Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[DCJ-400-npm]: Bump the npm-dependencies group with 8 updates #2681

Merged
merged 1 commit into from
Oct 1, 2024
Merged

[DCJ-400-npm]: Bump the npm-dependencies group with 8 updates #2681

merged 1 commit into from
Oct 1, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 30, 2024

Bumps the npm-dependencies group with 8 updates:

Package From To
@types/node 22.5.5 22.7.4
dompurify 3.1.6 3.1.7
react-google-charts 4.0.5 4.0.7
@types/lodash 4.17.7 4.17.9
@types/react 18.3.8 18.3.10
cypress 13.14.2 13.15.0
eslint-plugin-react 7.36.1 7.37.0
webpack 5.94.0 5.95.0

Updates @types/node from 22.5.5 to 22.7.4

Commits

Updates dompurify from 3.1.6 to 3.1.7

Release notes

Sourced from dompurify's releases.

DOMPurify 3.1.7

  • Fixed an issue with comment detection and possible bypasses with specific config settings, thanks @​masatokinugawa
  • Fixed several smaller typos in documentation and test & build files, thanks @​christianhg
  • Added better support for Angular compiler, thanks @​jeroen1602
  • Added several new attributes to HTML and SVG allow-list, thanks @​Gigabyte5671 and @​Rotzbua
  • Removed the foreignObject element from the list of HTML entry-points, thanks @​masatokinugawa
  • Bumped several dependencies to be more up to date
Commits
  • 69c8c12 Merge pull request #999 from cure53/main
  • 15f54ed chore: Regenerated source maps
  • 4f3b5cb Merge pull request #998 from cure53/main
  • 50aec03 chore: Preparing 3.1.7 release
  • 4a9ec1f fix: Fixed an issue with comment detection and possible bypasses with specifi...
  • 50ea515 Merge pull request #993 from cure53/dependabot/npm_and_yarn/body-parser-1.20.3
  • b6188ec build(deps): bump body-parser from 1.20.1 to 1.20.3
  • 1e2cb9b Merge pull request #990 from jeroen1602/angular_support
  • 745b521 Added support for the Angular compiler.
  • c1949fb Merge pull request #989 from cure53/dependabot/npm_and_yarn/webpack-5.94.0
  • Additional commits viewable in compare view

Updates react-google-charts from 4.0.5 to 4.0.7

Release notes

Sourced from react-google-charts's releases.

v4.0.6

Bug Fixes

  • mitigates the infinite loading issue while the root cause is being investigated (9957ab7), closes #710 #714 #714
Changelog

Sourced from react-google-charts's changelog.

4.0.7 (2024-09-27)

4.0.6 (2024-09-27)

Bug Fixes

  • mitigates the infinite loading issue while the root cause is being investigated (9957ab7), closes #710 #714 #714
Commits
  • c409699 chore(release): 4.0.7
  • 73ade02 chore(release): 4.0.6
  • 9957ab7 fix: mitigates the infinite loading issue while the root cause is being inves...
  • a8d9ac6 chore(docs): update bar chart labeling example
  • c3d44d1 chore(docs): add live code editor in examples and main page
  • 91f3ffd chore(docs): add more code examples to docs
  • 0ca763b chore(docs): timeline quick example
  • 2901333 chore(docs): add high-level description
  • 2da85da chore(docs): adding descriptions to docs site
  • 712ff72 chore(docs): fix animation example
  • Additional commits viewable in compare view

Updates @types/lodash from 4.17.7 to 4.17.9

Commits

Updates @types/react from 18.3.8 to 18.3.10

Commits

Updates cypress from 13.14.2 to 13.15.0

Release notes

Sourced from cypress's releases.

v13.15.0

Changelog: https://docs.cypress.io/guides/references/changelog#13-15-0

Commits
  • 5afb929 chore: Update Chrome (stable) to 129.0.6668.70 (#30279)
  • 0d2248c chore: release 13.15.0 (#30292)
  • 8d71cc4 chore: Update changelog to 'addresses' rather than addressed in (#30275)
  • 1d84532 feat: Improve UX when Test Replay upload fails due to slow upload (#30235)
  • fbe51fc chore: fix net_stubbing flake (#30276)
  • 88900e7 chore: update tests to skip the welcome screen on launchpad tests. (#30240)
  • 954cc50 chore: [Snyk] Security upgrade express from 4.19.2 to 4.21.0 in packages/grap...
  • 3ff88b7 chore: Fix double bugfixes headings in changelog (#30268)
  • 0bdf495 chore: Update Chrome (beta) to 130.0.6723.6 (#30256)
  • f7946de docs: update guides/building-release-artifacts.md (#30257)
  • Additional commits viewable in compare view

Updates eslint-plugin-react from 7.36.1 to 7.37.0

Release notes

Sourced from eslint-plugin-react's releases.

v7.37.0

Added

Changed

#1000: jsx-eslint/eslint-plugin-react#1000 #1002: jsx-eslint/eslint-plugin-react#1002 #1005: jsx-eslint/eslint-plugin-react#1005 #100: jsx-eslint/eslint-plugin-react#100 #1010: jsx-eslint/eslint-plugin-react#1010 #1013: jsx-eslint/eslint-plugin-react#1013 #1022: jsx-eslint/eslint-plugin-react#1022 #1029: jsx-eslint/eslint-plugin-react#1029 #102: jsx-eslint/eslint-plugin-react#102 #1034: jsx-eslint/eslint-plugin-react#1034 #1038: jsx-eslint/eslint-plugin-react#1038 #1041: jsx-eslint/eslint-plugin-react#1041 #1043: jsx-eslint/eslint-plugin-react#1043 #1046: jsx-eslint/eslint-plugin-react#1046 #1047: jsx-eslint/eslint-plugin-react#1047 #1050: jsx-eslint/eslint-plugin-react#1050 #1053: jsx-eslint/eslint-plugin-react#1053 #1057: jsx-eslint/eslint-plugin-react#1057 #105: jsx-eslint/eslint-plugin-react#105 #1061: jsx-eslint/eslint-plugin-react#1061 #1062: jsx-eslint/eslint-plugin-react#1062 #1070: jsx-eslint/eslint-plugin-react#1070 #1071: jsx-eslint/eslint-plugin-react#1071 #1073: jsx-eslint/eslint-plugin-react#1073 #1076: jsx-eslint/eslint-plugin-react#1076 #1079: jsx-eslint/eslint-plugin-react#1079 #1088: jsx-eslint/eslint-plugin-react#1088 #1098: jsx-eslint/eslint-plugin-react#1098 #1101: jsx-eslint/eslint-plugin-react#1101 #1103: jsx-eslint/eslint-plugin-react#1103 #110: jsx-eslint/eslint-plugin-react#110 #1116: jsx-eslint/eslint-plugin-react#1116 #1117: jsx-eslint/eslint-plugin-react#1117 #1119: jsx-eslint/eslint-plugin-react#1119 #1121: jsx-eslint/eslint-plugin-react#1121 #1122: jsx-eslint/eslint-plugin-react#1122 #1123: jsx-eslint/eslint-plugin-react#1123 #1130: jsx-eslint/eslint-plugin-react#1130 #1131: jsx-eslint/eslint-plugin-react#1131 #1132: jsx-eslint/eslint-plugin-react#1132

... (truncated)

Changelog

Sourced from eslint-plugin-react's changelog.

[7.37.0] - 2024.09.26

Added

Changed

#3831: jsx-eslint/eslint-plugin-react#3831 #3830: jsx-eslint/eslint-plugin-react#3830 #3826: jsx-eslint/eslint-plugin-react#3826 #3824: jsx-eslint/eslint-plugin-react#3824 #3805: jsx-eslint/eslint-plugin-react#3805

Commits
  • ec27e20 Update CHANGELOG and bump version
  • 0cc5b7a [meta] fix release workflow
  • 744135b [readme] flat config example for react 17+
  • a1273d5 [New] no-unstable-nested-components: add propNamePattern to support custo...
  • 3073214 [New] forbid-component-props: add allowedForPatterns/`disallowedForPatter...
  • 95297ed [New] no-unescaped-entities: add suggestions
  • 7f3ac1b [New] add type generation
  • 4ecf034 [Dev Deps] update eslint-plugin-import, gfm-footnotes
  • 9668ee0 [meta] fix release workflow
  • See full diff in compare view

Updates webpack from 5.94.0 to 5.95.0

Release notes

Sourced from webpack's releases.

v5.95.0

Bug Fixes

  • Fixed hanging when attempting to read a symlink-like file that it can't read
  • Handle default for import context element dependency
  • Merge duplicate chunks call after split chunks
  • Generate correctly code for dynamically importing the same file twice and destructuring
  • Use content hash as [base] and [name] for extracted DataURI's
  • Distinguish module and import in module-import for externals import's
  • [Types] Make EnvironmentPlugin default values types less strict
  • [Types] Typescript 5.6 compatibility

New Features

  • Add new optimization.avoidEntryIife option (true by default for the production mode)
  • Pass output.hash* options to loader context

Performance

  • Avoid unneeded re-visit in build chunk graph
Commits
  • e20fd63 chore(release): 5.95.0
  • 4866b0d feat: added new optimization.entryIife option
  • d90f692 fix: merge duplicate chunks after split chunks
  • 90dec30 fix(externals): distinguish “module” and “import” in “module-import”
  • c1a0a46 fix(externals): distinguish “module” and “import” in “module-import”
  • 14d8fa8 fix: all tests cases
  • dae16ad feat: pass output.hash* options to loader context
  • 75d185d feat: pass output.hash* options to loader context
  • 46e0b9c test: update
  • 8e62f9f test
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
cypress [>= 5.a, < 6]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
[DCJ-400-npm]: Bump the npm-dependencies group with 8 updates
8c15175 
Bumps the npm-dependencies group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `22.5.5` | `22.7.4` |
| [dompurify](https://github.com/cure53/DOMPurify) | `3.1.6` | `3.1.7` |
| [react-google-charts](https://github.com/RakanNimer/react-google-charts) | `4.0.5` | `4.0.7` |
| [@types/lodash](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/lodash) | `4.17.7` | `4.17.9` |
| [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `18.3.8` | `18.3.10` |
| [cypress](https://github.com/cypress-io/cypress) | `13.14.2` | `13.15.0` |
| [eslint-plugin-react](https://github.com/jsx-eslint/eslint-plugin-react) | `7.36.1` | `7.37.0` |
| [webpack](https://github.com/webpack/webpack) | `5.94.0` | `5.95.0` |


Updates `@types/node` from 22.5.5 to 22.7.4
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `dompurify` from 3.1.6 to 3.1.7
- [Release notes](https://github.com/cure53/DOMPurify/releases)
- [Commits](cure53/DOMPurify@3.1.6...3.1.7)

Updates `react-google-charts` from 4.0.5 to 4.0.7
- [Release notes](https://github.com/RakanNimer/react-google-charts/releases)
- [Changelog](https://github.com/rakannimer/react-google-charts/blob/master/CHANGELOG.md)
- [Commits](rakannimer/react-google-charts@v4.0.5...v4.0.7)

Updates `@types/lodash` from 4.17.7 to 4.17.9
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash)

Updates `@types/react` from 18.3.8 to 18.3.10
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

Updates `cypress` from 13.14.2 to 13.15.0
- [Release notes](https://github.com/cypress-io/cypress/releases)
- [Changelog](https://github.com/cypress-io/cypress/blob/develop/CHANGELOG.md)
- [Commits](cypress-io/cypress@v13.14.2...v13.15.0)

Updates `eslint-plugin-react` from 7.36.1 to 7.37.0
- [Release notes](https://github.com/jsx-eslint/eslint-plugin-react/releases)
- [Changelog](https://github.com/jsx-eslint/eslint-plugin-react/blob/master/CHANGELOG.md)
- [Commits](jsx-eslint/eslint-plugin-react@v7.36.1...v7.37.0)

Updates `webpack` from 5.94.0 to 5.95.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.94.0...v5.95.0)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: dompurify
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: react-google-charts
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: "@types/lodash"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: "@types/react"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: cypress
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: eslint-plugin-react
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: webpack
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner September 30, 2024 11:57
@dependabot dependabot bot removed the request for review from a team September 30, 2024 11:57
@dependabot dependabot bot added dependency Dependencies npm labels Sep 30, 2024
fboulnois
fboulnois approved these changes Oct 1, 2024
View reviewed changes
Copy link
Contributor

@fboulnois fboulnois left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tested manually 👍

@okotsopoulos okotsopoulos self-requested a review October 1, 2024 19:27
@okotsopoulos okotsopoulos merged commit 3212c13 into develop Oct 1, 2024
9 checks passed
@okotsopoulos okotsopoulos deleted the dependabot/npm_and_yarn/develop/npm-dependencies-bd58b3ab75 branch October 1, 2024 19:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@okotsopoulos okotsopoulos okotsopoulos approved these changes

@fboulnois fboulnois fboulnois approved these changes

@rushtong rushtong Awaiting requested review from rushtong rushtong was automatically assigned from DataBiosphere/data-custodian-journeys

Assignees
No one assigned
Labels
dependency Dependencies npm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@fboulnois @okotsopoulos