Bump the npm_and_yarn group across 1 directory with 21 updates #2

dependabot · 2024-03-17T07:37:18Z

Bumps the npm_and_yarn group with 21 updates in the / directory:

Package	From	To
angular	`1.7.9`	`1.8.3`
@types/angular	`1.6.56`	`1.8.9`
hoek	`5.0.4`	`6.1.3`
jquery	`3.4.1`	`3.5.0`
semver	`5.7.0`	`5.7.2`
tar	`4.4.13`	`4.4.18`
chromedriver	`80.0.1`	`119.0.1`
grunt-karma	`3.0.2`	`4.0.2`
postcss	`7.0.26`	`8.4.31`
@babel/traverse	`7.5.5`	`7.23.2`
lodash	`4.17.15`	`4.17.21`
debug	`2.6.9`	`3.1.0`
axios	`0.19.0`	`0.28.0`
nodemailer	`4.7.0`	`6.9.9`
browserify-sign	`4.0.4`	`4.2.3`
es5-ext	`0.10.40`	`0.10.64`
fsevents	`1.2.7`	`1.2.13`
get-func-name	`2.0.0`	`2.0.2`
ip	`1.1.5`	`1.1.9`
lodash-es	`4.17.15`	`4.17.21`
word-wrap	`1.2.3`	`1.2.5`

Updates angular from 1.7.9 to 1.8.3

Changelog

Sourced from angular's changelog.

1.8.3 ultimate-farewell (2022-04-07)

One final release of AngularJS in order to update package README files on npm.

1.8.2 meteoric-mining (2020-10-21)

Bug Fixes

$sceDelegate: ensure that resourceUrlWhitelist() is identical to trustedResourceUrlList() (e41f01, #17090)

1.8.1 mutually-supporting (2020-09-30)

Bug Fixes

$sanitize: do not trigger CSP alert/report in Firefox and Chrome (2fab3d)

Refactorings

SanitizeUriProvider: remove usages of whitelist (76738102)

httpProvider: remove usages of whitelist and blacklist (c953af6b)

sceDelegateProvider: remove usages of whitelist and blacklist (a206e267)

Deprecation Notices

Deprecated ~~$compileProvider.aHrefSanitizationWhitelist~~. It is now aHrefSanitizationTrustedUrlList.

Deprecated ~~$compileProvider.imgSrcSanitizationWhitelist~~. It is now imgSrcSanitizationTrustedUrlList.

Deprecated ~~$httpProvider.xsrfWhitelistedOrigins~~. It is now xsrfTrustedOrigins.

Deprecated ~~$sceDelegateProvider.resourceUrlWhitelist~~. It is now trustedResourceUrlList.

Deprecated ~~$sceDelegateProvider.resourceUrlBlacklist~~. It is now bannedResourceUrlList.

For the purposes of backward compatibility, the previous symbols are aliased to their new symbol.

1.8.0 nested-vaccination (2020-06-01)

_This release contains a breaking change to resolve a security issue which was discovered by Krzysztof Kotowicz(@koto); and independently by Esben Sparre Andreasen (@esbena) while

... (truncated)

Commits

cf16b24 docs(changelog): add release notes for 1.8.3
757d56e docs(*): update end-of-life messages (#17177)
f362437 docs(eol): add EOL options text and link to template header used in every page
fb04e42 test(Angular): fix angularInit() tests on Safari v15+
6a52c4f test(input): fix tests on Firefox v93+
ed30c4d docs(README.md): add wiki link to MVC
4032655 chore(deps): bump js-yaml from 3.5.5 to 3.14.1
47f8c65 chore(deps): bump normalize-url from 4.5.0 to 4.5.1
56b0ee3 chore(e2e): run tests against Chrome 91 on macOS Catalina
58cd897 chore(e2e): run tests against Firefox 85 on macOS Catalina
Additional commits viewable in compare view

Updates @types/angular from 1.6.56 to 1.8.9

Commits

See full diff in compare view

Updates hoek from 5.0.4 to 6.1.3

Commits

47d6306 6.1.3
eef9740 cleanup
fc934af Cleanup
f2eb7fd Clone without prototype. Closes #290
5bfe5b6 6.1.2
17fe9a1 Revert all symbol handlings to false by default. Closes #283
542939b 6.1.1
947a326 Ignore symbols in deepEqual() by default. Closes #281
27ac630 6.1.0
b3b5134 Merge pull request #281 from kanongil/symbol-support
Additional commits viewable in compare view

Updates jquery from 3.4.1 to 3.5.0

Release notes

Sourced from jquery's releases.

jQuery 3.5.0 Released!

See the blog post: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/ and the upgrade guide: https://jquery.com/upgrade-guide/3.5/

NOTE: Despite being a minor release, this update includes a breaking change that we had to make to fix a security issue ( CVE-2020-11022). Please follow the blog post & the upgrade guide for more details.

Commits

7a0a850 3.5.0
8570a08 Release: Update AUTHORS.txt
da3dd85 Ajax: Do not execute scripts for unsuccessful HTTP responses
065143c Ajax: Overwrite s.contentType with content-type header value, if any
1a4f10d Tests: Blacklist one focusin test in IE
9e15d6b Event: Use only one focusin/out handler per matching window & document
966a709 Manipulation: Skip the select wrapper for <option> outside of IE 9
1d61fd9 Manipulation: Make jQuery.htmlPrefilter an identity function
04bf577 Selector: Update Sizzle from 2.3.4 to 2.3.5
7506c9c Build: Resolve Travis config warnings
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by mgol, a new releaser for jquery since your current version.

Updates semver from 5.7.0 to 5.7.2

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

2f8fd41 #585 better handling of whitespace (#585) (@joaomoreno, @lukekarrys)

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

2f8fd41 #585 better handling of whitespace (#585) (@joaomoreno, @lukekarrys)

5.7

Add minVersion method

5.6

Move boolean loose param to an options object, with backwards-compatibility protection.

Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

Add version coercion capabilities

5.4

Add intersection checking

5.3

Add minSatisfying method

5.2

Add prerelease(v) that returns prerelease components

5.1

Add Backus-Naur for ranges

Remove excessively cute inspection methods

5.0

Remove AMD/Browserified build artifacts

Fix ltr and gtr when using the * range

Fix for range * with a prerelease identifier

Commits

f8cc313 chore: release 5.7.2
2f8fd41 fix: better handling of whitespace (#585)
deb5ad5 chore: @npmcli/template-oss@4.16.0
c83c18c 5.7.1
956e228 Correct typo in README
See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates tar from 4.4.13 to 4.4.18

Commits

3e35515 4.4.18
52b09e3 fix: prevent path escape using drive-relative paths
bb93ba2 fix: reserve paths properly for unicode, windows
2f1bca0 fix: prune dirCache properly for unicode, windows
9bf70a8 4.4.17
6aafff0 fix: skip extract if linkpath is stripped entirely
5c5059a fix: reserve paths case-insensitively
fd6accb 4.4.16
53cea6e tests: run (and pass) on windows
166cfc0 fix: refactoring to pass tests on Windows
Additional commits viewable in compare view

Updates chromedriver from 80.0.1 to 119.0.1

Commits

de961e3 Hide private attributes from exports
379046e Update package dependencies
5b708ad Add tests for Node.js version 21
c99283d Bump version to 119.0.0
f6edc1e Add provenance
f43d7f8 Make install faster for update check
157d419 Add token to enable PR
09dd5b7 Bump version to 118.0.0
82a6380 Fix tag gh action script
ce13f36 Bump package version to 117.0.3
Additional commits viewable in compare view

Updates grunt-karma from 3.0.2 to 4.0.2

Release notes

Sourced from grunt-karma's releases.

v4.0.2

4.0.2 (2021-05-11)

Bug Fixes

karma: accept karma 6.x in peerDependencies (#303) (fe01a67)

v4.0.1

4.0.1 (2021-05-11)

Bug Fixes

karma: use recommended parseConfig pattern for Karma 6 (#297) (a38d9a9)

v4.0.0

4.0.0 (2020-04-14)

chore

ci: support semanitic-release (#277) (caba218)

BREAKING CHANGES

ci: drop support for nodejs <8

Changelog

Sourced from grunt-karma's changelog.

4.0.2 (2021-05-11)

Bug Fixes

karma: accept karma 6.x in peerDependencies (#303) (fe01a67)

4.0.1 (2021-05-11)

Bug Fixes

karma: use recommended parseConfig pattern for Karma 6 (#297) (a38d9a9)

4.0.0 (2020-04-14)

chore

ci: support semanitic-release (#277) (caba218)

BREAKING CHANGES

ci: drop support for nodejs <8

Commits

f961953 chore(release): 4.0.2 [skip ci]
fe01a67 fix(karma): accept karma 6.x in peerDependencies (#303)
88e5200 chore(release): 4.0.1 [skip ci]
a38d9a9 fix(karma): use recommended parseConfig pattern for Karma 6 (#297)
c547a61 chore(deps): bump lodash from 4.17.13 to 4.17.19 (#289)
45b9259 chore(deps): bump grunt from 1.0.1 to 1.1.0 (#285)
a6d4fc9 chore(deps): bump underscore.string from 3.3.4 to 3.3.5 (#281)
909bc28 chore(deps): bump lodash.merge from 4.6.1 to 4.6.2 (#280)
d030e08 chore(deps): bump acorn from 5.7.2 to 5.7.4 (#282)
658a272 chore(deps): bump handlebars from 4.0.12 to 4.7.6 (#284)
Additional commits viewable in compare view

Updates postcss from 7.0.26 to 8.4.31

Release notes

Sourced from postcss's releases.

8.4.31

Fixed \r parsing to fix CVE-2023-44270.

8.4.30

Improved source map performance (by @romainmenke).

8.4.29

Fixed Node#source.offset (by @idoros).

Fixed docs (by @coliff).

8.4.28

Fixed Root.source.end for better source map (by @romainmenke).

Fixed Result.root types when process() has no parser.

8.4.27

Fixed Container clone methods types.

8.4.26

Fixed clone methods types.

8.4.25

Improve stringify performance (by @romainmenke).

Fixed docs (by @vikaskaliramna07).

8.4.24

Fixed Plugin types.

8.4.23

Fixed warnings in TypeDoc.

8.4.22

Fixed TypeScript support with node16 (by @remcohaszing).

8.4.21

Fixed Input#error types (by @hudochenkov).

8.4.20

Fixed source map generation for childless at-rules like @layer.

8.4.19

Fixed whitespace preserving after AST transformations (by @romainmenke).

8.4.18

Fixed an error on absolute: true with empty sourceContent (by @KingSora).

8.4.17

Fixed Node.before() unexpected behavior (by @romainmenke).

Added TOC to docs (by @muddv).

8.4.16

... (truncated)

Changelog

Sourced from postcss's changelog.

8.4.31

Fixed \r parsing to fix CVE-2023-44270.

8.4.30

Improved source map performance (by Romain Menke).

8.4.29

Fixed Node#source.offset (by Ido Rosenthal).

Fixed docs (by Christian Oliff).

8.4.28

Fixed Root.source.end for better source map (by Romain Menke).

Fixed Result.root types when process() has no parser.

8.4.27

Fixed Container clone methods types.

8.4.26

Fixed clone methods types.

8.4.25

Improve stringify performance (by Romain Menke).

Fixed docs (by @vikaskaliramna07).

8.4.24

Fixed Plugin types.

8.4.23

Fixed warnings in TypeDoc.

8.4.22

Fixed TypeScript support with node16 (by Remco Haszing).

8.4.21

Fixed Input#error types (by Aleks Hudochenkov).

8.4.20

Fixed source map generation for childless at-rules like @layer.

8.4.19

Fixed whitespace preserving after AST transformations (by Romain Menke).

8.4.18

Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

8.4.17

Fixed Node.before() unexpected behavior (by Romain Menke).

Added TOC to docs (by Mikhail Dedov).

8.4.16

... (truncated)

Commits

90208de Release 8.4.31 version
58cc860 Fix carrier return parsing
4fff8e4 Improve pnpm test output
cd43ed1 Update dependencies
caa916b Update dependencies
8972f76 Typo
11a5286 Typo
45c5501 Release 8.4.30 version
bc3c341 Update linter
b2be58a Merge pull request #1881 from romainmenke/improve-sourcemap-performance--phil...
Additional commits viewable in compare view

Updates @babel/traverse from 7.5.5 to 7.23.2

Release notes

Sourced from @babel/traverse's releases.

v7.23.2 (2023-10-11)

NOTE: This release also re-publishes @babel/core, even if it does not appear in the linked release commit.

Thanks @jimmydief for your first PR!

🐛 Bug Fix

babel-traverse

#16033 Only evaluate own String/Number/Math methods (@nicolo-ribaudo)

babel-preset-typescript

#16022 Rewrite .tsx extension when using rewriteImportExtensions (@jimmydief)

babel-helpers

#16017 Fix: fallback to typeof when toString is applied to incompatible object (@JLHwung)

babel-helpers, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#16025 Avoid override mistake in namespace imports (@nicolo-ribaudo)

Committers: 5

Babel Bot (@babel-bot)

Huáng Jùnliàng (@JLHwung)

James Diefenderfer (@jimmydief)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

v7.23.1 (2023-09-25)

Re-publishing @babel/helpers due to a publishing error in 7.23.0.

v7.23.0 (2023-09-25)

Thanks @lorenzoferre and @RajShukla1 for your first PRs!

🚀 New Feature

babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-import-source, babel-plugin-transform-dynamic-import

#15870 Support transforming import source for wasm (@nicolo-ribaudo)

babel-helper-module-transforms, babel-helpers, babel-plugin-proposal-import-defer, babel-plugin-syntax-import-defer, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone

#15878 Implement import defer proposal transform support (@nicolo-ribaudo)

babel-generator, babel-parser, babel-types

#15845 Implement import defer parsing support (@nicolo-ribaudo)

#15829 Add parsing support for the "source phase imports" proposal (@nicolo-ribaudo)

babel-generator, babel-helper-module-transforms, babel-parser, babel-plugin-transform-dynamic-import, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-traverse, babel-types

#15682 Add createImportExpressions parser option (@JLHwung)

babel-standalone

#15671 Pass through nonce to the transformed script element (@JLHwung)

babel-helper-function-name, babel-helper-member-expression-to-functions, babel-helpers, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-optional-chaining-assign, babel-plugin-syntax-optional-chaining-assign, babel-plugin-transform-destructuring, babel-plugin-transform-optional-chaining, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone, babel-types

#15751 Add support for optional chain in assignments (@nicolo-ribaudo)

babel-helpers, babel-plugin-proposal-decorators

#15895 Implement the "decorator metadata" proposal (@nicolo-ribaudo)

babel-traverse, babel-types

#15893 Add t.buildUndefinedNode (@liuxingbaoyu)

babel-preset-typescript

... (truncated)

Changelog

Sourced from @babel/traverse's changelog.

v7.23.2 (2023-10-11)

🐛 Bug Fix

babel-traverse

#16033 Only evaluate own String/Number/Math methods (@nicolo-ribaudo)

babel-preset-typescript

#16022 Rewrite .tsx extension when using rewriteImportExtensions (@jimmydief)

babel-helpers

#16017 Fix: fallback to typeof when toString is applied to incompatible object (@JLHwung)

babel-helpers, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#16025 Avoid override mistake in namespace imports (@nicolo-ribaudo)

v7.23.0 (2023-09-25)

🚀 New Feature

babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-import-source, babel-plugin-transform-dynamic-import

#15870 Support transforming import source for wasm (@nicolo-ribaudo)

babel-helper-module-transforms, babel-helpers, babel-plugin-proposal-import-defer, babel-plugin-syntax-import-defer, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone

#15878 Implement import defer proposal transform support (@nicolo-ribaudo)

babel-generator, babel-parser, babel-types

#15845 Implement import defer parsing support (@nicolo-ribaudo)

#15829 Add parsing support for the "source phase imports" proposal (@nicolo-ribaudo)

babel-generator, babel-helper-module-transforms, babel-parser, babel-plugin-transform-dynamic-import, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-traverse, babel-types

#15682 Add createImportExpressions parser option (@JLHwung)

babel-standalone

#15671 Pass through nonce to the transformed script element (@JLHwung)

babel-helper-function-name, babel-helper-member-expression-to-functions, babel-helpers, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-optional-chaining-assign, babel-plugin-syntax-optional-chaining-assign, babel-plugin-transform-destructuring, babel-plugin-transform-optional-chaining, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone, babel-types

#15751 Add support for optional chain in assignments (@nicolo-ribaudo)

babel-helpers, babel-plugin-proposal-decorators

#15895 Implement the "decorator metadata" proposal (@nicolo-ribaudo)

babel-traverse, babel-types

#15893 Add t.buildUndefinedNode (@liuxingbaoyu)

babel-preset-typescript

#15913 Add rewriteImportExtensions option to TS preset (@nicolo-ribaudo)

babel-parser

#15896 Allow TS tuples to have both labeled and unlabeled elements (@yukukotani)

🐛 Bug Fix

babel-plugin-transform-block-scoping

#15962 fix: transform-block-scoping captures the variables of the method in the loop (@liuxingbaoyu)

💅 Polish

babel-traverse

#15797 Expand evaluation of global built-ins in @babel/traverse (@lorenzoferre)

babel-plugin-proposal-explicit-resource-management

#15985 Improve source maps for blocks with using declarations (@nicolo-ribaudo)

🔬 Output optimization

babel-core, babel-helper-module-transforms, babel-plugin-transform-async-to-generator, babel-plugin-transform-classes, babel-plugin-transform-dynamic-import, babel-plugin-transform-function-name, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-umd, babel-plugin-transform-parameters, babel-plugin-transform-react-constant-elements, babel-plugin-transform-react-inline-elements, babel-plugin-transform-runtime, babel-plugin-transform-typescript, babel-preset-env

#15984 Inline exports.XXX = update in simple variable declarations (@nicolo-ribaudo)

v7.22.20 (2023-09-16)

... (truncated)

Commits

b4b9942 v7.23.2
b13376b Only evaluate own String/Number/Math methods (#16033)
ca58ec1 v7.23.0
0f333da Add createImportExpressions parser option (#15682)
3744545 Fix linting
c7e6806 Add t.buildUndefinedNode (#15893)
38ee8b4 Expand evaluation of global built-ins in @babel/traverse (#15797)
9f3dfd9 v7.22.20
3ed28b2 Fully support || and && in pluginToggleBooleanFlag (#15961)
77b0d73 v7.22.19
Additional commits viewable in compare view

Updates lodash from 4.17.15 to 4.17.21

Commits

f299b52 Bump to v4.17.21
c4847eb Improve performance of toNumber, trim and trimEnd on large input strings
3469357 Prevent command injection through _.template's variable option
ded9bc6 Bump to v4.17.20.
63150ef Documentation fixes.
00f0f62 test.js: Remove trailing comma.
846e434 Temporarily use a custom fork of lodash-cli.
5d046f3 Re-enable Travis tests on 4.17 branch.
aa816b3 Remove /npm-package.
d7fbc52 Bump to v4.17.19
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by bnjmnt4n, a new releaser for lodash since your current version.

Updates debug from 2.6.9 to 3.1.0

Release notes

Sourced from debug's releases.

3.1.0

Minor Changes

Ignore package-lock.json: e7e568a24736486721882282eb21beb31c741647

Remove component.json: 47747f329fe159e94262318b52b87a48f6c0acd4

Remove "component" from package.json: bdb7e0137f84dc8bcfc95daede7c694799d38dbf

Add DEBUG_HIDE_DATE env var: #486

Patches

Correct spelling mistake: daf1a7c8c0f62f5dbc8d48158d6748d0527cc551

Examples: fix colors printout: 7cd9e539ce571fc3314d34d9d1dac3124839dbac

Fix browser detection: fdfa0f5f6cc7e83fd60b6cf1e7b990cbf6388621

Remove ReDoS regexp in %o formatter: #504

Credits

Huge thanks to @amejiarosario and @zhuangya for their help!

3.0.0

Featuring pretty new colors!

Major Changes

Remove DEBUG_FD: #406

Make millisecond timer namespace specific and allow 'always enabled' output: #408

Use Date#toISOString() instead to Date#toUTCString() when output is not a TTY: #418

enabled() updates existing debug instances: #440

Minor Changes

Add destroy() function: #440

Document enabled flag: #465

Support 256 colors: #481

Update "browserify" to v14.4.0: 826fd94639efeaa3c5701b50d335caead084a5d6

Separate Node.js and web browser examples: 87880f6ae1f48b12d9f3346bce564a66cba6b93e

Example: use %o formatter: 31f3343de76cb8687041387a1b811745c6e84473

More readme screenshots replaced: 25eb545324912dd2863658d0ba35426c0f617619

Add Namespace Colors section to readme: 8b5c438a222167bd0cc66db046bac073f01b3c01

Separate the Node and Browser tests in Travis: f178d861df18abacac6e9e4607c7306a1147bf3d

Patches

Readme: fix typo: #473

Component: update "ms" to v2.0.0: d2dd80aeaf1b037f0b3be21838c4594bbedc4a9c

Credits

... (truncated)

Changelog

Sourced from debug's changelog.

3.1.0 / 2017-09-26

Add DEBUG_HIDE_DATE env var (#486)

Remove ReDoS regexp in %o formatter (#504)

Remove "component" from package.json

Remove component.json

Ignore package-lock.json

Examples: fix colors printout

Fix: browser detection

Fix: spelling mistake (#496, @EdwardBetts)

3.0.1 / 2017-08-24

Fix: Disable colors in Edge and Internet Explorer (#489)

3.0.0 / 2017-08-08

Breaking: Remove DEBUG_FD (#406)

Breaking: Use Date#toISOString() instead to Date#toUTCString() when output is not a TTY (#418)

Breaking: Make millisecond timer namespace specific and allow 'always enabled' output (#408)

Addition: document enabled flag (#465)

Addition: add 256 colors mode (#481)

Addition: enabled() updates existing debug instances, add destroy() function (#440)

Update: component: update "ms" to v2.0.0

Update: separate the Node and Browser tests in Travis-CI

Update: refactor Readme, fixed documentation, added "Namespace Colors" section, redid screenshots

Update: separate Node.js and web browser examples for organization

Update: update "browserify" to v14.4.0

Fix: fix Readme typo (#473)

Commits

f073e05 Release 3.1.0
2c0df9b rename DEBUG_HIDE_TTY_DATE to DEBUG_HIDE_DATE
dcb37b2 Merge branch '2.x'
56a3853 Add DEBUG_HIDE_TTY_DATE env var (#486)
bdb7e01 remove "component" from package.json
c38a016 remove ReDoS regexp in %o formatter (#504)
47747f3 remove component.json
a0601e5 fix
e7e568a ignore package-lock.json
fdfa0f5 Fix browser detection
Additional commits viewable in compare view

Updates axios from 0.19.0 to 0.28.0

Release notes

Sourced from axios's releases.

Release v0.28.0

Release notes:

Bug Fixes

fix(security): fixed CVE-2023-45857 by backporting withXSRFToken option to v0.x (#6091)

Backports from v1.x:

Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)

Fixing content-type header repeated #4745

Fixed timeout error message for HTTP 4738

Added axios.formToJSON method (#4735)

URL params serializer (#4734)

Fixed toFormData Blob issue on node>v17 #4728

Adding types for progress event callbacks #4675

Fixed max body length defaults #4731

Added data URL support for node.js (#4725)

Added isCancel type assert (#4293)

Added the ability for the url-encoded-form serializer to respect the formSerializer config (#4721)

Add string[] to AxiosRequestHeaders type (#4322)

Allow type definition for axios instance methods (#4224)

Fixed AxiosError stack capturing; (#4718)

Fixed AxiosError status code type; (#4717)

Adding Canceler parameters config and request (#4711)

fix(types): allow to specify partial default headers for instance creation (#4185)

Added blob to the list of protocols supported by the browser (#4678)

Fixing Z_BUF_ERROR when no content (#4701)

Fixed race condition on immediate requests cancellation (#4261)

Added a clear() function to the request and response interceptors object so a user can ensure that all interceptors have been removed from an Axios instance axios/axios#4248

Added generic AxiosAbortSignal TS interface to avoid importing AbortController polyfill (#4229)

Fix TS definition for AxiosRequestTransformer (#4201)

Use type alias instead of interface for AxiosPromise (#4505)

Include request and config when creating a CanceledError instance (#4659)

Added generic TS types for the exposed toFormData helper (#4668)

Optimized the code that checks cancellation (#4587)

Replaced webpack with rollup (#4596)

Added stack trace to AxiosError (#4624)

Updated AxiosError.config to be optional in the type definition (#4665)

Removed incorrect argument for NetworkError constructor (#4656)

v0.27.2

Fixes and Functionality:

Fixed FormData posting in browser environment by reverting #3785 (#4640)

Enhanced protocol parsing implementation (#4639)

Fixed bundle size

v0.27.1

Fixes and Functionality:

Removed import of url module in browser build due to huge size overhead and builds being broken (#4594)

Bumped follow-redirects to ^1.14.9 (#4615)

... (truncated)

Changelog

Sourced from axios's changelog.

0.28.0 (2024-02-12)

Release notes:

Bug Fixes

fix(security): fixed CVE-2023-45857 by backporting withXSRFToken option to v0.x (#6091)

Backports from v1.x:

Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)

Fixing content-type header repeated #4745

Fixed timeout error message for HTTP 4738

Added axios.formToJSON method (#4735)

URL params se...
Description has been truncated

Bumps the npm_and_yarn group with 21 updates in the / directory: | Package | From | To | | --- | --- | --- | | [angular](https://github.com/angular/angular.js) | `1.7.9` | `1.8.3` | | [@types/angular](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/angular) | `1.6.56` | `1.8.9` | | [hoek](https://github.com/hapijs/hoek) | `5.0.4` | `6.1.3` | | [jquery](https://github.com/jquery/jquery) | `3.4.1` | `3.5.0` | | [semver](https://github.com/npm/node-semver) | `5.7.0` | `5.7.2` | | [tar](https://github.com/isaacs/node-tar) | `4.4.13` | `4.4.18` | | [chromedriver](https://github.com/giggio/node-chromedriver) | `80.0.1` | `119.0.1` | | [grunt-karma](https://github.com/karma-runner/grunt-karma) | `3.0.2` | `4.0.2` | | [postcss](https://github.com/postcss/postcss) | `7.0.26` | `8.4.31` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.5.5` | `7.23.2` | | [lodash](https://github.com/lodash/lodash) | `4.17.15` | `4.17.21` | | [debug](https://github.com/debug-js/debug) | `2.6.9` | `3.1.0` | | [axios](https://github.com/axios/axios) | `0.19.0` | `0.28.0` | | [nodemailer](https://github.com/nodemailer/nodemailer) | `4.7.0` | `6.9.9` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.0.4` | `4.2.3` | | [es5-ext](https://github.com/medikoo/es5-ext) | `0.10.40` | `0.10.64` | | [fsevents](https://github.com/fsevents/fsevents) | `1.2.7` | `1.2.13` | | [get-func-name](https://github.com/chaijs/get-func-name) | `2.0.0` | `2.0.2` | | [ip](https://github.com/indutny/node-ip) | `1.1.5` | `1.1.9` | | [lodash-es](https://github.com/lodash/lodash) | `4.17.15` | `4.17.21` | | [word-wrap](https://github.com/jonschlinkert/word-wrap) | `1.2.3` | `1.2.5` | Updates `angular` from 1.7.9 to 1.8.3 - [Changelog](https://github.com/angular/angular.js/blob/master/CHANGELOG.md) - [Commits](angular/angular.js@v1.7.9...v1.8.3) Updates `@types/angular` from 1.6.56 to 1.8.9 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/angular) Updates `hoek` from 5.0.4 to 6.1.3 - [Release notes](https://github.com/hapijs/hoek/releases) - [Commits](hapijs/hoek@v5.0.4...v6.1.3) Updates `jquery` from 3.4.1 to 3.5.0 - [Release notes](https://github.com/jquery/jquery/releases) - [Commits](jquery/jquery@3.4.1...3.5.0) Updates `semver` from 5.7.0 to 5.7.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.0...v5.7.2) Updates `tar` from 4.4.13 to 4.4.18 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v4.4.13...v4.4.18) Updates `chromedriver` from 80.0.1 to 119.0.1 - [Commits](giggio/node-chromedriver@80.0.1...119.0.1) Updates `grunt-karma` from 3.0.2 to 4.0.2 - [Release notes](https://github.com/karma-runner/grunt-karma/releases) - [Changelog](https://github.com/karma-runner/grunt-karma/blob/master/CHANGELOG.md) - [Commits](karma-runner/grunt-karma@v3.0.2...v4.0.2) Updates `postcss` from 7.0.26 to 8.4.31 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@7.0.26...8.4.31) Updates `@babel/traverse` from 7.5.5 to 7.23.2 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse) Updates `lodash` from 4.17.15 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.15...4.17.21) Updates `debug` from 2.6.9 to 3.1.0 - [Release notes](https://github.com/debug-js/debug/releases) - [Changelog](https://github.com/debug-js/debug/blob/3.1.0/CHANGELOG.md) - [Commits](debug-js/debug@2.6.9...3.1.0) Updates `axios` from 0.19.0 to 0.28.0 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v0.28.0/CHANGELOG.md) - [Commits](axios/axios@v0.19.0...v0.28.0) Updates `nodemailer` from 4.7.0 to 6.9.9 - [Release notes](https://github.com/nodemailer/nodemailer/releases) - [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md) - [Commits](nodemailer/nodemailer@v4.7.0...v6.9.9) Updates `browserify-sign` from 4.0.4 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.0.4...v4.2.3) Updates `es5-ext` from 0.10.40 to 0.10.64 - [Release notes](https://github.com/medikoo/es5-ext/releases) - [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md) - [Commits](medikoo/es5-ext@v0.10.40...v0.10.64) Updates `fsevents` from 1.2.7 to 1.2.13 - [Release notes](https://github.com/fsevents/fsevents/releases) - [Commits](fsevents/fsevents@v1.2.7...v1.2.13) Updates `get-func-name` from 2.0.0 to 2.0.2 - [Release notes](https://github.com/chaijs/get-func-name/releases) - [Commits](https://github.com/chaijs/get-func-name/commits/v2.0.2) Updates `ip` from 1.1.5 to 1.1.9 - [Commits](indutny/node-ip@v1.1.5...v1.1.9) Updates `lodash-es` from 4.17.15 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.15...4.17.21) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) --- updated-dependencies: - dependency-name: angular dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: "@types/angular" dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: hoek dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: jquery dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: semver dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: tar dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: chromedriver dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: grunt-karma dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: postcss dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: "@babel/traverse" dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: lodash dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: debug dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: nodemailer dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: es5-ext dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: fsevents dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: get-func-name dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: ip dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: lodash-es dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 17, 2024

dependabot bot mentioned this pull request Mar 17, 2024

Bump the npm_and_yarn group across 1 directories with 21 updates #1

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 1 directory with 21 updates #2

Bump the npm_and_yarn group across 1 directory with 21 updates #2

dependabot bot commented on behalf of github Mar 17, 2024

Bump the npm_and_yarn group across 1 directory with 21 updates #2

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directory with 21 updates #2

Conversation

dependabot bot commented on behalf of github Mar 17, 2024

1.8.3 ultimate-farewell (2022-04-07)

1.8.2 meteoric-mining (2020-10-21)

Bug Fixes

1.8.1 mutually-supporting (2020-09-30)

Bug Fixes

Refactorings

Deprecation Notices

1.8.0 nested-vaccination (2020-06-01)

jQuery 3.5.0 Released!

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

5.7.2 (2023-07-10)

Bug Fixes

5.7

5.6

5.5

5.4

5.3

5.2

5.1

5.0

v4.0.2

4.0.2 (2021-05-11)

Bug Fixes

v4.0.1

4.0.1 (2021-05-11)

Bug Fixes

v4.0.0

4.0.0 (2020-04-14)

chore

BREAKING CHANGES

4.0.2 (2021-05-11)

Bug Fixes

4.0.1 (2021-05-11)

Bug Fixes

4.0.0 (2020-04-14)

chore

BREAKING CHANGES

8.4.31

8.4.30

8.4.29

8.4.28

8.4.27

8.4.26

8.4.25

8.4.24

8.4.23

8.4.22

8.4.21

8.4.20

8.4.19

8.4.18

8.4.17

8.4.16

8.4.31

8.4.30

8.4.29

8.4.28

8.4.27

8.4.26

8.4.25

8.4.24

8.4.23

8.4.22

8.4.21

8.4.20

8.4.19

8.4.18

8.4.17

8.4.16

v7.23.2 (2023-10-11)

🐛 Bug Fix

Committers: 5

v7.23.1 (2023-09-25)