Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump tough-cookie and ecmarkup #53

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Jul 8, 2023

Bumps tough-cookie to 4.1.3 and updates ancestor dependency ecmarkup. These dependencies need to be updated together.

Updates tough-cookie from 2.3.3 to 4.1.3

Release notes

Sourced from tough-cookie's releases.

4.1.3

Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.

4.1.2 -- Patch and Bugfix Release

What's Changed

Full Changelog: salesforce/tough-cookie@v4.1.1...v4.1.2

4.1.1

Patch Release

What's Changed

Full Changelog: salesforce/tough-cookie@v4.1.0...v4.1.1

4.1.0

v4.1.0

Minor release, focused mainly on resolving reported issues and some minor feature work.

What's Changed

... (truncated)

Commits
  • 4ff4d29 4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)
  • 12d4747 Prevent prototype pollution in cookie memstore (#283)
  • f06b72d Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...
  • b1a8898 fix: allow set cookies with localhost (#253)
  • ec70796 4.1.1 Patch -- allow special use domains by default (#250)
  • d4ac580 fix: allow special use domains by default (#249)
  • 79c2f7d 4.1.0 release to NPM (#245)
  • 4fafc17 Prepare tough-cookie 4.1 for publishing (updated GitHub actions, move Dockerf...
  • aa4396d fix: distinguish between no samesite and samesite=none (#240)
  • b8d7511 Modernize README (#234)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by awaterma, a new releaser for tough-cookie since your current version.


Updates ecmarkup from 3.12.0 to 17.0.2

Release notes

Sourced from ecmarkup's releases.

Version 17.0.2

Version 17.0.1

Version 17.0.0

What's Changed

New on-by-default lint rule: consistency in multiline vs single-line "if" and "else" (tc39/ecmarkup#524)

Version 16.2.0

What's Changed

  • support marking individual steps as legacy/optional/deprecated in tc39/ecmarkup#523

Version 16.1.1

This fixes a bug in the formatter introduced in the previous release.

Version 16.1.0

The primary feature of this version (by pulling in tc39/ecmarkdown#96) is that now you can click [[FieldNames]] to highlight other uses of those names within the current algorithm, as already happens for variable names.

Also the variable use/def rule should now work better in the presence of <ins>/<del> tags.

Version 16.0.1

What's Changed

Version 16.0.0

The breaking change is

This is only relevant to documents using mark-effects, and is unlikely to affect specifications other than ecma-262 (which will require a small tweak to manually annotate the last remaining two uses of that phrase).

Also includes

Version 15.0.4

What's Changed

Version 15.0.3

What's Changed

... (truncated)

Commits
  • 6f7aeab Version 17.0.2
  • 8c3a5ba fix "there exists"/"such that" not followed by a var name (#538)
  • 9034ed3 prevent line wrap at end of Records and Lists (#535)
  • 7e6131e Version 17.0.1
  • 504bfa6 Fix <ins>/<del> with structured headers (#533)
  • 1802e24 Update RHS terminalify to be more idiomatic (#534)
  • 879aa24 document restriction on 'declared' attributes
  • 25c738f Initialize to a reasonable amount of TOC expansion (#512)
  • fdc0d82 better heuristic for determining active clause (#526)
  • 9b7a2ff ecma coc anchor (#525)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by tc39-user, a new releaser for ecmarkup since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [tough-cookie](https://github.com/salesforce/tough-cookie) to 4.1.3 and updates ancestor dependency [ecmarkup](https://github.com/tc39/ecmarkup). These dependencies need to be updated together.


Updates `tough-cookie` from 2.3.3 to 4.1.3
- [Release notes](https://github.com/salesforce/tough-cookie/releases)
- [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md)
- [Commits](salesforce/tough-cookie@v2.3.3...v4.1.3)

Updates `ecmarkup` from 3.12.0 to 17.0.2
- [Release notes](https://github.com/tc39/ecmarkup/releases)
- [Commits](tc39/ecmarkup@v3.12.0...v17.0.2)

---
updated-dependencies:
- dependency-name: tough-cookie
  dependency-type: indirect
- dependency-name: ecmarkup
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jul 8, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants