QMUI_Web
QMUI_Web copied to clipboard
Tencent
An efficient front-end framework for developers building UI on the web.
Bumps [copy-props](https://github.com/gulpjs/copy-props) from 2.0.4 to 2.0.5. Release notes Sourced from copy-props's releases. 2.0.5 Fix Avoids prototype pollution (#7) Doc Update license years. Transfer ownership to Gulp Team (#6) Build Update...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.0 to 1.14.8. Commits 3d81dc3 Release version 1.14.8 of the npm package. 62e546a Drop confidential headers across schemes. 2ede36d Release version 1.14.7 of the npm package. 8b347cb...
Bumps [node-sass](https://github.com/sass/node-sass) from 4.12.0 to 7.0.0. Release notes Sourced from node-sass's releases. v7.0.0 Breaking changes Drop support for Node 15 (@nschonni) Set rejectUnauthorized to true by default (@scott-ut, #3149) Features...
Bumps [set-value](https://github.com/jonschlinkert/set-value) from 3.0.2 to 4.0.1. Commits 7cf8073 4.0.1 17ac6b7 lint b057b1b Merge pull request #33 from ready-research/ready-research-Prototype-Pollution 383b72d Security Fix for Prototype Pollution 010f017 4.0.0 772e8f4 Merge pull request...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [ws](https://github.com/websockets/ws) from 7.4.5 to 7.4.6. Release notes Sourced from ws's releases. 7.4.6 Bug fixes Fixed a ReDoS vulnerability (00c425ec). A specially crafted value of the Sec-Websocket-Protocol header could be...
Bumps [browserslist](https://github.com/browserslist/browserslist) from 4.7.0 to 4.16.6. Changelog Sourced from browserslist's changelog. 4.16.6 Fixed npm-shrinkwrap.json support in --update-db (by Geoff Newman). 4.16.5 Fixed unsafe RegExp (by Yeting Li). 4.16.4 Fixed unsafe...
Bumps [json5](https://github.com/json5/json5) from 2.1.1 to 2.2.3. Release notes Sourced from json5's releases. v2.2.3 Fix: [email protected] is now the 'latest' release according to npm instead of v1.0.2. (#299) v2.2.2 Fix: Properties...
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...
Bumps [browserslist](https://github.com/browserslist/browserslist) from 4.7.0 to 4.21.4. Changelog Sourced from browserslist's changelog. 4.21.4 Updated Firefox ESR. 4.21.3 Improved unknown region and unknown feature error (by Alexander Chabin). 4.21.2 Updated Firefox ESR....