-
Notifications
You must be signed in to change notification settings - Fork 25
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the minor-and-patch group across 2 directories with 13 updates #1471
Bump the minor-and-patch group across 2 directories with 13 updates #1471
Conversation
Bumps the minor-and-patch group with 13 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) | `7.25.3` | `7.25.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `18.3.3` | `18.3.5` | | [eslint-plugin-import](https://github.com/import-js/eslint-plugin-import) | `2.29.1` | `2.30.0` | | [eslint-plugin-jsx-a11y](https://github.com/jsx-eslint/eslint-plugin-jsx-a11y) | `6.9.0` | `6.10.0` | | [eslint-plugin-react](https://github.com/jsx-eslint/eslint-plugin-react) | `7.35.0` | `7.35.2` | | [webpack](https://github.com/webpack/webpack) | `5.93.0` | `5.94.0` | | [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `5.0.4` | `5.1.0` | | [@types/webextension-polyfill](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/webextension-polyfill) | `0.12.0` | `0.12.1` | | [sass](https://github.com/sass/dart-sass) | `1.77.8` | `1.78.0` | | [soroswap-router-sdk](https://github.com/soroswap/soroswap-router-sdk) | `1.2.10` | `1.2.13` | | [tslib](https://github.com/Microsoft/tslib) | `2.6.3` | `2.7.0` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.46.1` | `1.47.0` | | [@sentry/webpack-plugin](https://github.com/getsentry/sentry-javascript-bundler-plugins) | `2.22.2` | `2.22.4` | Bumps the minor-and-patch group with 2 updates in the /extension directory: [tslib](https://github.com/Microsoft/tslib) and [@playwright/test](https://github.com/microsoft/playwright). Updates `@babel/preset-env` from 7.25.3 to 7.25.4 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.4/packages/babel-preset-env) Updates `@types/react` from 18.3.3 to 18.3.5 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `eslint-plugin-import` from 2.29.1 to 2.30.0 - [Release notes](https://github.com/import-js/eslint-plugin-import/releases) - [Changelog](https://github.com/import-js/eslint-plugin-import/blob/main/CHANGELOG.md) - [Commits](import-js/eslint-plugin-import@v2.29.1...v2.30.0) Updates `eslint-plugin-jsx-a11y` from 6.9.0 to 6.10.0 - [Release notes](https://github.com/jsx-eslint/eslint-plugin-jsx-a11y/releases) - [Changelog](https://github.com/jsx-eslint/eslint-plugin-jsx-a11y/blob/main/CHANGELOG.md) - [Commits](jsx-eslint/eslint-plugin-jsx-a11y@v6.9.0...v6.10.0) Updates `eslint-plugin-react` from 7.35.0 to 7.35.2 - [Release notes](https://github.com/jsx-eslint/eslint-plugin-react/releases) - [Changelog](https://github.com/jsx-eslint/eslint-plugin-react/blob/master/CHANGELOG.md) - [Commits](jsx-eslint/eslint-plugin-react@v7.35.0...v7.35.2) Updates `webpack` from 5.93.0 to 5.94.0 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v5.93.0...v5.94.0) Updates `webpack-dev-server` from 5.0.4 to 5.1.0 - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md) - [Commits](webpack/webpack-dev-server@v5.0.4...v5.1.0) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `sass` from 1.77.8 to 1.78.0 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](sass/dart-sass@1.77.8...1.78.0) Updates `soroswap-router-sdk` from 1.2.10 to 1.2.13 - [Commits](https://github.com/soroswap/soroswap-router-sdk/commits) Updates `tslib` from 2.6.3 to 2.7.0 - [Release notes](https://github.com/Microsoft/tslib/releases) - [Commits](microsoft/tslib@v2.6.3...v2.7.0) Updates `@playwright/test` from 1.46.1 to 1.47.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](microsoft/playwright@v1.46.1...v1.47.0) Updates `@sentry/webpack-plugin` from 2.22.2 to 2.22.4 - [Release notes](https://github.com/getsentry/sentry-javascript-bundler-plugins/releases) - [Changelog](https://github.com/getsentry/sentry-javascript-bundler-plugins/blob/main/CHANGELOG.md) - [Commits](getsentry/sentry-javascript-bundler-plugins@2.22.2...2.22.4) Updates `tslib` from 2.6.3 to 2.7.0 - [Release notes](https://github.com/Microsoft/tslib/releases) - [Commits](microsoft/tslib@v2.6.3...v2.7.0) Updates `@playwright/test` from 1.46.1 to 1.47.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](microsoft/playwright@v1.46.1...v1.47.0) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@types/react" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: eslint-plugin-import dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-jsx-a11y dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-react dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: webpack dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: webpack-dev-server dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@types/webextension-polyfill" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: sass dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: soroswap-router-sdk dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: tslib dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@playwright/test" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@sentry/webpack-plugin" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: tslib dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@playwright/test" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <[email protected]>
🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎ To accept the risk, merge this PR and you will not be notified again.
Next stepsWhat is filesystem access?Accesses the file system, and could potentially read sensitive data. If a package must read the file system, clarify what it will read and ensure it reads only what it claims to. If appropriate, packages can leave file system access to consumers and operate on data passed to it instead. What is debug access?Uses debug, reflection and dynamic code execution features. Removing the use of debug will reduce the risk of any reflection and dynamic code execution. What is network access?This module accesses the network. Packages should remove all network access that is functionally unnecessary. Consumers should audit network access to ensure legitimate use. Take a deeper look at the dependencyTake a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev. Remove the packageIf you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency. Mark a package as acceptable riskTo ignore an alert, reply with a comment starting with
|
Looks like these dependencies are updatable in another way, so this is no longer needed. |
Bumps the minor-and-patch group with 13 updates in the / directory:
7.25.3
7.25.4
18.3.3
18.3.5
2.29.1
2.30.0
6.9.0
6.10.0
7.35.0
7.35.2
5.93.0
5.94.0
5.0.4
5.1.0
0.12.0
0.12.1
1.77.8
1.78.0
1.2.10
1.2.13
2.6.3
2.7.0
1.46.1
1.47.0
2.22.2
2.22.4
Bumps the minor-and-patch group with 2 updates in the /extension directory: tslib and @playwright/test.
Updates
@babel/preset-env
from 7.25.3 to 7.25.4Release notes
Sourced from
@babel/preset-env
's releases.Changelog
Sourced from
@babel/preset-env
's changelog.Commits
cbf124c
v7.25.4b38b027
Update compat data (#16736)55dfde8
Updatebabel-plugin-polyfill-corejs3
(#16715)dba45d3
IgnoredevDependencies
when generatingtsconfig.json
(#16659)Updates
@types/react
from 18.3.3 to 18.3.5Commits
Updates
eslint-plugin-import
from 2.29.1 to 2.30.0Release notes
Sourced from eslint-plugin-import's releases.
... (truncated)
Changelog
Sourced from eslint-plugin-import's changelog.
Commits
18787d3
Bump to 2.30.09902298
[Deps] updateeslint-module-utils
9d194a6
[utils] v2.9.00a58d75
[resolvers/webpack] v0.13.9a3015eb
[Test]namespace
: ensure valid case is actually included8bdb32b
[Test] add explicit marker for trailing whitespace in cases038c26c
[readme] Clarify how to install the plugin32a2b89
[Fix]order
: do not compare first path segment for relative paths (#2682)ee1ea02
[Fix]newline-after-import
: fix considerComments option when require806e3c2
[New] add support for Flat ConfigUpdates
eslint-plugin-jsx-a11y
from 6.9.0 to 6.10.0Changelog
Sourced from eslint-plugin-jsx-a11y's changelog.
Commits
65c9338
v6.10.0912e98c
[Deps] updateaxobject-query
6cd1a70
[New] allow polymorphic linting to be restricteda1ee7f8
[New] addattributes
setting83fd9c4
[New]label-has-associated-control
: add additional error message75147aa
[Deps] unpinaxobject-query
a284cbf
[Tests] switch from jest to tapedeac4fd
[New] add eslint 9 support74d5dec
[Tests] remove duplicate tests05a5e49
[Tests] usenpm audit
instead ofaud
Updates
eslint-plugin-react
from 7.35.0 to 7.35.2Release notes
Sourced from eslint-plugin-react's releases.
... (truncated)
Changelog
Sourced from eslint-plugin-react's changelog.
Commits
4c10849
Update CHANGELOG and bump version45ba6bc
[Fix]jsx-curly-brace-presence
: avoid autofixing attributes with double quo...e538ee9
[Tests]jsx-curly-brace-presence
: clean up formatting5fc0f87
Update CHANGELOG and bump versiona2306e7
[Tests] usenpm audit
instead ofaud
d9c7ef1
[Dev Deps] update@babel/core
,@babel/eslint-parser
,aud
10eb235
[Fix]jsx-curly-brace-presence
: do not trigger on strings containing a quot...0170dbe
[Refactor] addastUtil.isCallExpression
predicate3b6bacc
[Refactor] general cleanup8dc0215
[Refactor] hoist functions to module levelUpdates
webpack
from 5.93.0 to 5.94.0Release notes
Sourced from webpack's releases.
Commits
eabf85d
chore(release): 5.94.0955e057
security: fix DOM clobbering in auto public path9822387
test: fixcbb86ed
test: fix5ac3d7f
fix: unexpected asi generation with sequence expression2411661
security: fix DOM clobbering in auto public pathb8c03d4
fix: unexpected asi generation with sequence expressionf46a03c
revert: do not use heuristic fallback for "module-import"60f1898
fix: do not use heuristic fallback for "module-import"66306aa
Revert "fix: module-import get fallback from externalsPresets"Updates
webpack-dev-server
from 5.0.4 to 5.1.0Release notes
Sourced from webpack-dev-server's releases.
Changelog
Sourced from webpack-dev-server's changelog.
Commits
5ee0d40
chore(release): v5.1.002a1c6d
feat: allow theserver
option to beFunction
(#5275)530db07
chore(deps): bump the dependencies group across 1 directory with 10 updates (...8b341cb
fix: supportdevServer: false
(#5272)06005e7
fix: ipv6 output (#5270)748d420
chore(deps-dev): bump the dependencies group with 2 updates (#5271)c3b532c
fix: check theplatform
property to determinate the target (#5269)6509a3f
feat: http2 support forconnect
andconnect
compatibility frameworks whic...1b3d124
chore(deps): update (#5268)f5f0902
fix: replace default gateway (#5255)Updates
@types/webextension-polyfill
from 0.12.0 to 0.12.1Commits
Updates
sass
from 1.77.8 to 1.78.0Release notes
Sourced from sass's releases.
Changelog
Sourced from sass's changelog.
Commits
90a70ef
Fix failing double check test for sass-parser (#2330)b1d5f98
Backport deprecation API to legacy JS API (#2293)56a4237
Delete unreachabledefault
clause. (#2323)a7f623d
Bump bufbuild/buf-setup-action in /.github/util/initialize (#2319)9f82850
Ignore newunreachable_switch_default
warning. (#2318)798cd7c
Update pubspec.yaml (#2321)2bf3ae0
Fix a comment (#2316)eb6c19e
Initial implementation of a PostCSS-compatible parser JS API (#2304)c3cccef
Bump dartdoc from 8.0.7 to 8.0.8 (#2300)f0a0182
docs: Fix link to custom importer (#2315)Updates
soroswap-router-sdk
from 1.2.10 to 1.2.13Commits
Maintainer changes
This version was pushed to npm by esteblock, a new releaser for soroswap-router-sdk since your current version.
Updates
tslib
from 2.6.3 to 2.7.0Release notes
Sourced from tslib's releases.
Commits
6abc075
Bump version to 2.7.0.227b5d6
Use global 'Iterator.prototype' for downlevel generators (#267)4f2902c
Implement deterministic collapse of 'await' in 'await using' (#262)Updates
@playwright/test
from 1.46.1 to 1.47.0Release notes
Sourced from
@playwright/test
's releases.... (truncated)
Commits
d5943de
cherry-pick(#32475): docs: update browsers version in release notes (#32476)73fdd25
cherry-pick(#32470): feat(chromium): roll to r1134 (#32473)13f4531
chore: mark 1.47 (#32472)0a49c05
chore(test runner): document that --only-changed on CI needs history (#32461)a8139b5
docs: add release notes for 1.47 (#32463)9101283
chore: move 'dev-server' extensibility point to plugin (#32448)255143e
feat(webkit): roll to r2070 (#32451)9a2c60a
chore: identify largest gaps in Bidi API (#32434)a87426e
Update bug.ymlee91bdc
feat(ui-mode): display list of query params in request tab (#32443)Updates
@sentry/webpack-plugin
from 2.22.2 to 2.22.4Release notes
Sourced from
@sentry/webpack-plugin
's releases.Changelog
Sourced from
@sentry/webpack-plugin
's changelog.Commits
dab9336
release: 2.22.461a6fb4
meta: Update changelog for 2.22.47ee1f9f
fix: Allow injection plugins to apply to files with query parameters and frag...687a9f5
feat(react-component-annotate): Handle function body returning a ternary (#598)71e80d9
Merge branch 'release/2.22.3'242dac9
release: 2.22.34b9cea2
meta: Update CHANGELOG for 2.22.3 (#595)