Bump the npm_and_yarn group with 21 updates #40
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Bumps the npm_and_yarn group with 21 updates: | Package | From | To | | --- | --- | --- | | [node-sass](https://github.com/sass/node-sass) | `4.13.1` | `9.0.0` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.3.4` | `7.25.7` | | [ajv](https://github.com/ajv-validator/ajv) | `6.10.0` | `6.12.6` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.0.4` | `4.2.3` | | [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` | | [elliptic](https://github.com/indutny/elliptic) | `6.5.4` | `6.5.7` | | [eventsource](https://github.com/EventSource/eventsource) | `1.0.7` | `1.1.2` | | [express](https://github.com/expressjs/express) | `4.16.4` | `4.21.0` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.13.0` | `1.15.9` | | [ini](https://github.com/npm/ini) | `1.3.5` | `1.3.8` | | [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.7` | `0.1.10` | | [scss-tokenizer](https://github.com/sasstools/scss-tokenizer) | `0.2.3` | `0.4.3` | | [semver](https://github.com/npm/node-semver) | `5.3.0` | `5.6.0` | | [send](https://github.com/pillarjs/send) | `0.16.2` | `0.19.0` | | [serve-static](https://github.com/expressjs/serve-static) | `1.13.2` | `1.16.2` | | [tar](https://github.com/isaacs/node-tar) | `2.2.2` | `4.4.8` | | [trim-newlines](https://github.com/sindresorhus/trim-newlines) | `1.0.0` | `3.0.1` | | [ua-parser-js](https://github.com/faisalman/ua-parser-js) | `0.7.28` | `0.7.39` | | [url-parse](https://github.com/unshiftio/url-parse) | `1.5.3` | `1.5.10` | | [ws](https://github.com/websockets/ws) | `5.2.3` | `5.2.4` | | [yargs-parser](https://github.com/yargs/yargs-parser) | `5.0.1` | `9.0.2` | Updates `node-sass` from 4.13.1 to 9.0.0 - [Release notes](https://github.com/sass/node-sass/releases) - [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md) - [Commits](sass/node-sass@v4.13.1...v9.0.0) Updates `@babel/traverse` from 7.3.4 to 7.25.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.7/packages/babel-traverse) Updates `ajv` from 6.10.0 to 6.12.6 - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](ajv-validator/ajv@v6.10.0...v6.12.6) Updates `browserify-sign` from 4.0.4 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.0.4...v4.2.3) Updates `decode-uri-component` from 0.2.0 to 0.2.2 - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) Updates `elliptic` from 6.5.4 to 6.5.7 - [Commits](indutny/elliptic@v6.5.4...v6.5.7) Updates `eventsource` from 1.0.7 to 1.1.2 - [Changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md) - [Commits](EventSource/eventsource@v1.0.7...v1.1.2) Updates `express` from 4.16.4 to 4.21.0 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md) - [Commits](expressjs/express@4.16.4...4.21.0) Updates `follow-redirects` from 1.13.0 to 1.15.9 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.13.0...v1.15.9) Updates `ini` from 1.3.5 to 1.3.8 - [Release notes](https://github.com/npm/ini/releases) - [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md) - [Commits](npm/ini@v1.3.5...v1.3.8) Updates `path-to-regexp` from 0.1.7 to 0.1.10 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v0.1.7...v0.1.10) Updates `scss-tokenizer` from 0.2.3 to 0.4.3 - [Release notes](https://github.com/sasstools/scss-tokenizer/releases) - [Commits](sasstools/scss-tokenizer@v0.2.3...v0.4.3) Updates `semver` from 5.3.0 to 5.6.0 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v5.3.0...v5.6.0) Updates `send` from 0.16.2 to 0.19.0 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.16.2...0.19.0) Updates `serve-static` from 1.13.2 to 1.16.2 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md) - [Commits](expressjs/serve-static@v1.13.2...v1.16.2) Updates `tar` from 2.2.2 to 4.4.8 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v2.2.2...v4.4.8) Updates `trim-newlines` from 1.0.0 to 3.0.1 - [Release notes](https://github.com/sindresorhus/trim-newlines/releases) - [Commits](https://github.com/sindresorhus/trim-newlines/commits) Updates `ua-parser-js` from 0.7.28 to 0.7.39 - [Release notes](https://github.com/faisalman/ua-parser-js/releases) - [Changelog](https://github.com/faisalman/ua-parser-js/blob/0.7.39/changelog.md) - [Commits](faisalman/ua-parser-js@0.7.28...0.7.39) Updates `url-parse` from 1.5.3 to 1.5.10 - [Commits](unshiftio/url-parse@1.5.3...1.5.10) Updates `ws` from 5.2.3 to 5.2.4 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@5.2.3...5.2.4) Updates `yargs-parser` from 5.0.1 to 9.0.2 - [Release notes](https://github.com/yargs/yargs-parser/releases) - [Changelog](https://github.com/yargs/yargs-parser/blob/main/CHANGELOG.md) - [Commits](yargs/yargs-parser@v5.0.1...v9.0.2) --- updated-dependencies: - dependency-name: node-sass dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ajv dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: decode-uri-component dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: eventsource dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ini dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: scss-tokenizer dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: trim-newlines dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ua-parser-js dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: url-parse dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: yargs-parser dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
This was referenced Oct 5, 2024
|
@dependabot rebase
…On Saturday, October 5th, 2024 at 05:41, dependabot[bot] ***@***.***> wrote:
This automated pull request fixes a [security vulnerability](https://github.com/reposman33/ofcourse/security/dependabot/113) (low severity).
[Learn more about Dependabot security updates](https://docs.github.com/github/managing-security-vulnerabilities/configuring-dependabot-security-updates).
---------------------------------------------------------------
Bumps the npm_and_yarn group with 21 updates:
Package From To
[node-sass](https://github.com/sass/node-sass) 4.13.1 9.0.0
***@***.***/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) 7.3.4 7.25.7
[ajv](https://github.com/ajv-validator/ajv) 6.10.0 6.12.6
[browserify-sign](https://github.com/crypto-browserify/browserify-sign) 4.0.4 4.2.3
[decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) 0.2.0 0.2.2
[elliptic](https://github.com/indutny/elliptic) 6.5.4 6.5.7
[eventsource](https://github.com/EventSource/eventsource) 1.0.7 1.1.2
[express](https://github.com/expressjs/express) 4.16.4 4.21.0
[follow-redirects](https://github.com/follow-redirects/follow-redirects) 1.13.0 1.15.9
[ini](https://github.com/npm/ini) 1.3.5 1.3.8
[path-to-regexp](https://github.com/pillarjs/path-to-regexp) 0.1.7 0.1.10
[scss-tokenizer](https://github.com/sasstools/scss-tokenizer) 0.2.3 0.4.3
[semver](https://github.com/npm/node-semver) 5.3.0 5.6.0
[send](https://github.com/pillarjs/send) 0.16.2 0.19.0
[serve-static](https://github.com/expressjs/serve-static) 1.13.2 1.16.2
[tar](https://github.com/isaacs/node-tar) 2.2.2 4.4.8
[trim-newlines](https://github.com/sindresorhus/trim-newlines) 1.0.0 3.0.1
[ua-parser-js](https://github.com/faisalman/ua-parser-js) 0.7.28 0.7.39
[url-parse](https://github.com/unshiftio/url-parse) 1.5.3 1.5.10
[ws](https://github.com/websockets/ws) 5.2.3 5.2.4
[yargs-parser](https://github.com/yargs/yargs-parser) 5.0.1 9.0.2
Updates node-sass from 4.13.1 to 9.0.0
Release notes
Sourced from [node-sass's releases](https://github.com/sass/node-sass/releases).
> v9.0.0
>
> What's Changed
>
> - Node 20 support by [@nschonni](https://github.com/nschonni) in [sass/node-sass#3355](https://redirect.github.com/sass/node-sass/pull/3355)
>
> Breaking changes
>
> - Drop support for Node 14 ([@nschonni](https://github.com/nschonni))
>
> Supported Environments
>
> OS Architecture Node
> Windows x86 & x64 16, 18, 19, 20
> OSX x64 16, 18, 19, 20
> Linux* x64 16, 18, 19, 20
> Alpine Linux x64 16, 18, 19, 20
>
> *Linux support refers to major distributions like Ubuntu, and Debian
>
> v8.0.0
>
> What's Changed
>
> - Fix binaries being partially downloaded by [@xzyfer](https://github.com/xzyfer) in [sass/node-sass#3313](https://redirect.github.com/sass/node-sass/pull/3313)
> - Bump node-gyp and nan for node 19 support by [@xzyfer](https://github.com/xzyfer) in [sass/node-sass#3314](https://redirect.github.com/sass/node-sass/pull/3314)
> - feat: Node 18 and 19 support and drop Node 17 by [@nschonni](https://github.com/nschonni) in [sass/node-sass#3257](https://redirect.github.com/sass/node-sass/pull/3257)
>
> Breaking changes
>
> - Drop support for Node 12 ([@nschonni](https://github.com/nschonni))
> - Drop support for Node 17 ([@nschonni](https://github.com/nschonni))
> - Set rejectUnauthorized to true by default ([@scott-ut](https://github.com/scott-ut), [#3149](https://redirect.github.com/sass/node-sass/issues/3149))
>
> Features
>
> - Add support for Node 18 ([@nschonni](https://github.com/nschonni))
> - Add support for Node 19 ([@nschonni](https://github.com/nschonni))
> - Replace request with make-fetch-happen ([@CamilleDrapier](https://github.com/CamilleDrapier) [@xzyfer](https://github.com/xzyfer), [#3193](https://redirect.github.com/sass/node-sass/issues/3193), [#3313](https://redirect.github.com/sass/node-sass/issues/3313))
>
> Dependencies
>
> - Bump ***@***.***
> - Bump node-gyp [@9](https://github.com/9).0.0
> - Bump nan@^2.17.0
> - Bump sass-graph@^4.0.1
>
> Misc
>
> - Bump various GitHub Actions dependencies ([@nschonni](https://github.com/nschonni))
... (truncated)
Changelog
Sourced from [node-sass's changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md).
> v4.14.0
>
> https://github.com/sass/node-sass/releases/tag/v4.14.0
Commits
- [87f3899](sass/node-sass@87f3899) feat: Node 20 support ([#3355](https://redirect.github.com/sass/node-sass/issues/3355))
- [06ae4c7](sass/node-sass@06ae4c7) build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 ([#3350](https://redirect.github.com/sass/node-sass/issues/3350))
- [e069f73](sass/node-sass@e069f73) build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0
- [c34837d](sass/node-sass@c34837d) build(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0
- [ee13eb9](sass/node-sass@ee13eb9) 8.0.0
- [98e75b3](sass/node-sass@98e75b3) feat: Node 18 and 19 support and drop Node 17 ([#3257](https://redirect.github.com/sass/node-sass/issues/3257))
- [e9bb866](sass/node-sass@e9bb866) Bump node-gyp and nan for node 19 support ([#3314](https://redirect.github.com/sass/node-sass/issues/3314))
- [ab7840b](sass/node-sass@ab7840b) Fix binaries being partially downloaded ([#3313](https://redirect.github.com/sass/node-sass/issues/3313))
- [d595abf](sass/node-sass@d595abf) 7.0.3
- [3b556c1](sass/node-sass@3b556c1) 7.0.2
- Additional commits viewable in [compare view](sass/node-sass@v4.13.1...v9.0.0)
Updates @babel/traverse from 7.3.4 to 7.25.7
Release notes
Sourced from [@babel/traverse's releases](https://github.com/babel/babel/releases).
> v7.25.7 (2024-10-02)
>
> Thanks [@DylanPiercey](https://github.com/DylanPiercey) and [@YuHyeonWook](https://github.com/YuHyeonWook) for your first PRs!
>
> 🐛 Bug Fix
>
> - babel-helper-validator-identifier
>
> - [#16825](https://redirect.github.com/babel/babel/pull/16825) fix: update identifier to unicode 16 ([@JLHwung](https://github.com/JLHwung))
>
> - babel-traverse
>
> - [#16814](https://redirect.github.com/babel/babel/pull/16814) fix: issue with node path keys updated on unrelated paths ([@DylanPiercey](https://github.com/DylanPiercey))
>
> - babel-plugin-transform-classes
>
> - [#16797](https://redirect.github.com/babel/babel/pull/16797) Use an inclusion rather than exclusion list for super() check ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> - babel-generator
>
> - [#16788](https://redirect.github.com/babel/babel/pull/16788) Fix printing of TS infer in compact mode ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
> - [#16785](https://redirect.github.com/babel/babel/pull/16785) Print TS type annotations for destructuring in assignment pattern ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
> - [#16778](https://redirect.github.com/babel/babel/pull/16778) Respect [no LineTerminator here] after nodes ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> 💅 Polish
>
> - babel-types
>
> - [#16852](https://redirect.github.com/babel/babel/pull/16852) Add deprecated JSDOC for fields ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
>
> 🏠 Internal
>
> - babel-core
>
> - [#16820](https://redirect.github.com/babel/babel/pull/16820) Allow sync loading of ESM when --experimental-require-module ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> - babel-helper-compilation-targets, babel-helper-plugin-utils, babel-preset-env
>
> - [#16858](https://redirect.github.com/babel/babel/pull/16858) Add browserslist config to external dependency ([@JLHwung](https://github.com/JLHwung))
>
> - babel-plugin-proposal-destructuring-private, babel-plugin-syntax-decimal, babel-plugin-syntax-import-reflection, babel-standalone
>
> - [#16809](https://redirect.github.com/babel/babel/pull/16809) Archive syntax-import-reflection and syntax-decimal ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> - babel-generator
>
> - [#16779](https://redirect.github.com/babel/babel/pull/16779) Simplify logic for [no LineTerminator here] before nodes ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> 🏃♀️ Performance
>
> - babel-plugin-transform-typescript
>
> - [#16875](https://redirect.github.com/babel/babel/pull/16875) perf: Avoid extra cloning of namespaces ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
>
> - babel-types
>
> - [#16842](https://redirect.github.com/babel/babel/pull/16842) perf: Improve @babel/types builders ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
> - [#16828](https://redirect.github.com/babel/babel/pull/16828) Only access BABEL_TYPES_8_BREAKING at startup ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> Committers: 8
>
> - Babel Bot ([@babel-bot](https://github.com/babel-bot))
> - Dylan Piercey ([@DylanPiercey](https://github.com/DylanPiercey))
> - Huáng Jùnliàng ([@JLHwung](https://github.com/JLHwung))
> - Nicolò Ribaudo ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
> - [@liuxingbaoyu](https://github.com/liuxingbaoyu)
> - coderaiser ([@coderaiser](https://github.com/coderaiser))
> - fisker Cheung ([@fisker](https://github.com/fisker))
> - hwook ([@YuHyeonWook](https://github.com/YuHyeonWook))
>
> v7.25.6 (2024-08-29)
>
> Thanks [@j4k0xb](https://github.com/j4k0xb) for your first PR!
... (truncated)
Changelog
Sourced from [@babel/traverse's changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md).
> v7.25.7 (2024-10-02)
>
> 🐛 Bug Fix
>
> - babel-helper-validator-identifier
>
> - [#16825](https://redirect.github.com/babel/babel/pull/16825) fix: update identifier to unicode 16 ([@JLHwung](https://github.com/JLHwung))
>
> - babel-traverse
>
> - [#16814](https://redirect.github.com/babel/babel/pull/16814) fix: issue with node path keys updated on unrelated paths ([@DylanPiercey](https://github.com/DylanPiercey))
>
> - babel-plugin-transform-classes
>
> - [#16797](https://redirect.github.com/babel/babel/pull/16797) Use an inclusion rather than exclusion list for super() check ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> - babel-generator
>
> - [#16788](https://redirect.github.com/babel/babel/pull/16788) Fix printing of TS infer in compact mode ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
> - [#16785](https://redirect.github.com/babel/babel/pull/16785) Print TS type annotations for destructuring in assignment pattern ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
> - [#16778](https://redirect.github.com/babel/babel/pull/16778) Respect [no LineTerminator here] after nodes ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> 💅 Polish
>
> - babel-types
>
> - [#16852](https://redirect.github.com/babel/babel/pull/16852) Add deprecated JSDOC for fields ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
>
> 🏠 Internal
>
> - babel-core
>
> - [#16820](https://redirect.github.com/babel/babel/pull/16820) Allow sync loading of ESM when --experimental-require-module ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> - babel-helper-compilation-targets, babel-helper-plugin-utils, babel-preset-env
>
> - [#16858](https://redirect.github.com/babel/babel/pull/16858) Add browserslist config to external dependency ([@JLHwung](https://github.com/JLHwung))
>
> - babel-plugin-proposal-destructuring-private, babel-plugin-syntax-decimal, babel-plugin-syntax-import-reflection, babel-standalone
>
> - [#16809](https://redirect.github.com/babel/babel/pull/16809) Archive syntax-import-reflection and syntax-decimal ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> - babel-generator
>
> - [#16779](https://redirect.github.com/babel/babel/pull/16779) Simplify logic for [no LineTerminator here] before nodes ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> 🏃♀️ Performance
>
> - babel-plugin-transform-typescript
>
> - [#16875](https://redirect.github.com/babel/babel/pull/16875) perf: Avoid extra cloning of namespaces ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
>
> - babel-types
>
> - [#16842](https://redirect.github.com/babel/babel/pull/16842) perf: Improve @babel/types builders ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
> - [#16828](https://redirect.github.com/babel/babel/pull/16828) Only access BABEL_TYPES_8_BREAKING at startup ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> v7.25.6 (2024-08-29)
>
> 🐛 Bug Fix
>
> - babel-generator
>
> - [#16783](https://redirect.github.com/babel/babel/pull/16783) Properly print inner comments in TS array types ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
> - [#16775](https://redirect.github.com/babel/babel/pull/16775) fix: jsx whitespace is not properly preserved when retainLines ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
>
> - babel-traverse
>
> - [#16727](https://redirect.github.com/babel/babel/pull/16727) fix: path.getAssignmentIdentifiers may be undefined ([@liuxingbaoyu](https://github.com/liuxingbaoyu))
>
> - babel-parser
>
> - [#16761](https://redirect.github.com/babel/babel/pull/16761) fix: improve static canFollowModifier checks ([@JLHwung](https://github.com/JLHwung))
>
> - babel-helpers, babel-plugin-transform-optional-chaining, babel-runtime-corejs3
>
> - [#16769](https://redirect.github.com/babel/babel/pull/16769) Only wrap functions in superPropertyGet helper ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
>
> 💅 Polish
>
> - babel-generator, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-duplicate-named-capturing-groups-regex, babel-plugin-transform-named-capturing-groups-regex, babel-plugin-transform-react-jsx-development, babel-plugin-transform-react-jsx, babel-plugin-transform-react-pure-annotations, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env
>
> - [#16780](https://redirect.github.com/babel/babel/pull/16780) Do not enforce printing space between ( and comments ([@nicolo-ribaudo](https://github.com/nicolo-ribaudo))
... (truncated)
Commits
- [2533cfb](babel/babel@2533cfb) v7.25.7
- [611d958](babel/babel@611d958) [babel 8] Create TSClassImplements|TSInterfaceHeritage nodes ([#16731](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16731))
- [506bf91](babel/babel@506bf91) Remove BABEL_TYPES_8_BREAKING flag and enable it by default ([#16817](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16817))
- [9e14f7d](babel/babel@9e14f7d) chore: Enable more lint rules ([#16827](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16827))
- [e69a7e5](babel/babel@e69a7e5) fix: issue with node path keys updated on unrelated paths ([#16814](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16814))
- [7467c9d](babel/babel@7467c9d) [Babel 8] Remove some Scope methods ([#16705](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16705))
- [0a55713](babel/babel@0a55713) [Babel 8] Remove DecimalLiteral AST ([#16807](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16807))
- [69d65f1](babel/babel@69d65f1) [babel 8] Require Node.js ^18.20.0 || ^20.17.0 || >=22.8.0 ([#16800](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16800))
- [2f72b97](babel/babel@2f72b97) v7.25.6
- [faceae9](babel/babel@faceae9) fix: path.getAssignmentIdentifiers may be undefined ([#16727](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16727))
- Additional commits viewable in [compare view](https://github.com/babel/babel/commits/v7.25.7/packages/babel-traverse)
Updates ajv from 6.10.0 to 6.12.6
Release notes
Sourced from [ajv's releases](https://github.com/ajv-validator/ajv/releases).
> v6.12.6
>
> Fix performance issue of "url" format.
>
> v6.12.5
>
> Fix uri scheme validation ([@ChALkeR](https://github.com/ChALkeR)). Fix boolean schemas with strictKeywords option ([#1270](https://redirect.github.com/ajv-validator/ajv/issues/1270))
>
> v6.12.4
>
> Fix: coercion of one-item arrays to scalar that should fail validation ([failing example](https://runkit.com/esp/5f3672ba2f6642001ae27411)).
>
> v6.12.3
>
> Pass schema object to processCode function Option for strictNumbers ([@issacgerges](https://github.com/issacgerges), [#1128](https://redirect.github.com/ajv-validator/ajv/issues/1128)) Fixed vulnerability related to untrusted schemas ([CVE-2020-15366](https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=CVE-2020-15366))
>
> v6.12.2
>
> Removed post-install script
>
> v6.12.1
>
> Docs and dependency updates
>
> v6.12.0
>
> Improved hostname validation ([@sambauers](https://github.com/sambauers), [#1143](https://redirect.github.com/ajv-validator/ajv/issues/1143)) Option keywords to add custom keywords ([@franciscomorais](https://github.com/franciscomorais), [#1137](https://redirect.github.com/ajv-validator/ajv/issues/1137)) Types fixes ([@boenrobot](https://github.com/boenrobot), [@MattiAstedrone](https://github.com/MattiAstedrone)) Docs:
>
> - [error logging](https://github.com/epoberezkin/ajv#error-logging) example ([@RadiationSickness](https://github.com/RadiationSickness))
> - TypeScript usage notes ([@thetric](https://github.com/thetric))
>
> v6.11.0
>
> Time formats support two digit and colon-less variants of timezone offset ([#1061](https://redirect.github.com/ajv-validator/ajv/issues/1061) , [@cjpillsbury](https://github.com/cjpillsbury)) Docs: RegExp related security considerations Tests: Disabled failing typescript test
>
> v6.10.2
>
> Fix: the unknown keywords were ignored with the option strictKeywords: true (instead of failing compilation) in some sub-schemas (e.g. anyOf), when the sub-schema didn't have known keywords.
>
> v6.10.1
>
> Fix types Fix addSchema ([#1001](https://redirect.github.com/ajv-validator/ajv/issues/1001)) Update dependencies
Commits
- [fe59143](ajv-validator/ajv@fe59143) 6.12.6
- [d580d3e](ajv-validator/ajv@d580d3e) Merge pull request [#1298](https://redirect.github.com/ajv-validator/ajv/issues/1298) from ajv-validator/fix-url
- [fd36389](ajv-validator/ajv@fd36389) fix: regular expression for "url" format
- [490e34c](ajv-validator/ajv@490e34c) docs: link to v7-beta branch
- [9cd93a1](ajv-validator/ajv@9cd93a1) docs: note about v7 in readme
- [877d286](ajv-validator/ajv@877d286) Merge pull request [#1262](https://redirect.github.com/ajv-validator/ajv/issues/1262) from b4h0-c4t/refactor-opt-object-type
- [f1c8e45](ajv-validator/ajv@f1c8e45) 6.12.5
- [764035e](ajv-validator/ajv@764035e) Merge branch 'ChALkeR-chalker/fix-comma'
- [3798160](ajv-validator/ajv@3798160) Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...
- [a3c7eba](ajv-validator/ajv@a3c7eba) Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...
- Additional commits viewable in [compare view](ajv-validator/ajv@v6.10.0...v6.12.6)
Updates browserify-sign from 4.0.4 to 4.2.3
Changelog
Sourced from [browserify-sign's changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md).
> [v4.2.3](browserify/browserify-sign@v4.2.2...v4.2.3) - 2024-03-05
>
> Commits
>
> - [patch] widen support to 0.12 [9247adf](browserify/browserify-sign@9247adf)
> - [patch] drop minimum node support to v1 [4d0ee49](browserify/browserify-sign@4d0ee49)
> - [Dev Deps] update aud, npmignore, tape [87f3a35](browserify/browserify-sign@87f3a35)
> - [actions] remove redundant finisher [37a4758](browserify/browserify-sign@37a4758)
> - [Deps] pin hash-base to ~3.0, due to a breaking change [9e2bf12](browserify/browserify-sign@9e2bf12)
> - [Deps] update parse-asn1 ***@***.***(browserify/browserify-sign@f427270))
> - [Deps] update elliptic [fb261ce](browserify/browserify-sign@fb261ce)
> - [Deps] pin elliptic due to a breaking change [168e16f](browserify/browserify-sign@168e16f)
>
> [v4.2.2](browserify/browserify-sign@v4.2.1...v4.2.2) - 2023-10-25
>
> Fixed
>
> - [Tests] log when openssl doesn't support cipher [[#37](browserify/browserify-sign#37)
>
> Commits
>
> - Only apps should have lockfiles [09a8995](browserify/browserify-sign@09a8995)
> - [eslint] switch to eslint [83fe463](browserify/browserify-sign@83fe463)
> - [meta] add npmignore and auto-changelog [4418183](browserify/browserify-sign@4418183)
> - [meta] fix package.json indentation [9ac5a5e](browserify/browserify-sign@9ac5a5e)
> - [Tests] migrate from travis to github actions [d845d85](browserify/browserify-sign@d845d85)
> - [Fix] sign: throw on unsupported padding scheme [8767739](browserify/browserify-sign@8767739)
> - [Fix] properly check the upper bound for DSA signatures [85994cd](browserify/browserify-sign@85994cd)
> - [Tests] handle openSSL not supporting a scheme [f5f17c2](browserify/browserify-sign@f5f17c2)
> - [Deps] update bn.js, browserify-rsa, elliptic, parse-asn1, readable-stream, safe-buffer [a67d0eb](browserify/browserify-sign@a67d0eb)
> - [Dev Deps] update nyc, standard, tape [cc5350b](browserify/browserify-sign@cc5350b)
> - [Tests] always run coverage; downgrade nyc [75ce1d5](browserify/browserify-sign@75ce1d5)
> - [meta] add safe-publish-latest [dcf49ce](browserify/browserify-sign@dcf49ce)
> - [Tests] add npm run posttest [75dd8fd](browserify/browserify-sign@75dd8fd)
> - [Dev Deps] update tape [3aec038](browserify/browserify-sign@3aec038)
> - [Tests] skip unsupported schemes [703c83e](browserify/browserify-sign@703c83e)
> - [Tests] node < 6 lacks array includes [3aa43cf](browserify/browserify-sign@3aa43cf)
> - [Dev Deps] fix eslint range [98d4e0d](browserify/browserify-sign@98d4e0d)
>
> [v4.2.1](browserify/browserify-sign@v4.2.0...v4.2.1) - 2020-08-04
>
> Merged
>
> - bump elliptic [[#58](browserify/browserify-sign#58)
>
> [v4.2.0](browserify/browserify-sign@v4.1.0...v4.2.0) - 2020-05-18
>
> Merged
>
> - switch to safe buffer [[#53](browserify/browserify-sign#53)
... (truncated)
Commits
- [bf2c3ec](browserify/browserify-sign@bf2c3ec) v4.2.3
- [9247adf](browserify/browserify-sign@9247adf) [patch] widen support to 0.12
- [f427270](browserify/browserify-sign@f427270) [Deps] update `parse-asn1
- [87f3a35](browserify/browserify-sign@87f3a35) [Dev Deps] update aud, npmignore, tape
- [fb261ce](browserify/browserify-sign@fb261ce) [Deps] update elliptic
- [4d0ee49](browserify/browserify-sign@4d0ee49) [patch] drop minimum node support to v1
- [9e2bf12](browserify/browserify-sign@9e2bf12) [Deps] pin hash-base to ~3.0, due to a breaking change
- [168e16f](browserify/browserify-sign@168e16f) [Deps] pin elliptic due to a breaking change
- [37a4758](browserify/browserify-sign@37a4758) [actions] remove redundant finisher
- [4af5a90](browserify/browserify-sign@4af5a90) v4.2.2
- Additional commits viewable in [compare view](browserify/browserify-sign@v4.0.4...v4.2.3)
Maintainer changes
This version was pushed to npm by [ljharb](https://www.npmjs.com/~ljharb), a new releaser for browserify-sign since your current version.
Updates decode-uri-component from 0.2.0 to 0.2.2
Release notes
Sourced from [decode-uri-component's releases](https://github.com/SamVerschueren/decode-uri-component/releases).
> v0.2.2
>
> - Prevent overwriting previously decoded tokens 980e0bf
>
> ***@***.***(SamVerschueren/decode-uri-component@v0.2.1...v0.2.2)
>
> v0.2.1
>
> - Switch to GitHub workflows 76abc93
> - Fix issue where decode throws - fixes [#6](https://redirect.github.com/SamVerschueren/decode-uri-component/issues/6) 746ca5d
> - Update license ([#1](https://redirect.github.com/SamVerschueren/decode-uri-component/issues/1)) 486d7e2
> - Tidelift tasks a650457
> - Meta tweaks 66e1c28
>
> ***@***.***(SamVerschueren/decode-uri-component@v0.2.0...v0.2.1)
Commits
- [a0eea46](SamVerschueren/decode-uri-component@a0eea46) 0.2.2
- [980e0bf](SamVerschueren/decode-uri-component@980e0bf) Prevent overwriting previously decoded tokens
- [3c8a373](SamVerschueren/decode-uri-component@3c8a373) 0.2.1
- [76abc93](SamVerschueren/decode-uri-component@76abc93) Switch to GitHub workflows
- [746ca5d](SamVerschueren/decode-uri-component@746ca5d) Fix issue where decode throws - fixes [#6](https://redirect.github.com/SamVerschueren/decode-uri-component/issues/6)
- [486d7e2](SamVerschueren/decode-uri-component@486d7e2) Update license ([#1](https://redirect.github.com/SamVerschueren/decode-uri-component/issues/1))
- [a650457](SamVerschueren/decode-uri-component@a650457) Tidelift tasks
- [66e1c28](SamVerschueren/decode-uri-component@66e1c28) Meta tweaks
- See full diff in [compare view](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2)
Updates elliptic from 6.5.4 to 6.5.7
Commits
- [3e46a48](indutny/elliptic@3e46a48) 6.5.7
- [accb61e](indutny/elliptic@accb61e) lib: DER signature decoding correction
- [03e06e1](indutny/elliptic@03e06e1) 6.5.6
- [7ac5360](indutny/elliptic@7ac5360) Merge commit from fork
- [7570078](indutny/elliptic@7570078) 6.5.5
- [206da2e](indutny/elliptic@206da2e) lib: lint
- [0a78e03](indutny/elliptic@0a78e03) [Fix] restore node < 4 compat
- See full diff in [compare view](indutny/elliptic@v6.5.4...v6.5.7)
Updates eventsource from 1.0.7 to 1.1.2
Changelog
Sourced from [eventsource's changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md).
> [1.1.2](EventSource/eventsource@v1.1.1...v1.1.2)
>
> - Inline origin resolution, drops original dependency ([#281](https://redirect.github.com/EventSource/eventsource/pull/281) Espen Hovlandsdal)
>
> [1.1.1](EventSource/eventsource@v1.1.0...v1.1.1)
>
> - Do not include authorization and cookie headers on redirect to different origin ([#273](https://redirect.github.com/EventSource/eventsource/pull/273) Espen Hovlandsdal)
>
> [1.1.0](EventSource/eventsource@v1.0.7...v1.1.0)
>
> - Improve performance for large messages across many chunks ([#130](https://redirect.github.com/EventSource/eventsource/pull/130) Trent Willis)
> - Add createConnection option for http or https requests ([#120](https://redirect.github.com/EventSource/eventsource/pull/120) Vasily Lavrov)
> - Support HTTP 302 redirects ([#116](https://redirect.github.com/EventSource/eventsource/pull/116) Ryan Bonte)
> - Prevent sequential errors from attempting multiple reconnections ([#125](https://redirect.github.com/EventSource/eventsource/pull/125) David Patty)
> - Add new to correct test ([#111](https://redirect.github.com/EventSource/eventsource/pull/101) Stéphane Alnet)
> - Fix reconnections attempts now happen more than once ([#136](https://redirect.github.com/EventSource/eventsource/pull/136) Icy Fish)
Commits
- [0a8b85b](EventSource/eventsource@0a8b85b) 1.1.2
- [f99ae66](EventSource/eventsource@f99ae66) docs: update history for 1.1.2
- [06c9721](EventSource/eventsource@06c9721) chore: rebuild polyfill
- [9494642](EventSource/eventsource@9494642) fix: inline origin resolution, drop original dependency ([#281](https://redirect.github.com/EventSource/eventsource/issues/281))
- [aa7a408](EventSource/eventsource@aa7a408) 1.1.1
- [56d489e](EventSource/eventsource@56d489e) chore: rebuild polyfill
- [4a951e5](EventSource/eventsource@4a951e5) docs: update history for 1.1.1
- [f9f6416](EventSource/eventsource@f9f6416) fix: strip sensitive headers on redirect to different origin
- [9dd0687](EventSource/eventsource@9dd0687) 1.1.0
- [49497ba](EventSource/eventsource@49497ba) Update history for 1.1.0 ([#146](https://redirect.github.com/EventSource/eventsource/issues/146))
- Additional commits viewable in [compare view](EventSource/eventsource@v1.0.7...v1.1.2)
Updates express from 4.16.4 to 4.21.0
Release notes
Sourced from [express's releases](https://github.com/expressjs/express/releases).
> 4.21.0
>
> What's Changed
>
> - Deprecate "back" magic string in redirects by [@blakeembrey](https://github.com/blakeembrey) in [expressjs/express#5935](https://redirect.github.com/expressjs/express/pull/5935)
> - ***@***.*** by [@wesleytodd](https://github.com/wesleytodd) in [expressjs/express#5954](https://redirect.github.com/expressjs/express/pull/5954)
> - fix(deps): ***@***.*** by [@wesleytodd](https://github.com/wesleytodd) in [expressjs/express#5951](https://redirect.github.com/expressjs/express/pull/5951)
> - Upgraded dependency qs to 6.13.0 to match qs in body-parser by [@agadzinski93](https://github.com/agadzinski93) in [expressjs/express#5946](https://redirect.github.com/expressjs/express/pull/5946)
>
> New Contributors
>
> - [@agadzinski93](https://github.com/agadzinski93) made their first contribution in [expressjs/express#5946](https://redirect.github.com/expressjs/express/pull/5946)
>
> Full Changelog: ***@***.***(expressjs/express@4.20.0...4.21.0)
>
> 4.20.0
>
> What's Changed
>
> Important
>
> - IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
> - Remove link renderization in html while using res.redirect
>
> Other Changes
>
> - 4.19.2 Staging by [@wesleytodd](https://github.com/wesleytodd) in [expressjs/express#5561](https://redirect.github.com/expressjs/express/pull/5561)
> - remove duplicate location test for data uri by [@wesleytodd](https://github.com/wesleytodd) in [expressjs/express#5562](https://redirect.github.com/expressjs/express/pull/5562)
> - feat: document beta releases expectations by [@marco-ippolito](https://github.com/marco-ippolito) in [expressjs/express#5565](https://redirect.github.com/expressjs/express/pull/5565)
> - Cut down on duplicated CI runs by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5564](https://redirect.github.com/expressjs/express/pull/5564)
> - Add a Threat Model by [@UlisesGascon](https://github.com/UlisesGascon) in [expressjs/express#5526](https://redirect.github.com/expressjs/express/pull/5526)
> - Assign captain of encodeurl by [@blakeembrey](https://github.com/blakeembrey) in [expressjs/express#5579](https://redirect.github.com/expressjs/express/pull/5579)
> - Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5587](https://redirect.github.com/expressjs/express/pull/5587)
> - docs: update Security.md by [@inigomarquinez](https://github.com/inigomarquinez) in [expressjs/express#5590](https://redirect.github.com/expressjs/express/pull/5590)
> - docs: update triage nomination policy by [@UlisesGascon](https://github.com/UlisesGascon) in [expressjs/express#5600](https://redirect.github.com/expressjs/express/pull/5600)
> - Add CodeQL (SAST) by [@UlisesGascon](https://github.com/UlisesGascon) in [expressjs/express#5433](https://redirect.github.com/expressjs/express/pull/5433)
> - docs: add UlisesGascon as triage initiative captain by [@UlisesGascon](https://github.com/UlisesGascon) in [expressjs/express#5605](https://redirect.github.com/expressjs/express/pull/5605)
> - deps: encodeurl@~2.0.0 by [@blakeembrey](https://github.com/blakeembrey) in [expressjs/express#5569](https://redirect.github.com/expressjs/express/pull/5569)
> - skip QUERY method test by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5628](https://redirect.github.com/expressjs/express/pull/5628)
> - ignore ETAG query test on 21 and 22, reuse skip util by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5639](https://redirect.github.com/expressjs/express/pull/5639)
> - add support ***@***.*** in the CI by [@mertcanaltin](https://github.com/mertcanaltin) in [expressjs/express#5627](https://redirect.github.com/expressjs/express/pull/5627)
> - doc: add table of contents, tc/triager lists to readme by [@mertcanaltin](https://github.com/mertcanaltin) in [expressjs/express#5619](https://redirect.github.com/expressjs/express/pull/5619)
> - List and sort all projects, add captains by [@blakeembrey](https://github.com/blakeembrey) in [expressjs/express#5653](https://redirect.github.com/expressjs/express/pull/5653)
> - docs: add [@UlisesGascon](https://github.com/UlisesGascon) as captain for cookie-parser by [@UlisesGascon](https://github.com/UlisesGascon) in [expressjs/express#5666](https://redirect.github.com/expressjs/express/pull/5666)
> - ✨ bring back query tests for node 21 by [@ctcpip](https://github.com/ctcpip) in [expressjs/express#5690](https://redirect.github.com/expressjs/express/pull/5690)
> - [v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5672](https://redirect.github.com/expressjs/express/pull/5672)
> - skip QUERY tests for Node 21 only, still not supported by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5695](https://redirect.github.com/expressjs/express/pull/5695)
> - 📝 update people, add ctcpip to TC by [@ctcpip](https://github.com/ctcpip) in [expressjs/express#5683](https://redirect.github.com/expressjs/express/pull/5683)
> - remove minor version pinning from ci by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5722](https://redirect.github.com/expressjs/express/pull/5722)
> - Fix link variable use in attribution section of CODE OF CONDUCT by [@IamLizu](https://github.com/IamLizu) in [expressjs/express#5762](https://redirect.github.com/expressjs/express/pull/5762)
> - Replace Appveyor windows testing with GHA by [@jonchurch](https://github.com/jonchurch) in [expressjs/express#5599](https://redirect.github.com/expressjs/express/pull/5599)
> - Add OSSF Scorecard badge by [@UlisesGascon](https://github.com/UlisesGascon) in [expressjs/express#5436](https://redirect.github.com/expressjs/express/pull/5436)
> - update scorecard link by [@bjohansebas](https://github.com/bjohansebas) in [expressjs/express#5814](https://redirect.github.com/expressjs/express/pull/5814)
> - Nominate [@IamLizu](https://github.com/IamLizu) to the triage team by [@UlisesGascon](https://github.com/UlisesGascon) in [expressjs/express#5836](https://redirect.github.com/expressjs/express/pull/5836)
> - deps: ***@***.*** by [@blakeembrey](https://github.com/blakeembrey) in [expressjs/express#5603](https://redirect.github.com/expressjs/express/pull/5603)
... (truncated)
Changelog
Sourced from [express's changelog](https://github.com/expressjs/express/blob/4.21.0/History.md).
> 4.21.0 / 2024-09-11
>
> - Deprecate res.location("back") and res.redirect("back") magic string
> - deps: ***@***.***
>
> - includes ***@***.***
>
> - deps: ***@***.***
> - deps: ***@***.***
>
> 4.20.0 / 2024-09-10
>
> - deps: ***@***.***
>
> - Remove link renderization in html while redirecting
>
> - deps: ***@***.***
>
> - Remove link renderization in html while redirecting
>
> - deps: ***@***.***
>
> - add depth option to customize the depth level in the parser
> - IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
>
> - Remove link renderization in html while using res.redirect
> - deps: ***@***.***
>
> - Adds support for named matching groups in the routes using a regex
> - Adds backtracking protection to parameters without regexes defined
>
> - deps: encodeurl@~2.0.0
>
> - Removes encoding of \, |, and ^ to align better with URL spec
>
> - Deprecate passing options.maxAge and options.expires to res.clearCookie
>
> - Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie
>
> 4.19.2 / 2024-03-25
>
> - Improved fix for open redirect allow list bypass
>
> 4.19.1 / 2024-03-20
>
> - Allow passing non-strings to res.location with new encoding handling checks
>
> 4.19.0 / 2024-03-20
>
> - Prevent open redirect allow list bypass due to encodeurl
> - deps: ***@***.***
>
> 4.18.3 / 2024-02-29
>
> - Fix routing requests without method
> - deps: ***@***.***
>
> - Fix strict json error message on Node.js 19+
> - deps: content-type@~1.0.5
... (truncated)
Commits
- [7e562c6](expressjs/express@7e562c6) 4.21.0
- [1bcde96](expressjs/express@1bcde96) fix(deps): ***@***.*** ([#5946](https://redirect.github.com/expressjs/express/issues/5946))
- [7d36477](expressjs/express@7d36477) fix(deps): ***@***.*** ([#5951](https://redirect.github.com/expressjs/express/issues/5951))
- [40d2d8f](expressjs/express@40d2d8f) fix(deps): ***@***.***
- [77ada90](expressjs/express@77ada90) Deprecate "back" magic string in redirects ([#5935](https://redirect.github.com/expressjs/express/issues/5935))
- [21df421](expressjs/express@21df421) 4.20.0
- [4c9ddc1](expressjs/express@4c9ddc1) feat: upgrade to ***@***.***
- [9ebe5d5](expressjs/express@9ebe5d5) feat: upgrade to ***@***.*** ([#5928](https://redirect.github.com/expressjs/express/issues/5928))
- [ec4a01b](expressjs/express@ec4a01b) feat: upgrade to ***@***.*** ([#5926](https://redirect.github.com/expressjs/express/issues/5926))
- [54271f6](expressjs/express@54271f6) fix: don't render redirect values in anchor href
- Additional commits viewable in [compare view](expressjs/express@4.16.4...4.21.0)
Maintainer changes
This version was pushed to npm by [wesleytodd](https://www.npmjs.com/~wesleytodd), a new releaser for express since your current version.
Updates follow-redirects from 1.13.0 to 1.15.9
Commits
- [e4e55c7](follow-redirects/follow-redirects@e4e55c7) Release version 1.15.9 of the npm package.
- [31a1abf](follow-redirects/follow-redirects@31a1abf) Attempt much more gentle detection.
- [d2aaa97](follow-redirects/follow-redirects@d2aaa97) Fix url field.
- [62558f0](follow-redirects/follow-redirects@62558f0) Release version 1.15.8 of the npm package.
- [a8d1cee](follow-redirects/follow-redirects@a8d1cee) Return subtlety.
- [458ca8e](follow-redirects/follow-redirects@458ca8e) Fix native URL test for Node 20.
- [ca49e44](follow-redirects/follow-redirects@ca49e44) Handle KeepAlive connections in tests.
- [f3711d7](follow-redirects/follow-redirects@f3711d7) Test on Node 20 and 22.
- [fda0faf](follow-redirects/follow-redirects@fda0faf) Fix typo.
- [760757f](follow-redirects/follow-redirects@760757f) Release version 1.15.7 of the npm package.
- Additional commits viewable in [compare view](follow-redirects/follow-redirects@v1.13.0...v1.15.9)
Updates ini from 1.3.5 to 1.3.8
Commits
- [a2c5da8](npm/ini@a2c5da8) 1.3.8
- [af5c6bb](npm/ini@af5c6bb) Do not use Object.create(null)
- [8b648a1](npm/ini@8b648a1) don't test where our devdeps don't even work
- [c74c8af](npm/ini@c74c8af) 1.3.7
- [024b8b5](npm/ini@024b8b5) update deps, add linting
- [032fbaf](npm/ini@032fbaf) Use Object.create(null) to avoid default object property hazards
- [2da9039](npm/ini@2da9039) 1.3.6
- [cfea636](npm/ini@cfea636) better git push script, before publish instead of after
- [56d2805](npm/ini@56d2805) do not allow invalid hazardous string as section name
- See full diff in [compare view](npm/ini@v1.3.5...v1.3.8)
Maintainer changes
This version was pushed to npm by [isaacs](https://www.npmjs.com/~isaacs), a new releaser for ini since your current version.
Updates path-to-regexp from 0.1.7 to 0.1.10
Release notes
Sourced from [path-to-regexp's releases](https://github.com/pillarjs/path-to-regexp/releases).
> Backtrack protection
>
> Fixed
>
> - Add backtrack protection to parameters 29b96b4
>
> - This will break some edge cases but should improve performance
>
> ***@***.***(pillarjs/path-to-regexp@v0.1.9...v0.1.10)
>
> Support non-lookahead regex output
>
> Added
>
> - Allow a non-lookahead regex ([#312](https://redirect.github.com/pillarjs/path-to-regexp/issues/312)) c4272e4
>
> ***@***.***(component/path-to-regexp@v0.1.8...v0.1.9)
>
> Support named matching groups in RegExp
>
> Added
>
> - Add support for named matching groups ([#301](https://redirect.github.com/pillarjs/path-to-regexp/issues/301)) 114f62d
>
> ***@***.***(pillarjs/path-to-regexp@v0.1.7...v0.1.8)
Commits
- [c827fce](pillarjs/path-to-regexp@c827fce) 0.1.10
- [29b96b4](pillarjs/path-to-regexp@29b96b4) Add backtrack protection to parameters
- [ac4c234](pillarjs/path-to-regexp@ac4c234) Update repo url ([#314](https://redirect.github.com/pillarjs/path-to-regexp/issues/314))
- [bdb6635](pillarjs/path-to-regexp@bdb6635) 0.1.9
- [c4272e4](pillarjs/path-to-regexp@c4272e4) Allow a non-lookahead regex ([#312](https://redirect.github.com/pillarjs/path-to-regexp/issues/312))
- [51a1955](pillarjs/path-to-regexp@51a1955) 0.1.8
- [114f62d](pillarjs/path-to-regexp@114f62d) Add support for named matching groups ([#301](https://redirect.github.com/pillarjs/path-to-regexp/issues/301))
- See full diff in [compare view](pillarjs/path-to-regexp@v0.1.7...v0.1.10)
Updates scss-tokenizer from 0.2.3 to 0.4.3
Release notes
Sourced from [scss-tokenizer's releases](https://github.com/sasstools/scss-tokenizer/releases).
> v0.4.3
>
> What's Changed
>
> - Bump acorn from 5.7.3 to 5.7.4 by [@dependabot](https://github.com/dependabot) in [sasstools/scss-tokenizer#33](https://redirect.github.com/sasstools/scss-tokenizer/pull/33)
> - Fixed ReDoS in "loadAnnotation" function of "previous-map.js" by [@sushantmittal](https://github.com/sushantmittal) in [sasstools/scss-tokenizer#49](https://redirect.github.com/sasstools/scss-tokenizer/pull/49)
>
> New Contributors
>
> - [@dependabot](https://github.com/dependabot) made their first contribution in [sasstools/scss-tokenizer#33](https://redirect.github.com/sasstools/scss-tokenizer/pull/33)
> - [@sushantmittal](https://github.com/sushantmittal) made their first contribution in [sasstools/scss-tokenizer#49](https://redirect.github.com/sasstools/scss-tokenizer/pull/49)
>
> Full Changelog: ***@***.***(sasstools/scss-tokenizer@v0.4.2...v0.4.3)
>
> v0.4.2
>
> Misc
>
> - Restore prepublishOnly npm script ([@xzyfer](https://github.com/xzyfer), ae79d74)
>
> v0.4.1
>
> Fixes
>
> - Error handling utf-8 encoded sourcemap urls ([#13](https://redirect.github.com/sasstools/scss-tokenizer/issues/13), [@xzyfer](https://github.com/xzyfer))
>
> v0.4.0
>
> <...
>
> Description has been truncated
---------------------------------------------------------------
You can view, comment on, or merge this pull request online at:
#40
Commit Summary
- [6dfe036](6dfe036) Bump the npm_and_yarn group with 21 updates
File Changes
([2 files](https://github.com/reposman33/ofcourse/pull/40/files))
- M [package.json](https://github.com/reposman33/ofcourse/pull/40/files#diff-7ae45ad102eab3b6d7e7896acd08c427a9b25b346470d7bc6507b6481575d519) (2)
- M [yarn.lock](https://github.com/reposman33/ofcourse/pull/40/files#diff-51e4f558fae534656963876761c95b83b6ef5da5103c4adef6768219ed76c2de) (2009)
Patch Links:
- https://github.com/reposman33/ofcourse/pull/40.patch
- https://github.com/reposman33/ofcourse/pull/40.diff
—
Reply to this email directly, [view it on GitHub](#40), or [unsubscribe](https://github.com/notifications/unsubscribe-auth/AAYNOZUE65AWFP2GETH33F3ZZ5NXTAVCNFSM6AAAAABPM6PAQ2VHI2DSMVQWIX3LMV43ASLTON2WKOZSGU3DONRTG4ZDOOA).
You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>
|
|
Looks like this PR is already up-to-date with master! If you'd still like to recreate it from scratch, overwriting any edits, you can request |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 21 updates:
4.13.19.0.07.3.47.25.76.10.06.12.64.0.44.2.30.2.00.2.26.5.46.5.71.0.71.1.24.16.44.21.01.13.01.15.91.3.51.3.80.1.70.1.100.2.30.4.35.3.05.6.00.16.20.19.01.13.21.16.22.2.24.4.81.0.03.0.10.7.280.7.391.5.31.5.105.2.35.2.45.0.19.0.2Updates
node-sassfrom 4.13.1 to 9.0.0Release notes
Sourced from node-sass's releases.
... (truncated)
Changelog
Sourced from node-sass's changelog.
Commits
87f3899feat: Node 20 support (#3355)06ae4c7build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 (#3350)e069f73build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0c34837dbuild(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0ee13eb98.0.098e75b3feat: Node 18 and 19 support and drop Node 17 (#3257)e9bb866Bump node-gyp and nan for node 19 support (#3314)ab7840bFix binaries being partially downloaded (#3313)d595abf7.0.33b556c17.0.2Updates
@babel/traversefrom 7.3.4 to 7.25.7Release notes
Sourced from
@babel/traverse's releases.... (truncated)
Changelog
Sourced from
@babel/traverse's changelog.... (truncated)
Commits
2533cfbv7.25.7611d958[babel 8] CreateTSClassImplements|TSInterfaceHeritagenodes (#16731)506bf91RemoveBABEL_TYPES_8_BREAKINGflag and enable it by default (#16817)9e14f7dchore: Enable more lint rules (#16827)e69a7e5fix: issue with node path keys updated on unrelated paths (#16814)7467c9d[Babel 8] Remove someScopemethods (#16705)0a55713[Babel 8] RemoveDecimalLiteralAST (#16807)69d65f1[babel 8] Require Node.js^18.20.0 || ^20.17.0 || >=22.8.0(#16800)2f72b97v7.25.6faceae9fix:path.getAssignmentIdentifiersmay beundefined(#16727)Updates
ajvfrom 6.10.0 to 6.12.6Release notes
Sourced from ajv's releases.
Commits
fe591436.12.6d580d3eMerge pull request #1298 from ajv-validator/fix-urlfd36389fix: regular expression for "url" format490e34cdocs: link to v7-beta branch9cd93a1docs: note about v7 in readme877d286Merge pull request #1262 from b4h0-c4t/refactor-opt-object-typef1c8e456.12.5764035eMerge branch 'ChALkeR-chalker/fix-comma'3798160Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...a3c7ebaMerge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...Updates
browserify-signfrom 4.0.4 to 4.2.3Changelog
Sourced from browserify-sign's changelog.
... (truncated)
Commits
bf2c3ecv4.2.39247adf[patch] widen support to 0.12f427270[Deps] update `parse-asn187f3a35[Dev Deps] updateaud,npmignore,tapefb261ce[Deps] updateelliptic4d0ee49[patch] drop minimum node support to v19e2bf12[Deps] pinhash-baseto ~3.0, due to a breaking change168e16f[Deps] pinellipticdue to a breaking change37a4758[actions] remove redundant finisher4af5a90v4.2.2Maintainer changes
This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.
Updates
decode-uri-componentfrom 0.2.0 to 0.2.2Release notes
Sourced from decode-uri-component's releases.
Commits
a0eea460.2.2980e0bfPrevent overwriting previously decoded tokens3c8a3730.2.176abc93Switch to GitHub workflows746ca5dFix issue where decode throws - fixes #6486d7e2Update license (#1)a650457Tidelift tasks66e1c28Meta tweaksUpdates
ellipticfrom 6.5.4 to 6.5.7Commits
3e46a486.5.7accb61elib: DER signature decoding correction03e06e16.5.67ac5360Merge commit from fork75700786.5.5206da2elib: lint0a78e03[Fix] restore node < 4 compatUpdates
eventsourcefrom 1.0.7 to 1.1.2Changelog
Sourced from eventsource's changelog.
Commits
0a8b85b1.1.2f99ae66docs: update history for 1.1.206c9721chore: rebuild polyfill9494642fix: inline origin resolution, droporiginaldependency (#281)aa7a4081.1.156d489echore: rebuild polyfill4a951e5docs: update history for 1.1.1f9f6416fix: strip sensitive headers on redirect to different origin9dd06871.1.049497baUpdate history for 1.1.0 (#146)Updates
expressfrom 4.16.4 to 4.21.0Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
... (truncated)
Commits
7e562c64.21.01bcde96fix(deps): qs@6.13.0 (#5946)7d36477fix(deps): serve-static@1.16.2 (#5951)40d2d8ffix(deps): finalhandler@1.3.177ada90Deprecate"back"magic string in redirects (#5935)21df4214.20.04c9ddc1feat: upgrade to serve-static@0.16.09ebe5d5feat: upgrade to send@0.19.0 (#5928)ec4a01bfeat: upgrade to body-parser@1.20.3 (#5926)54271f6fix: don't render redirect values in anchor hrefMaintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Updates
follow-redirectsfrom 1.13.0 to 1.15.9Commits
e4e55c7Release version 1.15.9 of the npm package.31a1abfAttempt much more gentle detection.d2aaa97Fix url field.62558f0Release version 1.15.8 of the npm package.a8d1ceeReturn subtlety.458ca8eFix native URL test for Node 20.ca49e44Handle KeepAlive connections in tests.f3711d7Test on Node 20 and 22.fda0fafFix typo.760757fRelease version 1.15.7 of the npm package.Updates
inifrom 1.3.5 to 1.3.8Commits
a2c5da81.3.8af5c6bbDo not use Object.create(null)8b648a1don't test where our devdeps don't even workc74c8af1.3.7024b8b5update deps, add linting032fbafUse Object.create(null) to avoid default object property hazards2da90391.3.6cfea636better git push script, before publish instead of after56d2805do not allow invalid hazardous string as section nameMaintainer changes
This version was pushed to npm by isaacs, a new releaser for ini since your current version.
Updates
path-to-regexpfrom 0.1.7 to 0.1.10Release notes
Sourced from path-to-regexp's releases.
Commits
c827fce0.1.1029b96b4Add backtrack protection to parametersac4c234Update repo url (#314)bdb66350.1.9c4272e4Allow a non-lookahead regex (#312)51a19550.1.8114f62dAdd support for named matching groups (#301)Updates
scss-tokenizerfrom 0.2.3 to 0.4.3Release notes
Sourced from scss-tokenizer's releases.