heroku-buildpack-nodejs
heroku-buildpack-nodejs copied to clipboard
heroku
Heroku's buildpack for Node.js applications.
The buildpack currently makes a request to `semver.herokuapp.com` here: https://github.com/heroku/heroku-buildpack-nodejs/blob/34b2aadbe23cdbac5e6e91d026a49a99c00e7090/lib/failure.sh#L748-L752 There are a few issues with this: 1. The semver.io site is deprecated and will be sunset in the future...
Bumps [terser](https://github.com/terser/terser) from 4.8.0 to 4.8.1. Changelog Sourced from terser's changelog. v4.8.1 (backport) Security fix for RegExps that should not be evaluated (regexp DDOS) Commits See full diff in compare...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
## Describe the bug Using Yarn v2 workspace (**node_modules linker**, not PnP), the build will fail if `heroku-prebuild` is defined in the root `package.json` ## To Reproduce Steps to reproduce...
Bumps [parse-url](https://github.com/IonicaBizau/parse-url) from 6.0.0 to 6.0.2. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.2 to 1.8.0. Commits 181cea6 impr: CallerInfo should print full paths to the terminal (#1201) cf1284f Allow mock expectations to be ordered (#1106) 66eef0e fix: assert.MapSubset (or...
Bumps [got](https://github.com/sindresorhus/got) from 11.8.3 to 11.8.5. Release notes Sourced from got's releases. v11.8.5 Backport security fix https://github.com/sindresorhus/got/commit/861ccd9ac2237df762a9e2beed7edd88c60782dc CVE-2022-33987 https://github.com/sindresorhus/got/compare/v11.8.4...v11.8.5 Commits 5e17bb7 11.8.5 bce8ce7 Backport 861ccd9ac2237df762a9e2beed7edd88c60782dc 8ced192 Fix build 670eb04 11.8.4...
**Is your enhancement request related to a problem? Please describe.** My project uses `yarn workspaces` with a monorepo, and we use Heroku to deploy our API. But just running `yarn...
In #1013 I made some changes to the Go resolve-version source (in `cmd/resolve-version/`), which requires regenerating the checked-in binaries, using the `make build-production` command. However doing this resulted in test...
**Is your enhancement request related to a problem? Please describe.** While the new prune plugin works great on yarn 2/3, it fails on yarn 4: ``` Running 'yarn heroku prune'...
