profile
viewpoint
Nathan Gaberel n6g7 Theodo London https://gnab.fr Head of DevOps @Theodo-UK.

n6g7/httpdf 13

PDF as React components, props over HTTP

n6g7/firebase-backup 9

A set of firebase functions to backup realtime db / firestore data.

n6g7/cat 6

🐈

n6g7/damn 5

Node.js DeviantArt API client

n6g7/chapter 4

Online book shelves

n6g7/autokaizen 1

Defect tracking on Trello

n6g7/euler 1

Solutions to Project Euler problems (careful, spoilers ahead)

n6g7/gatsby-transformer-ipynb 1

Gatsby transformer plugin for jupyter files

n6g7/ipynb-loader 1

ipython/jupyter notebook files loader for webpack

n6g7/koa-sequelize-rest 1

Sequelize Rest Middlewares for Koa

created tagn6g7/notion-cms

tagv0.0.19

Notion.so as a headless CMS

created time in a day

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 930d8ee392670c7184219729d89baf93a9d4f192

v0.0.19

view details

push time in a day

push eventn6g7/notion-cms

Nathan Gaberel

commit sha acc51694356ee1ef792b497a83997c6591727e4c

rootOnly isn't required.

view details

push time in a day

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 618547624db5f4feb16fedc97de6390c36fc76e2

Filter out non block values from Blocks.

view details

Nathan Gaberel

commit sha 2b12fee6acb1ff6abd3fc8c16243027ac4f65690

v0.0.18

view details

push time in a day

created tagn6g7/notion-cms

tagv0.0.18

Notion.so as a headless CMS

created time in a day

PR closed n6g7/redux-saga-firebase

Build(deps-dev): bump prettier from 1.19.1 to 2.1.2 dependencies

Bumps prettier from 1.19.1 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/releases">prettier's releases</a>.</em></p> <blockquote> <h2>2.1.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#212">🔗Changelog</a></p> <h2>2.1.1</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#211">🔗Changelog</a></p> <h1>2.1.0</h1> <p><a href="https://github.com/prettier/prettier/compare/2.0.5...2.1.0">diff</a></p> <p>🔗 <a href="https://prettier.io/blog/2020/08/24/2.1.0.html">Release Notes</a></p> <h2>2.0.5</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#205">🔗 Changelog</a></p> <h2>2.0.4</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#204">🔗 Changelog</a></p> <h2>2.0.3</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#203">🔗 Changelog</a></p> <h2>2.0.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#202">🔗 Changelog</a></p> <h2>2.0.1</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#201">🔗 Changelog</a></p> <h2>2.0.0</h2> <p><a href="https://github.com/prettier/prettier/compare/1.19.1...2.0.0">diff</a></p> <p>🔗 <a href="https://prettier.io/blog/2020/03/21/2.0.0.html">Release Notes</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md">prettier's changelog</a>.</em></p> <blockquote> <h1>2.1.2</h1> <p><a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">diff</a></p> <h4>Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9116">#9116</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="graphql"><code># Input type Query { someQuery(id: ID!, someOtherData: String!): String! @deprecated @isAuthenticated versions: Versions! } <h1>Prettier stable</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <h1>Prettier master</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <p></code></pre></p> <h4>Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9136">#9136</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="js"><code>// Input styled.div// prettier-ignore @media (aaaaaaaaaaaaa) { z-index: ${(props) =&gt; (props.isComplete ? '1' : '0')}; }; styled.div${props =&gt; getSize(props.$size.xs)} ${props =&gt; getSize(props.$size.sm, 'sm')} ${props =&gt; getSize(props.$size.md, 'md')}; <p></tr></table> ... (truncated) </code></pre></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/prettier/commit/8eb8f9ed2dc5eb1c3e6f787e5a5e6fe68af2b8d1"><code>8eb8f9e</code></a> Release 2.1.2</li> <li><a href="https://github.com/prettier/prettier/commit/f75844a453beb6cb16791c14e5ff738c02d0b4df"><code>f75844a</code></a> Fix changelog</li> <li><a href="https://github.com/prettier/prettier/commit/9153bf20ac2dfcd525b5dd3f3b37d9b6005d20bc"><code>9153bf2</code></a> Build(deps): Bump yaml-unist-parser from 1.3.0 to 1.3.1 (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9169">#9169</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ec1b4193079a625633dd0dc86f9a9217a3ad9d7e"><code>ec1b419</code></a> YAML: Fix printing doubles a blank line before a comment (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9143">#9143</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ab9474eacc9c883e588ef2500c6230057328ade5"><code>ab9474e</code></a> Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9136">#9136</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/d5da779cb195443c935fd7171f5e81141e2f62e5"><code>d5da779</code></a> GraphQL: Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9116">#9116</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/a8363197118e530d948978da6e5c414a765ba9c0"><code>a836319</code></a> Bump Prettier dependency to 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/18bcaefc773ba0480aef266350c7af3defcf1f0d"><code>18bcaef</code></a> Release 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/ebe9e07716f0ec1e04efc661bec754321e1c937e"><code>ebe9e07</code></a> Vue: Fix format on self-closing and empty blocks (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9055">#9055</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/5a12f52bbeccaa1de3e69ab163bd48037e4978c2"><code>5a12f52</code></a> Replace changelog versions in ./scripts/draft-blog-post.js (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9058">#9058</a>)</li> <li>Additional commits viewable in <a href="https://github.com/prettier/prettier/compare/1.19.1...2.1.2">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~sosukesuzuki">sosukesuzuki</a>, a new releaser for prettier since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

2 comments

2 changed files

dependabot-preview[bot]

pr closed time in a day

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha 68cebc74d4c1d411ae8ed9c396b99438cc174f82

Create Dependabot config file

view details

Nathan Gaberel

commit sha 53156920a6e0660d44c70af2a49fc3abdeb70193

Merge pull request #1197 from n6g7/dependabot/add-v2-config-file Create Dependabot config file

view details

push time in a day

PR merged n6g7/redux-saga-firebase

Create Dependabot config file dependencies

:wave: Dependabot is moving natively into GitHub! This pull request migrates your configuration from Dependabot.com to a config file, using the new syntax. When you merge this pull request, we'll swap out dependabot-preview (me) for a new dependabot app, and you'll be all set!

With this change, you'll now use the Dependabot page in GitHub, rather than the Dependabot dashboard, to monitor your version updates. Dependabot is now configured exclusively using config files.

If you've got any questions or feedback for us, please let us know by creating an issue in the dependabot/dependabot-core repository.

Learn more about the relaunch of Dependabot

Please note that regular @dependabot commands do not work on this pull request.

:robot::yellow_heart:

+22 -0

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in a day

push eventn6g7/index

dependabot-preview[bot]

commit sha 5825efe735926e1afd279b876d87b4062ed0ecbd

Bump prettier from 2.1.1 to 2.1.2 Bumps [prettier](https://github.com/prettier/prettier) from 2.1.1 to 2.1.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/master/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/2.1.1...2.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 29f7538b65d5a397f937f0a9a65040026e7a5675

Merge pull request #123 from n6g7/dependabot/npm_and_yarn/prettier-2.1.2 Bump prettier from 2.1.1 to 2.1.2

view details

push time in a day

PR merged n6g7/index

Bump prettier from 2.1.1 to 2.1.2 dependencies

Bumps prettier from 2.1.1 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/releases">prettier's releases</a>.</em></p> <blockquote> <h2>2.1.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#212">🔗Changelog</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md">prettier's changelog</a>.</em></p> <blockquote> <h1>2.1.2</h1> <p><a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">diff</a></p> <h4>Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9116">#9116</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="graphql"><code># Input type Query { someQuery(id: ID!, someOtherData: String!): String! @deprecated @isAuthenticated versions: Versions! } <h1>Prettier stable</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <h1>Prettier master</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <p></code></pre></p> <h4>Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9136">#9136</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="js"><code>// Input styled.div// prettier-ignore @media (aaaaaaaaaaaaa) { z-index: ${(props) =&gt; (props.isComplete ? '1' : '0')}; }; styled.div${props =&gt; getSize(props.$size.xs)} ${props =&gt; getSize(props.$size.sm, 'sm')} ${props =&gt; getSize(props.$size.md, 'md')}; <p></tr></table> ... (truncated) </code></pre></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/prettier/commit/8eb8f9ed2dc5eb1c3e6f787e5a5e6fe68af2b8d1"><code>8eb8f9e</code></a> Release 2.1.2</li> <li><a href="https://github.com/prettier/prettier/commit/f75844a453beb6cb16791c14e5ff738c02d0b4df"><code>f75844a</code></a> Fix changelog</li> <li><a href="https://github.com/prettier/prettier/commit/9153bf20ac2dfcd525b5dd3f3b37d9b6005d20bc"><code>9153bf2</code></a> Build(deps): Bump yaml-unist-parser from 1.3.0 to 1.3.1 (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9169">#9169</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ec1b4193079a625633dd0dc86f9a9217a3ad9d7e"><code>ec1b419</code></a> YAML: Fix printing doubles a blank line before a comment (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9143">#9143</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ab9474eacc9c883e588ef2500c6230057328ade5"><code>ab9474e</code></a> Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9136">#9136</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/d5da779cb195443c935fd7171f5e81141e2f62e5"><code>d5da779</code></a> GraphQL: Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9116">#9116</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/a8363197118e530d948978da6e5c414a765ba9c0"><code>a836319</code></a> Bump Prettier dependency to 2.1.1</li> <li>See full diff in <a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request during working hours.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a day

push eventn6g7/httpdf

dependabot-preview[bot]

commit sha f964ae6944b2ca511dff3058a8b4e6a9914cfba2

Bump prettier from 2.1.1 to 2.1.2 Bumps [prettier](https://github.com/prettier/prettier) from 2.1.1 to 2.1.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/master/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/2.1.1...2.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha c05d500cf0710dba5a30954d81d37a2b6ccfc6f5

Merge pull request #272 from n6g7/dependabot/npm_and_yarn/prettier-2.1.2 Bump prettier from 2.1.1 to 2.1.2

view details

push time in a day

PR merged n6g7/httpdf

Bump prettier from 2.1.1 to 2.1.2 dependencies

Bumps prettier from 2.1.1 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/releases">prettier's releases</a>.</em></p> <blockquote> <h2>2.1.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#212">🔗Changelog</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md">prettier's changelog</a>.</em></p> <blockquote> <h1>2.1.2</h1> <p><a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">diff</a></p> <h4>Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9116">#9116</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="graphql"><code># Input type Query { someQuery(id: ID!, someOtherData: String!): String! @deprecated @isAuthenticated versions: Versions! } <h1>Prettier stable</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <h1>Prettier master</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <p></code></pre></p> <h4>Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9136">#9136</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="js"><code>// Input styled.div// prettier-ignore @media (aaaaaaaaaaaaa) { z-index: ${(props) =&gt; (props.isComplete ? '1' : '0')}; }; styled.div${props =&gt; getSize(props.$size.xs)} ${props =&gt; getSize(props.$size.sm, 'sm')} ${props =&gt; getSize(props.$size.md, 'md')}; <p></tr></table> ... (truncated) </code></pre></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/prettier/commit/8eb8f9ed2dc5eb1c3e6f787e5a5e6fe68af2b8d1"><code>8eb8f9e</code></a> Release 2.1.2</li> <li><a href="https://github.com/prettier/prettier/commit/f75844a453beb6cb16791c14e5ff738c02d0b4df"><code>f75844a</code></a> Fix changelog</li> <li><a href="https://github.com/prettier/prettier/commit/9153bf20ac2dfcd525b5dd3f3b37d9b6005d20bc"><code>9153bf2</code></a> Build(deps): Bump yaml-unist-parser from 1.3.0 to 1.3.1 (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9169">#9169</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ec1b4193079a625633dd0dc86f9a9217a3ad9d7e"><code>ec1b419</code></a> YAML: Fix printing doubles a blank line before a comment (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9143">#9143</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ab9474eacc9c883e588ef2500c6230057328ade5"><code>ab9474e</code></a> Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9136">#9136</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/d5da779cb195443c935fd7171f5e81141e2f62e5"><code>d5da779</code></a> GraphQL: Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9116">#9116</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/a8363197118e530d948978da6e5c414a765ba9c0"><code>a836319</code></a> Bump Prettier dependency to 2.1.1</li> <li>See full diff in <a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request during working hours.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in a day

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha 0d0972e4b802c7a98f5fb15a1e8d3428552348fa

Build(deps-dev): bump prettier from 2.0.4 to 2.1.2 in /docs Bumps [prettier](https://github.com/prettier/prettier) from 2.0.4 to 2.1.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/master/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/2.0.4...2.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha c3c52628a05905a8c4951fe9dff67990c1aff3fa

Merge pull request #1195 from n6g7/dependabot/npm_and_yarn/docs/prettier-2.1.2 Build(deps-dev): bump prettier from 2.0.4 to 2.1.2 in /docs

view details

push time in a day

PR merged n6g7/redux-saga-firebase

Build(deps-dev): bump prettier from 2.0.4 to 2.1.2 in /docs dependencies

Bumps prettier from 2.0.4 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/releases">prettier's releases</a>.</em></p> <blockquote> <h2>2.1.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#212">🔗Changelog</a></p> <h2>2.1.1</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#211">🔗Changelog</a></p> <h1>2.1.0</h1> <p><a href="https://github.com/prettier/prettier/compare/2.0.5...2.1.0">diff</a></p> <p>🔗 <a href="https://prettier.io/blog/2020/08/24/2.1.0.html">Release Notes</a></p> <h2>2.0.5</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#205">🔗 Changelog</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md">prettier's changelog</a>.</em></p> <blockquote> <h1>2.1.2</h1> <p><a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">diff</a></p> <h4>Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9116">#9116</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="graphql"><code># Input type Query { someQuery(id: ID!, someOtherData: String!): String! @deprecated @isAuthenticated versions: Versions! } <h1>Prettier stable</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <h1>Prettier master</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <p></code></pre></p> <h4>Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9136">#9136</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="js"><code>// Input styled.div// prettier-ignore @media (aaaaaaaaaaaaa) { z-index: ${(props) =&gt; (props.isComplete ? '1' : '0')}; }; styled.div${props =&gt; getSize(props.$size.xs)} ${props =&gt; getSize(props.$size.sm, 'sm')} ${props =&gt; getSize(props.$size.md, 'md')}; <p></tr></table> ... (truncated) </code></pre></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/prettier/commit/8eb8f9ed2dc5eb1c3e6f787e5a5e6fe68af2b8d1"><code>8eb8f9e</code></a> Release 2.1.2</li> <li><a href="https://github.com/prettier/prettier/commit/f75844a453beb6cb16791c14e5ff738c02d0b4df"><code>f75844a</code></a> Fix changelog</li> <li><a href="https://github.com/prettier/prettier/commit/9153bf20ac2dfcd525b5dd3f3b37d9b6005d20bc"><code>9153bf2</code></a> Build(deps): Bump yaml-unist-parser from 1.3.0 to 1.3.1 (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9169">#9169</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ec1b4193079a625633dd0dc86f9a9217a3ad9d7e"><code>ec1b419</code></a> YAML: Fix printing doubles a blank line before a comment (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9143">#9143</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ab9474eacc9c883e588ef2500c6230057328ade5"><code>ab9474e</code></a> Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9136">#9136</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/d5da779cb195443c935fd7171f5e81141e2f62e5"><code>d5da779</code></a> GraphQL: Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9116">#9116</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/a8363197118e530d948978da6e5c414a765ba9c0"><code>a836319</code></a> Bump Prettier dependency to 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/18bcaefc773ba0480aef266350c7af3defcf1f0d"><code>18bcaef</code></a> Release 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/ebe9e07716f0ec1e04efc661bec754321e1c937e"><code>ebe9e07</code></a> Vue: Fix format on self-closing and empty blocks (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9055">#9055</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/5a12f52bbeccaa1de3e69ab163bd48037e4978c2"><code>5a12f52</code></a> Replace changelog versions in ./scripts/draft-blog-post.js (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9058">#9058</a>)</li> <li>Additional commits viewable in <a href="https://github.com/prettier/prettier/compare/2.0.4...2.1.2">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~sosukesuzuki">sosukesuzuki</a>, a new releaser for prettier since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -10

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a day

push eventn6g7/notes

dependabot-preview[bot]

commit sha 99e8f5869dad4694f9c699807cb94777cca21b40

Bump prettier from 2.1.1 to 2.1.2 Bumps [prettier](https://github.com/prettier/prettier) from 2.1.1 to 2.1.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/master/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/2.1.1...2.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha e67c8c61f0ab1a808385a1ee2d70450674befafb

Merge pull request #465 from n6g7/dependabot/npm_and_yarn/prettier-2.1.2 Bump prettier from 2.1.1 to 2.1.2

view details

push time in a day

PR merged n6g7/notes

Bump prettier from 2.1.1 to 2.1.2 dependencies javascript

Bumps prettier from 2.1.1 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/releases">prettier's releases</a>.</em></p> <blockquote> <h2>2.1.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#212">🔗Changelog</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md">prettier's changelog</a>.</em></p> <blockquote> <h1>2.1.2</h1> <p><a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">diff</a></p> <h4>Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9116">#9116</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="graphql"><code># Input type Query { someQuery(id: ID!, someOtherData: String!): String! @deprecated @isAuthenticated versions: Versions! } <h1>Prettier stable</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <h1>Prettier master</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <p></code></pre></p> <h4>Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9136">#9136</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="js"><code>// Input styled.div// prettier-ignore @media (aaaaaaaaaaaaa) { z-index: ${(props) =&gt; (props.isComplete ? '1' : '0')}; }; styled.div${props =&gt; getSize(props.$size.xs)} ${props =&gt; getSize(props.$size.sm, 'sm')} ${props =&gt; getSize(props.$size.md, 'md')}; <p></tr></table> ... (truncated) </code></pre></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/prettier/commit/8eb8f9ed2dc5eb1c3e6f787e5a5e6fe68af2b8d1"><code>8eb8f9e</code></a> Release 2.1.2</li> <li><a href="https://github.com/prettier/prettier/commit/f75844a453beb6cb16791c14e5ff738c02d0b4df"><code>f75844a</code></a> Fix changelog</li> <li><a href="https://github.com/prettier/prettier/commit/9153bf20ac2dfcd525b5dd3f3b37d9b6005d20bc"><code>9153bf2</code></a> Build(deps): Bump yaml-unist-parser from 1.3.0 to 1.3.1 (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9169">#9169</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ec1b4193079a625633dd0dc86f9a9217a3ad9d7e"><code>ec1b419</code></a> YAML: Fix printing doubles a blank line before a comment (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9143">#9143</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ab9474eacc9c883e588ef2500c6230057328ade5"><code>ab9474e</code></a> Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9136">#9136</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/d5da779cb195443c935fd7171f5e81141e2f62e5"><code>d5da779</code></a> GraphQL: Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9116">#9116</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/a8363197118e530d948978da6e5c414a765ba9c0"><code>a836319</code></a> Bump Prettier dependency to 2.1.1</li> <li>See full diff in <a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request during working hours.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a day

created tagn6g7/notion-cms

tagv0.0.17

Notion.so as a headless CMS

created time in 2 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha de0c239462c8de79731b4433292ca8a1c777687f

v0.0.17

view details

push time in 2 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 683257cd882597bd50d0012340f2e46d45ea6bda

Support users and quotes.

view details

Nathan Gaberel

commit sha 8726f610c9483914e3757209a4ecdb1c75a3e5b7

Support nested lists.

view details

push time in 2 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 8b6a55a775cf4641b8d7a2754c0f9fe6d26a1d61

Cleaner block filter.

view details

Nathan Gaberel

commit sha 5c27136eec3601357f2aec46cfda01ba6a3c1270

Add divider support.

view details

Nathan Gaberel

commit sha bb1f1529e3d6c3c003a9ad196b7fa672ab19c4a5

Add callout support.

view details

push time in 2 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 923252398fb058e2b8ebfb7adbc473ff068b2ca2

Update lockfiles.

view details

Nathan Gaberel

commit sha 287c96ff38c68190314d0f48f280be6907b5bcbf

v0.0.16

view details

push time in 2 days

created tagn6g7/notion-cms

tagv0.0.16

Notion.so as a headless CMS

created time in 2 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 8c6bfd2239a5b33f252b75709b6610d932f247fc

Build before publishing.

view details

push time in 2 days

created tagn6g7/notion-cms

tagv0.0.15

Notion.so as a headless CMS

created time in 2 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha e4f7bd2af99ca964bc585fe8e5100658eba69dff

v0.0.15

view details

push time in 2 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha dd2a89682ec3f9d3d8884ed7ba3ea209bd6816e6

Add NotionLink.

view details

Nathan Gaberel

commit sha e367c04e634b7b53f860c9c15aa90ee8391f073a

Improved logging.

view details

Nathan Gaberel

commit sha 2112efe4ec5b5f16c817f9530331f5408f65af5f

Add keys.

view details

Nathan Gaberel

commit sha 011d40fb842a99b64c2a8b0a7b91d0cef6c741fd

Add basic support page page link blocks.

view details

push time in 2 days

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha a3c4549a37ee8cd4d21beef4dd35b9f4806c7042

Build(deps): [security] bump prismjs from 1.20.0 to 1.21.0 in /docs Bumps [prismjs](https://github.com/PrismJS/prism) from 1.20.0 to 1.21.0. **This update includes a security fix.** - [Release notes](https://github.com/PrismJS/prism/releases) - [Changelog](https://github.com/PrismJS/prism/blob/master/CHANGELOG.md) - [Commits](https://github.com/PrismJS/prism/compare/v1.20.0...v1.21.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 53caee6ea8226d6ed436efefd150b469cb261846

Merge pull request #1118 from n6g7/dependabot/npm_and_yarn/docs/prismjs-1.21.0 Build(deps): [security] bump prismjs from 1.20.0 to 1.21.0 in /docs

view details

push time in 7 days

PR merged n6g7/redux-saga-firebase

Build(deps): [security] bump prismjs from 1.20.0 to 1.21.0 in /docs dependencies security

Bumps prismjs from 1.20.0 to 1.21.0. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-wvhm-4hhf-97x9">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Cross-Site Scripting in Prism</strong></p> <h3>Impact</h3> <p>The easing preview of the Previewers plugin has an XSS vulnerability that allows attackers to execute arbitrary code in Safari and Internet Explorer.</p> <p>This impacts all Safari and Internet Explorer users of Prism >=v1.1.0 that use the <em>Previewers</em> plugin (>=v1.10.0) or the <em>Previewer: Easing</em> plugin (v1.1.0 to v1.9.0).</p> <h3>Patches</h3> <p>This problem is patched in v1.21.0.</p> <h3>Workarounds</h3> <p>To workaround the issue without upgrading, <a href="https://prismjs.com/plugins/previewers/#disabling-a-previewer">disable the easing preview</a> on all impacted code blocks. You need Prism v1.10.0 or newer to apply this workaround.</p> <h3>References</h3> <p>The vulnerability was introduced by this <a href="https://github.com/PrismJS/prism/commit/4303c940d3d3a20e8ce7635bf23331c75060f5c5">commit</a> on Sep 29, 2015 and fixed by <a href="https://twitter.com/kinugawamasato">Masato Kinugawa</a> (#2506).</p> <h3>For more information</h3> <p>If you have any questions or comments about this advisory, please <a href="https://github.com/PrismJS/prism/issues">open an issue</a>.</p> <p>Affected versions: >= 1.1.0 < 1.21.0</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/PrismJS/prism/releases">prismjs's releases</a>.</em></p> <blockquote> <h2>v1.21.0</h2> <p>Release 1.21.0</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PrismJS/prism/blob/master/CHANGELOG.md">prismjs's changelog</a>.</em></p> <blockquote> <h2>1.21.0 (2020-08-06)</h2> <h3>New components</h3> <ul> <li><strong>.ignore</strong> & <strong>.gitignore</strong> & <strong>.hgignore</strong> & <strong>.npmignore</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2481">#2481</a>) <a href="https://github.com/PrismJS/prism/commit/3fcce6fe"><code>3fcce6fe</code></a></li> <li><strong>Agda</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2430">#2430</a>) <a href="https://github.com/PrismJS/prism/commit/3a127c7d"><code>3a127c7d</code></a></li> <li><strong>AL</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2300">#2300</a>) <a href="https://github.com/PrismJS/prism/commit/de21eb64"><code>de21eb64</code></a></li> <li><strong>Cypher</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2459">#2459</a>) <a href="https://github.com/PrismJS/prism/commit/398e2943"><code>398e2943</code></a></li> <li><strong>Dhall</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2473">#2473</a>) <a href="https://github.com/PrismJS/prism/commit/649e51e5"><code>649e51e5</code></a></li> <li><strong>EditorConfig</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2471">#2471</a>) <a href="https://github.com/PrismJS/prism/commit/ed8fff91"><code>ed8fff91</code></a></li> <li><strong>HLSL</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2318">#2318</a>) <a href="https://github.com/PrismJS/prism/commit/87a5c7ae"><code>87a5c7ae</code></a></li> <li><strong>JS stack trace</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2418">#2418</a>) <a href="https://github.com/PrismJS/prism/commit/ae0327b3"><code>ae0327b3</code></a></li> <li><strong>PeopleCode</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2302">#2302</a>) <a href="https://github.com/PrismJS/prism/commit/bd4d8165"><code>bd4d8165</code></a></li> <li><strong>PureBasic</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2369">#2369</a>) <a href="https://github.com/PrismJS/prism/commit/d0c1c70d"><code>d0c1c70d</code></a></li> <li><strong>Racket</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2315">#2315</a>) <a href="https://github.com/PrismJS/prism/commit/053016ef"><code>053016ef</code></a></li> <li><strong>Smali</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2419">#2419</a>) <a href="https://github.com/PrismJS/prism/commit/22eb5cad"><code>22eb5cad</code></a></li> <li><strong>Structured Text (IEC 61131-3)</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2311">#2311</a>) <a href="https://github.com/PrismJS/prism/commit/8704cdfb"><code>8704cdfb</code></a></li> <li><strong>UnrealScript</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2305">#2305</a>) <a href="https://github.com/PrismJS/prism/commit/1093ceb3"><code>1093ceb3</code></a></li> <li><strong>WarpScript</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2307">#2307</a>) <a href="https://github.com/PrismJS/prism/commit/cde5b0fa"><code>cde5b0fa</code></a></li> <li><strong>XML doc (.net)</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2340">#2340</a>) <a href="https://github.com/PrismJS/prism/commit/caec5e30"><code>caec5e30</code></a></li> <li><strong>YANG</strong> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2467">#2467</a>) <a href="https://github.com/PrismJS/prism/commit/ed1df1e1"><code>ed1df1e1</code></a></li> </ul> <h3>Updated components</h3> <ul> <li>Markup & JSON: Added new aliases (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2390">#2390</a>) <a href="https://github.com/PrismJS/prism/commit/9782cfe6"><code>9782cfe6</code></a></li> <li>Fixed several cases of exponential backtracking (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2268">#2268</a>) <a href="https://github.com/PrismJS/prism/commit/7a554b5f"><code>7a554b5f</code></a></li> <li><strong>APL</strong> <ul> <li>Added <code>⍥</code> (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2409">#2409</a>) <a href="https://github.com/PrismJS/prism/commit/0255cb6a"><code>0255cb6a</code></a></li> </ul> </li> <li><strong>AutoHotkey</strong> <ul> <li>Added missing <code>format</code> built-in (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2450">#2450</a>) <a href="https://github.com/PrismJS/prism/commit/7c66cfc4"><code>7c66cfc4</code></a></li> <li>Improved comments and other improvements (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2412">#2412</a>) <a href="https://github.com/PrismJS/prism/commit/ddf3cc62"><code>ddf3cc62</code></a></li> <li>Added missing definitions (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2400">#2400</a>) <a href="https://github.com/PrismJS/prism/commit/4fe03676"><code>4fe03676</code></a></li> </ul> </li> <li><strong>Bash</strong> <ul> <li>Added <code>composer</code> command (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2298">#2298</a>) <a href="https://github.com/PrismJS/prism/commit/044dd271"><code>044dd271</code></a></li> </ul> </li> <li><strong>Batch</strong> <ul> <li>Fix escaped double quote (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2485">#2485</a>) <a href="https://github.com/PrismJS/prism/commit/f0f8210c"><code>f0f8210c</code></a></li> </ul> </li> <li><strong>C</strong> <ul> <li>Improved macros and expressions (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2440">#2440</a>) <a href="https://github.com/PrismJS/prism/commit/8a72fa6f"><code>8a72fa6f</code></a></li> <li>Improved macros (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2320">#2320</a>) <a href="https://github.com/PrismJS/prism/commit/fdcf7ed2"><code>fdcf7ed2</code></a></li> </ul> </li> <li><strong>C#</strong> <ul> <li>Improved pattern matching (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2411">#2411</a>) <a href="https://github.com/PrismJS/prism/commit/7f341fc1"><code>7f341fc1</code></a></li> <li>Fixed adjacent string interpolations (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2402">#2402</a>) <a href="https://github.com/PrismJS/prism/commit/2a2e79ed"><code>2a2e79ed</code></a></li> </ul> </li> <li><strong>C++</strong> <ul> <li>Added support for default comparison operator (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2426">#2426</a>) <a href="https://github.com/PrismJS/prism/commit/8e9d161c"><code>8e9d161c</code></a></li> <li>Improved class name detection (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2348">#2348</a>) <a href="https://github.com/PrismJS/prism/commit/e3fe9040"><code>e3fe9040</code></a></li> <li>Fixed <code>enum class</code> class names (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2342">#2342</a>) <a href="https://github.com/PrismJS/prism/commit/30b4e254"><code>30b4e254</code></a></li> </ul> </li> <li><strong>Content-Security-Policy</strong> <ul> <li>Fixed directives (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2461">#2461</a>) <a href="https://github.com/PrismJS/prism/commit/537a9e80"><code>537a9e80</code></a></li> </ul> </li> <li><strong>CSS</strong> <ul> <li>Improved url and added keywords (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2432">#2432</a>) <a href="https://github.com/PrismJS/prism/commit/964de5a1"><code>964de5a1</code></a></li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PrismJS/prism/commit/187c8a607ee70c7914682870156faa31ed01f001"><code>187c8a6</code></a> 1.21.0</li> <li><a href="https://github.com/PrismJS/prism/commit/bf4f323391d546d4b2e1a388f05c512a27491e9c"><code>bf4f323</code></a> Changelog for v1.21.0 (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2507">#2507</a>)</li> <li><a href="https://github.com/PrismJS/prism/commit/8bba4880202ef6bd7a1e379fe9aebe69dd75f7be"><code>8bba488</code></a> Previewers: Fixed XSS (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2506">#2506</a>)</li> <li><a href="https://github.com/PrismJS/prism/commit/158caf52343e59a66c2351ff1d83648efe871e33"><code>158caf5</code></a> JSON: Greedy comments (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2479">#2479</a>)</li> <li><a href="https://github.com/PrismJS/prism/commit/f0f8210c1a9745c064d49bfb985544c654986b24"><code>f0f8210</code></a> Batch: Fix escaped double quote (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2485">#2485</a>)</li> <li><a href="https://github.com/PrismJS/prism/commit/649e51e56250a81dc0b0c4f5b3a4ea23e1c21834"><code>649e51e</code></a> Added support for Dhall (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2473">#2473</a>)</li> <li><a href="https://github.com/PrismJS/prism/commit/453079bf96746e0c44f90cb7cd90fcae9a5f94cc"><code>453079b</code></a> Line Numbers: Fixed class name on website</li> <li><a href="https://github.com/PrismJS/prism/commit/a0efa40bde420ac3923947be611ebe6b3f077dce"><code>a0efa40</code></a> Fixed Treeview page (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2484">#2484</a>)</li> <li><a href="https://github.com/PrismJS/prism/commit/78161d607fe7d493831ff19759aac951330134a1"><code>78161d6</code></a> VB: Added VBA alias (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2469">#2469</a>)</li> <li><a href="https://github.com/PrismJS/prism/commit/ed1df1e1208401a8b84330ecc39689fa37d0e9f6"><code>ed1df1e</code></a> Added support for YANG (<a href="https://github-redirect.dependabot.com/PrismJS/prism/issues/2467">#2467</a>)</li> <li>Additional commits viewable in <a href="https://github.com/PrismJS/prism/compare/v1.20.0...v1.21.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 7 days

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha 66e20efe2e51b451ce612624e449c2fb4515669d

Build(deps): [security] bump http-proxy in /example Bumps [http-proxy](https://github.com/http-party/node-http-proxy) from 1.17.0 to 1.18.1. **This update includes a security fix.** - [Release notes](https://github.com/http-party/node-http-proxy/releases) - [Changelog](https://github.com/http-party/node-http-proxy/blob/master/CHANGELOG.md) - [Commits](https://github.com/http-party/node-http-proxy/compare/1.17.0...1.18.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha a9b9f8fbf03e5d60fed3711df1293304138cc4da

Merge pull request #1168 from n6g7/dependabot/npm_and_yarn/example/http-proxy-1.18.1 Build(deps): [security] bump http-proxy from 1.17.0 to 1.18.1 in /example

view details

push time in 7 days

PR merged n6g7/redux-saga-firebase

Build(deps): [security] bump http-proxy from 1.17.0 to 1.18.1 in /example dependencies security

Bumps http-proxy from 1.17.0 to 1.18.1. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-6x33-pw7p-hmpq">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Denial of Service in http-proxy</strong> Versions of <code>http-proxy</code> prior to 1.18.1 are vulnerable to Denial of Service. An HTTP request with a long body triggers an <code>ERR_HTTP_HEADERS_SENT</code> unhandled exception that crashes the proxy server. This is only possible when the proxy server sets headers in the proxy request using the <code>proxyReq.setHeader</code> function.</p> <p>For a proxy server running on <code>http://localhost:3000</code>, the following curl request triggers the unhandled exception:<br /> <code>curl -XPOST http://localhost:3000 -d "$(python -c 'print("x"*1025)')"</code></p> <h2>Recommendation</h2> <p>Upgrade to version 1.18.1 or later</p> <p>Affected versions: < 1.18.1</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/http-party/node-http-proxy/blob/master/CHANGELOG.md">http-proxy's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/http-party/node-http-proxy/compare/1.18.0...v1.18.1">v1.18.1</a> - 2020-05-17</h2> <h3>Merged</h3> <ul> <li>Skip sending the proxyReq event when the expect header is present <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1447"><code>#1447</code></a></li> <li>Remove node6 support, add node12 to build <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1397"><code>#1397</code></a></li> </ul> <h2><a href="https://github.com/http-party/node-http-proxy/compare/1.17.0...1.18.0">1.18.0</a> - 2019-09-18</h2> <h3>Merged</h3> <ul> <li>Added in auto-changelog module set to keepachangelog format <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1373"><code>#1373</code></a></li> <li>fix 'Modify Response' readme section to avoid unnecessary array copying <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1300"><code>#1300</code></a></li> <li>Fix incorrect target name for reverse proxy example <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1135"><code>#1135</code></a></li> <li>Fix modify response middleware example <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1139"><code>#1139</code></a></li> <li>[dist] Update dependency async to v3 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1359"><code>#1359</code></a></li> <li>Fix path to local http-proxy in examples. <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1072"><code>#1072</code></a></li> <li>fix reverse-proxy example require path <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1067"><code>#1067</code></a></li> <li>Update README.md <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/970"><code>#970</code></a></li> <li>[dist] Update dependency request to ~2.88.0 [SECURITY] <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1357"><code>#1357</code></a></li> <li>[dist] Update dependency eventemitter3 to v4 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1365"><code>#1365</code></a></li> <li>[dist] Update dependency colors to v1 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1360"><code>#1360</code></a></li> <li>[dist] Update all non-major dependencies <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1356"><code>#1356</code></a></li> <li>[dist] Update dependency agentkeepalive to v4 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1358"><code>#1358</code></a></li> <li>[dist] Update dependency nyc to v14 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1367"><code>#1367</code></a></li> <li>[dist] Update dependency concat-stream to v2 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1363"><code>#1363</code></a></li> <li>x-forwarded-host overwrite for mutli level proxies <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1267"><code>#1267</code></a></li> <li>[refactor doc] Complete rename to http-party org. <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1362"><code>#1362</code></a></li> <li>Highlight correct lines for createProxyServer <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1117"><code>#1117</code></a></li> <li>Fix docs for rewrite options - 201 also handled <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1147"><code>#1147</code></a></li> <li>Update .nyc_output <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1339"><code>#1339</code></a></li> <li>Configure Renovate <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1355"><code>#1355</code></a></li> <li>[examples] Restream body before proxying, support for Content-Type of application/x-www-form-urlencoded <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1264"><code>#1264</code></a></li> </ul> <h3>Commits</h3> <ul> <li>[dist] New test fixtures. <a href="https://github.com/http-party/node-http-proxy/commit/7e4a0e511bc30c059216860153301de2cdd1e97f"><code>7e4a0e5</code></a></li> <li>[dist] End of an era. <a href="https://github.com/http-party/node-http-proxy/commit/a9b09cce43f072db99fb5170030a05536177ccb7"><code>a9b09cc</code></a></li> <li>[dist] Version bump. 1.18.0 <a href="https://github.com/http-party/node-http-proxy/commit/9bbe486c5efcc356fb4d189ef38eee275bbde345"><code>9bbe486</code></a></li> <li>[fix] Latest versions. <a href="https://github.com/http-party/node-http-proxy/commit/59c4403e9dc15ab9b19ee2a3f4aecbfc6c3d94c4"><code>59c4403</code></a></li> <li>[fix test] Update tests. <a href="https://github.com/http-party/node-http-proxy/commit/dd1d08b6319d1def729554446a5b0176978a8dad"><code>dd1d08b</code></a></li> <li>[dist] Update dependency ws to v3 [SECURITY] <a href="https://github.com/http-party/node-http-proxy/commit/b00911c93740a00c5cfbacbb91565cb6912ed255"><code>b00911c</code></a></li> <li>[dist] .gitattributes all the things. <a href="https://github.com/http-party/node-http-proxy/commit/fc93520d741ec80be8ae31ca005f3e9c199e330e"><code>fc93520</code></a></li> <li>[dist] Regenerate package-lock.json. <a href="https://github.com/http-party/node-http-proxy/commit/16d4f8a95162b2e2e4ee6657c500f1208c044b2d"><code>16d4f8a</code></a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/http-party/node-http-proxy/commit/9b96cd725127a024dabebec6c7ea8c807272223d"><code>9b96cd7</code></a> 1.18.1</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/335aeeba2f0c286dc89c402eeb76af47834c89a3"><code>335aeeb</code></a> Skip sending the proxyReq event when the expect header is present (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1447">#1447</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/dba39668ba4c9ad461316e834b2d64b77e1ca88e"><code>dba3966</code></a> Remove node6 support, add node12 to build (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1397">#1397</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/9bbe486c5efcc356fb4d189ef38eee275bbde345"><code>9bbe486</code></a> [dist] Version bump. 1.18.0</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/6e4bef4d1cd96e7a284717941e0fc274acbd3712"><code>6e4bef4</code></a> Added in auto-changelog module set to keepachangelog format (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1373">#1373</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/d05624167ce75e860770c13afeacec2ce0f67add"><code>d056241</code></a> fix 'Modify Response' readme section to avoid unnecessary array copying (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1300">#1300</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/244303b994525684e1ec8dff2e8055f89b62b1ee"><code>244303b</code></a> Fix incorrect target name for reverse proxy example (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1135">#1135</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/b4028ba78bc4616e6969e0e66b0fe4634849b68b"><code>b4028ba</code></a> Fix modify response middleware example (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1139">#1139</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/77a98159d2da0f20a03e2819c79662f36069f234"><code>77a9815</code></a> [dist] Update dependency async to v3 (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1359">#1359</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/c662f9ebcd8d623db374dbc7bef231b2b0af0c3a"><code>c662f9e</code></a> Fix path to local http-proxy in examples. (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1072">#1072</a>)</li> <li>Additional commits viewable in <a href="https://github.com/http-party/node-http-proxy/compare/1.17.0...1.18.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+12 -14

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha df1c194a3a52d76528763af361bf11102e0fc325

Build(deps-dev): bump firebase from 7.14.4 to 7.20.0 Bumps [firebase](https://github.com/firebase/firebase-js-sdk) from 7.14.4 to 7.20.0. - [Release notes](https://github.com/firebase/firebase-js-sdk/releases) - [Commits](https://github.com/firebase/firebase-js-sdk/compare/firebase@7.14.4...firebase@7.20.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 1be5d8b1166a2b81728c4d9161d8a5f32d8662d0

Merge pull request #1183 from n6g7/dependabot/npm_and_yarn/firebase-7.20.0 Build(deps-dev): bump firebase from 7.14.4 to 7.20.0

view details

push time in 7 days

PR merged n6g7/redux-saga-firebase

Build(deps-dev): bump firebase from 7.14.4 to 7.20.0 dependencies

Bumps firebase from 7.14.4 to 7.20.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/268096e0d9bf2ec72c8746edf662bb41d7b247e7"><code>268096e</code></a> Version Packages (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3746">#3746</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/f47f9907cbd86a3dd95be73c040cbe5b077d4547"><code>f47f990</code></a> Exclude -compat from build:release (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3748">#3748</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/cb730cca0be1a8ade04a55386e80c0646806804b"><code>cb730cc</code></a> Update dynamic measurement ID change to ensure firebase minor bump (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3747">#3747</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/aa10af337895f60c1cfd67e5f400951fe30ed24b"><code>aa10af3</code></a> Add installations-exp packages to changeset ignore (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3745">#3745</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/d478772638ed4af8a1ad22eb91cb3cf986ae9985"><code>d478772</code></a> Lock file maintenance (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3246">#3246</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/931ab7e1f2a83f4d2506d96b4de1f1ad3e02ac6d"><code>931ab7e</code></a> Bump bl from 4.0.2 to 4.0.3 (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3731">#3731</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/fb3b095e4b7c8f57fdb3172bc039c84576abf290"><code>fb3b095</code></a> Use Dynamic Measurement ID in Analytics (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/2800">#2800</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/d347c6ca1bcb7cd48ab2e4f7954cabafe761aea7"><code>d347c6c</code></a> Infer database URL from Project ID (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3650">#3650</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/cc16b4ae481edb64c788ac2826a9dc1700585875"><code>cc16b4a</code></a> Tree-Shake RemoteStore (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3705">#3705</a>)</li> <li><a href="https://github.com/firebase/firebase-js-sdk/commit/f506e18facf8f47eff61cf83a98af4b1f2e94319"><code>f506e18</code></a> Fis modularization (<a href="https://github-redirect.dependabot.com/firebase/firebase-js-sdk/issues/3638">#3638</a>)</li> <li>Additional commits viewable in <a href="https://github.com/firebase/firebase-js-sdk/compare/firebase@7.14.4...firebase@7.20.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+442 -227

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha 1db889701d06a3cb3564f81f96f69e2fc787bf94

Build(deps-dev): bump @types/node from 14.0.1 to 14.10.0 Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 14.0.1 to 14.10.0. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 90284d41ba0bac4788c65d81ab9d6ab1ded18dba

Merge pull request #1184 from n6g7/dependabot/npm_and_yarn/types/node-14.10.0 Build(deps-dev): bump @types/node from 14.0.1 to 14.10.0

view details

push time in 7 days

push eventn6g7/notion-cms

dependabot-preview[bot]

commit sha 8e9cd7c7f4cd8a56efca76e5322806df75c08dc1

Bump typescript from 3.9.7 to 4.0.2 Bumps [typescript](https://github.com/Microsoft/TypeScript) from 3.9.7 to 4.0.2. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Commits](https://github.com/Microsoft/TypeScript/compare/v3.9.7...v4.0.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha b859c342409d9c8151ee5427c6ba9c0c66c6ac24

Merge pull request #59 from n6g7/dependabot/npm_and_yarn/typescript-4.0.2 Bump typescript from 3.9.7 to 4.0.2

view details

push time in 7 days

PR merged n6g7/notion-cms

Bump typescript from 3.9.7 to 4.0.2 dependencies

Bumps typescript from 3.9.7 to 4.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Microsoft/TypeScript/releases">typescript's releases</a>.</em></p> <blockquote> <h2>TypeScript 4.0</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-4-0-rc/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.0%22+is%3Aclosed+">fixed issues query for Typescript v4.0.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.1%22+is%3Aclosed+">fixed issues query for Typescript v4.0.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.2%22+is%3Aclosed+">fixed issues query for Typescript v4.0.2</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-40">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> <h2>TypeScript 4.0 Beta</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-4-0-beta/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0%22+is%3Aclosed+">fixed issues query for Typescript v4.0-beta</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-40beta">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/microsoft/TypeScript/commit/912cbdfcb6b5ed1b0623390fc350c3c313fc8f1b"><code>912cbdf</code></a> Update LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/076db46a3f6ed64f7286de1ab4a1767683d5d2cf"><code>076db46</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40072">#40072</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40076">#40076</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/c9c6cd29b6f87d64a61234fcd53642160b252bf2"><code>c9c6cd2</code></a> Bump version to 4.0.2 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/5f5dac0280d0b7f5296905a91e850617f2074871"><code>5f5dac0</code></a> Add '(approximate)' to the beginning of quick info requests in PartialSemanti...</li> <li><a href="https://github.com/microsoft/TypeScript/commit/10304555e79bf54dad62091156303e2b459cda72"><code>1030455</code></a> Ensure file, include and exclude specs used are strings (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40041">#40041</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/edaa8aa9c0e3287457ddd3cc566f4156b3fb0bb1"><code>edaa8aa</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39989">#39989</a> from amcasey/pinned-release-4.0</li> <li><a href="https://github.com/microsoft/TypeScript/commit/f88f3065fa02a3bc51c2a18aae865655cd05eaa7"><code>f88f306</code></a> Update LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/a1925515e28e919e16972b48f2cebb7b507581ba"><code>a192551</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40026">#40026</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40028">#40028</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/6620b251ef0faf9cc6e269ea74fe205e76b9461a"><code>6620b25</code></a> 🤖 Pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40005">#40005</a> (feat(40004): Missing Compiler API p...) into release-4.0 (#...</li> <li><a href="https://github.com/microsoft/TypeScript/commit/7558de69b1b73fc9383754839014f6322562b634"><code>7558de6</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39702">#39702</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39985">#39985</a>)</li> <li>Additional commits viewable in <a href="https://github.com/Microsoft/TypeScript/compare/v3.9.7...v4.0.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a development dependency.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 7 days

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha b3c7263c1dc82e5752389d1c69eb8f4d5f91f801

Build(deps): bump gatsby from 2.21.33 to 2.24.57 in /docs Bumps [gatsby](https://github.com/gatsbyjs/gatsby) from 2.21.33 to 2.24.57. - [Release notes](https://github.com/gatsbyjs/gatsby/releases) - [Changelog](https://github.com/gatsbyjs/gatsby/blob/master/CHANGELOG.md) - [Commits](https://github.com/gatsbyjs/gatsby/compare/gatsby@2.21.33...gatsby@2.24.57) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha d8e00af73c416d8fb3501a7329e6e03028174ab3

Merge pull request #1185 from n6g7/dependabot/npm_and_yarn/docs/gatsby-2.24.57 Build(deps): bump gatsby from 2.21.33 to 2.24.57 in /docs

view details

push time in 7 days

PR merged n6g7/redux-saga-firebase

Build(deps): bump gatsby from 2.21.33 to 2.24.57 in /docs dependencies

Bumps gatsby from 2.21.33 to 2.24.57. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gatsbyjs/gatsby/commit/a389c0e63e37b8e97ff713c04ec60bbc136d92fc"><code>a389c0e</code></a> chore(release): Publish</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/de68259d990d4b43660655724122d2cfbc79a7d8"><code>de68259</code></a> fix(gatsby): Handle node mutations immediately after file change (<a href="https://github-redirect.dependabot.com/gatsbyjs/gatsby/issues/26848">#26848</a>)</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/39df4fa51304bc05f5d9413da7ee80479a3ff726"><code>39df4fa</code></a> fix(gatsby): do not initialize cache in onPreInit API (<a href="https://github-redirect.dependabot.com/gatsbyjs/gatsby/issues/26810">#26810</a>)</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/ddddc40994d5a746ae08649a255e3974c407edd3"><code>ddddc40</code></a> fix(yarn.lock): reduce monorepo vulnerabilities by over 1000x (<a href="https://github-redirect.dependabot.com/gatsbyjs/gatsby/issues/26842">#26842</a>)</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/4b494b6c259d29ec85f78fe5137036fc16e967ce"><code>4b494b6</code></a> fix(gatsby): Run actions while recreating pages and draining mutation queue (...</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/cb2c3ffae51cc5d13fc4eea054f4314a181451d2"><code>cb2c3ff</code></a> fix(renovate): remove prettier from auto updates (<a href="https://github-redirect.dependabot.com/gatsbyjs/gatsby/issues/26841">#26841</a>)</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/6d963af6d86cd5e9acf4db0d4be6b1ef37fb8dcf"><code>6d963af</code></a> fix(gatsby-recipes): renable e2e test for npm package resource & fix dev/prod...</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/a264c45f4fcab77ea81bc580d8af96b304ff1e29"><code>a264c45</code></a> Revert "revert(gatsby-plugin-sharp): update dependencies" (<a href="https://github-redirect.dependabot.com/gatsbyjs/gatsby/issues/26838">#26838</a>)</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/c39bf219f6b63d69845b88cd4653fa0ddc3ac00e"><code>c39bf21</code></a> Update yarn.lock</li> <li><a href="https://github.com/gatsbyjs/gatsby/commit/a366e061ddd50abf12235369caf16624077dd420"><code>a366e06</code></a> chore(release): Publish</li> <li>Additional commits viewable in <a href="https://github.com/gatsbyjs/gatsby/compare/gatsby@2.21.33...gatsby@2.24.57">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+2502 -1460

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 7 days

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha 94f74cfb4046135ec0e9df2b41193381b5079bb8

Build(deps): [security] bump node-fetch in /example/functions Bumps [node-fetch](https://github.com/bitinn/node-fetch) from 2.6.0 to 2.6.1. **This update includes a security fix.** - [Release notes](https://github.com/bitinn/node-fetch/releases) - [Changelog](https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md) - [Commits](https://github.com/bitinn/node-fetch/compare/v2.6.0...v2.6.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 973afd2b1c0ab8c09e3236a92464a69386a1ee0d

Merge pull request #1186 from n6g7/dependabot/npm_and_yarn/example/functions/node-fetch-2.6.1 Build(deps): [security] bump node-fetch from 2.6.0 to 2.6.1 in /example/functions

view details

push time in 7 days

PR merged n6g7/redux-saga-firebase

Build(deps): [security] bump node-fetch from 2.6.0 to 2.6.1 in /example/functions dependencies security

Bumps node-fetch from 2.6.0 to 2.6.1. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-w7rc-rwvf-8q5r">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>The <code>size</code> option isn't honored after following a redirect in node-fetch</strong></p> <h3>Impact</h3> <p>Node Fetch did not honor the <code>size</code> option after following a redirect, which means that when a content size was over the limit, a <code>FetchError</code> would never get thrown and the process would end without failure.</p> <p>For most people, this fix will have a little or no impact. However, if you are relying on node-fetch to gate files above a size, the impact could be significant, for example: If you don't double-check the size of the data after <code>fetch()</code> has completed, your JS thread could get tied up doing work on a large file (DoS) and/or cost you money in computing.</p> <h3>Patches</h3> <p>We released patched versions for both stable and beta channels:</p> <ul> <li>For <code>v2</code>: 2.6.1</li> <li>For <code>v3</code>: 3.0.0-beta.9</li> </ul> <h3>Workarounds</h3> <p>None, it is strongly recommended to update as soon as possible.</p> <h3>For more information</h3> <p>If you have any questions or comments about this advisory:</p> <ul> <li>Open an issue in <a href="https://github.com/node-fetch/node-fetch/issues/new?assignees=&labels=question&template=support-or-usage.md&title=Question%3A+">node-fetch</a></li> <li>Contact one of the core maintainers (<a href="https://github.com/xxczaki">@xxczaki</a>, <a href="https://github.com/bitinn">@bitinn</a>, <a href="https://github.com/jimmywarting">@jimmywarting</a>, <a href="https://github.com/Richienb">@Richienb</a>, or <a href="https://github.com/gr2m">@gr2m</a>)</li> </ul> <p>Affected versions: < 2.6.1</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/bitinn/node-fetch/releases">node-fetch's releases</a>.</em></p> <blockquote> <h2>v2.6.1</h2> <p><strong>This is an important security release. It is strongly recommended to update as soon as possible.</strong></p> <p>See <a href="https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md#v261">CHANGELOG</a> for details.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md">node-fetch's changelog</a>.</em></p> <blockquote> <h2>v2.6.1</h2> <p><strong>This is an important security release. It is strongly recommended to update as soon as possible.</strong></p> <ul> <li>Fix: honor the <code>size</code> option after following a redirect.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/node-fetch/node-fetch/commit/b5e2e41b2b50bf2997720d6125accaf0dd68c0ab"><code>b5e2e41</code></a> update version number</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/2358a6c2563d1730a0cdaccc197c611949f6a334"><code>2358a6c</code></a> Honor the <code>size</code> option after following a redirect and revert data uri support</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/8c197f8982a238b3c345c64b17bfa92e16b4f7c4"><code>8c197f8</code></a> docs: Fix typos and grammatical errors in README.md (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/686">#686</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/1e99050f944ac435fce26a9549eadcc2419a968a"><code>1e99050</code></a> fix: Change error message thrown with redirect mode set to error (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/653">#653</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/244e6f63d42025465796e3ca4ce813bf2c31fc5b"><code>244e6f6</code></a> docs: Show backers in README</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/6a5d192034a0f438551dffb6d2d8df2c00921d16"><code>6a5d192</code></a> fix: Properly parse meta tag when parameters are reversed (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/682">#682</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/47a24a03eb49a49d81b768892aee10074ed54a91"><code>47a24a0</code></a> chore: Add opencollective badge</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/7b136627c537cb24430b0310638c9177a85acee1"><code>7b13662</code></a> chore: Add funding link</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/5535c2ed478d418969ecfd60c16453462de2a53f"><code>5535c2e</code></a> fix: Check for global.fetch before binding it (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/674">#674</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/1d5778ad0d910dbd1584fb407a186f5a0bc1ea22"><code>1d5778a</code></a> docs: Add Discord badge</li> <li>Additional commits viewable in <a href="https://github.com/bitinn/node-fetch/compare/v2.6.0...v2.6.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~akepinski">akepinski</a>, a new releaser for node-fetch since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventn6g7/notion-cms

dependabot-preview[bot]

commit sha d3d5207071ab50741a7558fdbb3796ca9b1e19ad

Bump sharp from 0.25.4 to 0.26.0 in /packages/client Bumps [sharp](https://github.com/lovell/sharp) from 0.25.4 to 0.26.0. - [Release notes](https://github.com/lovell/sharp/releases) - [Changelog](https://github.com/lovell/sharp/blob/master/docs/changelog.md) - [Commits](https://github.com/lovell/sharp/compare/v0.25.4...v0.26.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 33e98bf7eaf9257a8bb28f2af9bf7cab161a5466

Merge pull request #67 from n6g7/dependabot/npm_and_yarn/packages/client/sharp-0.26.0 Bump sharp from 0.25.4 to 0.26.0 in /packages/client

view details

push time in 7 days

PR merged n6g7/notion-cms

Bump sharp from 0.25.4 to 0.26.0 in /packages/client dependencies

Bumps sharp from 0.25.4 to 0.26.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/lovell/sharp/blob/master/docs/changelog.md">sharp's changelog</a>.</em></p> <blockquote> <h3>v0.26.0 - 25th August 2020</h3> <ul> <li> <p>Prebuilt libvips binaries are now statically-linked and Brotli-compressed, requiring Node.js 10.16.0+.</p> </li> <li> <p>TIFF output <code>squash</code> is replaced by <code>bitdepth</code> to reduce to 1, 2 or 4 bit.</p> </li> <li> <p>JPEG output <code>quality</code> >= 90 no longer automatically sets <code>chromaSubsampling</code> to <code>4:4:4</code>.</p> </li> <li> <p>Add most <code>dominant</code> colour to image <code>stats</code>. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/640">#640</a></p> </li> <li> <p>Add support for animated GIF (requires *magick) and WebP output. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2012">#2012</a> <a href="https://github.com/deftomat">@deftomat</a></p> </li> <li> <p>Add support for libvips ImageMagick v7 loaders. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2258">#2258</a> <a href="https://github.com/vouillon">@vouillon</a></p> </li> <li> <p>Allow multi-page input via *magick. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2259">#2259</a> <a href="https://github.com/vouillon">@vouillon</a></p> </li> <li> <p>Add support to <code>withMetadata</code> for custom ICC profile. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2271">#2271</a> <a href="https://github.com/roborourke">@roborourke</a></p> </li> <li> <p>Ensure prebuilt binaries for ARM default to v7 when using Electron. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2292">#2292</a> <a href="https://github.com/diegodev3">@diegodev3</a></p> </li> </ul> <h2>v0.25 - <em>yield</em></h2> <p>Requires libvips v8.9.1</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lovell/sharp/commit/866e9824d18aad90aab42a449e9e57020f7cfbd1"><code>866e982</code></a> Release v0.26.0</li> <li><a href="https://github.com/lovell/sharp/commit/482e6078e2ed32d07d226cd8001041469479f9d8"><code>482e607</code></a> Tests: Update leak suppressions for librsvg static data</li> <li><a href="https://github.com/lovell/sharp/commit/bc7ab296ef1fb0097dbcafa0d146e8725e339326"><code>bc7ab29</code></a> Tests: Update leak suppressions for static libs</li> <li><a href="https://github.com/lovell/sharp/commit/a5f4f53b5638eee6f25497269e3ce125c6c43898"><code>a5f4f53</code></a> Tests: remove no-longer-used conditional assertions</li> <li><a href="https://github.com/lovell/sharp/commit/b1227f526d077afe7f4865ff0f15bccbd22d108a"><code>b1227f5</code></a> Verify minimum libvips version at compile time</li> <li><a href="https://github.com/lovell/sharp/commit/78b42c8306d3dc869af5813e610c2ff85e2d7002"><code>78b42c8</code></a> Docs: update performance test results</li> <li><a href="https://github.com/lovell/sharp/commit/4b6d45ab8e7ac30cd2a3d1e8cb27d8b96ed380f6"><code>4b6d45a</code></a> Prerelease v0.26.0-beta1</li> <li><a href="https://github.com/lovell/sharp/commit/7980341923e957a45b33edcb6a2b58768a7cf16f"><code>7980341</code></a> Upgrade libvips to v8.10.0</li> <li><a href="https://github.com/lovell/sharp/commit/3917efdebd91ddaf3878a276a6c7b79edce2d2fd"><code>3917efd</code></a> Benchmarks: ensure PNG tests use consistent settings</li> <li><a href="https://github.com/lovell/sharp/commit/eaecb7347ba61955b3b6412143c63b668c6f0e46"><code>eaecb73</code></a> Add support to withMetadata for custom ICC profile <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2271">#2271</a></li> <li>Additional commits viewable in <a href="https://github.com/lovell/sharp/compare/v0.25.4...v0.26.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because this dependency is pre-1.0.0.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+15 -64

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 7 days

push eventn6g7/notion-cms

dependabot-preview[bot]

commit sha 6f0431beb1775b34d439a01b3d4482c3f44ca264

Bump @notion-cms/types from 0.0.13 to 0.0.14 in /packages/react Bumps [@notion-cms/types](https://github.com/n6g7/notion-cms) from 0.0.13 to 0.0.14. - [Release notes](https://github.com/n6g7/notion-cms/releases) - [Commits](https://github.com/n6g7/notion-cms/compare/v0.0.13...v0.0.14) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 14e7390fe1c4f1a64e4840f7709fc6e90d64de51

Merge pull request #72 from n6g7/dependabot/npm_and_yarn/packages/react/notion-cms/types-0.0.14 Bump @notion-cms/types from 0.0.13 to 0.0.14 in /packages/react

view details

push time in 7 days

PR merged n6g7/notion-cms

Bump @notion-cms/types from 0.0.13 to 0.0.14 in /packages/react dependencies

Bumps @notion-cms/types from 0.0.13 to 0.0.14. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/n6g7/notion-cms/commit/fa538631465f5f8d3970a0ede7a187e707194546"><code>fa53863</code></a> v0.0.14</li> <li><a href="https://github.com/n6g7/notion-cms/commit/4ba876e9b224027036c20810acbc249b6bb5d731"><code>4ba876e</code></a> Support links in text.</li> <li>See full diff in <a href="https://github.com/n6g7/notion-cms/compare/v0.0.13...v0.0.14">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because this dependency is pre-1.0.0.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

startedhoppscotch/hoppscotch

started time in 10 days

created tagn6g7/notion-cms

tagv0.0.14

Notion.so as a headless CMS

created time in 14 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 4ba876e9b224027036c20810acbc249b6bb5d731

Support links in text.

view details

Nathan Gaberel

commit sha fa538631465f5f8d3970a0ede7a187e707194546

v0.0.14

view details

push time in 14 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 610422d528ffb9d04b27a71067276bec7d167b66

Add limit to loadCollectionItem.

view details

Nathan Gaberel

commit sha 4ffba3c2fe47edfb4827c594a9bd4d35be9fce8f

v0.0.13

view details

push time in 14 days

created tagn6g7/notion-cms

tagv0.0.13

Notion.so as a headless CMS

created time in 14 days

push eventn6g7/notion-cms

Nathan Gaberel

commit sha c66698f704213dd939bb6b1e66dd54c47101b9ff

Allow setting limit in loadCollection.

view details

Nathan Gaberel

commit sha 0f672191a97357f114783231bd8d7897b568b255

v0.0.12

view details

push time in 14 days

created tagn6g7/notion-cms

tagv0.0.12

Notion.so as a headless CMS

created time in 14 days

push eventn6g7/chapter

snyk-bot

commit sha 4772377045c2b73e2cc53df0af0b276a06825134

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-608086

view details

push time in 15 days

create barnchn6g7/chapter

branch : snyk-fix-0b637b593a1683ecf276272469e86591

created branch time in 15 days

push eventn6g7/metamorph

snyk-bot

commit sha 3cd2b842d30aa87dcfc68ad5478037fab0f6e528

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-608086

view details

push time in 15 days

create barnchn6g7/metamorph

branch : snyk-fix-c4a3413a711fd7cf339bc094e3a7ac81

created branch time in 15 days

startedaliscott/infracost

started time in 24 days

push eventn6g7/chapter

snyk-bot

commit sha 60322666bc4224749f45c01daa1895575cba6205

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-590103

view details

push time in a month

create barnchn6g7/chapter

branch : snyk-fix-f7bceb4e9fb69eab4c0854c373865979

created branch time in a month

push eventn6g7/metamorph

snyk-bot

commit sha 55b7acb681d93553afaf65b65f870e458fddae9a

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-590103

view details

push time in a month

create barnchn6g7/metamorph

branch : snyk-fix-cba739946415bf89b458abfee13e0cc9

created branch time in a month

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha ace73dd324c86620ddba621ba5480a06b96684da

Build(deps-dev): bump eslint from 7.0.0 to 7.6.0 Bumps [eslint](https://github.com/eslint/eslint) from 7.0.0 to 7.6.0. - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md) - [Commits](https://github.com/eslint/eslint/compare/v7.0.0...v7.6.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 6d55ee8d28b0cef0ec85dff8f93253e4f64815ed

Merge pull request #1103 from n6g7/dependabot/npm_and_yarn/eslint-7.6.0 Build(deps-dev): bump eslint from 7.0.0 to 7.6.0

view details

push time in a month

PR merged n6g7/redux-saga-firebase

Build(deps-dev): bump eslint from 7.0.0 to 7.6.0 dependencies

Bumps eslint from 7.0.0 to 7.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/eslint/eslint/releases">eslint's releases</a>.</em></p> <blockquote> <h2>v7.6.0</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/ecb2b7343a0d14fb57d297a16be6c1b176fb3dbf"><code>ecb2b73</code></a> Update: require <code>meta</code> for fixable rules in RuleTester (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13349">#13349</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13489">#13489</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/6fb4edde3b7a7ae2faf8ac956a7342fbf80865fc"><code>6fb4edd</code></a> Docs: fix broken links in developer guide (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13518">#13518</a>) (Sam Chen)</li> <li><a href="https://github.com/eslint/eslint/commit/318fe103dbf2548eee293ff456ef0b829dbe3db3"><code>318fe10</code></a> Fix: Do not output <code>undefined</code> as line and column when it's unavailable (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13519">#13519</a>) (haya14busa)</li> <li><a href="https://github.com/eslint/eslint/commit/493b5b40cae7a076fdeb19740f8c88fb4ae9c1fb"><code>493b5b4</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/f100143fa5f529aacb2b50e650a00d2697ca4c54"><code>f100143</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/16b10fe8ba3c78939d5ada4a25caf2f0c9e6a058"><code>16b10fe</code></a> Fix: Update the chatroom link to go directly to help channel (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13536">#13536</a>) (Nicholas C. Zakas)</li> <li><a href="https://github.com/eslint/eslint/commit/f937eb95407f60d3772bcb956e227aaf99e48777"><code>f937eb9</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/e71e2980cd2e319afc70d8c859c7ffd59cf4157b"><code>e71e298</code></a> Update: Change no-duplicate-case to comparing tokens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13485">#13485</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13494">#13494</a>) (Yosuke Ota)</li> <li><a href="https://github.com/eslint/eslint/commit/6c4aea44fd78e1eecea5fe3c37e1921e3b1e98a6"><code>6c4aea4</code></a> Docs: add ECMAScript 2020 to README (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13510">#13510</a>) (Milos Djermanovic)</li> </ul> <h2>v7.5.0</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/6ea3178776eae0e40c3f5498893e8aab0e23686b"><code>6ea3178</code></a> Update: optional chaining support (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12642">#12642</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13416">#13416</a>) (Toru Nagashima)</li> <li><a href="https://github.com/eslint/eslint/commit/540b1af77278ae649b621aa8d4bf8d6de03c3155"><code>540b1af</code></a> Chore: enable consistent-meta-messages internal rule (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13487">#13487</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/885a1455691265db88dc0befe9b48a69d69e8b9c"><code>885a145</code></a> Docs: clarify behavior if <code>meta.fixable</code> is omitted (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13349">#13349</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13493">#13493</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/1a01b420eaab0de03dab5cc190a9f2a860c21a84"><code>1a01b42</code></a> Docs: Update technology sponsors in README (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13478">#13478</a>) (Nicholas C. Zakas)</li> <li><a href="https://github.com/eslint/eslint/commit/6ed9e8e4ff038c0259b0e7fe7ab7f4fd4ec55801"><code>6ed9e8e</code></a> Upgrade: lodash@4.17.19 (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13499">#13499</a>) (Yohan Siguret)</li> <li><a href="https://github.com/eslint/eslint/commit/45cdf00da6aeff3d584d37b0710fc8d6ad9456d6"><code>45cdf00</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/f1cc725ba1b8646dcf06a83716d96ad9bb726172"><code>f1cc725</code></a> Docs: fix linebreaks between versions in changelog (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13488">#13488</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/f4d7b9e1a599346b2f21ff9de003b311b51411e6"><code>f4d7b9e</code></a> Update: deprecate id-blacklist rule (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13465">#13465</a>) (Dimitri Mitropoulos)</li> <li><a href="https://github.com/eslint/eslint/commit/e14a645aa495558081490f990ba221e21aa6b27c"><code>e14a645</code></a> Chore: use espree.latestEcmaVersion in fuzzer (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13484">#13484</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/61097fe5cc275d414a0c8e19b31c6060cb5568b7"><code>61097fe</code></a> Docs: Update int rule level to string (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13483">#13483</a>) (Brandon Mills)</li> <li><a href="https://github.com/eslint/eslint/commit/c8f9c8210cf4b9da8f07922093d7b219abad9f10"><code>c8f9c82</code></a> Update: Improve report location no-irregular-whitespace (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13462">#13462</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/f2e68ec1d6cee6299e8a5cdf76c522c11d3008dd"><code>f2e68ec</code></a> Build: update webpack resolve.mainFields to match website config (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13457">#13457</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/a96bc5ec06f3a48bfe458bccd68d4d3b2a280ed9"><code>a96bc5e</code></a> Fix: arrow-body-style fixer for <code>in</code> wrap (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/11849">#11849</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13228">#13228</a>) (Anix)</li> <li><a href="https://github.com/eslint/eslint/commit/748734fdd497fbf61f3a616ff4a09169135b9396"><code>748734f</code></a> Upgrade: Updated puppeteer version to v4.0.0 (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13444">#13444</a>) (odidev)</li> <li><a href="https://github.com/eslint/eslint/commit/e951457b7aaa1b12b135588d36e3f4db4d7b8463"><code>e951457</code></a> Docs: fix wording in configuring.md (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13469">#13469</a>) (Piper)</li> <li><a href="https://github.com/eslint/eslint/commit/0af1d2828d27885483737867653ba1659af72005"><code>0af1d28</code></a> Update: add allowSeparatedGroups option to sort-imports (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12951">#12951</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13455">#13455</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/1050ee78a95da9484ff333dc1c74dac64c05da6f"><code>1050ee7</code></a> Update: Improve report location for no-unneeded-ternary (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13456">#13456</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/b77b4202bd1d5d1306f6f645e88d7a41a51715db"><code>b77b420</code></a> Update: Improve report location for max-len (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13458">#13458</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/095194c0fc0eb02aa69fde6b4280696e0e4de214"><code>095194c</code></a> Fix: add end location to reports in object-curly-newline (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13460">#13460</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/10251bbaeba80ac15244f385fc42cf2f2a30e5d2"><code>10251bb</code></a> Fix: add end location to reports in keyword-spacing (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13461">#13461</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/2ea7ee51a4e05ee76a6dae5954c3b6263b0970a3"><code>2ea7ee5</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/b55fd3b8c05a29a465a794a524b06c1a28cddf0c"><code>b55fd3b</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> </ul> <h2>v7.4.0</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/f21bad2680406a2671b877f8dba47f4475d0cc64"><code>f21bad2</code></a> Docs: fix description for <code>never</code> in multiline-ternary (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13368">#13368</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13452">#13452</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ada2c891298382f82dfabf37cacd59a1057b2bb7"><code>ada2c89</code></a> Fix: support typescript generics in arrow-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12570">#12570</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13451">#13451</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/89ee01e083f1e02293bf8d1447f9b0fdb3cb9384"><code>89ee01e</code></a> Fix: Revert config cloning (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13447">#13447</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13449">#13449</a>) (薛定谔的猫)</li> <li><a href="https://github.com/eslint/eslint/commit/0a463dbf7cc5a77d442879c9117204d4d38db972"><code>0a463db</code></a> Docs: fix no-multiple-empty-lines examples (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13432">#13432</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13433">#13433</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ff5317e93425f93cfdf808609551ee67b2032543"><code>ff5317e</code></a> Update: Improve array-callback-return report message (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13395">#13395</a>) (Philip (flip) Kromer)</li> <li><a href="https://github.com/eslint/eslint/commit/3f51930eea7cddc921a9ee3cb0328c7b649c0f83"><code>3f51930</code></a> Fix: false positive new with member in no-extra-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12740">#12740</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13375">#13375</a>) (YeonJuan)</li> <li><a href="https://github.com/eslint/eslint/commit/825a5b98d3d84f6eb72b75f7d8519de763cc8898"><code>825a5b9</code></a> Fix: Clarify documentation on implicit ignore behavior (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12348">#12348</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12600">#12600</a>) (Scott Hardin)</li> <li><a href="https://github.com/eslint/eslint/commit/c1391566a5f765f25716527de7b5cdee16c0ce36"><code>c139156</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/0c17e9d2ac307cc288eea6ed7971bd5a7d33321a"><code>0c17e9d</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/c680387ba61f6dccf0390d24a85d871fa83e9fea"><code>c680387</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/bf3939bbd9a33d0eb96cebe6a53bf61c855f9ba6"><code>bf3939b</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/7baf02e983af909800261263f125cca901a5bd0f"><code>7baf02e</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/5c4c3fdfbda18a13223ad36f44283adbfee8c496"><code>5c4c3fd</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/53912aab1856327b399cca26cbb2ba81fd01bfa2"><code>53912aa</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/eslint/eslint/blob/master/CHANGELOG.md">eslint's changelog</a>.</em></p> <blockquote> <p>v7.6.0 - July 31, 2020</p> <ul> <li><a href="https://github.com/eslint/eslint/commit/ecb2b7343a0d14fb57d297a16be6c1b176fb3dbf"><code>ecb2b73</code></a> Update: require <code>meta</code> for fixable rules in RuleTester (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13349">#13349</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13489">#13489</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/6fb4edde3b7a7ae2faf8ac956a7342fbf80865fc"><code>6fb4edd</code></a> Docs: fix broken links in developer guide (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13518">#13518</a>) (Sam Chen)</li> <li><a href="https://github.com/eslint/eslint/commit/318fe103dbf2548eee293ff456ef0b829dbe3db3"><code>318fe10</code></a> Fix: Do not output <code>undefined</code> as line and column when it's unavailable (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13519">#13519</a>) (haya14busa)</li> <li><a href="https://github.com/eslint/eslint/commit/493b5b40cae7a076fdeb19740f8c88fb4ae9c1fb"><code>493b5b4</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/f100143fa5f529aacb2b50e650a00d2697ca4c54"><code>f100143</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/16b10fe8ba3c78939d5ada4a25caf2f0c9e6a058"><code>16b10fe</code></a> Fix: Update the chatroom link to go directly to help channel (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13536">#13536</a>) (Nicholas C. Zakas)</li> <li><a href="https://github.com/eslint/eslint/commit/f937eb95407f60d3772bcb956e227aaf99e48777"><code>f937eb9</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/e71e2980cd2e319afc70d8c859c7ffd59cf4157b"><code>e71e298</code></a> Update: Change no-duplicate-case to comparing tokens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13485">#13485</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13494">#13494</a>) (Yosuke Ota)</li> <li><a href="https://github.com/eslint/eslint/commit/6c4aea44fd78e1eecea5fe3c37e1921e3b1e98a6"><code>6c4aea4</code></a> Docs: add ECMAScript 2020 to README (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13510">#13510</a>) (Milos Djermanovic)</li> </ul> <p>v7.5.0 - July 18, 2020</p> <ul> <li><a href="https://github.com/eslint/eslint/commit/6ea3178776eae0e40c3f5498893e8aab0e23686b"><code>6ea3178</code></a> Update: optional chaining support (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12642">#12642</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13416">#13416</a>) (Toru Nagashima)</li> <li><a href="https://github.com/eslint/eslint/commit/540b1af77278ae649b621aa8d4bf8d6de03c3155"><code>540b1af</code></a> Chore: enable consistent-meta-messages internal rule (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13487">#13487</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/885a1455691265db88dc0befe9b48a69d69e8b9c"><code>885a145</code></a> Docs: clarify behavior if <code>meta.fixable</code> is omitted (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13349">#13349</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13493">#13493</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/1a01b420eaab0de03dab5cc190a9f2a860c21a84"><code>1a01b42</code></a> Docs: Update technology sponsors in README (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13478">#13478</a>) (Nicholas C. Zakas)</li> <li><a href="https://github.com/eslint/eslint/commit/6ed9e8e4ff038c0259b0e7fe7ab7f4fd4ec55801"><code>6ed9e8e</code></a> Upgrade: lodash@4.17.19 (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13499">#13499</a>) (Yohan Siguret)</li> <li><a href="https://github.com/eslint/eslint/commit/45cdf00da6aeff3d584d37b0710fc8d6ad9456d6"><code>45cdf00</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/f1cc725ba1b8646dcf06a83716d96ad9bb726172"><code>f1cc725</code></a> Docs: fix linebreaks between versions in changelog (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13488">#13488</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/f4d7b9e1a599346b2f21ff9de003b311b51411e6"><code>f4d7b9e</code></a> Update: deprecate id-blacklist rule (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13465">#13465</a>) (Dimitri Mitropoulos)</li> <li><a href="https://github.com/eslint/eslint/commit/e14a645aa495558081490f990ba221e21aa6b27c"><code>e14a645</code></a> Chore: use espree.latestEcmaVersion in fuzzer (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13484">#13484</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/61097fe5cc275d414a0c8e19b31c6060cb5568b7"><code>61097fe</code></a> Docs: Update int rule level to string (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13483">#13483</a>) (Brandon Mills)</li> <li><a href="https://github.com/eslint/eslint/commit/c8f9c8210cf4b9da8f07922093d7b219abad9f10"><code>c8f9c82</code></a> Update: Improve report location no-irregular-whitespace (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13462">#13462</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/f2e68ec1d6cee6299e8a5cdf76c522c11d3008dd"><code>f2e68ec</code></a> Build: update webpack resolve.mainFields to match website config (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13457">#13457</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/a96bc5ec06f3a48bfe458bccd68d4d3b2a280ed9"><code>a96bc5e</code></a> Fix: arrow-body-style fixer for <code>in</code> wrap (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/11849">#11849</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13228">#13228</a>) (Anix)</li> <li><a href="https://github.com/eslint/eslint/commit/748734fdd497fbf61f3a616ff4a09169135b9396"><code>748734f</code></a> Upgrade: Updated puppeteer version to v4.0.0 (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13444">#13444</a>) (odidev)</li> <li><a href="https://github.com/eslint/eslint/commit/e951457b7aaa1b12b135588d36e3f4db4d7b8463"><code>e951457</code></a> Docs: fix wording in configuring.md (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13469">#13469</a>) (Piper)</li> <li><a href="https://github.com/eslint/eslint/commit/0af1d2828d27885483737867653ba1659af72005"><code>0af1d28</code></a> Update: add allowSeparatedGroups option to sort-imports (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12951">#12951</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13455">#13455</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/1050ee78a95da9484ff333dc1c74dac64c05da6f"><code>1050ee7</code></a> Update: Improve report location for no-unneeded-ternary (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13456">#13456</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/b77b4202bd1d5d1306f6f645e88d7a41a51715db"><code>b77b420</code></a> Update: Improve report location for max-len (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13458">#13458</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/095194c0fc0eb02aa69fde6b4280696e0e4de214"><code>095194c</code></a> Fix: add end location to reports in object-curly-newline (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13460">#13460</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/10251bbaeba80ac15244f385fc42cf2f2a30e5d2"><code>10251bb</code></a> Fix: add end location to reports in keyword-spacing (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12334">#12334</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13461">#13461</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/2ea7ee51a4e05ee76a6dae5954c3b6263b0970a3"><code>2ea7ee5</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/b55fd3b8c05a29a465a794a524b06c1a28cddf0c"><code>b55fd3b</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> </ul> <p>v7.4.0 - July 3, 2020</p> <ul> <li><a href="https://github.com/eslint/eslint/commit/f21bad2680406a2671b877f8dba47f4475d0cc64"><code>f21bad2</code></a> Docs: fix description for <code>never</code> in multiline-ternary (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13368">#13368</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13452">#13452</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ada2c891298382f82dfabf37cacd59a1057b2bb7"><code>ada2c89</code></a> Fix: support typescript generics in arrow-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12570">#12570</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13451">#13451</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/89ee01e083f1e02293bf8d1447f9b0fdb3cb9384"><code>89ee01e</code></a> Fix: Revert config cloning (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13447">#13447</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13449">#13449</a>) (薛定谔的猫)</li> <li><a href="https://github.com/eslint/eslint/commit/0a463dbf7cc5a77d442879c9117204d4d38db972"><code>0a463db</code></a> Docs: fix no-multiple-empty-lines examples (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13432">#13432</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13433">#13433</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/ff5317e93425f93cfdf808609551ee67b2032543"><code>ff5317e</code></a> Update: Improve array-callback-return report message (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13395">#13395</a>) (Philip (flip) Kromer)</li> <li><a href="https://github.com/eslint/eslint/commit/3f51930eea7cddc921a9ee3cb0328c7b649c0f83"><code>3f51930</code></a> Fix: false positive new with member in no-extra-parens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12740">#12740</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13375">#13375</a>) (YeonJuan)</li> <li><a href="https://github.com/eslint/eslint/commit/825a5b98d3d84f6eb72b75f7d8519de763cc8898"><code>825a5b9</code></a> Fix: Clarify documentation on implicit ignore behavior (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12348">#12348</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/12600">#12600</a>) (Scott Hardin)</li> <li><a href="https://github.com/eslint/eslint/commit/c1391566a5f765f25716527de7b5cdee16c0ce36"><code>c139156</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/0c17e9d2ac307cc288eea6ed7971bd5a7d33321a"><code>0c17e9d</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/c680387ba61f6dccf0390d24a85d871fa83e9fea"><code>c680387</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> <li><a href="https://github.com/eslint/eslint/commit/bf3939bbd9a33d0eb96cebe6a53bf61c855f9ba6"><code>bf3939b</code></a> Sponsors: Sync README with website (ESLint Jenkins)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/eslint/eslint/commit/e8f5289de5f40c4e68192cafa633d1a4595267c6"><code>e8f5289</code></a> 7.6.0</li> <li><a href="https://github.com/eslint/eslint/commit/bc58a3447b8aafa90c2f3f84fd4704348e06dcfe"><code>bc58a34</code></a> Build: changelog update for 7.6.0</li> <li><a href="https://github.com/eslint/eslint/commit/ecb2b7343a0d14fb57d297a16be6c1b176fb3dbf"><code>ecb2b73</code></a> Update: require <code>meta</code> for fixable rules in RuleTester (refs <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13349">#13349</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13489">#13489</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/6fb4edde3b7a7ae2faf8ac956a7342fbf80865fc"><code>6fb4edd</code></a> Docs: fix broken links in developer guide (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13518">#13518</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/318fe103dbf2548eee293ff456ef0b829dbe3db3"><code>318fe10</code></a> Fix: Do not output <code>undefined</code> as line and column when it's unavailable (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13519">#13519</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/493b5b40cae7a076fdeb19740f8c88fb4ae9c1fb"><code>493b5b4</code></a> Sponsors: Sync README with website</li> <li><a href="https://github.com/eslint/eslint/commit/f100143fa5f529aacb2b50e650a00d2697ca4c54"><code>f100143</code></a> Sponsors: Sync README with website</li> <li><a href="https://github.com/eslint/eslint/commit/16b10fe8ba3c78939d5ada4a25caf2f0c9e6a058"><code>16b10fe</code></a> Fix: Update the chatroom link to go directly to help channel (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13536">#13536</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/f937eb95407f60d3772bcb956e227aaf99e48777"><code>f937eb9</code></a> Sponsors: Sync README with website</li> <li><a href="https://github.com/eslint/eslint/commit/e71e2980cd2e319afc70d8c859c7ffd59cf4157b"><code>e71e298</code></a> Update: Change no-duplicate-case to comparing tokens (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13485">#13485</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/13494">#13494</a>)</li> <li>Additional commits viewable in <a href="https://github.com/eslint/eslint/compare/v7.0.0...v7.6.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+51 -135

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in a month

push eventn6g7/redux-saga-firebase

dependabot-preview[bot]

commit sha bf62437ad98333cbb0ab626a3356c17f813ff6b4

Build(deps): [security] bump lodash from 4.17.15 to 4.17.20 in /example Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.20. **This update includes security fixes.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.20) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 00186e8500596e87f076493c39a1711f58c75b4e

Merge pull request #1127 from n6g7/dependabot/npm_and_yarn/example/lodash-4.17.20 Build(deps): [security] bump lodash from 4.17.15 to 4.17.20 in /example

view details

push time in a month

PR merged n6g7/redux-saga-firebase

Build(deps): [security] bump lodash from 4.17.15 to 4.17.20 in /example dependencies security

Bumps lodash from 4.17.15 to 4.17.20. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/nodejs/security-wg/blob/master/vuln/npm/516.json">The Node Security Working Group</a>.</em></p> <blockquote> <p><strong>Allocation of Resources Without Limits or Throttling</strong> Prototype pollution attack (lodash)</p> <p>Affected versions: >=4.17.15 <4.17.19</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.20">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in a month

startedserverless-operations/serverless-step-functions

started time in a month

startedalexcasalboni/aws-lambda-power-tuning

started time in a month

startedmbi/django-simple-captcha

started time in a month

push eventn6g7/cookbook

dependabot[bot]

commit sha ccab1a2284906f318f39e6d04c6efe1f1ce2dfa8

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Nathan Gaberel

commit sha eacec7e98a36207136cefbfee859b38f957ce792

Merge pull request #41 from n6g7/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

push time in 2 months

PR merged n6g7/cookbook

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

1 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

push eventn6g7/notion-cms

dependabot-preview[bot]

commit sha 9f27cd37ab82c1d5c6995b5907da799d97f91197

Bump sharp from 0.25.3 to 0.25.4 in /packages/client Bumps [sharp](https://github.com/lovell/sharp) from 0.25.3 to 0.25.4. - [Release notes](https://github.com/lovell/sharp/releases) - [Changelog](https://github.com/lovell/sharp/blob/master/docs/changelog.md) - [Commits](https://github.com/lovell/sharp/compare/v0.25.3...v0.25.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 132984c27cb86bc2368f6f0da7e3bab094129410

Merge pull request #28 from n6g7/dependabot/npm_and_yarn/packages/client/sharp-0.25.4 Bump sharp from 0.25.3 to 0.25.4 in /packages/client

view details

push time in 2 months

PR merged n6g7/notion-cms

Bump sharp from 0.25.3 to 0.25.4 in /packages/client dependencies

Bumps sharp from 0.25.3 to 0.25.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/lovell/sharp/blob/master/docs/changelog.md">sharp's changelog</a>.</em></p> <blockquote> <h3>v0.25.4 - 12th June 2020</h3> <ul> <li> <p>Allow libvips binary location override where version is appended. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2217">#2217</a> <a href="https://github.com/malice00">@malice00</a></p> </li> <li> <p>Enable PNG palette when setting quality, colours, colors or dither. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2226">#2226</a> <a href="https://github.com/romaleev">@romaleev</a></p> </li> <li> <p>Add <code>level</code> constructor option to use a specific level of a multi-level image. Expose <code>levels</code> metadata for multi-level images. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2222">#2222</a></p> </li> <li> <p>Add support for named <code>alpha</code> channel to <code>extractChannel</code> operation. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2138">#2138</a></p> </li> <li> <p>Add experimental <code>sharpness</code> calculation to <code>stats()</code> response. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2251">#2251</a></p> </li> <li> <p>Emit <code>warning</code> event for non-critical processing problems. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2032">#2032</a></p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lovell/sharp/commit/df6efa0285f48e0364667b72fe574591bf6d17d6"><code>df6efa0</code></a> Release v0.25.4</li> <li><a href="https://github.com/lovell/sharp/commit/3c10e118e3abbaf5bc361d3dfcca20b527819cbc"><code>3c10e11</code></a> Docs: ensure presence of constructor description</li> <li><a href="https://github.com/lovell/sharp/commit/19980190f7b516f86918dafe6541e90b44208ff0"><code>1998019</code></a> Emit 'warning' event for non-critical problems <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2032">#2032</a></li> <li><a href="https://github.com/lovell/sharp/commit/8f5495a4469dbcf1faee89474ceaceba40b91d37"><code>8f5495a</code></a> Add experimental sharpness calc to stats <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2251">#2251</a></li> <li><a href="https://github.com/lovell/sharp/commit/9431029917dcbb58f1a9302d7da090a5cf358973"><code>9431029</code></a> Simplify type checking of plainObject, buffer (<a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2252">#2252</a>)</li> <li><a href="https://github.com/lovell/sharp/commit/17ea70a102bd383cc08be7a39f093c7874846894"><code>17ea70a</code></a> Add named 'alpha' channel to extractChannel op <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2138">#2138</a></li> <li><a href="https://github.com/lovell/sharp/commit/7f142bddb3780312e12f66efa5a132b5a4a43531"><code>7f142bd</code></a> Add level constructor opt for multi-level input <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2222">#2222</a></li> <li><a href="https://github.com/lovell/sharp/commit/98e0516ac1bdf2fe178404cc6338170a7eb39c04"><code>98e0516</code></a> Tests: latest libvips sets JPEG density</li> <li><a href="https://github.com/lovell/sharp/commit/7717516d1d58ee3a7c179d289c272908da7be149"><code>7717516</code></a> Simplify is helpers (<a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2244">#2244</a>)</li> <li><a href="https://github.com/lovell/sharp/commit/760550ca0d19ecba0ad1ec0fd0cfb4d8655c63f5"><code>760550c</code></a> Expose levels metadata for multi-level images <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2222">#2222</a></li> <li>Additional commits viewable in <a href="https://github.com/lovell/sharp/compare/v0.25.3...v0.25.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because this dependency is pre-1.0.0.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+10 -10

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 months

push eventn6g7/notion-cms

dependabot-preview[bot]

commit sha ca7bf3a1cd535916d82341538b8e3ca9b0f2605b

Bump sharp from 0.25.3 to 0.25.4 Bumps [sharp](https://github.com/lovell/sharp) from 0.25.3 to 0.25.4. - [Release notes](https://github.com/lovell/sharp/releases) - [Changelog](https://github.com/lovell/sharp/blob/master/docs/changelog.md) - [Commits](https://github.com/lovell/sharp/compare/v0.25.3...v0.25.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha db80225cfc18a000b2042b436f7d2e2eeb574633

Merge pull request #29 from n6g7/dependabot/npm_and_yarn/sharp-0.25.4 Bump sharp from 0.25.3 to 0.25.4

view details

push time in 2 months

PR merged n6g7/notion-cms

Bump sharp from 0.25.3 to 0.25.4 dependencies

Bumps sharp from 0.25.3 to 0.25.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/lovell/sharp/blob/master/docs/changelog.md">sharp's changelog</a>.</em></p> <blockquote> <h3>v0.25.4 - 12th June 2020</h3> <ul> <li> <p>Allow libvips binary location override where version is appended. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2217">#2217</a> <a href="https://github.com/malice00">@malice00</a></p> </li> <li> <p>Enable PNG palette when setting quality, colours, colors or dither. <a href="https://github-redirect.dependabot.com/lovell/sharp/pull/2226">#2226</a> <a href="https://github.com/romaleev">@romaleev</a></p> </li> <li> <p>Add <code>level</code> constructor option to use a specific level of a multi-level image. Expose <code>levels</code> metadata for multi-level images. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2222">#2222</a></p> </li> <li> <p>Add support for named <code>alpha</code> channel to <code>extractChannel</code> operation. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2138">#2138</a></p> </li> <li> <p>Add experimental <code>sharpness</code> calculation to <code>stats()</code> response. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2251">#2251</a></p> </li> <li> <p>Emit <code>warning</code> event for non-critical processing problems. <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2032">#2032</a></p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lovell/sharp/commit/df6efa0285f48e0364667b72fe574591bf6d17d6"><code>df6efa0</code></a> Release v0.25.4</li> <li><a href="https://github.com/lovell/sharp/commit/3c10e118e3abbaf5bc361d3dfcca20b527819cbc"><code>3c10e11</code></a> Docs: ensure presence of constructor description</li> <li><a href="https://github.com/lovell/sharp/commit/19980190f7b516f86918dafe6541e90b44208ff0"><code>1998019</code></a> Emit 'warning' event for non-critical problems <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2032">#2032</a></li> <li><a href="https://github.com/lovell/sharp/commit/8f5495a4469dbcf1faee89474ceaceba40b91d37"><code>8f5495a</code></a> Add experimental sharpness calc to stats <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2251">#2251</a></li> <li><a href="https://github.com/lovell/sharp/commit/9431029917dcbb58f1a9302d7da090a5cf358973"><code>9431029</code></a> Simplify type checking of plainObject, buffer (<a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2252">#2252</a>)</li> <li><a href="https://github.com/lovell/sharp/commit/17ea70a102bd383cc08be7a39f093c7874846894"><code>17ea70a</code></a> Add named 'alpha' channel to extractChannel op <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2138">#2138</a></li> <li><a href="https://github.com/lovell/sharp/commit/7f142bddb3780312e12f66efa5a132b5a4a43531"><code>7f142bd</code></a> Add level constructor opt for multi-level input <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2222">#2222</a></li> <li><a href="https://github.com/lovell/sharp/commit/98e0516ac1bdf2fe178404cc6338170a7eb39c04"><code>98e0516</code></a> Tests: latest libvips sets JPEG density</li> <li><a href="https://github.com/lovell/sharp/commit/7717516d1d58ee3a7c179d289c272908da7be149"><code>7717516</code></a> Simplify is helpers (<a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2244">#2244</a>)</li> <li><a href="https://github.com/lovell/sharp/commit/760550ca0d19ecba0ad1ec0fd0cfb4d8655c63f5"><code>760550c</code></a> Expose levels metadata for multi-level images <a href="https://github-redirect.dependabot.com/lovell/sharp/issues/2222">#2222</a></li> <li>Additional commits viewable in <a href="https://github.com/lovell/sharp/compare/v0.25.3...v0.25.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because this dependency is pre-1.0.0.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+10 -10

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 months

push eventn6g7/notes

dependabot-preview[bot]

commit sha 32dd4f9ce031c369ab8c16e72a6cad392993b2dd

[Security] Bump websocket-extensions from 0.1.2 to 0.1.4 Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.2 to 0.1.4. **This update includes a security fix.** - [Release notes](https://github.com/faye/websocket-extensions-node/releases) - [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.2...0.1.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 7ee04588fe5455c29d87eb16961b6edc8e6b5587

Merge pull request #388 from n6g7/dependabot/npm_and_yarn/websocket-extensions-0.1.4 [Security] Bump websocket-extensions from 0.1.2 to 0.1.4

view details

push time in 2 months

PR merged n6g7/notes

[Security] Bump websocket-extensions from 0.1.2 to 0.1.4 dependencies javascript security

Bumps websocket-extensions from 0.1.2 to 0.1.4. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-g78m-2chm-r7qv">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Regular Expression Denial of Service in websocket-extensions (NPM package)</strong></p> <h3>Impact</h3> <p>The ReDoS flaw allows an attacker to exhaust the server's capacity to process incoming requests by sending a WebSocket handshake request containing a header of the following form:</p> <pre><code>Sec-WebSocket-Extensions: a; b="\c\c\c\c\c\c\c\c\c\c ... </code></pre> <p>That is, a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other character. The parser takes exponential time to reject this header as invalid, and this will block the processing of any other work on the same thread. Thus if you are running a single-threaded server, such a request can render your service completely unavailable.</p> <h3>Patches</h3> <p>Users should upgrade to version 0.1.4.</p> <h3>Workarounds</h3> </tr></table> ... (truncated) <p>Affected versions: < 0.1.4</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> <h3>0.1.3 / 2017-11-11</h3> <ul> <li>Accept extension names and parameters including uppercase letters</li> <li>Handle extension names that clash with <code>Object.prototype</code> properties</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2af2c182515de125938430a82d1fe2c85a71c88b"><code>2af2c18</code></a> Bump version to 0.1.3.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/50bcedda78d63a59a0e2c13d9abca8dc5e11840e"><code>50bcedd</code></a> Test on Node v9.</li> <li>Additional commits viewable in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.2...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because this dependency is pre-1.0.0.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -2

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 months

push eventn6g7/notes

dependabot-preview[bot]

commit sha a12cd6621bfd216c2b57083c3f90168ed6cbac2e

Bump dotenv-webpack from 1.8.0 to 2.0.0 Bumps [dotenv-webpack](https://github.com/mrsteele/dotenv-webpack) from 1.8.0 to 2.0.0. - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v1.8.0...v2.0.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Nathan Gaberel

commit sha 34c5170cfa9e291be72e4812c18737dfd7e3398e

Merge pull request #411 from n6g7/dependabot/npm_and_yarn/dotenv-webpack-2.0.0 Bump dotenv-webpack from 1.8.0 to 2.0.0

view details

push time in 2 months

PR merged n6g7/notes

Bump dotenv-webpack from 1.8.0 to 2.0.0 dependencies javascript

Bumps dotenv-webpack from 1.8.0 to 2.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mrsteele/dotenv-webpack/releases">dotenv-webpack's releases</a>.</em></p> <blockquote> <h2>v2.0.0</h2> <h1><a href="https://github.com/mrsteele/dotenv-webpack/compare/v1.8.0...v2.0.0">2.0.0</a> (2020-07-08)</h1> <ul> <li>Feature/upgrading dependencies breaking changes (<a href="https://github-redirect.dependabot.com/mrsteele/dotenv-webpack/issues/201">#201</a>) (<a href="https://github.com/mrsteele/dotenv-webpack/commit/ed168ef6bda42996beedec0bc4528cc074277a6f">ed168ef</a>), closes <a href="https://github-redirect.dependabot.com/mrsteele/dotenv-webpack/issues/201">#201</a></li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li> <p>dropping support for node v6</p> </li> <li> <p>chore: updating a few more</p> </li> <li> <p>fix: resolving linter</p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mrsteele/dotenv-webpack/commit/ed168ef6bda42996beedec0bc4528cc074277a6f"><code>ed168ef</code></a> Feature/upgrading dependencies breaking changes (<a href="https://github-redirect.dependabot.com/mrsteele/dotenv-webpack/issues/201">#201</a>)</li> <li>See full diff in <a href="https://github.com/mrsteele/dotenv-webpack/compare/v1.8.0...v2.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a development dependency.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+15 -13

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 2 months

push eventn6g7/damn

snyk-bot

commit sha 1244a3199ad645053ae4adcf00bc104666b70c1d

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AJV-584908

view details

push time in 2 months

create barnchn6g7/damn

branch : snyk-fix-0cc0cdb9b165ed512a5a485aabb74144

created branch time in 2 months

push eventn6g7/chapter

snyk-bot

commit sha a13bf59bcedd372da5f8e613f0b41d228f8e592c

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-567746

view details

push time in 2 months

create barnchn6g7/chapter

branch : snyk-fix-d6c79319b1e73acd688d8cad8c603aef

created branch time in 2 months

push eventn6g7/metamorph

snyk-bot

commit sha ac52a9b10984c46472eb274f908988bffdbbae61

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-567746

view details

push time in 2 months

create barnchn6g7/metamorph

branch : snyk-fix-d3b800e03f15962c26bdff4655721936

created branch time in 2 months

startediaincollins/next-auth

started time in 3 months

startedwillmcgugan/rich

started time in 3 months

push eventcharlottebretonsch/wanderlist

Nathan Gaberel

commit sha b34b5eeb5cbebebaef1134a8c13c7ffb33c0407e

Delete CNAME

view details

push time in 3 months

push eventcharlottebretonsch/wanderlist

Nathan Gaberel

commit sha 5cdfdb4e4797f87db1bc8f173a9247110c1a473f

Keep public/items directory.

view details

push time in 3 months

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 6c4f9109e52840d40bde20b5910610789ba67ee5

Add missing image.

view details

push time in 3 months

push eventn6g7/notion-cms

Nathan Gaberel

commit sha 95fdc31484fe56b4ac5260271332e3dc513b624b

Add simple docs.

view details

push time in 3 months

push eventcharlottebretonsch/wanderlist

Nathan Gaberel

commit sha 616efa221c7121df044ec3c4f05ad2f75beedc4e

v2.

view details

push time in 3 months

push eventcharlottebretonsch/wanderlist

Nathan Gaberel

commit sha 2a7447a0095be512e5bd3591adf158287ecdbfd6

v2.

view details

push time in 3 months

startedtheodo/serverless-ide-plugins

started time in 3 months

push eventn6g7/chapter

snyk-bot

commit sha deac7a484744cd78efe8570641b53aee269b209c

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-HIGHCHARTS-571995

view details

push time in 3 months

create barnchn6g7/chapter

branch : snyk-fix-57b2feb19885caa818cb17da7a80be36

created branch time in 3 months

more