todo-nodejs-api

todo-nodejs-api copied to clipboard

Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) from 8.5.1 to 9.0.0. Changelog Sourced from jsonwebtoken's changelog. 9.0.0 - 2022-12-21 Breaking changes: See Migration from v8 to v9 Breaking changes Removed support for Node versions 11...

dependabot[bot]

Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.17.3. Release notes Sourced from express's releases. 4.17.3 deps: accepts@~1.3.8 deps: mime-types@~2.1.34 deps: [email protected] deps: [email protected] deps: [email protected] deps: [email protected] deps: [email protected] deps: [email protected] deps:...

dependabot[bot]

Bumps [qs](https://github.com/ljharb/qs) to 6.11.0 and updates ancestor dependencies [qs](https://github.com/ljharb/qs), [body-parser](https://github.com/expressjs/body-parser) and [express](https://github.com/expressjs/express). These dependencies need to be updated together. Updates `qs` from 6.7.0 to 6.11.0 Changelog Sourced from qs's changelog....

dependabot[bot]

Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...

dependabot[bot]

Bumps [validator](https://github.com/validatorjs/validator.js) from 13.1.1 to 13.7.0. Release notes Sourced from validator's releases. 13.7.0 13.7.0 New Features #1706 isISO4217, currency code validator @​jpaya17 Fixes and Enhancements #1647 isFQDN: add allow_wildcard option...

dependabot[bot]

Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2. Release notes Sourced from glob-parent's releases. v5.1.2 Bug Fixes eliminate ReDoS (#36) (f923116) Changelog Sourced from glob-parent's changelog. 5.1.2 (2021-03-06) Bug Fixes eliminate ReDoS...

dependabot[bot]

Bumps [normalize-url](https://github.com/sindresorhus/normalize-url) from 4.5.0 to 4.5.1. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...

dependabot[bot]

添加了Dockerfile 献丑

1

一开始跑不通，后来改了一部分，添加了dockerfile文件

facethesunsea

Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8. Commits a2c5da8 1.3.8 af5c6bb Do not use Object.create(null) 8b648a1 don't test where our devdeps don't even work c74c8af 1.3.7 024b8b5 update deps, add linting...

dependabot[bot]