Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the npm_and_yarn group across 1 directory with 8 updates #217

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump the npm_and_yarn group across 1 directory with 8 updates #217

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 28, 2025

Bumps the npm_and_yarn group with 8 updates in the / directory:

Package From To
@octokit/endpoint 10.1.1 10.1.3
@octokit/plugin-paginate-rest 11.3.3 11.4.3
@octokit/request-error 6.1.1 6.1.7
@octokit/request 9.1.1 9.2.2
cross-spawn 7.0.3 7.0.6
elliptic 6.5.5 6.6.1
katex 0.16.11 0.16.21
nanoid 3.3.7 3.3.8

Updates @octokit/endpoint from 10.1.1 to 10.1.3

Release notes

Sourced from @​octokit/endpoint's releases.

v10.1.3

10.1.3 (2025-02-13)

Bug Fixes

v10.1.2

10.1.2 (2024-12-31)

Bug Fixes

  • deps: bump @octokit/types to improve Deno compat (#507) (15d700b)
Commits
  • d6cf1ad fix: linting issues breaking ci (#514)
  • 6c9c5be Merge commit from fork
  • e472e22 chore(deps): update dependency esbuild to ^0.25.0 (#512)
  • b2ebcda build(deps-dev): bump vitest and @​vitest/coverage-v8 (#511)
  • 76e3738 build(deps): bump vite from 5.4.6 to 6.0.11 (#509)
  • c9ce54d chore(deps): update vitest monorepo to v3 (major) (#508)
  • 15d700b fix(deps): bump @octokit/types to improve Deno compat (#507)
  • a0a938e chore(deps): update dependency prettier to v3.4.2 (#506)
  • 2e92021 chore(deps): update dependency prettier to v3.4.1 (#505)
  • 55ee6d6 chore(deps): update dependency prettier to v3.4.0 (#504)
  • Additional commits viewable in compare view

Updates @octokit/plugin-paginate-rest from 11.3.3 to 11.4.3

Release notes

Sourced from @​octokit/plugin-paginate-rest's releases.

v11.4.3

11.4.3 (2025-02-24)

Bug Fixes

  • types: correct pagination return type for data which is an array (#662) (9a51aad), closes #661

v11.4.2

11.4.2 (2025-02-13)

Bug Fixes

v11.4.1

11.4.1 (2025-02-13)

Bug Fixes

v11.4.0

11.4.0 (2025-01-08)

Features

  • new action runner groups endpoints, new code scanning alerts autofix endpoints, new sub-issues endpoints, new private registries enpoints, new code security endpoints, various description updates (#646) (a73883f)

v11.3.6

11.3.6 (2024-11-26)

Bug Fixes

  • types: bump @octokit/types to improve Deno compatibility (#642) (acb6a6e)

v11.3.5

11.3.5 (2024-09-29)

Bug Fixes

  • types: improve type extraction for namespaced responses and correct async iterator types (#637) (e95444d)

... (truncated)

Commits
  • 9a51aad fix(types): correct pagination return type for data which is an array (#662)
  • 8b8c500 fix(types): add back the pagination keys (#653)
  • 41876f4 chore(deps): update dependency prettier to v3.5.1 (#658)
  • 7d1fade fix: mitigate ReDos issues & linting issues (#659)
  • bb6c4f9 Merge commit from fork
  • d9c1e8f chore(deps): update dependency esbuild to ^0.25.0 (#656)
  • 7ed5627 build(deps-dev): bump vitest and @​vitest/coverage-v8 (#655)
  • 4a41307 build: remove @​types/fetch-mock (#654)
  • 31f8fe9 build(deps): bump vite from 5.4.6 to 6.0.11 (#651)
  • bc38852 chore(deps): update vitest monorepo to v3 (major) (#650)
  • Additional commits viewable in compare view

Updates @octokit/request-error from 6.1.1 to 6.1.7

Release notes

Sourced from @​octokit/request-error's releases.

v6.1.7

6.1.7 (2025-02-13)

Bug Fixes

  • ReDos regex vulnerability, reported by @​DayShift (d558320874a4bc8d356babf1079e6f0056a59b9e)

v6.1.6

6.1.6 (2024-12-29)

Bug Fixes

  • deps: bump @octokit/types to fix Deno compat (#483) (e01d470)

v6.1.5

6.1.5 (2024-09-24)

Bug Fixes

  • types: add explicit | undefined to optional fields (#462) (43fc3bd)

v6.1.4

6.1.4 (2024-07-11)

Bug Fixes

  • improve perf of request error instantiations (#444) (ba04ffa)

v6.1.3

6.1.3 (2024-07-11)

Bug Fixes

v6.1.2

6.1.2 (2024-07-10)

Bug Fixes

  • ensure statusCode is always an integer (#439) (6eb8634)
Commits

Updates @octokit/request from 9.1.1 to 9.2.2

Release notes

Sourced from @​octokit/request's releases.

v9.2.2

9.2.2 (2025-02-14)

Bug Fixes

  • deps: update dependency @​octokit/request-error to v6.1.7 [security] (#740) (4b2f485)

v9.2.1

9.2.1 (2025-02-13)

Bug Fixes

  • mitigate ReDos vulnerabilities & lint (#738) (6bb29ba)

v9.2.0

9.2.0 (2025-01-16)

Features

  • correctly parse response bodies as JSON where the Content-Type is application/scim+json (#731) (00bf316)

v9.1.4

9.1.4 (2024-12-29)

Bug Fixes

  • deps: bump @octokit/types to fix deno compat (#730) (324ffef)

v9.1.3

9.1.3 (2024-07-14)

Bug Fixes

v9.1.2

9.1.2 (2024-07-13)

Bug Fixes

  • refactor: async await instead of Promise chain (#711) (611b275)
Commits
  • 4b2f485 fix(deps): update dependency @​octokit/request-error to v6.1.7 [security] (#740)
  • 0320a42 chore(deps): update dependency prettier to v3.5.1 (#737)
  • 6bb29ba fix: mitigate ReDos vulnerabilities & lint (#738)
  • 34ff07e Merge commit from fork
  • a0e96b3 chore(deps): update dependency esbuild to ^0.25.0 (#736)
  • d27daa7 build(deps-dev): bump vitest and @​vitest/coverage-v8 (#735)
  • bc07c8a build(deps): bump vite from 5.4.6 to 6.0.11 (#734)
  • 4266a84 build(deps-dev): bump undici from 6.19.2 to 6.21.1 (#733)
  • c2d27a2 chore(deps): update vitest monorepo to v3 (major) (#732)
  • 00bf316 feat: correctly parse response bodies as JSON where the Content-Type is `appl...
  • Additional commits viewable in compare view

Updates cross-spawn from 7.0.3 to 7.0.6

Changelog

Sourced from cross-spawn's changelog.

7.0.6 (2024-11-18)

Bug Fixes

  • update cross-spawn version to 7.0.5 in package-lock.json (f700743)

7.0.5 (2024-11-07)

Bug Fixes

  • fix escaping bug introduced by backtracking (640d391)

7.0.4 (2024-11-07)

Bug Fixes

Commits
  • 77cd97f chore(release): 7.0.6
  • 6717de4 chore: upgrade standard-version
  • f700743 fix: update cross-spawn version to 7.0.5 in package-lock.json
  • 9a7e3b2 chore: fix build status badge
  • 0852683 chore(release): 7.0.5
  • 640d391 fix: fix escaping bug introduced by backtracking
  • bff0c87 chore: remove codecov
  • a7c6abc chore: replace travis with github workflows
  • 9b9246e chore(release): 7.0.4
  • 5ff3a07 fix: disable regexp backtracking (#160)
  • Additional commits viewable in compare view

Updates elliptic from 6.5.5 to 6.6.1

Commits

Updates katex from 0.16.11 to 0.16.21

Release notes

Sourced from katex's releases.

v0.16.21

0.16.21 (2025-01-17)

Bug Fixes

v0.16.20

0.16.20 (2025-01-12)

Bug Fixes

v0.16.19

0.16.19 (2024-12-29)

Bug Fixes

v0.16.18

0.16.18 (2024-12-18)

Bug Fixes

  • Actually publish TypeScript type definitions (#4008) (629b873)

v0.16.17

0.16.17 (2024-12-17)

Bug Fixes

  • MathML combines multidigit numbers with sup/subscript, comma separators, and multicharacter text when outputting to DOM (#3999) (7d79e22), closes #3995

v0.16.16

0.16.16 (2024-12-17)

Features

... (truncated)

Changelog

Sourced from katex's changelog.

0.16.21 (2025-01-17)

Bug Fixes

  • escape \htmlData attribute name (57914ad)

0.16.20 (2025-01-12)

Bug Fixes

0.16.19 (2024-12-29)

Bug Fixes

0.16.18 (2024-12-18)

Bug Fixes

  • Actually publish TypeScript type definitions (#4008) (629b873)

0.16.17 (2024-12-17)

Bug Fixes

  • MathML combines multidigit numbers with sup/subscript, comma separators, and multicharacter text when outputting to DOM (#3999) (7d79e22), closes #3995

0.16.16 (2024-12-17)

Features

0.16.15 (2024-12-09)

Features

  • italic sans-serif in math mode via \mathsfit command (#3998) (2218901)

0.16.14 (2024-12-08)

... (truncated)

Commits
  • 923f2aa chore(release): 0.16.21 [ci skip]
  • 57914ad fix: escape \htmlData attribute name
  • ff28995 Merge commit from fork
  • 28a0bf5 chore(release): 0.16.20 [ci skip]
  • 6d30fe4 fix: \providecommand does not overwrite existing macro (#4000)
  • 8f47dba chore(deps): update actions/upload-artifact to v4 (#4012)
  • 88b5056 chore(release): 0.16.19 [ci skip]
  • 4228b4e fix(types): improve strict function type (#4009)
  • f934646 chore(release): 0.16.18 [ci skip]
  • 629b873 fix: Actually publish TypeScript type definitions (#4008)
  • Additional commits viewable in compare view

Updates nanoid from 3.3.7 to 3.3.8

Changelog

Sourced from nanoid's changelog.

3.3.8

  • Fixed a way to break Nano ID by passing non-integer size (by @​myndzi).
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump the npm_and_yarn group across 1 directory with 8 up…
df64a52 
…dates

Bumps the npm_and_yarn group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `10.1.1` | `10.1.3` |
| [@octokit/plugin-paginate-rest](https://github.com/octokit/plugin-paginate-rest.js) | `11.3.3` | `11.4.3` |
| [@octokit/request-error](https://github.com/octokit/request-error.js) | `6.1.1` | `6.1.7` |
| [@octokit/request](https://github.com/octokit/request.js) | `9.1.1` | `9.2.2` |
| [cross-spawn](https://github.com/moxystudio/node-cross-spawn) | `7.0.3` | `7.0.6` |
| [elliptic](https://github.com/indutny/elliptic) | `6.5.5` | `6.6.1` |
| [katex](https://github.com/KaTeX/KaTeX) | `0.16.11` | `0.16.21` |
| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |



Updates `@octokit/endpoint` from 10.1.1 to 10.1.3
- [Release notes](https://github.com/octokit/endpoint.js/releases)
- [Commits](octokit/endpoint.js@v10.1.1...v10.1.3)

Updates `@octokit/plugin-paginate-rest` from 11.3.3 to 11.4.3
- [Release notes](https://github.com/octokit/plugin-paginate-rest.js/releases)
- [Commits](octokit/plugin-paginate-rest.js@v11.3.3...v11.4.3)

Updates `@octokit/request-error` from 6.1.1 to 6.1.7
- [Release notes](https://github.com/octokit/request-error.js/releases)
- [Commits](octokit/request-error.js@v6.1.1...v6.1.7)

Updates `@octokit/request` from 9.1.1 to 9.2.2
- [Release notes](https://github.com/octokit/request.js/releases)
- [Commits](octokit/request.js@v9.1.1...v9.2.2)

Updates `cross-spawn` from 7.0.3 to 7.0.6
- [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md)
- [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6)

Updates `elliptic` from 6.5.5 to 6.6.1
- [Commits](indutny/elliptic@v6.5.5...v6.6.1)

Updates `katex` from 0.16.11 to 0.16.21
- [Release notes](https://github.com/KaTeX/KaTeX/releases)
- [Changelog](https://github.com/KaTeX/KaTeX/blob/main/CHANGELOG.md)
- [Commits](KaTeX/KaTeX@v0.16.11...v0.16.21)

Updates `nanoid` from 3.3.7 to 3.3.8
- [Release notes](https://github.com/ai/nanoid/releases)
- [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md)
- [Commits](ai/nanoid@3.3.7...3.3.8)

---
updated-dependencies:
- dependency-name: "@octokit/endpoint"
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@octokit/plugin-paginate-rest"
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@octokit/request-error"
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@octokit/request"
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: cross-spawn
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: elliptic
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: katex
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: nanoid
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner February 28, 2025 10:50
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 28, 2025
@github-actions GitHub Actions
Copy link

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants