Bump the npm_and_yarn group across 1 directory with 27 updates #9

dependabot · 2024-03-27T22:09:59Z

Bumps the npm_and_yarn group with 24 updates in the / directory:

Package	From	To
express	`4.17.2`	`4.19.2`
got	`11.8.2`	`11.8.5`
liquidjs	`9.22.1`	`10.0.0`
next	`11.1.4`	`13.5.1`
semver	`7.3.5`	`7.5.2`
@actions/core	`1.6.0`	`1.9.1`
@babel/traverse	`7.16.10`	`7.24.1`
@sideway/formula	`3.0.0`	`3.0.1`
axios	`0.21.4`	`1.6.8`
jest-puppeteer	`5.0.4`	`10.0.1`
jest-environment-puppeteer	`5.0.4`	`10.0.1`
start-server-and-test	`1.14.0`	`2.0.3`
qs	`6.9.3`	`6.11.0`
formidable	`2.0.1`	`2.1.2`
http-cache-semantics	`4.1.0`	`4.1.1`
jpeg-js	`0.4.2`	`0.4.4`
@jimp/jpeg	`0.16.1`	`0.16.13`
json5	`1.0.1`	`1.0.2`
jszip	`3.7.1`	`3.10.1`
async	`2.6.3`	`2.6.4`
tough-cookie	`4.0.0`	`4.1.3`
xml2js	`0.4.23`	`0.5.0`
rss-parser	`3.12.0`	`3.13.0`
parse-bmfont-xml	`1.1.4`	`1.1.6`

Updates express from 4.17.2 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Improved fix for open redirect allow list bypass

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

Fix ci after location patch by @wesleytodd in expressjs/express#5552

fixed un-edited version in history.md for 4.19.0 by @wesleytodd in expressjs/express#5556

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

fix typo in release date by @UlisesGascon in expressjs/express#5527

docs: nominating @wesleytodd to be project captian by @wesleytodd in expressjs/express#5511

docs: loosen TC activity rules by @wesleytodd in expressjs/express#5510

Add note on how to update docs for new release by @crandmck in expressjs/express#5541

Prevent open redirect allow list bypass due to encodeurl

Release 4.19.0 by @wesleytodd in expressjs/express#5551

New Contributors

@crandmck made their first contribution in expressjs/express#5541

Full Changelog: expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

Fix routing requests without method

deps: [email protected]

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: [email protected]

Other Changes

Use https: protocol instead of deprecated git: protocol by @vcsjones in expressjs/express#5032

build: [email protected] and [email protected] by @abenhamdine in expressjs/express#5034

ci: update actions/checkout to v3 by @armujahid in expressjs/express#5027

test: remove unused function arguments in params by @raksbisht in expressjs/express#5124

Remove unused originalIndex from acceptParams by @raksbisht in expressjs/express#5119

Fixed typos by @raksbisht in expressjs/express#5117

examples: remove unused params by @raksbisht in expressjs/express#5113

fix: parameter str is not described in JSDoc by @raksbisht in expressjs/express#5130

fix: typos in History.md by @raksbisht in expressjs/express#5131

build : add [email protected] by @abenhamdine in expressjs/express#5028

test: remove unused function arguments in params by @raksbisht in expressjs/express#5137

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

Prevent open redirect allow list bypass due to encodeurl

deps: [email protected]

4.18.3 / 2024-02-29

Fix routing requests without method

deps: [email protected]

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: [email protected]

deps: [email protected]

Add partitioned option

4.18.2 / 2022-10-08

Fix regression routing a large stack in a single route

deps: [email protected]

deps: [email protected]

perf: remove unnecessary object clone

deps: [email protected]

4.18.1 / 2022-04-29

Fix hanging on large stack of sync routes

4.18.0 / 2022-04-25

Add "root" option to res.download

Allow options without filename in res.download

Deprecate string and non-integer arguments to res.status

Fix behavior of null/undefined as maxAge in res.cookie

Fix handling very large stacks of sync middleware

Ignore Object.prototype values in settings through app.set/app.get

... (truncated)

Commits

04bc627 4.19.2
da4d763 Improved fix for open redirect allow list bypass
4f0f6cc 4.19.1
a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
a1fa90f fixed un-edited version in history.md for 4.19.0
11f2b1d build: fix build due to inconsistent supertest behavior in older versions
084e365 4.19.0
0867302 Prevent open redirect allow list bypass due to encodeurl
567c9c6 Add note on how to update docs for new release (#5541)
69a4cf2 deps: [email protected]
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.

Updates got from 11.8.2 to 11.8.5

Release notes

Sourced from got's releases.

v11.8.5

Backport security fix sindresorhus/got@861ccd9

CVE-2022-33987

sindresorhus/got@v11.8.4...v11.8.5

v11.8.3

Bump cacheable-request dependency (#1921) 9463bb6

Fix HTTPError missing .code property (#1739) 0e167b8

sindresorhus/got@v11.8.2...v11.8.3

Commits

5e17bb7 11.8.5
bce8ce7 Backport 861ccd9ac2237df762a9e2beed7edd88c60782dc
8ced192 Fix build
670eb04 11.8.4
20f29fe Backport #1543: Initialize globalResponse in case of ignored HTTPError (#2017)
0da732f 11.8.3
9463bb6 Bump cacheable-request dependency (#1921)
0e167b8 HTTPError code set to 'HTTPError' #1711 (#1739)
See full diff in compare view

Updates liquidjs from 9.22.1 to 10.0.0

Release notes

Sourced from liquidjs's releases.

v10.0.0

10.0.0 (2022-11-27)

chore

rename filters to snake style, #487 (ff112a4)

Code Refactoring

_evalToken renamed to evalToken (4e1a30a)

change ownPropertyOnly default value to true (7eb6216)

delay creation of operatorsTrie and hide this implementation (bb58d3e)

remove toThenable export (ffefd91)

remove use of internal Context class in evalValue argument (b115077)

Performance Improvements

target Node.js 14 for cjs bundle (main entry) (1f6ce7c)

BREAKING CHANGES

evalToken now returns a generator (LiquidJS async), which is different from evalToken in previous LiquidJS versions.

main entry need Node.js>=14 to run, you can build LiquidJS by your own by using ESM entry.

ownPropertyOnly default value changed to true

<liquidjs>.toThenable is removed, use <liquidjs>.toPromise instead

evalValue won't support Context as second argument anymore.

use operators instead of operatorsTrie as Tokenizer constructor argument, #500

keys in <liquidjs>.filters are now in snake case (instead of camel case), identical to that in Liquid template.

v9.43.0

9.43.0 (2022-11-27)

Features

support timezone offset argument for date filter, #553 (7a71485)

v9.42.1

9.42.1 (2022-10-21)

Bug Fixes

truncatewords should use at least one word, #537 (32f613f)

v9.42.0

... (truncated)

Changelog

Sourced from liquidjs's changelog.

10.0.0 (2022-11-27)

Code Refactoring

rename filters to snake style, #487 (ff112a4)

_evalToken renamed to evalToken (4e1a30a)

change ownPropertyOnly default value to true (7eb6216)

delay creation of operatorsTrie and hide this implementation (bb58d3e)

remove toThenable export (ffefd91)

remove use of internal Context class in evalValue argument (b115077)

Performance Improvements

target Node.js 14 for cjs bundle (main entry) (1f6ce7c)

BREAKING CHANGES

evalToken now returns a generator (LiquidJS async), which is different from evalToken in previous LiquidJS versions.

main entry need Node.js>=14 to run, you can build LiquidJS by your own by using ESM entry.

ownPropertyOnly default value changed to true

<liquidjs>.toThenable is removed, use <liquidjs>.toPromise instead

evalValue won't support Context as second argument anymore.

use operators instead of operatorsTrie as Tokenizer constructor argument, #500

keys in <liquidjs>.filters are now in snake case (instead of camel case), identical to that in Liquid template.

9.43.0 (2022-11-27)

Features

support timezone offset argument for date filter, #553 (7a71485)

9.42.1 (2022-10-21)

Bug Fixes

truncatewords should use at least one word, #537 (32f613f)

9.42.0 (2022-08-27)

Features

promise in expression & nested property, #533 #276 (bbf00f3)

9.41.0 (2022-08-24)

... (truncated)

Commits

9b9ef37 chore(release): 10.0.0 [skip ci]
5bbdc08 chore(deps): bump minimatch from 3.0.4 to 3.1.2
1380ac9 refactor: more consistent tags to make it easier to iterate over, #524
4e1a30a refactor: _evalToken renamed to evalToken
9299268 refactor: Tag class support in registerTag()
1f6ce7c perf: target Node.js 14 for cjs bundle (main entry)
7eb6216 refactor: change ownPropertyOnly default value to true
ffefd91 refactor: remove toThenable export
b115077 refactor: remove use of internal Context class in evalValue argument
bb58d3e refactor: delay creation of operatorsTrie and hide this implementation
Additional commits viewable in compare view

Updates next from 11.1.4 to 13.5.1

Commits

0c1c7f8 v13.5.1
9744285 v13.5.1-canary.1
44eba02 improve publish-release (#55597)
c652dc8 v13.5.1-canary.0
ffafad2 v13.5.0
4a589ed v13.4.20-canary.41
deb81cf fix styled-jsx alias (#55581)
1a9b0f6 improve internal error logging (#55582)
0631549 Fix react packages are not bundled for metadata routes (#55579)
bad5365 Update supported config options for Turbopack (#55556)
Additional commits viewable in compare view

Updates semver from 7.3.5 to 7.5.2

Release notes

Sourced from semver's releases.

v7.5.2

7.5.2 (2023-06-15)

Bug Fixes

58c791f #566 diff when detecting major change from prerelease (#566) (@lukekarrys)

5c8efbc #565 preserve build in raw after inc (#565) (@lukekarrys)

717534e #564 better handling of whitespace (#564) (@lukekarrys)

v7.5.1

7.5.1 (2023-05-12)

Bug Fixes

d30d25a #559 show type on invalid semver error (#559) (@tjenkinson)

v7.5.0

7.5.0 (2023-04-17)

Features

503a4e5 #548 allow identifierBase to be false (#548) (@lsvalina)

Bug Fixes

e219bb4 #552 throw on bad version with correct error message (#552) (@wraithgar)

fc2f3df #546 incorrect results from diff sometimes with prerelease versions (#546) (@tjenkinson)

2781767 #547 avoid re-instantiating SemVer during diff compare (#547) (@macno)

v7.4.0

7.4.0 (2023-04-10)

Features

113f513 #532 identifierBase parameter for .inc (#532) (@wraithgar, @b-bly)

48d8f8f #530 export new RELEASE_TYPES constant (@hcharley)

Bug Fixes

940723d #538 intersects with v0.0.0 and v0.0.0-0 (#538) (@wraithgar)

aa516b5 #535 faster parse options (#535) (@H4ad)

61e6ea1 #536 faster cache key factory for range (#536) (@H4ad)

f8b8b61 #541 optimistic parse (#541) (@H4ad)

796cbe2 #533 semver.diff prerelease to release recognition (#533) (@wraithgar, @dominique-blockchain)

3f222b1 #537 reuse comparators on subset (#537) (@H4ad)

f66cc45 #539 faster diff (#539) (@H4ad)

Documentation

c5d29df #530 Add "Constants" section to README (@hcharley)

... (truncated)

Changelog

Sourced from semver's changelog.

7.5.2 (2023-06-15)

Bug Fixes

58c791f #566 diff when detecting major change from prerelease (#566) (@lukekarrys)

5c8efbc #565 preserve build in raw after inc (#565) (@lukekarrys)

717534e #564 better handling of whitespace (#564) (@lukekarrys)

7.5.1 (2023-05-12)

Bug Fixes

d30d25a #559 show type on invalid semver error (#559) (@tjenkinson)

7.5.0 (2023-04-17)

Features

503a4e5 #548 allow identifierBase to be false (#548) (@lsvalina)

Bug Fixes

e219bb4 #552 throw on bad version with correct error message (#552) (@wraithgar)

fc2f3df #546 incorrect results from diff sometimes with prerelease versions (#546) (@tjenkinson)

2781767 #547 avoid re-instantiating SemVer during diff compare (#547) (@macno)

7.4.0 (2023-04-10)

Features

113f513 #532 identifierBase parameter for .inc (#532) (@wraithgar, @b-bly)

48d8f8f #530 export new RELEASE_TYPES constant (@hcharley)

Bug Fixes

940723d #538 intersects with v0.0.0 and v0.0.0-0 (#538) (@wraithgar)

aa516b5 #535 faster parse options (#535) (@H4ad)

61e6ea1 #536 faster cache key factory for range (#536) (@H4ad)

f8b8b61 #541 optimistic parse (#541) (@H4ad)

796cbe2 #533 semver.diff prerelease to release recognition (#533) (@wraithgar, @dominique-blockchain)

3f222b1 #537 reuse comparators on subset (#537) (@H4ad)

f66cc45 #539 faster diff (#539) (@H4ad)

Documentation

c5d29df #530 Add "Constants" section to README (@hcharley)

7.3.8 (2022-10-04)

Bug Fixes

... (truncated)

Commits

e7b78de chore: release 7.5.2
58c791f fix: diff when detecting major change from prerelease (#566)
5c8efbc fix: preserve build in raw after inc (#565)
717534e fix: better handling of whitespace (#564)
2f738e9 chore: bump @npmcli/template-oss from 4.14.1 to 4.15.1 (#558)
aa016a6 chore: release 7.5.1
d30d25a fix: show type on invalid semver error (#559)
09c69e2 chore: bump @npmcli/template-oss from 4.13.0 to 4.14.1 (#555)
5b02ad7 chore: release 7.5.0
e219bb4 fix: throw on bad version with correct error message (#552)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by npm-cli-ops, a new releaser for semver since your current version.

Updates @actions/core from 1.6.0 to 1.9.1

Changelog

Sourced from @actions/core's changelog.

1.9.1

Randomize delimiter when calling core.exportVariable

1.9.0

Added toPosixPath, toWin32Path and toPlatformPath utilities #1102

1.8.2

Update to v2.0.1 of @actions/http-client #1087

1.8.1

Update to v2.0.0 of @actions/http-client

1.8.0

Deprecate markdownSummary extension export in favor of summary

actions/toolkit#1072

actions/toolkit#1073

1.7.0

Added markdownSummary extension

Commits

See full diff in compare view

Updates postcss from 8.4.6 to 8.4.14

Release notes

Sourced from postcss's releases.

8.4.14

Print “old plugin API” warning only if plugin was used (by @zardoy).

8.4.13

Fixed append() error after using .parent (by @thecrypticace).

8.4.12

Fixed package.funding to have same value between all PostCSS packages.

8.4.11

Fixed Declaration#raws.value type.

8.4.10

Fixed package.funding URL format.

8.4.9

Fixed package.funding (by @mondeja).

8.4.8

Fixed end position in empty Custom Properties.

8.4.7

Fixed Node#warn() type (by @ybiquitous).

Fixed comment removal in values after ,.

Changelog

Sourced from postcss's changelog.

8.4.14

Print “old plugin API” warning only if plugin was used (by @zardoy).

8.4.13

Fixed append() error after using .parent (by Jordan Pittman).

8.4.12

Fixed package.funding to have same value between all PostCSS packages.

8.4.11

Fixed Declaration#raws.value type.

8.4.10

Fixed package.funding URL format.

8.4.9

Fixed package.funding (by Álvaro Mondéjar).

8.4.8

Fixed end position in empty Custom Properties.

8.4.7

Fixed Node#warn() type (by Masafumi Koba).

Fixed comment removal in values after ,.

Commits

b7d1836 Release 8.4.14 version
57006b4 Update dependencies
2a97ab8 Merge pull request #1744 from zardoy/patch-1
6447b55 Merge pull request #1747 from ben-lau/main
e36ed17 Update plugins.md
24f2efc Update depedencies
9bda624 Try to fix CI
7cd8e27 improve warnings count testing
2295e28 fix tests
fc19f1b fix: print deprecation warning only when plugin is used
Additional commits viewable in compare view

Updates @babel/traverse from 7.16.10 to 7.24.1

Release notes

Sourced from @babel/traverse's releases.

v7.24.1 (2024-03-19)

🐛 Bug Fix

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16350 Fix decorated class computed keys ordering (@JLHwung)

#16344 Fix decorated class static field private access (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-proposal-json-modules, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env

#16329 Respect moduleName for @babel/runtime/regenerator imports (@nicolo-ribaudo)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties

#16331 Fix decorator memoiser binding kind (@JLHwung)

babel-helper-create-class-features-plugin, babel-helper-replace-supers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties

#16325 Fix decorator evaluation private environment (@JLHwung)

📝 Documentation

#16319 Update SECURITY.md (@nicolo-ribaudo)

🏠 Internal

babel-code-frame, babel-highlight

#16359 Replace chalk with picocolors (@nicolo-ribaudo)

babel-helper-fixtures, babel-helpers, babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-unicode-sets-regex, babel-preset-env, babel-preset-flow

#16352 Run Babel transform tests on old node if possible (@JLHwung)

babel-helper-module-imports, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-plugin-proposal-record-and-tuple, babel-plugin-transform-react-jsx-development, babel-plugin-transform-react-jsx

#16349 Support merging imports in import injector (@nicolo-ribaudo)

Other

#16332 Test Babel 7 plugins compatibility with Babel 8 core (@nicolo-ribaudo)

🔬 Output optimization

babel-helper-replace-supers, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-parameters, babel-plugin-transform-runtime

#16345 Optimize the use of assertThisInitialized after super() (@liuxingbaoyu)

babel-plugin-transform-class-properties, babel-plugin-transform-classes

#16343 Use simpler assertThisInitialized more often (@liuxingbaoyu)

babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-object-rest-spread, babel-traverse

#16342 Consider well-known and registered symbols as literals (@nicolo-ribaudo)

babel-core, babel-plugin-external-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-function-bind, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-flow-comments, babel-plugin-transform-flow-strip-types, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-plugin-transform-parameters, babel-plugin-transform-private-property-in-object, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env

#16326 Reduce the use of class names (@liuxingbaoyu)

Committers: 4

Babel Bot (@babel-bot)

Huáng Jùnliàng (@JLHwung)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

v7.24.0 (2024-02-28)

Thanks @ajihyf for your first PR!

Release post with summary and highlights: https://babeljs.io/7.24.0

🚀 New Feature

babel-standalone

... (truncated)

Changelog

Sourced from @babel/traverse's changelog.

v7.24.1 (2024-03-19)

🐛 Bug Fix

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16350 Fix decorated class computed keys ordering (@JLHwung)

#16344 Fix decorated class static field private access (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-proposal-json-modules, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env

#16329 Respect moduleName for @babel/runtime/regenerator imports (@nicolo-ribaudo)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties

#16331 Fix decorator memoiser binding kind (@JLHwung)

babel-helper-create-class-features-plugin, babel-helper-replace-supers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties

#16325 Fix decorator evaluation private environment (@JLHwung)

📝 Documentation

#16319 Update SECURITY.md (@nicolo-ribaudo)

🏠 Internal

babel-code-frame, babel-highlight

#16359 Replace chalk with picocolors (@nicolo-ribaudo)

babel-helper-fixtures, babel-helpers, babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-unicode-sets-regex, babel-preset-env, babel-preset-flow

#16352 Run Babel transform tests on old node if possible (@JLHwung)

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs3, babel-runtime, babel-standalone

#16323 Allow separate helpers to be excluded in Babel 8 (@liuxingbaoyu)

babel-helper-module-imports, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-plugin-proposal-record-and-tuple, babel-plugin-transform-react-jsx-development, babel-plugin-transform-react-jsx

#16349 Support merging imports in import injector (@nicolo-ribaudo)

babel-helper-create-class-features-plugin, babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression, babel-plugin-bugfix-v8-spread-parameters-in-optional-chaining, babel-plugin-bugfix-v8-static-class-fields-redefine-readonly, babel-plugin-external-helpers, babel-plugin-proposal-async-do-expressions, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-plugin-proposal-duplicate-named-capturing-groups-regex, babel-plugin-proposal-explicit-resource-management, babel-plugin-proposal-export-default-from, babel-plugin-proposal-function-bind, babel-plugin-proposal-function-sent, babel-plugin-proposal-import-attributes-to-assertions, babel-plugin-proposal-import-defer, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-plugin-proposal-optional-chaining-assign, babel-plugin-proposal-partial-application, babel-plugin-proposal-pipeline-operator, babel-plugin-proposal-record-and-tuple, babel-plugin-proposal-regexp-modifiers, babel-plugin-proposal-throw-expressions, babel-plugin-syntax-async-do-expressions, babel-plugin-syntax-decimal, babel-plugin-syntax-decorators, babel-plugin-syntax-destructuring-private, babel-plugin-syntax-do-expressions, babel-plugin-syntax-explicit-resource-management, babel-plugin-syntax-export-default-from, babel-plugin-syntax-flow, babel-plugin-syntax-function-bind, babel-plugin-syntax-function-sent, babel-plugin-syntax-import-assertions, babel-plugin-syntax-import-attributes, babel-plugin-syntax-import-defer, babel-plugin-syntax-import-reflection, babel-plugin-syntax-import-source, babel-plugin-syntax-jsx, babel-plugin-syntax-module-blocks, babel-plugin-syntax-optional-chaining-assign, babel-plugin-syntax-partial-application, babel-plugin-syntax-pipeline-operator, babel-plugin-syntax-record-and-tuple, babel-plugin-syntax-throw-expressions, babel-plugin-syntax-typescript, babel-plugin-transform-arrow-functions, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoped-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-classes, babel-plugin-transform-computed-properties, babel-plugin-transform-destructuring, babel-plugin-transform-dotall-regex, babel-plugin-transform-duplicate-keys, babel-plugin-transform-dynamic-import, babel-plugin-transform-expo... Description has been truncated

Bumps the npm_and_yarn group with 24 updates in the / directory: | Package | From | To | | --- | --- | --- | | [express](https://github.com/expressjs/express) | `4.17.2` | `4.19.2` | | [got](https://github.com/sindresorhus/got) | `11.8.2` | `11.8.5` | | [liquidjs](https://github.com/harttle/liquidjs) | `9.22.1` | `10.0.0` | | [next](https://github.com/vercel/next.js) | `11.1.4` | `13.5.1` | | [semver](https://github.com/npm/node-semver) | `7.3.5` | `7.5.2` | | [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) | `1.6.0` | `1.9.1` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.16.10` | `7.24.1` | | [@sideway/formula](https://github.com/sideway/formula) | `3.0.0` | `3.0.1` | | [axios](https://github.com/axios/axios) | `0.21.4` | `1.6.8` | | [jest-puppeteer](https://github.com/argos-ci/jest-puppeteer/tree/HEAD/packages/jest-puppeteer) | `5.0.4` | `10.0.1` | | [jest-environment-puppeteer](https://github.com/argos-ci/jest-puppeteer/tree/HEAD/packages/jest-environment-puppeteer) | `5.0.4` | `10.0.1` | | [start-server-and-test](https://github.com/bahmutov/start-server-and-test) | `1.14.0` | `2.0.3` | | [qs](https://github.com/ljharb/qs) | `6.9.3` | `6.11.0` | | [formidable](https://github.com/node-formidable/formidable) | `2.0.1` | `2.1.2` | | [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) | `4.1.0` | `4.1.1` | | [jpeg-js](https://github.com/eugeneware/jpeg-js) | `0.4.2` | `0.4.4` | | [@jimp/jpeg](https://github.com/jimp-dev/jimp) | `0.16.1` | `0.16.13` | | [json5](https://github.com/json5/json5) | `1.0.1` | `1.0.2` | | [jszip](https://github.com/Stuk/jszip) | `3.7.1` | `3.10.1` | | [async](https://github.com/caolan/async) | `2.6.3` | `2.6.4` | | [tough-cookie](https://github.com/salesforce/tough-cookie) | `4.0.0` | `4.1.3` | | [xml2js](https://github.com/Leonidas-from-XIV/node-xml2js) | `0.4.23` | `0.5.0` | | [rss-parser](https://github.com/bobby-brennan/rss-parser) | `3.12.0` | `3.13.0` | | [parse-bmfont-xml](https://github.com/mattdesl/parse-bmfont-xml) | `1.1.4` | `1.1.6` | Updates `express` from 4.17.2 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.2...4.19.2) Updates `got` from 11.8.2 to 11.8.5 - [Release notes](https://github.com/sindresorhus/got/releases) - [Commits](sindresorhus/got@v11.8.2...v11.8.5) Updates `liquidjs` from 9.22.1 to 10.0.0 - [Release notes](https://github.com/harttle/liquidjs/releases) - [Changelog](https://github.com/harttle/liquidjs/blob/master/CHANGELOG.md) - [Commits](harttle/liquidjs@v9.22.1...v10.0.0) Updates `next` from 11.1.4 to 13.5.1 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v11.1.4...v13.5.1) Updates `semver` from 7.3.5 to 7.5.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v7.3.5...v7.5.2) Updates `@actions/core` from 1.6.0 to 1.9.1 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core) Updates `postcss` from 8.4.6 to 8.4.14 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.6...8.4.14) Updates `@babel/traverse` from 7.16.10 to 7.24.1 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.1/packages/babel-traverse) Updates `@sideway/formula` from 3.0.0 to 3.0.1 - [Commits](hapijs/formula@v3.0.0...v3.0.1) Updates `axios` from 0.21.4 to 1.6.8 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v0.21.4...v1.6.8) Updates `jest-puppeteer` from 5.0.4 to 10.0.1 - [Release notes](https://github.com/argos-ci/jest-puppeteer/releases) - [Changelog](https://github.com/argos-ci/jest-puppeteer/blob/main/packages/jest-puppeteer/CHANGELOG.md) - [Commits](https://github.com/argos-ci/jest-puppeteer/commits/v10.0.1/packages/jest-puppeteer) Updates `jest-environment-puppeteer` from 5.0.4 to 10.0.1 - [Release notes](https://github.com/argos-ci/jest-puppeteer/releases) - [Changelog](https://github.com/argos-ci/jest-puppeteer/blob/main/packages/jest-environment-puppeteer/CHANGELOG.md) - [Commits](https://github.com/argos-ci/jest-puppeteer/commits/v10.0.1/packages/jest-environment-puppeteer) Updates `start-server-and-test` from 1.14.0 to 2.0.3 - [Release notes](https://github.com/bahmutov/start-server-and-test/releases) - [Commits](bahmutov/start-server-and-test@v1.14.0...v2.0.3) Updates `follow-redirects` from 1.14.8 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.14.8...v1.15.6) Updates `qs` from 6.9.3 to 6.11.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.9.3...v6.11.0) Updates `formidable` from 2.0.1 to 2.1.2 - [Release notes](https://github.com/node-formidable/formidable/releases) - [Changelog](https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md) - [Commits](https://github.com/node-formidable/formidable/commits) Updates `http-cache-semantics` from 4.1.0 to 4.1.1 - [Commits](kornelski/http-cache-semantics@v4.1.0...v4.1.1) Updates `jpeg-js` from 0.4.2 to 0.4.4 - [Release notes](https://github.com/eugeneware/jpeg-js/releases) - [Commits](jpeg-js/jpeg-js@v0.4.2...v0.4.4) Updates `@jimp/jpeg` from 0.16.1 to 0.16.13 - [Release notes](https://github.com/jimp-dev/jimp/releases) - [Changelog](https://github.com/jimp-dev/jimp/blob/main/CHANGELOG.md) - [Commits](jimp-dev/jimp@v0.16.1...v0.16.13) Updates `json5` from 1.0.1 to 1.0.2 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) Updates `jszip` from 3.7.1 to 3.10.1 - [Changelog](https://github.com/Stuk/jszip/blob/main/CHANGES.md) - [Commits](Stuk/jszip@v3.7.1...v3.10.1) Updates `loader-utils` from 1.2.3 to 1.4.0 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/master/CHANGELOG.md) - [Commits](webpack/loader-utils@v1.2.3...v1.4.0) Updates `async` from 2.6.3 to 2.6.4 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md) - [Commits](caolan/async@v2.6.3...v2.6.4) Updates `tough-cookie` from 4.0.0 to 4.1.3 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v4.0.0...v4.1.3) Updates `xml2js` from 0.4.23 to 0.5.0 - [Commits](https://github.com/Leonidas-from-XIV/node-xml2js/commits/0.5.0) Updates `rss-parser` from 3.12.0 to 3.13.0 - [Commits](rbren/rss-parser@v3.12.0...v3.13.0) Updates `parse-bmfont-xml` from 1.1.4 to 1.1.6 - [Commits](mattdesl/parse-bmfont-xml@v1.1.4...v1.1.6) --- updated-dependencies: - dependency-name: express dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: got dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: liquidjs dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: semver dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: "@actions/core" dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: postcss dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: "@sideway/formula" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: axios dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: jest-puppeteer dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: jest-environment-puppeteer dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: start-server-and-test dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: qs dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: formidable dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: http-cache-semantics dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: jpeg-js dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: "@jimp/jpeg" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: jszip dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: loader-utils dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: async dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: tough-cookie dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: xml2js dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: rss-parser dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: parse-bmfont-xml dependency-type: indirect dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 27, 2024

dependabot bot had a problem deploying to preview-env-9 March 27, 2024 22:10 Failure

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 1 directory with 27 updates #9

Bump the npm_and_yarn group across 1 directory with 27 updates #9

dependabot bot commented on behalf of github Mar 27, 2024

Bump the npm_and_yarn group across 1 directory with 27 updates #9

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directory with 27 updates #9

Conversation

dependabot bot commented on behalf of github Mar 27, 2024

4.19.2

What's Changed

4.19.1

What's Changed

4.19.0

What's Changed

New Contributors

4.18.3

Main Changes

Other Changes

4.19.2 / 2024-03-25

4.19.1 / 2024-03-20

4.19.0 / 2024-03-20

4.18.3 / 2024-02-29

4.18.2 / 2022-10-08

4.18.1 / 2022-04-29

4.18.0 / 2022-04-25

v11.8.5

v11.8.3

v10.0.0

10.0.0 (2022-11-27)

chore

Code Refactoring

Performance Improvements

BREAKING CHANGES

v9.43.0

9.43.0 (2022-11-27)

Features

v9.42.1

9.42.1 (2022-10-21)

Bug Fixes

v9.42.0

10.0.0 (2022-11-27)

Code Refactoring

Performance Improvements

BREAKING CHANGES

9.43.0 (2022-11-27)

Features

9.42.1 (2022-10-21)

Bug Fixes

9.42.0 (2022-08-27)

Features

9.41.0 (2022-08-24)

v7.5.2

7.5.2 (2023-06-15)

Bug Fixes

v7.5.1

7.5.1 (2023-05-12)

Bug Fixes

v7.5.0

7.5.0 (2023-04-17)

Features

Bug Fixes

v7.4.0

7.4.0 (2023-04-10)

Features

Bug Fixes

Documentation

7.5.2 (2023-06-15)

Bug Fixes

7.5.1 (2023-05-12)

Bug Fixes

7.5.0 (2023-04-17)

Features

Bug Fixes

7.4.0 (2023-04-10)

Features

Bug Fixes

Documentation

7.3.8 (2022-10-04)

Bug Fixes

1.9.1

1.9.0

1.8.2

1.8.1