fontoxpath
fontoxpath copied to clipboard
FontoXML
Bump vm2 from 3.9.10 to 3.9.11 in /demo
Bumps vm2 from 3.9.10 to 3.9.11.
Release notes
Sourced from vm2's releases.
3.9.11
New Features
https://github.com/patriksimek/vm2/commit/58478a58c6f4af3c54faf4117ed5ab72d2cc8cd5: Add option
require.strictto allow to load required modules in non strict mode.Fixes
https://github.com/patriksimek/vm2/commit/d9a7f3cc995d3d861e1380eafb886cb3c5e2b873: Security fix.
Changelog
Sourced from vm2's changelog.
v3.9.11 (2022-08-28)
[new] Add option
require.strictto allow to load required modules in non strict mode.
[fix] Security fix.
Commits
392f126Merge pull request #469 from XmiliaH/release-3.9.11d6379e1Merge pull request #468 from XmiliaH/fix-46758478a5Merge pull request #448 from XmiliaH/fix-4426b0b71aMerge pull request #457 from XmiliaH/fix-45606f8ef0Finish release 3.9.11d9a7f3cFix 467b8314b0Allow false for require optioncb647c0Clear up wordinga34b167Add documentation67c3fd4Allow to override strict mode setting for modules- See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}
BundleMon
Unchanged files (2)
| Status | Path | Size | Limits |
|---|---|---|---|
| :white_check_mark: | fontoxpath.esm.js |
82.31KB | - |
| :white_check_mark: | fontoxpath.js |
82.19KB | - |
No change in files bundle size
Final result: :white_check_mark:
View report in BundleMon website ➡️
Current branch size history | Target branch size history
![bundlemon[bot] avatar](https://avatars.githubusercontent.com/in/71110?v=4 "Published by a pub.dev verified publisher"){kind=small}
Coverage remained the same at 91.192% when pulling d54e3f7f7a3ab8e70111680b9a98a7ad26b32a60 on dependabot/npm_and_yarn/demo/vm2-3.9.11 into b295b471181b7b9552c346d442fe1a278088aa98 on master.
Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.
Looks like vm2 is no longer a dependency, so this is no longer needed.