Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(deps): update all non-major dependencies #171

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Mar 31, 2023

This PR contains the following updates:

Package Change Age Adoption Passing Confidence Type Update
all-contributors-cli 6.20.0 -> 6.26.1 age adoption passing confidence devDependencies minor
babel-loader 8.2.5 -> 8.4.1 age adoption passing confidence devDependencies minor
enzyme-adapter-react-16 (source) 1.15.6 -> 1.15.8 age adoption passing confidence dependencies patch
jest-styled-components 7.0.8 -> 7.2.0 age adoption passing confidence devDependencies minor
next-pwa 5.4.4 -> 5.6.0 age adoption passing confidence dependencies minor
node (source) 14.19.0 -> 14.21.3 age adoption passing confidence minor
styled-components (source) 5.3.3 -> 5.3.11 age adoption passing confidence dependencies patch
swr (source) 1.2.2 -> 1.3.0 age adoption passing confidence dependencies minor
ts-jest (source) 27.1.3 -> 27.1.5 age adoption passing confidence devDependencies patch
ts-loader 9.2.6 -> 9.5.1 age adoption passing confidence devDependencies minor
typescript (source) 4.5.5 -> 4.9.5 age adoption passing confidence dependencies minor
use-seconds 1.6.0 -> 1.7.0 age adoption passing confidence dependencies minor

Release Notes

all-contributors/all-contributors-cli (all-contributors-cli)

v6.26.1

Compare Source

Bug Fixes
  • add correct arguments to the formatConfig() call (#​360) (cfb1d9c)

v6.26.0

Compare Source

Features

v6.25.1

Compare Source

Bug Fixes

v6.25.0

Compare Source

Features

v6.24.0

Compare Source

Features

v6.23.1

Compare Source

Bug Fixes

v6.23.0

Compare Source

Features

v6.22.0

Compare Source

Features

v6.21.0

Compare Source

Features

v6.20.5

Compare Source

Bug Fixes

v6.20.4

Compare Source

Bug Fixes

v6.20.3

Compare Source

Bug Fixes

v6.20.2

Compare Source

Bug Fixes

v6.20.1

Compare Source

Bug Fixes
babel/babel-loader (babel-loader)

v8.4.1

Compare Source

v8.4.0

Compare Source

v8.3.0

Compare Source

New features

Full Changelog: babel/babel-loader@v8.2.5...v8.3.0

enzymejs/enzyme (enzyme-adapter-react-16)

v1.15.8

Compare Source

v1.15.7

Compare Source

styled-components/jest-styled-components (jest-styled-components)

v7.2.0

Compare Source

What's Changed

New Contributors

Full Changelog: styled-components/jest-styled-components@v7.1.1...v7.2.0

v7.1.1

Compare Source

What's Changed

New Contributors

Full Changelog: styled-components/jest-styled-components@v7.1.0...v7.1.1

v7.1.0

Compare Source

What's Changed

New Contributors

Full Changelog: styled-components/jest-styled-components@v7.0.8...v7.1.0

shadowwalker/next-pwa (next-pwa)

v5.6.0

Compare Source

Summary

BREAKING CHANGE

Start from version 5.6.0. This plugin function signature has been changed to follow the recommended pattern from next.js. Mainly extracting pwa config from mixing into rest of the next.js config. This is also less intrusive. See following commit for details.

shadowwalker/next-pwa@1e6af5f

Full Changelog: shadowwalker/next-pwa@5.5.6...5.6.0

v5.5.6

Compare Source

Important

Version 5.5.5 included a broken change which prevent pwa config to be effective. This release will fix that.

What's Changed

New Contributors

Full Changelog: shadowwalker/next-pwa@5.5.5...5.5.6

v5.5.5

Compare Source

What's Changed

New Contributors

Full Changelog: shadowwalker/next-pwa@5.5.4...5.5.5

v5.5.4

Compare Source

What's Changed

New Contributors

Full Changelog: shadowwalker/next-pwa@5.5.3...5.5.4

v5.5.3

Compare Source

What's Changed

New Contributors

Full Changelog: shadowwalker/next-pwa@5.5.2...5.5.3

v5.5.2

Compare Source

What's Changed

New Contributors

Full Changelog: shadowwalker/next-pwa@5.5.1...5.5.2

v5.5.1

Compare Source

Summary

Fix 404 error on precaching sw.js

v5.5.0

Compare Source

Fix
  1. Update precache manifest revision to contenthash from webpack, suggested by @​ammar-oker
Misc
  • Update dependencies
Fix
  1. (the real) Fix for not precache server js
  2. Fix service worker register url edge case

v5.4.7

Fix
  1. (the real) Fix for not precache server js
  2. Fix service worker register url edge case

v5.4.6

Fix
Misc
  • Update examples and dependencies

v5.4.5

Fix
nodejs/node (node)

v14.21.3: 2023-02-16, Version 14.21.3 'Fermium' (LTS), @​richardlau

Compare Source

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

  • CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High)
  • CVE-2023-23920: Node.js insecure loading of ICU data through ICU_DATA environment variable (Low)

More detailed information on each of the vulnerabilities can be found in February 2023 Security Releases blog post.

This security release includes OpenSSL security updates as outlined in the recent
OpenSSL security advisory.

This security release also includes an npm update for Node.js 14 to address a number
of CVEs which either do not affect Node.js or are low severity in the context of Node.js. You
can get more details for the individual CVEs in
nodejs-dependency-vuln-assessments.

Commits

v14.21.2: 2022-12-13, Version 14.21.2 'Fermium' (LTS), @​richardlau

Compare Source

Notable Changes
OpenSSL 1.1.1s

This update is a bugfix release and does not address any security
vulnerabilities.

Root certificates updated to NSS 3.85

Certificates added:

  • Autoridad de Certificacion Firmaprofesional CIF A626340
  • Certainly Root E1
  • Certainly Root R1
  • D-TRUST BR Root CA 1 2020
  • D-TRUST EV Root CA 1 2020
  • DigiCert TLS ECC P384 Root G5
  • DigiCert TLS RSA4096 Root G5
  • E-Tugra Global Root CA ECC v3
  • E-Tugra Global Root CA RSA v3
  • HiPKI Root CA - G1
  • ISRG Root X2
  • Security Communication ECC RootCA1
  • Security Communication RootCA3
  • Telia Root CA v2
  • vTrus ECC Root CA
  • vTrus Root CA

Certificates removed:

  • Cybertrust Global Root
  • DST Root CA X3
  • GlobalSign Root CA - R2
  • Hellenic Academic and Research Institutions RootCA 2011
Time zone update to 2022f

Time zone data has been updated to 2022f. This includes changes to Daylight
Savings Time (DST) for Fiji and Mexico. For more information, see
https://mm.icann.org/pipermail/tz-announce/2022-October/000075.html.

Commits

v14.21.1: 2022-11-04, Version 14.21.1 'Fermium' (LTS), @​BethGriggs

Compare Source

This is a security release.

Notable changes

The following CVEs are fixed in this release:

  • CVE-2022-43548: DNS rebinding in --inspect via invalid octal IP address (Medium)

More detailed information on each of the vulnerabilities can be found in November 2022 Security Releases blog post.

Commits

v14.21.0: 2022-11-01, Version 14.21.0 'Fermium' (LTS), @​danielleadams

Compare Source

Notable changes
  • deps:
    • update corepack to 0.14.2 (Node.js GitHub Bot) #​44775
  • src:
    • add --openssl-shared-config option (Daniel Bevenius) #​43124
Commits

v14.20.1: 2022-09-23, Version 14.20.1 'Fermium' (LTS), @​bengl

Compare Source

This is a security release.

Notable changes

The following CVEs are fixed in this release:

More detailed information on each of the vulnerabilities can be found in September 22nd 2022 Security Releases blog post.

Commits

v14.20.0: 2022-07-07, Version 14.20.0 'Fermium' (LTS), @​danielleadams prepared by @​juanarbol

Compare Source

This is a security release.

Notable Changes
Commits

v14.19.3: 2022-05-17, Version 14.19.3 'Fermium' (LTS), @​richardlau

Compare Source

Notable Changes
  • This release updates OpenSSL to 1.1.1o. This update is not being treated as a security release as the issues addressed in OpenSSL 1.1.1o were assessed to not affect Node.js 14. See https://nodejs.org/en/blog/vulnerability/openssl-fixes-in-regular-releases-may2022/ for more information on how the May 2022 OpenSSL releases affects other Node.js release lines.
  • The list of GPG keys used to sign releases has been synchronized with the main branch.
Commits

v14.19.2: 2022-05-04, Version 14.19.2 'Fermium' (LTS), @​BethGriggs prepared by @​juanarbol

Compare Source

Notable Changes

doc:

  • New release key for Bryan English

Learn more at: #​42102
Contributed by Bryan English (@​bengl)

npm:

  • Upgrade npm to v6.14.17.

Learn more at: #​42900
Contributed by Ruy Adorno (@​ruyadorno)

V8:

  • V8 had a stack overflow issue affecting the vm module, cherry-picking cc9a8a37445e
    from V8 solves this issue.

Learn more at: #​41826
Contributed by Gus Caplan (@​devsnek)

  • Using getHeapSnapshot() was causing a Node.js crash due a V8 issue, this is fixed by backporting 367b0c1e7a32
    from V8.

Learn more at: #​42637
Contributed by Chengzhong Wu (@​legendecas)

Commits

v14.19.1: 2022-03-17, Version 14.19.1 'Fermium' (LTS), @​richardlau

Compare Source

This is a security release.

Notable Changes

Update to OpenSSL 1.1.1n, which addresses the following vulnerability:

Commits

Configuration

📅 Schedule: Branch creation - "* 0-3 1 * *" in timezone Asia/Tokyo, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the renovate label Mar 31, 2023
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 0a7fa29 to de9260c Compare March 31, 2023 16:54
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from e3f8b71 to 2141fed Compare April 26, 2023 04:10
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 2141fed to 2347128 Compare May 12, 2023 23:13
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 4 times, most recently from 67a0ebd to e253a3f Compare May 28, 2023 22:59
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from e253a3f to 7ee26a6 Compare June 28, 2023 11:57
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 7ee26a6 to 016bdbc Compare July 7, 2023 18:40
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 016bdbc to 6f13ce4 Compare September 10, 2023 13:20
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 64ea7a9 to 256902c Compare October 12, 2023 19:18
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 256902c to 0fcffb5 Compare November 15, 2023 03:56
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 0fcffb5 to e011d9c Compare February 10, 2024 07:26
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from e011d9c to 6525755 Compare September 16, 2024 12:12
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 6525755 to 78912a4 Compare September 16, 2024 16:23
@renovate renovate bot changed the title chore(deps): update all non-major dependencies fix(deps): update all non-major dependencies Dec 10, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants