mobile-native
mobile-native copied to clipboard
Minds
mirror of https://gitlab.com/minds/mobile-native
Bumps [moment-timezone](https://github.com/moment/moment-timezone) from 0.5.33 to 0.5.35. Release notes Sourced from moment-timezone's releases. Release 0.5.34 Updated data to IANA TZDB 2021e Changelog Sourced from moment-timezone's changelog. 0.5.35 2022-08-23 Fix command injection...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [moment](https://github.com/moment/moment) from 2.29.1 to 2.29.4. Changelog Sourced from moment's changelog. 2.29.4 Release Jul 6, 2022 #6015 [bugfix] Fix ReDoS in preprocessRFC2822 regex 2.29.3 Full changelog Release Apr 17, 2022...
Bumps [nanoid](https://github.com/ai/nanoid) from 3.1.22 to 3.3.4. Changelog Sourced from nanoid's changelog. 3.3.4 Fixed --help in CLI (by @Lete114). 3.3.3 Reduced size (by Anton Khlynovskiy). 3.3.2 Fixed enhanced-resolve support. 3.3.1 Reduced...
Bumps [simple-plist](https://github.com/wollardj/simple-plist) from 1.1.1 to 1.3.1. Release notes Sourced from simple-plist's releases. TypeScript This release is a rewrite of the JavaScript code into TypeScript code to add strong typing for...
Bumps [cross-fetch](https://github.com/lquixada/cross-fetch) from 2.2.3 to 2.2.6. Commits bfe5fe2 2.2.6 1a89b66 added caret range to whatwg-fetch. 695a888 removed and disabled package-lock.json. eac6c00 Update away from vulnerable version of node-fetch (#135) 3abdc67...
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...
Bumps [simple-get](https://github.com/feross/simple-get) from 2.8.1 to 2.8.2. Commits 4e156b6 2.8.2 43c272d Bug fix: Thirdparty cookie leak See full diff in compare view Maintainer changes This version was pushed to npm by...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.5 to 1.14.8. Commits 3d81dc3 Release version 1.14.8 of the npm package. 62e546a Drop confidential headers across schemes. 2ede36d Release version 1.14.7 of the npm package. 8b347cb...
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [jmespath](https://github.com/trevorrowe/jmespath.rb) from 1.6.0 to 1.6.1. Release notes Sourced from jmespath's releases. Release v1.6.1 - 2022-03-07 Issue - Use JSON.parse instead of JSON.load. Changelog Sourced from jmespath's changelog. 1.6.1 (2022-03-07)...