Skip to content

Commit

Permalink
chore(deps): Bump dotenv from 16.1.2 to 16.1.3 (#221)
Browse files Browse the repository at this point in the history 
Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.1.2 to
16.1.3.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/motdotla/dotenv/compare/v16.1.2...v16.1.3">16.1.3</a>
(2023-05-31)</h2>
<h3>Removed</h3>
<ul>
<li>Removed <code>browser</code> keys for <code>path</code>,
<code>os</code>, and <code>crypto</code> in package.json. These were set
to false incorrectly as of 16.1. Instead, if using dotenv on the
front-end make sure to include polyfills for <code>path</code>,
<code>os</code>, and <code>crypto</code>. <a
href="https://github.com/Richienb/node-polyfill-webpack-plugin">node-polyfill-webpack-plugin</a>
provides these.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/motdotla/dotenv/commit/4d255441cf3e9e7823c2da475b4c2a1b45ac5057"><code>4d25544</code></a>
16.1.3</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/1ab96d7e4a76ae1dc884d3bf69a3dce3c882738b"><code>1ab96d7</code></a>
Merge pull request <a
href="https://redirect.github.com/motdotla/dotenv/issues/745">#745</a>
from motdotla/browser-defaults</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/080779a71aa7edf3f01f3abf13d158f6c66da79b"><code>080779a</code></a>
Update CHANGELOG</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/0ab684dc0a41bccad853e3a29f699b0a6f329127"><code>0ab684d</code></a>
Update README</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/bf7e6262470e62159321b15e236849b9d91eeaae"><code>bf7e626</code></a>
Default fs to false as it cannot be duplicated in the browser</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/ec5eef88cdadea534f452ec1355c5df5a9fe5a18"><code>ec5eef8</code></a>
Update README</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/7968a7f520b31113bada007a91027c152ae7c966"><code>7968a7f</code></a>
Update README</li>
<li><a
href="https://github.com/motdotla/dotenv/commit/86ef7b2c7c9e8258743db7fedb7a25d6d57c3d15"><code>86ef7b2</code></a>
Remove browser key</li>
<li>See full diff in <a
href="https://github.com/motdotla/dotenv/compare/v16.1.2...v16.1.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dotenv&package-manager=npm_and_yarn&previous-version=16.1.2&new-version=16.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
@dependabot
dependabot[bot] authored Jun 1, 2023
1 parent 441c570 commit 0c9c3c8
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 5 deletions.
8 changes: 4 additions & 4 deletions package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,7 +32,7 @@
"class-validator": "^0.14.0",
"compression": "^1.7.4",
"date-fns": "^2.30.0",
"dotenv": "^16.1.2",
"dotenv": "^16.1.3",
"express-basic-auth": "^1.2.1",
"mssql": "^9.1.1",
"nestjs-pino": "^3.2.0",
Expand Down

0 comments on commit 0c9c3c8

Please sign in to comment.