Bump the npm_and_yarn group across 1 directory with 5 updates#9
Open
dependabot[bot] wants to merge 1 commit into
Open
Bump the npm_and_yarn group across 1 directory with 5 updates#9dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the npm_and_yarn group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [electron-updater](https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater) | `4.2.0` | `6.2.1` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.7.0` | `4.7.7` | | [marked](https://github.com/markedjs/marked) | `0.8.0` | `4.0.10` | | [electron](https://github.com/electron/electron) | `7.1.8` | `22.3.25` | | [xmldom](https://github.com/xmldom/xmldom) | `0.2.1` | `0.6.0` | Updates `electron-updater` from 4.2.0 to 6.2.1 - [Release notes](https://github.com/electron-userland/electron-builder/releases) - [Changelog](https://github.com/electron-userland/electron-builder/blob/master/packages/electron-updater/CHANGELOG.md) - [Commits](https://github.com/electron-userland/electron-builder/commits/electron-updater@6.2.1/packages/electron-updater) Updates `handlebars` from 4.7.0 to 4.7.7 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.7.0...v4.7.7) Updates `marked` from 0.8.0 to 4.0.10 - [Release notes](https://github.com/markedjs/marked/releases) - [Changelog](https://github.com/markedjs/marked/blob/master/.releaserc.json) - [Commits](markedjs/marked@v0.8.0...v4.0.10) Updates `electron` from 7.1.8 to 22.3.25 - [Release notes](https://github.com/electron/electron/releases) - [Changelog](https://github.com/electron/electron/blob/main/docs/breaking-changes.md) - [Commits](electron/electron@v7.1.8...v22.3.25) Updates `xmldom` from 0.2.1 to 0.6.0 - [Release notes](https://github.com/xmldom/xmldom/releases) - [Changelog](https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md) - [Commits](xmldom/xmldom@0.2.1...0.6.0) --- updated-dependencies: - dependency-name: electron-updater dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: handlebars dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: marked dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: electron dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: xmldom dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
This was referenced Jul 9, 2024
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 5 updates in the / directory:
4.2.06.2.14.7.04.7.70.8.04.0.107.1.822.3.250.2.10.6.0Updates
electron-updaterfrom 4.2.0 to 6.2.1Release notes
Sourced from electron-updater's releases.
... (truncated)
Changelog
Sourced from electron-updater's changelog.
... (truncated)
Commits
62d1991chore(deploy): Release (electron-updater@6.2.1) (#8092)e2a181dfix(mac): revert mac differential autoupdate (#8091)cb335ecchore(deploy): Release v24.13.3 (electron-updater@6.2.0) (#8084)79df542feat: add support for differential zip updates on macOS (#7709)8965608chore(deploy): Release v24.13.1 (electron-updater@6.1.9) (#8056)ccbb80dchore: upgrading connected dependencies (typescript 5.3.3 requires higher esl...48603bafix: auto-update powershell script requires reset ofPSModulePath(#8051)fc13810chore(deploy): Release v24.11.0 (electron-updater@6.1.8) (#7954)03c9451feat(nsis): add option to disable differential download (#7950)061d729chore(docs): exporting more things to API docs (#7898)Maintainer changes
This version was pushed to npm by onegoldfishh, a new releaser for electron-updater since your current version.
Updates
handlebarsfrom 4.7.0 to 4.7.7Changelog
Sourced from handlebars's changelog.
... (truncated)
Commits
a9a8e40v4.7.7e66aed5Update release notes7d4d170disable IE in Saucelabs testseb860c0fix weird error in integration testsb6d3de7fix: check prototype property access in strict-mode (#1736)f058970fix: escape property names in compat mode (#1736)77825f8refator: In spec tests, use expectTemplate over equals and shouldThrow (#1683)3789a30chore: start testing on Node.js 12 and 13e6ad93ev4.7.62bf4fc6Update release notesUpdates
markedfrom 0.8.0 to 4.0.10Release notes
Sourced from marked's releases.
... (truncated)
Commits
ae01170chore(release): 4.0.10 [skip ci]fceda57🗜️ build [skip ci]8f80657fix(security): fix redos vulnerabilitiesc4a3ccdMerge pull request from GHSA-rrrm-qjm4-v8hfd7212a6chore(deps-dev): Bump jasmine from 4.0.0 to 4.0.1 (#2352)5a84db5chore(deps-dev): Bump rollup from 2.62.0 to 2.63.0 (#2350)2bc67a5chore(deps-dev): Bump markdown-it from 12.3.0 to 12.3.2 (#2351)98996b8chore(deps-dev): Bump@babel/preset-envfrom 7.16.5 to 7.16.7 (#2353)ebc2c95chore(deps-dev): Bump highlight.js from 11.3.1 to 11.4.0 (#2354)e5171a9chore(release): 4.0.9 [skip ci]Updates
electronfrom 7.1.8 to 22.3.25Changelog
Sourced from electron's changelog.
... (truncated)
Commits
1c1c132chore: cherry-pick 3fbd1dca6a4d from libvpx (#40026)d892c2bbuild: fixup autoninja (#39899)6132e80build: run on circle hosts for forks (#39865)a953199build: use aks backed runners for linux builds (#39838)056eacfchore: cherry-pick b2eab7500a18 from chromium (#39827)5f8ef81fix: ensure app load is limited to real asar files when appropriate (#39811)4995c9echore: cherry-pick 1 changes from Release-3-M116 (#39758)e29cdacbuild: fix depot_tools patch application (#39751)b58903dchore: cherry-pick 1 changes from Release-2-M116 (#39689)33f9dcechore: cherry-pick 2 changes from Release-1-M116 (#39648)Updates
xmldomfrom 0.2.1 to 0.6.0Release notes
Sourced from xmldom's releases.
... (truncated)
Changelog
Sourced from xmldom's changelog.
... (truncated)
Commits
c80a161xmldon version 0.6.0bc36efdchore: regenerate package-lock.json8a92704Update eslint -> ^7.23.0 - devDependencies (#202)b12106eUpdate@stryker-mutator/core-> ^4.5.1 - devDependencies (#192)af4642edocs: Update Changelog (#197)5869d76test(stryker): Replace line numbers by error index (#201)a681852fix: Escape<when serializing attribute values (#199)bb12247Update eslint-config-prettier -> 8 - devDependencies (#187)48c51b3Update eslint -> ^7.22.0 - devDependencies (#185)82b0481refactor!: Avoid empty namespace value like xmlns:ds="" (#168)Maintainer changes
This version was pushed to npm by karfau, a new releaser for xmldom since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.