by returning the existing reference if the newly returned selector result passes the equality check, and adds a hard dependency on the <code>@ types/react-redux</code> package to ensure TS users always have the typedefs installed.</p> <h2>Changes</h2> <h3><code>useSelector</code> Results Reuse</h3> <p>Issue <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="732115231" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1654" data-hovercard-type="issue" data-hovercard-url="/reduxjs/react-redux/issues/1654/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/issues/1654">#1654</a> reported that <code>useSelector</code> was returning new references from a selector even if the equality comparison function returned <code>true</code>. This is because the equality check was only ever being performed during the action dispatch process.</p> <p>We now run the equality comparison against the value calculated by the selector while rendering, and return the existing reference for consistency if the old and new values are considered equal. This should improve some cases where further derived values where being recalculated unnecessarily.</p> <h3>TS Types Now Included</h3> <p>React-Redux has always been written in plain JS, and the typedefs maintained by the community in DefinitelyTyped. We plan on eventually rewriting the library in TypeScript in a future React-Redux v8 release, but until then the types can stay in DT.</p> <p>However, having to always manually install <code>@ types/react-redux</code> is annoying, and some users have gotten confused by that. This release adds a hard dependency on <code>@ types/react-redux</code>, so that if you install <code>react-redux</code>, you automatically get the types as well. This should simplify the process for TS users.</p> <h2>Docs Updates</h2> <p>We've made several docs updates recently:</p> <ul> <li>Renamed "Quick Start" to "Getting Started" and "Static Typing" to "Usage with TypeScript"</li> <li>Dropped the docs API versioning setup, as the legacy API version docs pages were rarely viewed and the versioning setup confused docs contributors</li> <li>Moved the old "Intro > Basic Tutorial" to "Tutorials > Connect" and marked it as semi-obsolete</li> </ul> <p>We are currently working on a new React-Redux tutorial that will teach the React-Redux hooks as the primary approach, based on <a href="https://redux.js.org/tutorials/fundamentals/part-5-ui-react" rel="nofollow">the "UI and React" page in the Redux docs "Fundamentals" tutorial</a>.</p> <h2>Changelog</h2> <ul> <li>Automatically install @ types/react-redux as a dependency (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="838203993" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1699" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1699/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1699">#1699</a> - <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/markerikson/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/markerikson">@ markerikson</a> )</li> <li>Reuse latest selected state on selector re-run (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="732115231" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1654" data-hovercard-type="issue" data-hovercard-url="/reduxjs/react-redux/issues/1654/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/issues/1654">#1654</a>) (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="738207401" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1660" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1660/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1660">#1660</a> - <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/otakustay/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/otakustay">@ otakustay</a>)</li> <li>Use useIsomorphicLayoutEffect in Provider for consistency (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="794078274" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1683" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1683/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1683">#1683</a> - <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/speakingcode/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/speakingcode">@ speakingcode</a> )</li> </ul> <p><a class="commit-link" href="https://snyk.io/redirect/github/reduxjs/react-redux/compare/v7.2.2...v7.2.3"><tt>v7.2.2...v7.2.3</tt></a></p> </li> <li> <b>7.2.2</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.2.2">2020-10-26</a></br><p>This release allows you to use React Redux with React 17 without a warning when installing. That's about it.</p> <p><em><strong>Shameless self-promotion: Check out my new startup, <a href="https://spaceship.run/" rel="nofollow">Spaceship <g-emoji class="g-emoji" alias="rocket" fallback-src="https://github.githubassets.com/images/icons/emoji/unicode/1f680.png">🚀</g-emoji></a>. We're building the Continuous Delivery system of the future.</strong></em></p> <h2><a href="https://snyk.io/redirect/github/reduxjs/react-redux/compare/v7.2.1...v7.2.2">Changes</a></h2> <ul> <li>Upgrade react peer dependency to v17 (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="726794253" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1647" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1647/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1647">#1647</a> by <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/wachunei/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/wachunei">@ wachunei</a>)</li> </ul> </li> <li> <b>7.2.1</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.2.1">2020-07-25</a></br><p>This release improves <code>useSelector</code> value display in the React DevTools, fixes a potential race condition, and fixes a couple additional minor issues.</p> <h3><code>useSelector</code> DevTools Display</h3> <p>The React DevTools normally show custom hooks with their inspected name (such as "Selector" for <code>useSelector</code>), and any calls to core hooks inside. This is not always informative, so React has <a href="https://reactjs.org/docs/hooks-reference.html#usedebugvalue" rel="nofollow">the <code>useDebugValue</code> hook</a> to allow custom hooks to specify what value should be shown instead.</p> <p><code>useSelector</code> now calls <code>useDebugValue</code> to specifically show the current selected value instead of its internal hooks usage.</p> <h3>Bug Fixes</h3> <p>This release has a few different bug fixes:</p> <ul> <li>A potential race condition when dispatching actions from child components in the commit phase vs selecting data in a parent</li> <li>Removed an excess new object creation when forcing a re-render</li> <li>Our internal prop name for a forwarded ref is now <code>reactReduxForwardedRef</code> to avoid a rare situation where someone else might be passing down a field named <code>forwardedRef</code></li> <li>Fixed a typo in a <code>useSelector</code> error message</li> </ul> <h2><a href="https://snyk.io/redirect/github/reduxjs/react-redux/compare/v7.2.0...v7.2.1">Changes</a></h2> <ul> <li>Fix error message typo in useSelector ('You must pass a selector...). (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/Pixelwelder/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/Pixelwelder">@ Pixelwelder</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="614322739" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1581" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1581/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1581">#1581</a>)</li> <li>fix useSelector race condition with memoized selector when dispatching in child components useLayoutEffect as well as cDM/cDU (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/dai-shi/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/dai-shi">@ dai-shi</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="576133980" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1536" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1536/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1536">#1536</a>)</li> <li>removed a redundant object creation when using forceUpdate (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/vzaidman/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/vzaidman">@ vzaidman</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="600270053" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1567" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1567/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1567">#1567</a>)</li> <li>Rename internal forwardedRef usage (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/dtschust/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/dtschust">@ dtschust</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="586666537" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1553" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1553/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1553">#1553</a>)</li> <li>Show useSelector result in React DevTools (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/Finesse/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/Finesse">@ Finesse</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="571932439" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1530" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1530/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1530">#1530</a>)</li> </ul> </li> <li> <b>7.2.0</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.2.0">2020-02-18</a></br><p>This release fixes two bugs, an algorithmic problem with unsubscribing components and a memory leak with <code>connect</code>. It also has optimizations for production bundle size, and adds a couple small improvements to developer readability while debugging.</p> <h3>Bug Fixes</h3> <p><code>connect</code> in v7 is implemented using hooks, and the hooks usage captures numerous values from the surrounding scope. We received a PR informing us that the way we were capturing these values would likely result in a copy of the first version of its props being kept alive indefinitely.</p> <p>This memory leak has been fixed by extracting a custom hook that receives all the necessary values as arguments, so that they're not captured via closure.</p> <p>We also received a PR letting us know that the unsubscribe logic had a quadratic algorithm in it, as removing a subscriber would use an <code>indexOf(listener)</code> check to remove that callback. If there were a large number of subscribers, that line's runtime would increase rapidly, causing slowdowns.</p> <p>This algorithm has been replaced with tracking subscribers via a linked list, which drastically improves the runtime of this section of the code even with large numbers of subscribers.</p> <p>Thanks to <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/larrylin28/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/larrylin28">@ larrylin28</a> and <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/wurstbonbon/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/wurstbonbon">@ wurstbonbon</a> for finding these bugs and submitting PRs to fix them!</p> <h3>Bundle Size Improvements</h3> <p>We've made a number of small tweaks to the codebase to improve the ability of bundlers to shake and minimize the final included size in a bundle. The net result is that <a href="https://bundlephobia.com/result?p=react-redux@7.2.0" rel="nofollow"><code>react-redux@7.2.0</code> is smaller than 7.1.3</a>, dropping 1.3K min and 0.6K min+gzip. (In fact, it's even smaller than the pre-hooks 7.0.0 when gzipped!)</p> <p>Thanks to <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/Andarist/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/Andarist">@ Andarist</a> for doing most of the work on this!</p> <h3>Debugging Improvements</h3> <p>The <code>ReactReduxContext</code> instance now has a <code>displayName</code> set, so it should show up in the React DevTools as <code>ReactRedux.Provider</code>.</p> <p>Also, when an error is caught in <code>useSelector</code> and re-thrown, we now append the original stack trace.</p> <p>Thanks to <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/pieplu/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/pieplu">@ pieplu</a> and <a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/r3dm1ke/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/r3dm1ke">@ r3dm1ke</a> for these!</p> <h2><a href="https://snyk.io/redirect/github/reduxjs/react-redux/compare/v7.1.3...v7.2.0">Changes</a></h2> <ul> <li>Fix memory leak issue with <code>UseEffect</code> (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/larrylin28/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/larrylin28">@ larrylin28</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="552816602" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1506" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1506/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1506">#1506</a>)</li> <li>Optimize createListenerCollection (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/wurstbonbon/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/wurstbonbon">@ wurstbonbon</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="566511642" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1523" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1523/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1523">#1523</a>)</li> <li>Rethrowing original errors thrown in selector functions (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/Andarist/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/Andarist">@ Andarist</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="527726546" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1474" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1474/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1474">#1474</a>)</li> <li>Remove invariant in favor of doing NODE_ENV checks directly (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/Andarist/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/Andarist">@ Andarist</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="527530943" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1472" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1472/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1472">#1472</a>)</li> <li>Wrap .propTypes and .displayName assignments with <strong>DEV</strong> check (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/Andarist/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/Andarist">@ Andarist</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="527445031" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1471" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1471/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1471">#1471</a>)</li> <li>Add pure annotations to help with DCE (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/timdorr/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/timdorr">@ timdorr</a> - <a class="commit-link" data-hovercard-type="commit" data-hovercard-url="https://github.com/reduxjs/react-redux/commit/5e0c50d814b08cbdd46f1fcce77b34210d546669/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/5e0c50d814b08cbdd46f1fcce77b34210d546669"><tt>5e0c50d</tt></a>)</li> <li>Inline this function. (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/timdorr/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/timdorr">@ timdorr</a> - <a class="commit-link" data-hovercard-type="commit" data-hovercard-url="https://github.com/reduxjs/react-redux/commit/58ae5edee510a2f2f3bc577f55057fe9142f2976/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/58ae5edee510a2f2f3bc577f55057fe9142f2976"><tt>58ae5ed</tt></a>)</li> <li>Add a displayName on ReactReduxContext (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/pieplu/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/pieplu">@ pieplu</a> - <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="522268387" data-permission-text="Title is private" data-url="https://github.com/reduxjs/react-redux/issues/1462" data-hovercard-type="pull_request" data-hovercard-url="/reduxjs/react-redux/pull/1462/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/pull/1462">#1462</a>)</li> </ul> </li> <li> <b>7.1.3</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.1.3">2019-11-06</a></br><p>Forgot to remove a <code>console</code> statement before I published 7.1.2. Oops!</p> <p>Lint your source code before publishing, folks.</p> <h2><a href="https://snyk.io/redirect/github/reactjs/react-redux/compare/v7.1.2...v7.1.3">Changes</a></h2> <ul> <li>Remove leftover console statement (<a class="user-mention" data-hovercard-type="user" data-hovercard-url="/users/markerikson/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://snyk.io/redirect/github/markerikson">@ markerikson</a> - <a class="commit-link" data-hovercard-type="commit" data-hovercard-url="https://github.com/reduxjs/react-redux/commit/30101bb8e34bb30dd88f88215b9bacedd0741696/hovercard" href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/30101bb8e34bb30dd88f88215b9bacedd0741696"><tt>30101bb</tt></a>)</li> </ul> </li> <li> <b>7.1.2</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.1.2">2019-11-06</a></br><a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.1.2"> Read more </a> </li> <li> <b>7.1.2-alpha.0</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.1.2-alpha.0">2019-11-05</a></br><p>7.1.2-alpha.0</p> </li> <li> <b>7.1.1</b> - <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.1.1">2019-08-26</a></br><a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases/tag/v7.1.1"> Read more </a> </li> </ul> from <a href="https://snyk.io/redirect/github/reduxjs/react-redux/releases">react-redux GitHub release notes</a> </details> </details>

<details> <summary><b>Commit messages</b></summary> </br> <details> <summary>Package name: <b>react-redux</b></summary> <ul> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/86e962edf8ed077cf720e8e089876227d943dfe8">86e962e</a> 7.2.4</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/b3b4e8b54b5c80b69094b4f35ca3bb7814caaec2">b3b4e8b</a> docs: add link to source in getting-started.md (#1713)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/994b390f64f7368df188d977398f12b18f6fcb8c">994b390</a> Removed Useless Symbol - Docs (#1712)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/95e328753cd799ad17382c8fb09d81fed38ea779">95e3287</a> fix:displayName error displayed in development tool (#1711)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/5b4b5767dd63f7c64f6f9850fa5fbd0236de27a6">5b4b576</a> Removed useless semicolon : Docs - Connect.md (#1710)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/89136079498bb42706d01b4b3e99062c9e6388d7">8913607</a> Remove wrapActionCreators (#1709)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/df36f4efa47a32954b9d14c2c3b5c3e9c0cc795d">df36f4e</a> Verify that selector and equalityF of useSelector are functions (#1706)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/f4ea60cc5e4d1260ae02c8297a2561f35410e154">f4ea60c</a> Import bindActionCreators from redux (#1705)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/50b60e47e34de83410fffe2368f0018cfc9dcefb">50b60e4</a> Bump y18n from 4.0.0 to 4.0.1 (#1703)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/c9458680f561190457c2bfed4d0408b9d3dc84aa">c945868</a> Remove unused useState call in getting-started.md example (#1702)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/07365eeeaff8e53217ec8ecb4e8618aaf52c2da0">07365ee</a> Don't re-run the selector after update (#1701)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/010c3eeab4ac4d2a0f48b94f9e668a7e0ffff322">010c3ee</a> Update React-Redux typedef info for 7.2.3</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/a87cd5fecd9311a774818f10cf5ccdadb302bb6d">a87cd5f</a> 7.2.3</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/da22052822d4885af0ccdda13d19e362c47eebd3">da22052</a> Automatically install @ types/react-redux as a dependency (#1699)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/65b4a16ef12fb596a8a41050bb15cef7e9e7e2b6">65b4a16</a> Reuse latest selected state on selector re-run (#1654) (#1660)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/3aa89937394a6644ac38b41006c67b9b6d61c102">3aa8993</a> Use useIsomorphicLayoutEffect in Provider for consistency (#1683)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/86b6fe0168ae9f33fa454e5265d6e380804b18c1">86b6fe0</a> Additional TS usage updates (#1698)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/9005c4abfd9058f3aa78ad0a162eee6b7c94322f">9005c4a</a> Drop versioned docs entirely (#1696)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/45dfd45ac8ccb9a67701364c998e0eb097d9bdb7">45dfd45</a> Assorted docs cleanup (#1688)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/a9235530f4799dd4b2acb3cc65e9caf32efbc44b">a923553</a> Added translation section to docs version 7.2 (#1676)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/80f8fe1d7bd3f745e4d58d89fa1178dc62072097">80f8fe1</a> added docs translations section in quick start (#1675)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/96bf941751a8460c5cf64027348f05d332e19a20">96bf941</a> Link directly to #redux on Reactiflux (#1673)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/1f07ec1f6bdf96f23e5ff38e7c990aac5d6067e8">1f07ec1</a> Bump node-notifier from 8.0.0 to 8.0.1 (#1672)</li> <li><a href="https://snyk.io/redirect/github/reduxjs/react-redux/commit/98b66264e279c41b09a4657dcb1623eafe52ce1f">98b6626</a> Replace uppercase char with lowercase one (#1671)</li> </ul>

<a href="https://snyk.io/redirect/github/reduxjs/react-redux/compare/65d7935fa051449be1b553eb8eab1816787d593c...86e962edf8ed077cf720e8e089876227d943dfe8">Compare</a> </details> </details> <hr/>

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiIxYzBhOWNiMi0wOGIzLTQ1NWEtYWZjYi03MjVlZmQ1NmU1NWYiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6IjFjMGE5Y2IyLTA4YjMtNDU1YS1hZmNiLTcyNWVmZDU2ZTU1ZiJ9fQ==" width="0" height="0"/>

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

<!--- (snyk:metadata:{"prId":"1c0a9cb2-08b3-455a-afcb-725efd56e55f","prPublicId":"1c0a9cb2-08b3-455a-afcb-725efd56e55f","dependencies":[{"name":"react-redux","from":"7.1.1","to":"7.2.4"}],"packageManager":"npm","type":"auto","projectUrl":"https://app.snyk.io/org/swethab/project/5d7ea688-702d-41fc-bdd7-e307fdbeca67?utm_source=github&utm_medium=upgrade-pr","projectPublicId":"5d7ea688-702d-41fc-bdd7-e307fdbeca67","env":"prod","prType":"upgrade","vulns":[],"issuesToFix":[],"upgrade":[],"upgradeInfo":{"versionsDiff":8,"publishedDate":"2021-04-24T18:16:44.954Z"},"templateVariants":["merge-advice-badge-shown"],"hasFixes":false,"isMajorUpgrade":false,"isBreakingChange":false,"priorityScoreList":[]}) --->

+78 -20

0 comment

2 changed files

pr created time in 5 days

push eventBahmni/openmrs-module-appointments-frontend

snyk-bot

commit sha 9436c5c86cdd87b8b968da30a78b3de882a241d1

fix: upgrade react-redux from 7.1.1 to 7.2.4 Snyk has created this PR to upgrade react-redux from 7.1.1 to 7.2.4. See this package in npm: https://www.npmjs.com/package/react-redux See this project in Snyk: https://app.snyk.io/org/swethab/project/5d7ea688-702d-41fc-bdd7-e307fdbeca67?utm_source=github&utm_medium=upgrade-pr

view details

push time in 5 days