chore(deps): bump flatted from 3.2.7 to 3.4.1 in /frontend#3921
chore(deps): bump flatted from 3.2.7 to 3.4.1 in /frontend#3921dependabot[bot] wants to merge 1 commit intomainfrom
Conversation
Bumps [flatted](https://github.com/WebReflection/flatted) from 3.2.7 to 3.4.1. - [Commits](WebReflection/flatted@v3.2.7...v3.4.1) --- updated-dependencies: - dependency-name: flatted dependency-version: 3.4.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
dependencies
|
|
|
Your PR title doesn't contain a Jira issue key. Consider adding it for better traceability. Example:
Projects:
Please add a Jira issue key to your PR title. |
2 similar comments
|
Your PR title doesn't contain a Jira issue key. Consider adding it for better traceability. Example:
Projects:
Please add a Jira issue key to your PR title. |
|
Your PR title doesn't contain a Jira issue key. Consider adding it for better traceability. Example:
Projects:
Please add a Jira issue key to your PR title. |
1 participant
Bumps flatted from 3.2.7 to 3.4.1.
Commits
2a02dce3.4.1fba4e8fMerge pull request #89 from WebReflection/python-fix5fe8648added "when in Rome" also a test for PHP53517adsome minor improvementb3e2a0cFixing recursion issue in Python tooc4b46dbAdd SECURITY.md for security policy and reportingf86d071Create dependabot.yml for version updatesd3418c73.4.07eb65d8Merge pull request #88 from WebReflection/avoid-recusrion7774aaeAvoid recursion on parse due possible shenanigansDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.
Note
Low Risk
Low risk dependency-only change limited to
frontend/package-lock.json, with no application code modifications. Potential risk is limited to subtle serialization behavior differences from theflattedpatch/minor update.Overview
Bumps the
flatteddependency in the frontend from3.2.7to3.4.1viapackage-lock.json.Also cleans up lockfile metadata by removing some optional/peer-resolved entries (e.g.,
@types/node/undici-typesandrollup) and updatingflatted’s recorded license/integrity details.Written by Cursor Bugbot for commit 5b73b08. This will update automatically on new commits. Configure here.