chore(deps): update non-minor dependencies #35

renovate · 2023-10-27T18:37:14Z

This PR contains the following updates:

Package	Change	Type	Update
autoprefixer	`10.4.16` -> `10.4.20`	devDependencies	patch
github.com/cloudfoundry-community/go-cfclient/v3	`v3.0.0-alpha.5` -> `v3.0.0-alpha.9`	require	patch
github.com/go-logr/logr	`v1.4.1` -> `v1.4.2`	require	patch
golang	`1.23.0` -> `1.23.3`	stage	patch
node (source)	`21.7.0` -> `21.7.3`	dependencies	patch
postcss (source)	`8.4.31` -> `8.4.49`	devDependencies	patch

Release Notes

postcss/autoprefixer (autoprefixer)

`v10.4.20`

Compare Source

Fixed fit-content prefix for Firefox.

`v10.4.19`

Compare Source

Removed end value has mixed support, consider using flex-end warning
since end/start now have good support.

`v10.4.18`

Compare Source

Fixed removing -webkit-box-orient on -webkit-line-clamp (@Goodwine).

`v10.4.17`

Compare Source

Fixed user-select: contain prefixes.

cloudfoundry-community/go-cfclient (github.com/cloudfoundry-community/go-cfclient/v3)

`v3.0.0-alpha.9`

Compare Source

What's Changed

Fix 426 - remove pseudo C module import

Full Changelog: cloudfoundry/go-cfclient@v3.0.0-alpha.8...v3.0.0-alpha.9

`v3.0.0-alpha.8`

Compare Source

What's Changed

Allow to set manifest app instances to 0
Add CF app readiness checks
Add query parameters supported by CC 3.165.0 list operations
Added all fields for stack
Support parsing of environment variables other than strings
Return jobGuid on buildpack delete
Remove omitempty from stack attribute in buildpack
Make buildpack filename customizable
Make stack in buildpack pointer

New Contributors

@robertjsullivan made their first contribution in https://github.com/cloudfoundry/go-cfclient/pull/425

Full Changelog: cloudfoundry/go-cfclient@v3.0.0-alpha.7...v3.0.0-alpha.8

`v3.0.0-alpha.7`: v3.0.0 alpha 7

Compare Source

Moved to cloudfoundry org and changed the way config is constructed to use the more typical Golang functional options pattern.

Fix multiple issues around oauth token renewals, especially for long lived processes and some additional features.

Add support for Docker upload
Add get process stats by application ID
Add enhanced query filtering and label selection
Fix issue 325
Fix issue 345
Fix issue 349
Fixed nil pointer error when no isolation segment has been assigned
Bump golang dependencies

go-logr/logr (github.com/go-logr/logr)

`v1.4.2`

Compare Source

What's Changed

Fix lint: named but unused params by @thockin in https://github.com/go-logr/logr/pull/268
Add a Go report card, fix lint by @thockin in https://github.com/go-logr/logr/pull/271
funcr: Handle nested empty groups properly by @thockin in https://github.com/go-logr/logr/pull/274

Dependencies:

build(deps): bump github/codeql-action from 3.22.11 to 3.22.12 by @dependabot in https://github.com/go-logr/logr/pull/254
build(deps): bump github/codeql-action from 3.22.12 to 3.23.0 by @dependabot in https://github.com/go-logr/logr/pull/256
build(deps): bump actions/upload-artifact from 4.0.0 to 4.1.0 by @dependabot in https://github.com/go-logr/logr/pull/257
build(deps): bump github/codeql-action from 3.23.0 to 3.23.1 by @dependabot in https://github.com/go-logr/logr/pull/259
build(deps): bump actions/upload-artifact from 4.1.0 to 4.2.0 by @dependabot in https://github.com/go-logr/logr/pull/260
build(deps): bump actions/upload-artifact from 4.2.0 to 4.3.0 by @dependabot in https://github.com/go-logr/logr/pull/263
build(deps): bump github/codeql-action from 3.23.1 to 3.23.2 by @dependabot in https://github.com/go-logr/logr/pull/262
build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 by @dependabot in https://github.com/go-logr/logr/pull/264
build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 by @dependabot in https://github.com/go-logr/logr/pull/266
build(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 by @dependabot in https://github.com/go-logr/logr/pull/267
build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 by @dependabot in https://github.com/go-logr/logr/pull/270
build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by @dependabot in https://github.com/go-logr/logr/pull/272
build(deps): bump github/codeql-action from 3.24.5 to 3.24.6 by @dependabot in https://github.com/go-logr/logr/pull/275
build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by @dependabot in https://github.com/go-logr/logr/pull/276
build(deps): bump github/codeql-action from 3.24.6 to 3.24.7 by @dependabot in https://github.com/go-logr/logr/pull/277
build(deps): bump github/codeql-action from 3.24.7 to 3.24.9 by @dependabot in https://github.com/go-logr/logr/pull/278
build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 by @dependabot in https://github.com/go-logr/logr/pull/279
build(deps): bump actions/upload-artifact from 4.3.1 to 4.3.2 by @dependabot in https://github.com/go-logr/logr/pull/280
build(deps): bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in https://github.com/go-logr/logr/pull/281
build(deps): bump github/codeql-action from 3.24.10 to 3.25.1 by @dependabot in https://github.com/go-logr/logr/pull/282
build(deps): bump github/codeql-action from 3.25.1 to 3.25.3 by @dependabot in https://github.com/go-logr/logr/pull/283
build(deps): bump golangci/golangci-lint-action from 4.0.0 to 5.0.0 by @dependabot in https://github.com/go-logr/logr/pull/284
build(deps): bump actions/checkout from 4.1.3 to 4.1.4 by @dependabot in https://github.com/go-logr/logr/pull/285
build(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 by @dependabot in https://github.com/go-logr/logr/pull/286
build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 by @dependabot in https://github.com/go-logr/logr/pull/288
build(deps): bump golangci/golangci-lint-action from 5.0.0 to 5.3.0 by @dependabot in https://github.com/go-logr/logr/pull/289
build(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.1 by @dependabot in https://github.com/go-logr/logr/pull/293
build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 by @dependabot in https://github.com/go-logr/logr/pull/292
build(deps): bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in https://github.com/go-logr/logr/pull/291
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @dependabot in https://github.com/go-logr/logr/pull/290
build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 by @dependabot in https://github.com/go-logr/logr/pull/294
build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in https://github.com/go-logr/logr/pull/295

Full Changelog: go-logr/logr@v1.4.1...v1.4.2

nodejs/node (node)

`v21.7.3`: 2024-04-10, Version 21.7.3 (Current), @RafaelGSS

Compare Source

This is a security release.

Notable Changes

CVE-2024-27980 - Command injection via args parameter of child_process.spawn without shell option enabled on Windows

Commits

[9095c914ed] - src: disallow direct .bat and .cmd file spawning (Ben Noordhuis) nodejs-private/node-private#562

`v21.7.2`: 2024-04-03, Version 21.7.2 (Current), @RafaelGSS prepared by @marco-ippolito

Compare Source

This is a security release.

Notable changes

CVE-2024-27983 - Assertion failed in node::http2::Http2Session::~Http2Session() leads to HTTP/2 server crash- (High)
CVE-2024-27982 - HTTP Request Smuggling via Content Length Obfuscation- (Medium)
llhttp version 9.2.1
undici version 6.11.1

Commits

[3dfc10c851] - deps: update undici to 6.11.1 (Node.js GitHub Bot) #52328
[aceea1c5e7] - deps: update undici to 6.10.2 (Node.js GitHub Bot) #52227
[5f0f96b275] - deps: update llhttp to 9.2.0 (Node.js GitHub Bot) #51719
[1a65e98e22] - http: do not allow OBS fold in headers by default (Paolo Insogna) nodejs-private/node-private#556
[3bd39fb474] - src: ensure to close stream when destroying session (Anna Henningsen) nodejs-private/node-private#561

`v21.7.1`: 2024-03-08, Version 21.7.1 (Current), @targos

Compare Source

Notable Changes

This release reverts #51389, which
landed in Node.js 21.7.0. It is a documented feature that t.after() hooks are
run even if a test has no subtests. The hook can be used to clean up the test
itself.

Commits

[0dfe810ac7] - benchmark: update iterations of benchmark/async_hooks/async-local- (Lei Shi) #51420
[625c9e0ac9] - benchmark: update iterations of benchmark/domain/domain-fn-args.js (Lei Shi) #51408
[7ff3551bad] - build: fix arm64 host cross-compilation in GN (Cheng Zhao) #51903
[fd86ea8b71] - Revert "build: workaround for node-core-utils" (Richard Lau) #51975
[23c32ab3a7] - build: respect the NODE env variable in Makefile (Antoine du Hamel) #51743
[9617adc064] - Revert "build: fix warning in cares under GN build" (Luigi Pinca) #51865
[5864534095] - deps: update nghttp2 to 1.60.0 (Node.js GitHub Bot) #51948
[fcf235d623] - doc: add policy for distribution (Geoffrey Booth) #51918
[87d2acc8b1] - doc: fix actual result of example is different in events (Deokjin Kim) #51925
[5908c121c6] - doc: clarify Corepack threat model (Antoine du Hamel) #51917
[20e0ba3b94] - doc,module: clarify hook chain execution sequence (Jacob Smith) #51884
[4d997971ac] - lib: make sure close net server (theanarkh) #51929
[fcc6d54aa3] - lib: return directly if udp socket close before lookup (theanarkh) #51914
[10aaabd158] - meta: bump github/codeql-action from 3.23.2 to 3.24.6 (dependabot[bot]) #51942
[78f38a0143] - meta: bump actions/upload-artifact from 4.3.0 to 4.3.1 (dependabot[bot]) #51941
[42ca5452c4] - meta: bump codecov/codecov-action from 4.0.1 to 4.1.0 (dependabot[bot]) #51940
[015a157375] - meta: bump actions/cache from 4.0.0 to 4.0.1 (dependabot[bot]) #51939
[e476cb4a32] - meta: bump actions/download-artifact from 4.1.1 to 4.1.3 (dependabot[bot]) #51938
[67e8001790] - meta: bump actions/setup-node from 4.0.1 to 4.0.2 (dependabot[bot]) #51937
[50343636e8] - src: fix --disable-single-executable-application (Joyee Cheung) #51808
[a48c9ca0db] - stream: do not defer construction by one microtick (Matteo Collina) #52005
[bee3b364f9] - test: add regression test for test_runner after hook (Colin Ihrig) #51998
[fff7f48f50] - test: reduce flakiness of test-runner-output (Antoine du Hamel) #51952
[57ba8f5acb] - test: fix flaky http-chunk-extensions-limit test (Ethan Arrowood) #51943
[9d2c03990a] - test: remove flaky designation (Luigi Pinca) #51736
[e992af81d3] - test: skip SEA tests when SEA generation fails (Joyee Cheung) #51887
[85aa6ca850] - Revert "test_runner: do not invoke after hook when test is empty" (Colin Ihrig) #51998

postcss/postcss (postcss)

`v8.4.49`

Compare Source

Fixed custom syntax without source.offset (by @romainmenke).

`v8.4.48`

Compare Source

Fixed position calculation in error/warnings methods (by @romainmenke).

`v8.4.47`

Compare Source

Removed debug code.

`v8.4.46`

Compare Source

Fixed Cannot read properties of undefined (reading 'before').

`v8.4.45`

Compare Source

Removed unnecessary fix which could lead to infinite loop.

`v8.4.44`

Compare Source

Another way to fix markClean is not a function error.

`v8.4.43`

Compare Source

Fixed markClean is not a function error.

`v8.4.42`

Compare Source

Fixed CSS syntax error on long minified files (by @varpstar).

`v8.4.41`

Compare Source

Fixed types (by @nex3 and @querkmachine).
Cleaned up RegExps (by @bluwy).

`v8.4.40`

Compare Source

Moved to getter/setter in nodes types to help Sass team (by @nex3).

`v8.4.39`

Compare Source

Fixed CssSyntaxError types (by @romainmenke).

`v8.4.38`

Compare Source

Fixed endIndex: 0 in errors and warnings (by @romainmenke).

`v8.4.37`

Compare Source

Fixed original.column are not numbers error in another case.

`v8.4.36`

Compare Source

Fixed original.column are not numbers error on broken previous source map.

`v8.4.35`

Compare Source

Avoid ! in node.parent.nodes type.
Allow to pass undefined to node adding method to simplify types.

`v8.4.34`

Compare Source

Fixed AtRule#nodes type (by Tim Weißenfels).
Cleaned up code (by Dmitry Kirillov).

`v8.4.33`

Compare Source

Fixed NoWorkResult behavior difference with normal mode (by Romain Menke).
Fixed NoWorkResult usage conditions (by @ahmdammarr).

`v8.4.32`

Compare Source

Fixed postcss().process() types (by Andrew Ferreira).

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate bot added the dependencies label Oct 27, 2023

renovate-approve bot previously approved these changes Oct 27, 2023

View reviewed changes

renovate bot changed the title ~~fix(deps): update module github.com/cloudfoundry-community/go-cfclient/v3 to v3.0.0-alpha.6~~ fix(deps): update non-minor dependencies Nov 6, 2023

renovate bot dismissed renovate-approve[bot]’s stale review via b6ddcc8 November 6, 2023 08:17

renovate bot force-pushed the renovate/non-minor-deps branch from 0a93a99 to b6ddcc8 Compare November 6, 2023 08:17

renovate-approve bot previously approved these changes Nov 6, 2023

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via 7f2df16 November 7, 2023 19:02

renovate bot force-pushed the renovate/non-minor-deps branch from b6ddcc8 to 7f2df16 Compare November 7, 2023 19:02

renovate-approve bot previously approved these changes Nov 7, 2023

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via aee2032 November 7, 2023 23:02

renovate bot force-pushed the renovate/non-minor-deps branch from 7f2df16 to aee2032 Compare November 7, 2023 23:02

renovate-approve bot previously approved these changes Nov 7, 2023

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via e9d6e68 November 16, 2023 00:57

renovate bot force-pushed the renovate/non-minor-deps branch from aee2032 to e9d6e68 Compare November 16, 2023 00:57

renovate-approve bot previously approved these changes Nov 16, 2023

View reviewed changes

renovate bot force-pushed the renovate/non-minor-deps branch from e9d6e68 to 4506176 Compare November 23, 2023 07:04

renovate bot dismissed renovate-approve[bot]’s stale review via f4439f5 December 2, 2023 04:38

renovate bot force-pushed the renovate/non-minor-deps branch from 4506176 to f4439f5 Compare December 2, 2023 04:38

renovate-approve bot previously approved these changes Dec 2, 2023

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via e4e0230 December 5, 2023 19:10

renovate bot force-pushed the renovate/non-minor-deps branch from f4439f5 to e4e0230 Compare December 5, 2023 19:10

renovate-approve bot previously approved these changes Dec 5, 2023

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via 82b20d8 December 5, 2023 22:07

renovate bot force-pushed the renovate/non-minor-deps branch from e4e0230 to 82b20d8 Compare December 5, 2023 22:07

renovate-approve bot previously approved these changes Dec 5, 2023

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via afa31f7 December 14, 2023 06:41

renovate bot force-pushed the renovate/non-minor-deps branch from 82b20d8 to afa31f7 Compare December 14, 2023 06:41

renovate-approve bot previously approved these changes Dec 14, 2023

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via 0b6c906 January 4, 2024 19:24

renovate bot force-pushed the renovate/non-minor-deps branch from afa31f7 to 0b6c906 Compare January 4, 2024 19:24

renovate bot force-pushed the renovate/non-minor-deps branch from ab90e16 to 76f5df5 Compare September 1, 2024 01:25

renovate-approve bot previously approved these changes Sep 1, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via c0a607a September 1, 2024 22:49

renovate bot force-pushed the renovate/non-minor-deps branch from 76f5df5 to c0a607a Compare September 1, 2024 22:49

renovate-approve bot previously approved these changes Sep 1, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via 5bfa629 September 2, 2024 10:43

renovate bot force-pushed the renovate/non-minor-deps branch from c0a607a to 5bfa629 Compare September 2, 2024 10:43

renovate-approve bot previously approved these changes Sep 2, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via a5e238f September 4, 2024 13:00

renovate bot force-pushed the renovate/non-minor-deps branch from 5bfa629 to a5e238f Compare September 4, 2024 13:00

renovate-approve bot previously approved these changes Sep 4, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via 80bedd4 September 6, 2024 01:11

renovate bot force-pushed the renovate/non-minor-deps branch from a5e238f to 80bedd4 Compare September 6, 2024 01:11

renovate-approve bot previously approved these changes Sep 6, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via 6a54c54 September 14, 2024 16:41

renovate bot force-pushed the renovate/non-minor-deps branch from 80bedd4 to 6a54c54 Compare September 14, 2024 16:41

renovate-approve bot previously approved these changes Sep 14, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via 85a6bec October 2, 2024 00:27

renovate bot force-pushed the renovate/non-minor-deps branch from 6a54c54 to 85a6bec Compare October 2, 2024 00:27

renovate-approve bot previously approved these changes Oct 2, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via e6ac337 November 7, 2024 06:33

renovate bot force-pushed the renovate/non-minor-deps branch from 85a6bec to e6ac337 Compare November 7, 2024 06:33

renovate-approve bot previously approved these changes Nov 7, 2024

View reviewed changes

renovate bot dismissed renovate-approve[bot]’s stale review via f528c52 November 10, 2024 22:05

renovate bot force-pushed the renovate/non-minor-deps branch from e6ac337 to f528c52 Compare November 10, 2024 22:05

renovate-approve bot previously approved these changes Nov 10, 2024

View reviewed changes

chore(deps): update non-minor dependencies

7a203ed

renovate bot dismissed renovate-approve[bot]’s stale review via 7a203ed November 11, 2024 22:03

renovate bot force-pushed the renovate/non-minor-deps branch from f528c52 to 7a203ed Compare November 11, 2024 22:03

renovate-approve bot approved these changes Nov 11, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update non-minor dependencies #35

chore(deps): update non-minor dependencies #35

renovate bot commented Oct 27, 2023 •

edited

Loading

chore(deps): update non-minor dependencies #35

Are you sure you want to change the base?

chore(deps): update non-minor dependencies #35

Conversation

renovate bot commented Oct 27, 2023 • edited Loading

Release Notes

What's Changed

What's Changed

New Contributors

v3.0.0-alpha.7: v3.0.0 alpha 7

What's Changed

New Contributors

v3.0.0-alpha.6: v3.0.0 alpha 6

What's Changed

Dependencies:

v21.7.3: 2024-04-10, Version 21.7.3 (Current), @​RafaelGSS

Notable Changes

Commits

v21.7.2: 2024-04-03, Version 21.7.2 (Current), @​RafaelGSS prepared by @​marco-ippolito

Notable changes

Commits

v21.7.1: 2024-03-08, Version 21.7.1 (Current), @​targos

Notable Changes

Commits

Configuration

renovate bot commented Oct 27, 2023 •

edited

Loading

`v3.0.0-alpha.7`: v3.0.0 alpha 7

`v3.0.0-alpha.6`: v3.0.0 alpha 6

`v21.7.3`: 2024-04-10, Version 21.7.3 (Current), @RafaelGSS

`v21.7.2`: 2024-04-03, Version 21.7.2 (Current), @RafaelGSS prepared by @marco-ippolito

`v21.7.1`: 2024-03-08, Version 21.7.1 (Current), @targos