vue-use-web

vue-use-web copied to clipboard

Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Bumps [tar](https://github.com/npm/node-tar) from 4.4.10 to 4.4.19. Commits 9a6faa0 4.4.19 70ef812 drop dirCache for symlink on all platforms 3e35515 4.4.18 52b09e3 fix: prevent path escape using drive-relative paths bb93ba2 fix: reserve...

dependabot[bot]

Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Bumps [tar](https://github.com/npm/node-tar) from 4.4.10 to 4.4.15. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Arbitrary File Creation/Overwrite due to insufficient absolute path sanitization Impact...

dependabot-preview[bot]

Bumps [uglify-js](https://github.com/mishoo/UglifyJS) from 3.9.2 to 3.14.1. Release notes Sourced from uglify-js's releases. v3.14.1 Bug Fixes assignment operator (6a3fe9d1dfd3ec4543dc71b72e990bed2c6022ef) destructuring syntax (9b82f9be9129c98bc02614d15abf957b35778745) function literal (657d525c80e611df9a78812e4b6a35a3eb24d8f4) v3.14.0 Features improve escape analysis on...

dependabot-preview[bot]

Bumps [@testing-library/vue](https://github.com/testing-library/vue-testing-library) from 5.0.4 to 5.8.2. Release notes Sourced from @​testing-library/vue's releases. v5.8.2 5.8.2 (2021-08-01) Bug Fixes types: Remove Router and Vuex dependencies (#246) (9d367e7) v5.8.1 5.8.1 (2021-07-06) Bug Fixes...

dependabot-preview[bot]

Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 14.6.4 to 16.4.10. Commits See full diff in compare view [](https://dependabot.com/compatibility-score/?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=14.6.4&new-version=16.4.10) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot-preview[bot]

Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.4.7 to 1.5.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Path reaversal in url-parse url-parse before 1.5.0 mishandles certain...

dependabot-preview[bot]

Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest) from 24.1.0 to 24.4.0. Release notes Sourced from eslint-plugin-jest's releases. v24.4.0 24.4.0 (2021-07-21) Features create max-nested-describe rule (#845) (8067405) v24.3.7 24.3.7 (2021-07-21) Bug Fixes valid-describe: report on concise-body...

dependabot-preview[bot]

Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.3 to 1.6.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service (ReDOS) A Regular Expression...

dependabot-preview[bot]