graphql-compose-json

graphql-compose-json copied to clipboard

build(deps-dev): bump semantic-release from 17.4.3 to 19.0.3

[]

Bumps [semantic-release](https://github.com/semantic-release/semantic-release) from 17.4.3 to 19.0.3. Release notes Sourced from semantic-release's releases. v19.0.3 19.0.3 (2022-06-09) Bug Fixes log-repo: use the original form of the repo url to remove the need...

dependabot[bot]

build(deps): bump semver-regex from 3.1.2 to 3.1.4

[]

Bumps [semver-regex](https://github.com/sindresorhus/semver-regex) from 3.1.2 to 3.1.4. Release notes Sourced from semver-regex's releases. v3.1.4 Backport of ReDoS fix https://github.com/sindresorhus/semver-regex/commit/7712ba564d40da101cf2b2b33e6a910d9f2f57f4 Commits 906cf40 3.1.4 7712ba5 Fix ReDoS vulnerability backport a0203db Fix ReDoS vulnerability...

dependabot[bot]

build(deps-dev): bump node-fetch from 2.6.1 to 2.6.7

[{"_id":"636389feea01ec786e82a5b9","body":"# [Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/49?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) Report\n> Merging [#49](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/49?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) (52bd9ec) into [master](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/commit\/8dca87609a13a1dcf56922f7193d6bfa2aa58a48?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) (8dca876) will **not change** coverage.\n> The diff coverage is `n\/a`.\n\n```diff\n@@ Coverage Diff @@\n## master #49 +\/- ##\n=======================================\n Coverage 85.34% 85.34% \n=======================================\n Files 6 6 \n Lines 116 116 \n Branches 38 38 \n=======================================\n Hits 99 99 \n Misses 17 17 \n```\n\n\n\n------\n\n[Continue to review full report at Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/49?src=pr&el=continue&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None).\n> **Legend** - [Click here to learn more](https:\/\/docs.codecov.io\/docs\/codecov-delta?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None)\n> `\u0394 = absolute <relative> (impact)`, `\u00f8 = not affected`, `? = missing data`\n> Powered by [Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/49?src=pr&el=footer&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None). Last update [8dca876...52bd9ec](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/49?src=pr&el=lastupdated&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None). Read the [comment docs](https:\/\/docs.codecov.io\/docs\/pull-request-comments?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None).\n","issue_id":1662109339781,"origin_id":1127966847,"user_origin_id":65553080,"create_time":1652723678,"update_time":1652723678,"id":1667467774300,"updated_at":"2022-11-03T09:29:34.300000Z","created_at":"2022-11-03T09:29:34.300000Z"}]

Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.1 to 2.6.7. Release notes Sourced from node-fetch's releases. v2.6.7 Security patch release Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th...

dependabot[bot]

build(deps): bump trim-off-newlines from 1.0.1 to 1.0.3

[{"_id":"636399033056137e26651884","body":"# [Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/48?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) Report\n> Merging [#48](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/48?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) (ee03fc5) into [master](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/commit\/8dca87609a13a1dcf56922f7193d6bfa2aa58a48?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) (8dca876) will **not change** coverage.\n> The diff coverage is `n\/a`.\n\n```diff\n@@ Coverage Diff @@\n## master #48 +\/- ##\n=======================================\n Coverage 85.34% 85.34% \n=======================================\n Files 6 6 \n Lines 116 116 \n Branches 38 38 \n=======================================\n Hits 99 99 \n Misses 17 17 \n```\n\n\n\n------\n\n[Continue to review full report at Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/48?src=pr&el=continue&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None).\n> **Legend** - [Click here to learn more](https:\/\/docs.codecov.io\/docs\/codecov-delta?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None)\n> `\u0394 = absolute <relative> (impact)`, `\u00f8 = not affected`, `? = missing data`\n> Powered by [Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/48?src=pr&el=footer&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None). Last update [8dca876...ee03fc5](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/48?src=pr&el=lastupdated&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None). Read the [comment docs](https:\/\/docs.codecov.io\/docs\/pull-request-comments?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None).\n","issue_id":1662109339783,"origin_id":1127966686,"user_origin_id":65553080,"create_time":1652723667,"update_time":1652723667,"id":1667471619552,"updated_at":"2022-11-03T10:33:39.551000Z","created_at":"2022-11-03T10:33:39.551000Z"}]

Bumps [trim-off-newlines](https://github.com/stevemao/trim-off-newlines) from 1.0.1 to 1.0.3. Commits c3b28d3 1.0.3 6226c95 Merge pull request #4 from Trott/fix-it-again c77691d fix: remediate ReDOS further 76ca93c chore: pin mocha to version that works with...

dependabot[bot]

build(deps): bump minimist from 1.2.5 to 1.2.6

[{"_id":"63638b508041c95dfb1cdfd3","body":"# [Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/47?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) Report\n> Merging [#47](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/47?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) (cea099f) into [master](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/commit\/8dca87609a13a1dcf56922f7193d6bfa2aa58a48?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) (8dca876) will **not change** coverage.\n> The diff coverage is `n\/a`.\n\n```diff\n@@ Coverage Diff @@\n## master #47 +\/- ##\n=======================================\n Coverage 85.34% 85.34% \n=======================================\n Files 6 6 \n Lines 116 116 \n Branches 38 38 \n=======================================\n Hits 99 99 \n Misses 17 17 \n```\n\n\n\n------\n\n[Continue to review full report at Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/47?src=pr&el=continue&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None).\n> **Legend** - [Click here to learn more](https:\/\/docs.codecov.io\/docs\/codecov-delta?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None)\n> `\u0394 = absolute <relative> (impact)`, `\u00f8 = not affected`, `? = missing data`\n> Powered by [Codecov](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/47?src=pr&el=footer&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None). Last update [8dca876...cea099f](https:\/\/codecov.io\/gh\/graphql-compose\/graphql-compose-json\/pull\/47?src=pr&el=lastupdated&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None). Read the [comment docs](https:\/\/docs.codecov.io\/docs\/pull-request-comments?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None).\n","issue_id":1662109339785,"origin_id":1094175901,"user_origin_id":65553080,"create_time":1649566261,"update_time":1649566261,"id":1667468112015,"updated_at":"2022-11-03T09:35:12.015000Z","created_at":"2022-11-03T09:35:12.015000Z"}]

Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...

dependabot[bot]

build(deps): bump tmpl from 1.0.4 to 1.0.5

[]

Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

build(deps): bump tar from 6.1.0 to 6.1.11

[]

Bumps [tar](https://github.com/npm/node-tar) from 6.1.0 to 6.1.11. Commits e573aee 6.1.11 edb8e9a fix: perf regression on hot string munging path a9d9b05 chore(test): Avoid spurious failures packing node_modules/.cache 24b8bda fix(test): use posix path...

dependabot[bot]

build(deps): bump path-parse from 1.0.6 to 1.0.7

[]

Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

build(deps): bump normalize-url from 6.0.0 to 6.0.1

[]

Bumps [normalize-url](https://github.com/sindresorhus/normalize-url) from 6.0.0 to 6.0.1. Release notes Sourced from normalize-url's releases. v6.0.1 Fix ReDoS vulnerability for data URLs b1fdb51 CVE-2021-33502 Also fixed for v5 in 5.3.1 and for v4...

dependabot[bot]

build(deps): bump trim-newlines from 3.0.0 to 3.0.1

[]

Bumps [trim-newlines](https://github.com/sindresorhus/trim-newlines) from 3.0.0 to 3.0.1. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]