Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merge upstream #74

Open
wants to merge 50 commits into
base: main
Choose a base branch
from
Open

Merge upstream #74

wants to merge 50 commits into from

Conversation

danimesq
Copy link
Member

No description provided.

dependabot bot and others added 18 commits April 16, 2020 14:37
@dependabot
Bump https-proxy-agent from 2.2.1 to 2.2.4
1e0a5bc 
Bumps [https-proxy-agent](https://github.com/TooTallNate/node-https-proxy-agent) from 2.2.1 to 2.2.4.
- [Release notes](https://github.com/TooTallNate/node-https-proxy-agent/releases)
- [Commits](TooTallNate/proxy-agents@2.2.1...2.2.4)

Signed-off-by: dependabot[bot] <support@github.com>
@dragonnn
Update build and fix mistype in preventDEfault
0934ac1
@dependabot
Bump lodash from 4.17.15 to 4.17.19
4f7f8f3 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.15...4.17.19)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump elliptic from 6.4.0 to 6.5.3
c62ac96 
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.4.0 to 6.5.3.
- [Release notes](https://github.com/indutny/elliptic/releases)
- [Commits](indutny/elliptic@v6.4.0...v6.5.3)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump http-proxy from 1.17.0 to 1.18.1
7be66bf 
Bumps [http-proxy](https://github.com/http-party/node-http-proxy) from 1.17.0 to 1.18.1.
- [Release notes](https://github.com/http-party/node-http-proxy/releases)
- [Changelog](https://github.com/http-party/node-http-proxy/blob/master/CHANGELOG.md)
- [Commits](http-party/node-http-proxy@1.17.0...1.18.1)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump ini from 1.3.5 to 1.3.7
9d68ad7 
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.7.
- [Release notes](https://github.com/isaacs/ini/releases)
- [Commits](npm/ini@v1.3.5...v1.3.7)

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #94 from dragonnn/master
a64f11f 
Update build and fix mistype in preventDEfault
@rlamana
Merge pull request #93 from rlamana/dependabot/npm_and_yarn/https-pro…
411d1d0 
…xy-agent-2.2.4

Bump https-proxy-agent from 2.2.1 to 2.2.4
@rlamana
Merge pull request #95 from rlamana/dependabot/npm_and_yarn/lodash-4.…
4721790 
…17.19

Bump lodash from 4.17.15 to 4.17.19
@rlamana
Merge pull request #96 from rlamana/dependabot/npm_and_yarn/elliptic-…
b2054a1 
…6.5.3

Bump elliptic from 6.4.0 to 6.5.3
@rlamana
Merge pull request #97 from rlamana/dependabot/npm_and_yarn/http-prox…
6be19af 
…y-1.18.1

Bump http-proxy from 1.17.0 to 1.18.1
@rlamana
Merge pull request #98 from rlamana/dependabot/npm_and_yarn/ini-1.3.7
bc8bb09 
Bump ini from 1.3.5 to 1.3.7
@dependabot
Bump elliptic from 6.5.3 to 6.5.4
a08e464 
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.3 to 6.5.4.
- [Release notes](https://github.com/indutny/elliptic/releases)
- [Commits](indutny/elliptic@v6.5.3...v6.5.4)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump y18n from 3.2.1 to 3.2.2
0421564 
Bumps [y18n](https://github.com/yargs/y18n) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md)
- [Commits](https://github.com/yargs/y18n/commits)

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #99 from rlamana/dependabot/npm_and_yarn/elliptic-…
1444da0 
…6.5.4

Bump elliptic from 6.5.3 to 6.5.4
@rlamana
Merge pull request #100 from rlamana/dependabot/npm_and_yarn/y18n-3.2.2
0c81652 
Bump y18n from 3.2.1 to 3.2.2
@dependabot
Bump lodash from 4.17.19 to 4.17.21
17d1bbb 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.19...4.17.21)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump tar from 4.4.4 to 4.4.19
8ec055a 
Bumps [tar](https://github.com/npm/node-tar) from 4.4.4 to 4.4.19.
- [Release notes](https://github.com/npm/node-tar/releases)
- [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-tar@v4.4.4...v4.4.19)

---
updated-dependencies:
- dependency-name: tar
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@danimesq danimesq self-assigned this Oct 30, 2021
hound[bot]
hound bot reviewed Oct 30, 2021
View reviewed changes
dist/ventus.js
@@ -1198,7 +1198,7 @@ g = (function() {

try {
// This works if eval is allowed (see CSP)
g = g || Function("return this")() || (1, eval)("this");
g = g || new Function("return this")();
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The Function constructor is a form of eval.

dependabot bot and others added 9 commits February 11, 2022 00:42
@dependabot
Bump pathval from 1.1.0 to 1.1.1
fba40c3 
Bumps [pathval](https://github.com/chaijs/pathval) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/chaijs/pathval/releases)
- [Changelog](https://github.com/chaijs/pathval/blob/master/CHANGELOG.md)
- [Commits](chaijs/pathval@v1.1.0...v1.1.1)

---
updated-dependencies:
- dependency-name: pathval
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #101 from rlamana/dependabot/npm_and_yarn/lodash-4…
f2fe4e7 
….17.21

Bump lodash from 4.17.19 to 4.17.21
@rlamana
Merge pull request #103 from rlamana/dependabot/npm_and_yarn/tar-4.4.19
5e975df 
Bump tar from 4.4.4 to 4.4.19
@rlamana
Merge pull request #104 from rlamana/dependabot/npm_and_yarn/pathval-…
706ce87 
…1.1.1

Bump pathval from 1.1.0 to 1.1.1
@dependabot
Bump karma from 2.0.4 to 6.3.16
98ac1bf 
Bumps [karma](https://github.com/karma-runner/karma) from 2.0.4 to 6.3.16.
- [Release notes](https://github.com/karma-runner/karma/releases)
- [Changelog](https://github.com/karma-runner/karma/blob/master/CHANGELOG.md)
- [Commits](karma-runner/karma@v2.0.4...v6.3.16)

---
updated-dependencies:
- dependency-name: karma
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #107 from rlamana/dependabot/npm_and_yarn/karma-6.…
8c8dec0 
…3.16

Bump karma from 2.0.4 to 6.3.16
@dependabot
Bump follow-redirects from 1.13.0 to 1.15.1
247dc3a 
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.13.0 to 1.15.1.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](follow-redirects/follow-redirects@v1.13.0...v1.15.1)

---
updated-dependencies:
- dependency-name: follow-redirects
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #109 from rlamana/dependabot/npm_and_yarn/follow-r…
0ad2773 
…edirects-1.15.1

Bump follow-redirects from 1.13.0 to 1.15.1
@dependabot
Bump loader-utils from 1.1.0 to 1.4.2
71a6b37 
Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.1.0 to 1.4.2.
- [Release notes](https://github.com/webpack/loader-utils/releases)
- [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md)
- [Commits](webpack/loader-utils@v1.1.0...v1.4.2)

---
updated-dependencies:
- dependency-name: loader-utils
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
dependabot bot and others added 23 commits November 22, 2022 05:48
@dependabot
Bump engine.io from 6.2.0 to 6.2.1
32515f6 
Bumps [engine.io](https://github.com/socketio/engine.io) from 6.2.0 to 6.2.1.
- [Release notes](https://github.com/socketio/engine.io/releases)
- [Changelog](https://github.com/socketio/engine.io/blob/main/CHANGELOG.md)
- [Commits](socketio/engine.io@6.2.0...6.2.1)

---
updated-dependencies:
- dependency-name: engine.io
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #112 from rlamana/dependabot/npm_and_yarn/engine.i…
fd5f4a7 
…o-6.2.1

Bump engine.io from 6.2.0 to 6.2.1
@rlamana
Merge pull request #111 from rlamana/dependabot/npm_and_yarn/loader-u…
db1f2f7 
…tils-1.4.2

Bump loader-utils from 1.1.0 to 1.4.2
@dependabot
Bump decode-uri-component from 0.2.0 to 0.2.2
f66870d 
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2)

---
updated-dependencies:
- dependency-name: decode-uri-component
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump qs from 6.5.2 to 6.5.3
04aa3ed 
Bumps [qs](https://github.com/ljharb/qs) from 6.5.2 to 6.5.3.
- [Release notes](https://github.com/ljharb/qs/releases)
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v6.5.2...v6.5.3)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump ua-parser-js from 0.7.31 to 0.7.33
79cda60 
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.31 to 0.7.33.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/changelog.md)
- [Commits](faisalman/ua-parser-js@0.7.31...0.7.33)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #115 from rlamana/dependabot/npm_and_yarn/ua-parse…
8e7455e 
…r-js-0.7.33

Bump ua-parser-js from 0.7.31 to 0.7.33
@rlamana
Merge pull request #114 from rlamana/dependabot/npm_and_yarn/qs-6.5.3
0732138 
Bump qs from 6.5.2 to 6.5.3
@dependabot
Bump browserify-sign from 4.0.4 to 4.2.3
b0b3ef0 
Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign) from 4.0.4 to 4.2.3.
- [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md)
- [Commits](browserify/browserify-sign@v4.0.4...v4.2.3)

---
updated-dependencies:
- dependency-name: browserify-sign
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump fsevents from 1.2.4 to 1.2.13
a5137e7 
Bumps [fsevents](https://github.com/fsevents/fsevents) from 1.2.4 to 1.2.13.
- [Release notes](https://github.com/fsevents/fsevents/releases)
- [Commits](fsevents/fsevents@v1.2.4...v1.2.13)

---
updated-dependencies:
- dependency-name: fsevents
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump follow-redirects from 1.15.1 to 1.15.6
e0d2d6c 
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.1 to 1.15.6.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](follow-redirects/follow-redirects@v1.15.1...v1.15.6)

---
updated-dependencies:
- dependency-name: follow-redirects
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump socket.io from 4.5.1 to 4.7.5
db856e8 
Bumps [socket.io](https://github.com/socketio/socket.io) from 4.5.1 to 4.7.5.
- [Release notes](https://github.com/socketio/socket.io/releases)
- [Changelog](https://github.com/socketio/socket.io/blob/4.7.5/CHANGELOG.md)
- [Commits](socketio/socket.io@4.5.1...4.7.5)

---
updated-dependencies:
- dependency-name: socket.io
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #113 from rlamana/dependabot/npm_and_yarn/decode-u…
370892e 
…ri-component-0.2.2

Bump decode-uri-component from 0.2.0 to 0.2.2
@rlamana
Merge pull request #119 from rlamana/dependabot/npm_and_yarn/follow-r…
c437e37 
…edirects-1.15.6

Bump follow-redirects from 1.15.1 to 1.15.6
@rlamana
Merge pull request #118 from rlamana/dependabot/npm_and_yarn/socket.i…
d712d0a 
…o-4.7.5

Bump socket.io from 4.5.1 to 4.7.5
@rlamana
Merge pull request #117 from rlamana/dependabot/npm_and_yarn/browseri…
78a3ffc 
…fy-sign-4.2.3

Bump browserify-sign from 4.0.4 to 4.2.3
@dependabot
Bump get-func-name from 2.0.0 to 2.0.2
adf2275 
Bumps [get-func-name](https://github.com/chaijs/get-func-name) from 2.0.0 to 2.0.2.
- [Release notes](https://github.com/chaijs/get-func-name/releases)
- [Commits](https://github.com/chaijs/get-func-name/commits/v2.0.2)

---
updated-dependencies:
- dependency-name: get-func-name
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #116 from rlamana/dependabot/npm_and_yarn/fsevents…
7c5e7d7 
…-1.2.13

Bump fsevents from 1.2.4 to 1.2.13
@dependabot
Bump semver from 5.5.0 to 5.7.2
5dc77d9 
Bumps [semver](https://github.com/npm/node-semver) from 5.5.0 to 5.7.2.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](npm/node-semver@v5.5.0...v5.7.2)

---
updated-dependencies:
- dependency-name: semver
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #120 from rlamana/dependabot/npm_and_yarn/get-func…
6fd54fe 
…-name-2.0.2

Bump get-func-name from 2.0.0 to 2.0.2
@rlamana
Merge pull request #121 from rlamana/dependabot/npm_and_yarn/semver-5…
997ba6e 
….7.2

Bump semver from 5.5.0 to 5.7.2
@dependabot
Bump body-parser from 1.20.0 to 1.20.3
f7a2bda 
Bumps [body-parser](https://github.com/expressjs/body-parser) from 1.20.0 to 1.20.3.
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](expressjs/body-parser@1.20.0...1.20.3)

---
updated-dependencies:
- dependency-name: body-parser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rlamana
Merge pull request #123 from rlamana/dependabot/npm_and_yarn/body-par…
598d84a 
…ser-1.20.3

Bump body-parser from 1.20.0 to 1.20.3
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hound hound[bot] hound[bot] left review comments

Assignees

@danimesq danimesq

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@danimesq @dragonnn @rlamana