Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump qs, docpad, grunt-contrib-connect and grunt-contrib-watch #272

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Apr 26, 2024

Bumps qs to 6.12.1 and updates ancestor dependencies qs, docpad, grunt-contrib-connect and grunt-contrib-watch. These dependencies need to be updated together.

Updates qs from 0.6.5 to 6.12.1

Changelog

Sourced from qs's changelog.

6.12.1

  • [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior (#501)
  • [Performance] utils: Optimize performance under large data volumes, reduce memory usage, and speed up processing (#502)
  • [Refactor] utils: use +=
  • [Tests] increase coverage

6.12.0

  • [New] parse/stringify: add decodeDotInKeys/encodeDotKeys options (#488)
  • [New] parse: add duplicates option
  • [New] parse/stringify: add allowEmptyArrays option to allow [] in object values (#487)
  • [Refactor] parse/stringify: move allowDots config logic to its own variable
  • [Refactor] stringify: move option-handling code into normalizeStringifyOptions
  • [readme] update readme, add logos (#484)
  • [readme] stringify: clarify default arrayFormat behavior
  • [readme] fix line wrapping
  • [readme] remove dead badges
  • [Deps] update side-channel
  • [meta] make the dist build 50% smaller
  • [meta] add sideEffects flag
  • [meta] run build in prepack, not prepublish
  • [Tests] parse: remove useless tests; add coverage
  • [Tests] stringify: increase coverage
  • [Tests] use mock-property
  • [Tests] stringify: improve coverage
  • [Dev Deps] update @ljharb/eslint-config , aud, has-override-mistake, has-property-descriptors, mock-property, npmignore, object-inspect, tape
  • [Dev Deps] pin glob, since v10.3.8+ requires a broken jackspeak
  • [Dev Deps] pin jackspeak since 2.1.2+ depends on npm aliases, which kill the install process in npm < 6

6.11.2

  • [Fix] parse: Fix parsing when the global Object prototype is frozen (#473)
  • [Tests] add passing test cases with empty keys (#473)

6.11.1

  • [Fix] stringify: encode comma values more consistently (#463)
  • [readme] add usage of filter option for injecting custom serialization, i.e. of custom types (#447)
  • [meta] remove extraneous code backticks (#457)
  • [meta] fix changelog markdown
  • [actions] update checkout action
  • [actions] restrict action permissions
  • [Dev Deps] update @ljharb/eslint-config, aud, object-inspect, tape

6.11.0

  • [New] [Fix] stringify: revert 0e903c0; add commaRoundTrip option (#442)
  • [readme] fix version badge

6.10.5

  • [Fix] stringify: with arrayFormat: comma, properly include an explicit [] on a single-item array (#434)

6.10.4

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by ljharb, a new releaser for qs since your current version.


Updates docpad from 6.79.4 to 6.83.2

Changelog

Sourced from docpad's changelog.

v6.83.2 2020 September 8

  • If the source path is missing, the correct and useful error is now displayed
  • The deprecated srcPath is now removed, use sourcePaths to write and getPath('source') and getPath('sources') to read
  • Extra debugging for when getting a path fails
  • Updated documentation and website links to their new locations

v6.83.1 2020 August 5

  • Add a new loadPlugins event for use in the docpad-plugintester to make sure all test plugins are properly loaded before docpadReady and other events are fired

v6.83.0 2020 August 5

  • Removed superflous option aliases
    • outPath => outpath
    • configPaths, configPath, c => config
    • environment, e => env
    • logLevel => log
    • render --out, render -o => render --output
  • Removed offline option, it can be re-added later if anyone uses it
  • Removed the last bits of docpad cloud helper functionality
    • Removed skeleton functionality, just clone the repo from github instead
      • docpad skeleton => docpad init (same functionality as selecting no sekleton)
    • Removed version check
  • Updated dependencies, base files, and editions using boundation
    • This will bring a massive performance boost to DocPad, especially with Caterpillar v6 which allows DocPad to disable fetching line information (a very expensive process) for log messages we don't care about
  • Minimum required node version changed from node: >=6 to node: >=10 to keep up with mandatory ecosystem changes

v6.82.5 2018 October 1

  • Prevent plugin false could not be loaded errors, now it will output the path that failed to be found, as expected

v6.82.4 2018 September 8

  • Report the correct error for missing action requests
  • Ensure docpad-plugintester dependency is latest

v6.82.3 2018 September 8

  • Swapped out promptly for inquirer, which brings back Node v6 support (regression since v6.82.1)

v6.82.2 2018 September 8

v6.82.1 2018 September 7

... (truncated)

Commits

Updates grunt-contrib-connect from 0.5.0 to 4.0.0

Changelog

Sourced from grunt-contrib-connect's changelog.

v4.0.0: date: 2023-07-13 changes: - Requires node 16+. - Updated dependencies. v3.0.0: date: 2020-07-16 changes: - Requires node 10+. - Updated dependencies. v2.1.0: date: 2019-09-03 changes: - Update package lock. - Allow all configuration options of livereload to be passed through. v2.0.0: date: 2018-09-09 changes: - Drop Node.js < 6 support. - Update all dependencies and switch to node-http2. - Add secureProtocol in httpsOptions. - Fix open.appName. - Allow passing serve-index options. v1.0.2: date: 2016-04-27 changes: - Fixed http2 dependencies and stopped using the fork. v1.0.1: date: 2016-03-22 changes: - Fixed dependencies behind corporate proxy server. v1.0.0: date: 2016-03-04 changes: - Use predefined logger format with colored http status. - Update deps and docs. - HTTP2 support. - Other fixes. v0.11.2: date: 2015-08-03 changes: - Documentation fixes. v0.11.1: date: 2015-08-01 changes: - Fixes debug logging. v0.11.0: date: 2015-07-30 changes: - Update to connect 3.

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by vladikoff, a new releaser for grunt-contrib-connect since your current version.


Updates grunt-contrib-watch from 0.5.3 to 1.1.0

Changelog

Sourced from grunt-contrib-watch's changelog.

v1.1.0: date: 2018-05-12 changes: - Update to [email protected], [email protected], [email protected] v1.0.1: date: 2018-04-20 changes: - Update to [email protected], lodash@4 v1.0.0: date: 2016-03-12 changes: - Updated tiny-lr, gaze, async and lodash dependencies. - Fix endless loop issue with atBegin/nospawn. - Expose hostname parameter of tiny-lr. - Support cwd.event to emit events relative to path. - Removed peerDependencies setting. v0.6.1: date: 2014-03-19 changes: - Fix for watch targets named "default". v0.6.0: date: 2014-03-11 changes: - Clear changed files after triggering live reload to ensure they're only triggered once. - 'cwd option now accepts separate settings for files and spawn.' - Fix to make interrupt work more than once. - Enable live reload over HTTPS. - Print newline after initial 'Waiting...'. - Remove deprecated grunt.util libs. - Add reload option to specify files other than Gruntfile files to reload. - Update to [email protected]. - Use a fork of tiny-lr (which has quiter operation, support for HTTPS and Windows path fixes). - Add livereloadOnError, which if set to false will not trigger live reload if there is an error.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [qs](https://github.com/ljharb/qs) to 6.12.1 and updates ancestor dependencies [qs](https://github.com/ljharb/qs), [docpad](https://github.com/docpad/docpad), [grunt-contrib-connect](https://github.com/gruntjs/grunt-contrib-connect) and [grunt-contrib-watch](https://github.com/gruntjs/grunt-contrib-watch). These dependencies need to be updated together.


Updates `qs` from 0.6.5 to 6.12.1
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/commits/v6.12.1)

Updates `docpad` from 6.79.4 to 6.83.2
- [Changelog](https://github.com/docpad/docpad/blob/master/HISTORY.md)
- [Commits](docpad/docpad@v6.79.4...v6.83.2)

Updates `grunt-contrib-connect` from 0.5.0 to 4.0.0
- [Release notes](https://github.com/gruntjs/grunt-contrib-connect/releases)
- [Changelog](https://github.com/gruntjs/grunt-contrib-connect/blob/main/CHANGELOG)
- [Commits](https://github.com/gruntjs/grunt-contrib-connect/commits/v4.0.0)

Updates `grunt-contrib-watch` from 0.5.3 to 1.1.0
- [Changelog](https://github.com/gruntjs/grunt-contrib-watch/blob/main/CHANGELOG)
- [Commits](gruntjs/grunt-contrib-watch@v0.5.3...v1.1.0)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
- dependency-name: docpad
  dependency-type: direct:development
- dependency-name: grunt-contrib-connect
  dependency-type: direct:development
- dependency-name: grunt-contrib-watch
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants