badcaller
badcaller copied to clipboard
Bump json5, @nestjs/cli and tsconfig-paths in /api
Bumps json5 to 2.2.3 and updates ancestor dependencies json5, @nestjs/cli and tsconfig-paths. These dependencies need to be updated together.
Updates json5
from 2.2.0 to 2.2.3
Release notes
Sourced from json5's releases.
v2.2.3
- Fix: [email protected] is now the 'latest' release according to npm instead of v1.0.2. (#299)
v2.2.2
- Fix: Properties with the name
__proto__
are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).v2.2.1
- Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)
Changelog
Sourced from json5's changelog.
v2.2.3 [code, diff]
- Fix: [email protected] is now the 'latest' release according to npm instead of v1.0.2. (#299)
v2.2.2 [code, diff]
- Fix: Properties with the name
__proto__
are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).v2.2.1 [code, diff]
- Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)
Commits
c3a7524
2.2.394fd06d
docs: update CHANGELOG for v2.2.33b8cebf
docs(security): use GitHub security advisoriesf0fd9e1
docs: publish a security policy6a91a05
docs(template): bug -> bug report14f8cb1
2.2.210cc7ca
docs: update CHANGELOG for v2.2.27774c10
fix: add proto to objects and arraysedde30a
Readme: slight tweak to intro97286f8
Improve example in readme- Additional commits viewable in compare view
Updates @nestjs/cli
from 8.1.3 to 9.1.8
Release notes
Sourced from @nestjs/cli
's releases.
Release 9.1.8
- Merge pull request #1866 from nestjs/revert-1829-fix-build-assets (4b73b951)
- Revert "fix(): copy all assets on build" (bb8f35d1)
- chore(deps): update dependency release-it to v15.6.0 (4eb8384a)
Release 9.1.7
- Merge pull request #1862 from nestjs/renovate/typescript-4.x (99c2b0a7)
- Merge pull request #1863 from nestjs/renovate/major-angular-cli-monorepo (56679f4c)
- fix(deps): update angular-cli monorepo to v15 (c30acb97)
- fix(deps): update dependency typescript to v4.9.4 (06f3cb4c)
- Merge pull request #1859 from nestjs/renovate/lint-staged-13.x (e296afdc)
- Merge branch 'master' into renovate/lint-staged-13.x (f508eca9)
- Merge pull request #1861 from nestjs/renovate/typescript-eslint-monorepo (4ea99d3e)
- chore(deps): update typescript-eslint monorepo to v5.47.1 (958f414e)
- Merge pull request #1860 from nestjs/renovate/prettier-2.x (f912450a)
- chore(deps): update dependency prettier to v2.8.1 (dd2d20ea)
- Merge pull request #1858 from nestjs/renovate/eslint-8.x (4e1f3fb4)
- Merge pull request #1762 from nestjs/renovate/major-jest-monorepo (61459263)
- chore: resolve conflicts (a0f362bd)
- chore(deps): update dependency lint-staged to v13.1.0 (64af8f84)
- Merge pull request #1857 from nestjs/renovate/commitlint-monorepo (08a25273)
- chore(deps): update dependency eslint to v8.30.0 (a97360b4)
- test: update tsconfig-paths snapshot (2ebcfbd2)
- chore(deps): update commitlint monorepo to v17.3.0 (6b335dc7)
- Merge pull request #1856 from nestjs/renovate/tsconfig-paths-4.x (ad472853)
- fix(deps): update dependency tsconfig-paths to v4.1.1 (56955936)
- Merge pull request #1855 from nestjs/renovate/fork-ts-checker-webpack-plugin-7.x (5b4197f6)
- Merge pull request #1803 from micalevisk/fix-support-package-manager-selection (bd7a59f7)
- Merge pull request #1829 from greg-md/fix-build-assets (b9561640)
- Merge pull request #1854 from nestjs/renovate/ts-loader-9.x (d9ab4ff5)
- fix(deps): update dependency fork-ts-checker-webpack-plugin to v7.2.14 (2a48a284)
- Merge pull request #1847 from alko89/feat/start-optional-args (a23e9220)
- chore(deps): update dependency ts-loader to v9.4.2 (53b9ce73)
- Merge pull request #1786 from nestjs/renovate/angular-cli-monorepo (1deb3d1b)
- chore(deps): update jest monorepo to v29 (d75a5e03)
- Merge pull request #1839 from nestjs/dependabot/npm_and_yarn/decode-uri-component-0.2.2 (802015d4)
- Merge pull request #1853 from nestjs/renovate/release-it-15.x (d173b9a7)
- fix(deps): update angular-cli monorepo to v14.2.10 (e8cf80e3)
- Merge pull request #1852 from nestjs/renovate/node-18.x (228728a8)
- chore(deps): bump decode-uri-component from 0.2.0 to 0.2.2 (70c4dab0)
- chore(deps): update dependency release-it to v15.5.1 (bf00a166)
- Merge pull request #1823 from nestjs/renovate/cimg-node-19.x (9d9aae01)
- chore(deps): update dependency
@types/node
to v18.11.18 (645db30b)- Merge pull request #1851 from nestjs/revert-1802-chore/remove-method-deprecated (51ac4c5d)
- Revert "chore(): remove method deprecated " (29d0d4b8)
- Merge pull request #1850 from nestjs/dependabot/npm_and_yarn/minimatch-3.1.2 (c52de0a7)
- Merge pull request #1787 from nestjs/renovate/cli-table3-0.x (19412cea)
- Merge pull request #1802 from Tony133/chore/remove-method-deprecated (42b57151)
- Update lib/compiler/plugins-loader.ts (6b4bf6e2)
- chore(deps): update node.js to v19 (4cbe638b)
... (truncated)
Commits
9a34021
chore(): release v9.1.84b73b95
Merge pull request #1866 from nestjs/revert-1829-fix-build-assetsbb8f35d
Revert "fix(): copy all assets on build"4eb8384
chore(deps): update dependency release-it to v15.6.0d5c98df
chore(): release v9.1.799c2b0a
Merge pull request #1862 from nestjs/renovate/typescript-4.x56679f4
Merge pull request #1863 from nestjs/renovate/major-angular-cli-monorepoc30acb9
fix(deps): update angular-cli monorepo to v1506f3cb4
fix(deps): update dependency typescript to v4.9.4e296afd
Merge pull request #1859 from nestjs/renovate/lint-staged-13.x- Additional commits viewable in compare view
Updates tsconfig-paths
from 3.11.0 to 4.1.2
Changelog
Sourced from tsconfig-paths's changelog.
[4.1.2] - 2023-01-02
Fixed
- Bump JSON5 dependency to 2.2.2 to fix CVE-2022-46175. See PR #232. Thanks to
@oparisblue
for this PR![4.1.1] - 2022-11-30
Fixed
- Skip stat call / throwing an exception when source files don't exist. See PR #225. Thanks to
@robstolarz
for this PR![4.1.0] - 2022-08-06
- Add support for nested main field selectors #. See PR #218. Thanks to
@aaronadamsCA
for this PR![4.0.0] - 2022-05-02
Changed
- Ignore
--project
/-P
CLI flag when explicit options are passed toregister
. See PR #206.- Tolerate an undefined
baseUrl
compiler option. See PR #208.Added
- Add
cwd
option toregister
function that overrides where thetsconfig.json
search begins. See PR #205.- Add support for
jsconfig.json
. See PR #199. Thanks to@F3n67u
for this PR!- Let
paths
mappings be absolute paths. See PR #184.- Allow
baseUrl
intsconfig.json
to be an absolute path. See PR #174. Thanks to@nwalters512
for this PR![3.14.1] - 2022-03-22
Fixed
- Use minimist 1.2.6 for all depencencies becuase of pollution vulnerability. See PR #197. Thanks to
@gopijaganthan
for this fix![3.14.0] - 2022-03-13
Added
- Support for path mapping starting with
/
. See PR #180, issue #113, and issue #128. Thanks to@benevbright
for this fix![3.13.0] - 2022-03-03
Added
- Include file extension in paths resolved from package.json "main" field. See PR #135 and issue #133. Thanks to
@katywings
for this fix![3.12.0] - 2021-08-24
... (truncated)
Commits
76dab76
v4.1.24a5bfee
Update changelog for 4.1.29721a98
Bump JSON5 dependency to 2.2.2 to fix CVE-2022-46175 (#232)1b71683
v4.1.173fdd59
Update changelog for 4.1.1b732fcf
Skip stat call / throwing when files don't exist (#225)206e49a
v4.1.0e71c964
Update changelog for 4.1.09124aa6
Add support for nested main field selectors (#218)f420039
Explicitly specify minimum Node.js version (#212)- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -
@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language -
@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language -
@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language -
@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.