DeepTrust

DeepTrust copied to clipboard

Bumps [minimist](https://github.com/minimistjs/minimist) to 1.2.8 and updates ancestor dependencies [minimist](https://github.com/minimistjs/minimist), [npm](https://github.com/npm/cli) and [mkdirp](https://github.com/isaacs/node-mkdirp). These dependencies need to be updated together. Updates `minimist` from 1.2.0 to 1.2.8 Changelog Sourced from minimist's changelog....

dependabot[bot]

Removes [global-modules-path](https://github.com/rosen-vladimirov/global-modules-path). It's no longer used after updating ancestor dependency [webpack-cli](https://github.com/webpack/webpack-cli). These dependencies need to be updated together. Removes `global-modules-path` Updates `webpack-cli` from 3.1.2 to 3.3.12 Changelog Sourced from webpack-cli's...

dependabot[bot]

Bumps [json5](https://github.com/json5/json5) and [loader-utils](https://github.com/webpack/loader-utils). These dependencies needed to be updated together. Updates `json5` from 0.5.1 to 1.0.2 Release notes Sourced from json5's releases. v1.0.2 Fix: Properties with the name __proto__...

dependabot[bot]

Bumps [express](https://github.com/expressjs/express) from 4.16.4 to 4.18.2. Release notes Sourced from express's releases. 4.18.2 Fix regression routing a large stack in a single route deps: [email protected] deps: [email protected] perf: remove unnecessary...

dependabot[bot]

Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...

dependabot[bot]

Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.1.0 to 1.4.2. Release notes Sourced from loader-utils's releases. v1.4.2 1.4.2 (2022-11-11) Bug Fixes ReDoS problem (#226) (17cbf8f) v1.4.1 1.4.1 (2022-11-07) Bug Fixes security problem (#220) (4504e34)...

dependabot[bot]

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...

dependabot[bot]

Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.4.3 to 1.5.10. Commits 8cd4c6c 1.5.10 ce7a01f [fix] Improve handling of empty port 0071490 [doc] Update JSDoc comment a7044e3 [minor] Use more descriptive variable name d547792 [security]...

dependabot[bot]

Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.5.9 to 1.14.8. Commits 3d81dc3 Release version 1.14.8 of the npm package. 62e546a Drop confidential headers across schemes. 2ede36d Release version 1.14.7 of the npm package. 8b347cb...

dependabot[bot]

Bumps [node-sass](https://github.com/sass/node-sass) from 4.9.4 to 7.0.0. Release notes Sourced from node-sass's releases. v7.0.0 Breaking changes Drop support for Node 15 (@​nschonni) Set rejectUnauthorized to true by default (@​scott-ut, #3149) Features...

dependabot[bot]