Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security updates #312

Merged
merged 13 commits into from
Feb 12, 2023
Merged

Security updates #312

merged 13 commits into from
Feb 12, 2023

Commits on Feb 1, 2023

  1. build(deps): bump docker/build-push-action from 3 to 4 

    Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3 to 4.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@v3...v4)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
    @dependabot
    dependabot[bot] authored Feb 1, 2023
    Configuration menu
    Copy the full SHA
    306072d View commit details
    Browse the repository at this point in the history

  2. build(deps): bump node from 19.3.0-bullseye to 19.5.0-bullseye 

    Bumps node from 19.3.0-bullseye to 19.5.0-bullseye.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
    @dependabot
    dependabot[bot] authored Feb 1, 2023
    Configuration menu
    Copy the full SHA
    dd41667 View commit details
    Browse the repository at this point in the history

  3. build(deps): bump google.golang.org/grpc from 1.51.0 to 1.52.3 

    Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.51.0 to 1.52.3.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.51.0...v1.52.3)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
    @dependabot
    dependabot[bot] authored Feb 1, 2023
    Configuration menu
    Copy the full SHA
    186bb22 View commit details
    Browse the repository at this point in the history

  4. build(deps-dev): bump typescript from 4.9.4 to 4.9.5 in /website 

    Bumps [typescript](https://github.com/Microsoft/TypeScript) from 4.9.4 to 4.9.5.
- [Release notes](https://github.com/Microsoft/TypeScript/releases)
- [Commits](microsoft/TypeScript@v4.9.4...v4.9.5)

---
updated-dependencies:
- dependency-name: typescript
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
    @dependabot
    dependabot[bot] authored Feb 1, 2023
    Configuration menu
    Copy the full SHA
    7a7dcda View commit details
    Browse the repository at this point in the history

Commits on Feb 12, 2023

  1. build(deps): bump loader-utils from 1.4.0 to 1.4.2 in /website 

    Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.4.0 to 1.4.2.
- [Release notes](https://github.com/webpack/loader-utils/releases)
- [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md)
- [Commits](webpack/loader-utils@v1.4.0...v1.4.2)

---
updated-dependencies:
- dependency-name: loader-utils
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
    @dependabot
    dependabot[bot] authored Feb 12, 2023
    Configuration menu
    Copy the full SHA
    2d31dfd View commit details
    Browse the repository at this point in the history

  2. build(deps): bump ejs from 3.1.6 to 3.1.8 in /website 

    Bumps [ejs](https://github.com/mde/ejs) from 3.1.6 to 3.1.8.
- [Release notes](https://github.com/mde/ejs/releases)
- [Changelog](https://github.com/mde/ejs/blob/main/CHANGELOG.md)
- [Commits](mde/ejs@v3.1.6...v3.1.8)

---
updated-dependencies:
- dependency-name: ejs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
    @dependabot
    dependabot[bot] authored Feb 12, 2023
    Configuration menu
    Copy the full SHA
    9e55cac View commit details
    Browse the repository at this point in the history

  3. build(deps): bump terser from 5.10.0 to 5.16.3 in /website 

    Bumps [terser](https://github.com/terser/terser) from 5.10.0 to 5.16.3.
- [Release notes](https://github.com/terser/terser/releases)
- [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md)
- [Commits](terser/terser@v5.10.0...v5.16.3)

---
updated-dependencies:
- dependency-name: terser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
    @dependabot
    dependabot[bot] authored Feb 12, 2023
    Configuration menu
    Copy the full SHA
    d1a08eb View commit details
    Browse the repository at this point in the history

  4. Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/website/… 

    …ejs-3.1.8' into security_updates
    @awlx
    awlx committed Feb 12, 2023
    Configuration menu
    Copy the full SHA
    6c8ad2b View commit details
    Browse the repository at this point in the history

  5. Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/website/… 

    …terser-5.16.3' into security_updates
    @awlx
    awlx committed Feb 12, 2023
    Configuration menu
    Copy the full SHA
    ef8516f View commit details
    Browse the repository at this point in the history

  6. Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/website/… 

    …typescript-4.9.5' into security_updates
    @awlx
    awlx committed Feb 12, 2023
    Configuration menu
    Copy the full SHA
    f9391b3 View commit details
    Browse the repository at this point in the history

  7. Merge remote-tracking branch 'origin/dependabot/go_modules/google.gol… 

    …ang.org/grpc-1.52.3' into security_updates
    @awlx
    awlx committed Feb 12, 2023
    Configuration menu
    Copy the full SHA
    070b83b View commit details
    Browse the repository at this point in the history

  8. Merge remote-tracking branch 'origin/dependabot/docker/node-19.5.0-bu… 

    …llseye' into security_updates
    @awlx
    awlx committed Feb 12, 2023
    Configuration menu
    Copy the full SHA
    43102f3 View commit details
    Browse the repository at this point in the history

  9. Merge remote-tracking branch 'origin/dependabot/github_actions/docker… 

    …/build-push-action-4' into security_updates
    @awlx
    awlx committed Feb 12, 2023
    Configuration menu
    Copy the full SHA
    61b8e67 View commit details
    Browse the repository at this point in the history