Skip to content

Bump ajv, browser-sync, eslint and fsevents #5

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump ajv, browser-sync, eslint and fsevents #5

wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Oct 8, 2022

Bumps ajv to 6.12.6 and updates ancestor dependencies ajv, browser-sync, eslint and fsevents. These dependencies need to be updated together.

Updates ajv from 4.11.8 to 6.12.6

Release notes

Sourced from ajv's releases.

v6.12.6

Fix performance issue of "url" format.

v6.12.5

Fix uri scheme validation (@​ChALkeR). Fix boolean schemas with strictKeywords option (#1270)

v6.12.4

Fix: coercion of one-item arrays to scalar that should fail validation (failing example).

v6.12.3

Pass schema object to processCode function Option for strictNumbers (@​issacgerges, #1128) Fixed vulnerability related to untrusted schemas (CVE-2020-15366)

v6.12.2

Removed post-install script

v6.12.1

Docs and dependency updates

v6.12.0

Improved hostname validation (@​sambauers, #1143) Option keywords to add custom keywords (@​franciscomorais, #1137) Types fixes (@​boenrobot, @​MattiAstedrone) Docs:

v6.11.0

Time formats support two digit and colon-less variants of timezone offset (#1061 , @​cjpillsbury) Docs: RegExp related security considerations Tests: Disabled failing typescript test

v6.10.2

Fix: the unknown keywords were ignored with the option strictKeywords: true (instead of failing compilation) in some sub-schemas (e.g. anyOf), when the sub-schema didn't have known keywords.

v6.10.1

Fix types Fix addSchema (#1001) Update dependencies

v6.10.0

Option strictDefaults to report ignored defaults (#957, @​not-an-aardvark) Option strictKeywords to report unknown keywords (#781)

v6.9.0

OpenAPI keyword nullable can be any boolean (and not only true). Custom keyword definition changes:

  • dependencies option in to require the presence of keywords in the same schema.

... (truncated)

Commits
  • fe59143 6.12.6
  • d580d3e Merge pull request #1298 from ajv-validator/fix-url
  • fd36389 fix: regular expression for "url" format
  • 490e34c docs: link to v7-beta branch
  • 9cd93a1 docs: note about v7 in readme
  • 877d286 Merge pull request #1262 from b4h0-c4t/refactor-opt-object-type
  • f1c8e45 6.12.5
  • 764035e Merge branch 'ChALkeR-chalker/fix-comma'
  • 3798160 Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...
  • a3c7eba Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...
  • Additional commits viewable in compare view

Updates browser-sync from 2.18.13 to 2.27.10

Release notes

Sourced from browser-sync's releases.

2.27.9

What's Changed

A bug prevented the help output from displaying - it was introduced when the CLI parser yargs was updated, and is now fixed :)

Full Changelog: BrowserSync/browser-sync@v2.27.8...v2.27.9

2.27.8

This release upgrades Socket.io (client+server) to the latest versions - solving the following issues, and silencing security warning :)

PR:

Resolved Issues:

Thanks to @​lachieh for the original PR, which helped me land this fix

added snippet: boolean option

This release adds a feature to address BrowserSync/browser-sync#1882

Sometimes you don't want Browsersync to auto-inject it's connection snippet into your HTML - now you can disable it globally via either a CLI param or the new snippet option :)

browser-sync . --no-snippet

or in any Browsersync configuration

const config = {
  snippet: false,
};

the original request was related to Eleventy usage, so here's how that would look

eleventyConfig.setBrowserSyncConfig({
  snippet: false,
});

... (truncated)

Changelog

Sourced from browser-sync's changelog.

2.23.1 (2018-01-01)

2.8.2 (2015-07-31)

Bug Fixes

  • https: add newly generated ssl self-signed certs that will expire for 10 years - fixes (45104a7), closes #750

2.8.1 (2015-07-28)

Bug Fixes

  • web-sockets: Use separate server for web sockets in proxy mode - fixes #625 (40017b4), closes #625

Features

  • serve-static: Added option serveStatic to allow proxy/snippet mode to easily serve local fil (384ef67)

2.7.13 (2015-06-28)

Bug Fixes

  • snippet: Allow async attribute to be removed from snippet with snippetOptions.async = fal (c32bec6), closes #670
  • socket-options: allow socket.domain string|fn for setting domain only on socket path - fixes #69 (5157432), closes #690

Features

  • api: expose sockets to public api (985682c)

2.7.12 (2015-06-17)

Bug Fixes

  • client-script: allow proxy to also use client script middleware (c5fdbbf)
  • client-script: serve cached/gzipped client JS file - fixes #657 (dbe9ffe), closes #657

... (truncated)

Commits

Updates eslint from 4.11.0 to 8.25.0

Release notes

Sourced from eslint's releases.

v8.25.0

Features

  • 173e820 feat: Pass --max-warnings value to formatters (#16348) (Brandon Mills)
  • 6964cb1 feat: remove support for ignore files in FlatESLint (#16355) (Milos Djermanovic)
  • 1cc4b3a feat: id-length counts graphemes instead of code units (#16321) (Sosuke Suzuki)

Documentation

  • 90c6028 docs: Conflicting fixes (#16366) (Ben Perlmutter)
  • 5a3fe70 docs: Add VS to integrations page (#16381) (Maria José Solano)
  • 49bd1e5 docs: remove unused link definitions (#16376) (Nick Schonning)
  • 3bd380d docs: typo cleanups for docs (#16374) (Nick Schonning)
  • b3a0837 docs: remove duplicate words (#16378) (Nick Schonning)
  • a682562 docs: add BigInt to new-cap docs (#16362) (Sosuke Suzuki)
  • f6d57fb docs: Update docs README (#16352) (Ben Perlmutter)
  • 7214347 docs: fix logical-assignment-operators option typo (#16346) (Jonathan Wilsson)

Chores

  • 1f78594 chore: upgrade @​eslint/eslintrc@​1.3.3 (#16397) (Milos Djermanovic)
  • 8476a9b chore: Remove CODEOWNERS (#16375) (Nick Schonning)
  • 720ff75 chore: use "ci" for Dependabot commit message (#16377) (Nick Schonning)
  • 42f5479 chore: bump actions/stale from 5 to 6 (#16350) (dependabot[bot])
  • e5e9e27 chore: remove jsdoc dev dependency (#16344) (Milos Djermanovic)

v8.24.0

Features

  • 1729f9e feat: account for sourceType: "commonjs" in the strict rule (#16308) (Milos Djermanovic)
  • b0d72c9 feat: add rule logical-assignment-operators (#16102) (fnx)
  • f02bcd9 feat: array-callback-return support findLast and findLastIndex (#16314) (Sosuke Suzuki)

Documentation

  • 2c152ff docs: note false positive Object.getOwnPropertyNames in prefer-reflect (#16317) (AnnAngela)
  • bf7bd88 docs: fix warn severity description for new config files (#16324) (Nitin Kumar)
  • 8cc0bbe docs: use more clean link syntax (#16309) (Percy Ma)
  • 6ba269e docs: fix typo (#16288) (jjangga0214)

Chores

  • 131e646 chore: Upgrade @​humanwhocodes/config-array for perf (#16339) (Nicholas C. Zakas)
  • 504fe59 perf: switch from object spread to Object.assign when merging globals (#16311) (Milos Djermanovic)

v8.23.1

Bug Fixes

  • b719893 fix: Upgrade eslintrc to stop redefining plugins (#16297) (Brandon Mills)
  • 734b54e fix: improve autofix for the prefer-const rule (#16292) (Nitin Kumar)
  • 6a923ff fix: Ensure that glob patterns are normalized (#16287) (Nicholas C. Zakas)
  • c6900f8 fix: Ensure globbing doesn't include subdirectories (#16272) (Nicholas C. Zakas)

Documentation

  • 16cba3f docs: fix mobile double tap issue (#16293) (Sam Chen)
  • e098b5f docs: keyboard control to search results (#16222) (Shanmughapriyan S)
  • 1b5b2a7 docs: add Consolas font and prioritize resource loading (#16225) (Amaresh S M)

... (truncated)

Changelog

Sourced from eslint's changelog.

v8.25.0 - October 7, 2022

  • 1f78594 chore: upgrade @​eslint/eslintrc@​1.3.3 (#16397) (Milos Djermanovic)
  • 173e820 feat: Pass --max-warnings value to formatters (#16348) (Brandon Mills)
  • 8476a9b chore: Remove CODEOWNERS (#16375) (Nick Schonning)
  • 720ff75 chore: use "ci" for Dependabot commit message (#16377) (Nick Schonning)
  • 90c6028 docs: Conflicting fixes (#16366) (Ben Perlmutter)
  • 5a3fe70 docs: Add VS to integrations page (#16381) (Maria José Solano)
  • 6964cb1 feat: remove support for ignore files in FlatESLint (#16355) (Milos Djermanovic)
  • 49bd1e5 docs: remove unused link definitions (#16376) (Nick Schonning)
  • 42f5479 chore: bump actions/stale from 5 to 6 (#16350) (dependabot[bot])
  • 3bd380d docs: typo cleanups for docs (#16374) (Nick Schonning)
  • b3a0837 docs: remove duplicate words (#16378) (Nick Schonning)
  • a682562 docs: add BigInt to new-cap docs (#16362) (Sosuke Suzuki)
  • 1cc4b3a feat: id-length counts graphemes instead of code units (#16321) (Sosuke Suzuki)
  • f6d57fb docs: Update docs README (#16352) (Ben Perlmutter)
  • e5e9e27 chore: remove jsdoc dev dependency (#16344) (Milos Djermanovic)
  • 7214347 docs: fix logical-assignment-operators option typo (#16346) (Jonathan Wilsson)

v8.24.0 - September 23, 2022

  • 131e646 chore: Upgrade @​humanwhocodes/config-array for perf (#16339) (Nicholas C. Zakas)
  • 2c152ff docs: note false positive Object.getOwnPropertyNames in prefer-reflect (#16317) (AnnAngela)
  • bf7bd88 docs: fix warn severity description for new config files (#16324) (Nitin Kumar)
  • 504fe59 perf: switch from object spread to Object.assign when merging globals (#16311) (Milos Djermanovic)
  • 1729f9e feat: account for sourceType: "commonjs" in the strict rule (#16308) (Milos Djermanovic)
  • b0d72c9 feat: add rule logical-assignment-operators (#16102) (fnx)
  • f02bcd9 feat: array-callback-return support findLast and findLastIndex (#16314) (Sosuke Suzuki)
  • 8cc0bbe docs: use more clean link syntax (#16309) (Percy Ma)
  • 6ba269e docs: fix typo (#16288) (jjangga0214)

v8.23.1 - September 12, 2022

  • b719893 fix: Upgrade eslintrc to stop redefining plugins (#16297) (Brandon Mills)
  • 734b54e fix: improve autofix for the prefer-const rule (#16292) (Nitin Kumar)
  • 6a923ff fix: Ensure that glob patterns are normalized (#16287) (Nicholas C. Zakas)
  • 38e8171 perf: migrate rbTree to js-sdsl (#16267) (Zilong Yao)
  • 16cba3f docs: fix mobile double tap issue (#16293) (Sam Chen)
  • c6900f8 fix: Ensure globbing doesn't include subdirectories (#16272) (Nicholas C. Zakas)
  • e098b5f docs: keyboard control to search results (#16222) (Shanmughapriyan S)
  • 1b5b2a7 docs: add Consolas font and prioritize resource loading (#16225) (Amaresh S M)
  • 1c388fb chore: switch nyc to c8 (#16263) (唯然)
  • 67db10c chore: enable linting .eleventy.js again (#16274) (Milos Djermanovic)
  • 1ae8236 docs: copy & use main package version in docs on release (#16252) (Jugal Thakkar)
  • 42bfbd7 chore: fix npm run perf crashes (#16258) (唯然)
  • 279f0af docs: Improve id-denylist documentation (#16223) (Mert Ciflikli)

v8.23.0 - August 26, 2022

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by eslintbot, a new releaser for eslint since your current version.


Updates fsevents from 1.1.2 to 1.2.13

Release notes

Sourced from fsevents's releases.

Release v1.2.13

Only build on Mac-OSX

Release v1.2.11

Removing node-pre-gyp so that building fsevents becomes easier and enabled without the download of binaries.

The credentials to the AWS store have been lost. Releasing to AWS is both insecure and no longer possible due to the lost credentials.

Intermediate Release

No release notes provided.

Release v1.2.9 - Node v12 compatibility

No release notes provided.

Release Pre-NAPI v1.2.8

No release notes provided.

Version Bump (bundle node-pre-gyp)

No release notes provided.

Prebuilt v11.x

No release notes provided.

v1.2.3

  • Added node v10 for pre-built binaries
  • C++ tuning to fix potential SIGILL and cyclic dependency (#204)

v1.2.2

Fixed node-pre-gyp bundling issue

v1.2.1

[unpublished because of errors during publish process]

v1.2.0

  • BREAKING: End support for Node v0.12. If you are using Node v0.12 please pin your fsevents dependencies to v1.1.3. Not bumping semver major for this release was a compromise solution discussed in #199 and #201.
    • Node v0.10 should continue to work with local compilation for now, but hosted pre-built binaries will no longer be provided. If this is a constraint for you, please pin to an earlier version.
  • Fixed security vulnerability warnings by updating node-pre-gyp to ^0.9.0
  • Compatibility updates for nan v2.9.0

v1.1.3

  • Added node v9 for pre-built binaries
  • Fixed bug related to using --no-bin-links option on install
  • Updated node-pre-gyp to latest version (0.6.39)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump ajv, browser-sync, eslint and fsevents
063ef89 
Bumps [ajv](https://github.com/ajv-validator/ajv) to 6.12.6 and updates ancestor dependencies [ajv](https://github.com/ajv-validator/ajv), [browser-sync](https://github.com/BrowserSync/browser-sync), [eslint](https://github.com/eslint/eslint) and [fsevents](https://github.com/fsevents/fsevents). These dependencies need to be updated together.


Updates `ajv` from 4.11.8 to 6.12.6
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@4.11.8...v6.12.6)

Updates `browser-sync` from 2.18.13 to 2.27.10
- [Release notes](https://github.com/BrowserSync/browser-sync/releases)
- [Changelog](https://github.com/BrowserSync/browser-sync/blob/master/CHANGELOG.md)
- [Commits](BrowserSync/browser-sync@v2.18.13...v2.27.10)

Updates `eslint` from 4.11.0 to 8.25.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](eslint/eslint@v4.11.0...v8.25.0)

Updates `fsevents` from 1.1.2 to 1.2.13
- [Release notes](https://github.com/fsevents/fsevents/releases)
- [Commits](fsevents/fsevents@v1.1.2...v1.2.13)

---
updated-dependencies:
- dependency-name: ajv
  dependency-type: indirect
- dependency-name: browser-sync
  dependency-type: direct:development
- dependency-name: eslint
  dependency-type: direct:development
- dependency-name: fsevents
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant