piping-draw-web

piping-draw-web copied to clipboard

Bumps [tar](https://github.com/npm/node-tar) from 4.4.8 to 4.4.15. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Arbitrary File Creation/Overwrite due to insufficient absolute path sanitization Impact...

dependabot-preview[bot]

Bumps [sass](https://github.com/sass/dart-sass) from 1.23.0 to 1.37.2. Release notes Sourced from sass's releases. Dart Sass 1.37.2 To install Sass 1.37.2, download one of the packages below and add it to your...

dependabot-preview[bot]

Bumps [vuetify](https://github.com/vuetifyjs/vuetify/tree/HEAD/packages/vuetify) from 2.1.5 to 2.5.8. Release notes Sourced from vuetify's releases. v2.5.8 🔨 Bug Fixes VAppBar: increase elevation override specificity (0aa692a), closes #13982 VDataTable: selection bug when using numbers...

dependabot-preview[bot]

Bumps [core-js](https://github.com/zloirock/core-js) from 3.3.2 to 3.16.0. Changelog Sourced from core-js's changelog. 3.16.0 - 2021.07.30 Array find from last proposal moved to the stage 3, July 2021 TC39 meeting Array filtering...

dependabot-preview[bot]

Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.4.7 to 1.5.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Path reaversal in url-parse url-parse before 1.5.0 mishandles certain...

dependabot-preview[bot]

Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.3 to 1.6.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service (ReDOS) A Regular Expression...

dependabot-preview[bot]

Bumps [typescript](https://github.com/Microsoft/TypeScript) from 3.6.4 to 4.3.5. Release notes Sourced from typescript's releases. TypeScript 4.3.5 This release contains a bug fix for auto-imports on JSX components in the TypeScript language service....

dependabot-preview[bot]

Upgrade to GitHub-native Dependabot

1

_Dependabot Preview will be shut down on August 3rd, 2021. In order to keep getting Dependabot updates, please merge this PR and migrate to GitHub-native Dependabot before then._ Dependabot has...

dependabot-preview[bot]

Bumps [postcss](https://github.com/postcss/postcss) from 7.0.18 to 7.0.36. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in postcss The npm...

dependabot-preview[bot]

Bumps [vue](https://github.com/vuejs/vue) and [vue-template-compiler](https://github.com/vuejs/vue). These dependencies needed to be updated together. Updates `vue` from 2.6.10 to 2.6.14 Release notes Sourced from vue's releases. v2.6.14 Bug Fixes types: async Component types...

dependabot-preview[bot]