rocketadmin icon indicating copy to clipboard operation
rocketadmin copied to clipboard

Published 20 hours ago verified publisher icon rocket-admin

Bump the npm_and_yarn group across 1 directory with 6 updates

Open dependabot[bot] opened this issue 10 months ago • 2 comments

Bumps the npm_and_yarn group with 6 updates in the /frontend directory:

Package From To
@angular/core 15.2.10 16.0.0
express 4.18.2 4.19.2
follow-redirects 1.15.4 1.15.6
ip 2.0.0 2.0.1
tar 6.1.13 6.2.1
webpack-dev-middleware 5.3.3 5.3.4

Updates @angular/core from 15.2.10 to 16.0.0

Release notes

Sourced from @​angular/core's releases.

v16.0.0

16.0.0 (2023-05-03)

Commit Description
refactor - 48aa96ea13 remove Angular Compatibility Compiler (ngcc) (#49101)
refactor - 2703fd6260 remove deprecated EventManager method addGlobalEventListener (#49645)

common

Commit Description
feat - 5dce2a5a3a Provide MockPlatformLocation by default in BrowserTestingModule (#49137)
fix - d47fef72cb strict type checking for ngtemplateoutlet (#48374)
refactor - c41a21658c remove deprecated XhrFactory export from http entrypoint (#49251)

compiler

Commit Description
feat - 1a6ca68154 add support for compile-time required inputs (#49304)
feat - 13dd614cd1 add support for compile-time required inputs (#49453)
feat - 8f539c11f4 add support for compile-time required inputs (#49468)
feat - 79cdfeb392 drop support for TypeScript 4.8 (#49155)
feat - 1407a9aeaf support multiple configuration files in extends (#49125)
fix - 9de1e9da8f incorrectly matching directives on attribute bindings (#49713)
fix - 6623810e4d Produce diagnositc if directive used in host binding is not exported (#49527)

compiler-cli

Commit Description
feat - 03d1d00ad9 Add an extended diagnostic for nSkipHydration (#49512)
fix - ed817e32fe Catch FatalDiagnosticError during template type checking (#49527)
perf - 49fe974501 optimize NgModule emit for standalone components (#49837)

core

Commit Description
feat - 89d291c367 add assertInInjectionContext (#49529)
feat - 4e9531f777 add mergeApplicationConfig method (#49253)
feat - d7d6514add Add ability to configure NgZone in bootstrapApplication (#49557)
feat - bc5ddabdcb add Angular Signals to the public API (#49150)
feat - 17e9862653 add API to provide CSP nonce for inline stylesheets (#49444)
feat - 605c536420 add migration to remove moduleId references (#49496)
feat - 99d874fe3b add support for TypeScript 5.0 (#49126)
feat - d1617c449d allow removal of previously registered DestroyRef callbacks (#49493)
feat - b2327f4df1 Allow typeguards on QueryList.filter (#48042)
feat - 061f3d1086 Drop public factories property for IterableDiffers : Breaking change (#49598)
feat - fdf61974d1 drop support for zone.js versions <=0.12.0 (#49331)
feat - 9c5fd50de4 effects can optionally return a cleanup function (#49625)
feat - c024574f46 expose makeStateKey, StateKey and TransferState (#49563)
feat - a5f1737d1c expose onDestroy on ApplicationRef (#49677)
feat - e883198460 implement takeUntilDestroyed in rxjs-interop (#49154)
feat - 0814f20594 introduce runInInjectionContext and deprecate prior version (#49396)
feat - 0f5c8003cc introduce concept of DestroyRef (#49158)

... (truncated)

Changelog

Sourced from @​angular/core's changelog.

15.2.10 (2023-10-04)

service-worker

Commit Type Description
9fe08968b8 fix throw a critical error when handleFetch fail (#51989)

16.2.7 (2023-09-27)

core

Commit Type Description
39a3e34e03 fix allow toSignal calls in reactive context (#51831) (#51892)

service-worker

Commit Type Description
c3d901eacf fix throw a critical error when handleFetch fails (#51885)

16.2.6 (2023-09-20)

core

Commit Type Description
82712f80df fix ensure a consumer drops all its stale producers (#51722) (#51772)

16.2.5 (2023-09-13)

16.2.4 (2023-09-06)

16.2.3 (2023-08-30)

animations

Commit Type Description
04c6574280 fix remove unnecessary escaping in regex expressions (#51554)

compiler-cli

Commit Type Description
dbd761f528 fix correct incomplete escaping (#51557)

... (truncated)

Commits
  • b381ad7 docs(docs-infra): Remove unused annotation template (#50114)
  • d80a6fc docs: Add rxjs-interop and reactivity primitives APIs (#50066)
  • d5fb3ad refactor(core): finalize rxjs-interop options & docs (#50071)
  • 9bca3fb test(common): test rounding problems in image distortion detection (#49889)
  • 7baa156 test(common): show ngOptimizedImage distortion detection failure on padded im...
  • e7ed4ab refactor(core): separate render and change detection instructions (#50017)
  • 2505018 refactor(core): Rename 'transplanted' view refresh flag and counters to be ge...
  • a152940 refactor(core): Error code for Component Id collision (#49986)
  • d26d410 refactor(core): Use bit shift operator instead of manually writing numbers (#...
  • 4240f4a refactor(core): improve error message when dom node is not found (#49977)
  • Additional commits viewable in compare view

Updates express from 4.18.2 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2

4.19.1

What's Changed

Full Changelog: https://github.com/expressjs/express/compare/4.19.0...4.19.1

4.19.0

What's Changed

New Contributors

Full Changelog: https://github.com/expressjs/express/compare/4.18.3...4.19.0

4.18.3

Main Changes

Other Changes

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

  • Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

  • Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

4.18.3 / 2024-02-29

Commits
  • 04bc627 4.19.2
  • da4d763 Improved fix for open redirect allow list bypass
  • 4f0f6cc 4.19.1
  • a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
  • a1fa90f fixed un-edited version in history.md for 4.19.0
  • 11f2b1d build: fix build due to inconsistent supertest behavior in older versions
  • 084e365 4.19.0
  • 0867302 Prevent open redirect allow list bypass due to encodeurl
  • 567c9c6 Add note on how to update docs for new release (#5541)
  • 69a4cf2 deps: [email protected]
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.


Updates follow-redirects from 1.15.4 to 1.15.6

Commits
  • 35a517c Release version 1.15.6 of the npm package.
  • c4f847f Drop Proxy-Authorization across hosts.
  • 8526b4a Use GitHub for disclosure.
  • b1677ce Release version 1.15.5 of the npm package.
  • d8914f7 Preserve fragment in responseUrl.
  • See full diff in compare view

Updates ip from 2.0.0 to 2.0.1

Commits

Updates tar from 6.1.13 to 6.2.1

Changelog

Sourced from tar's changelog.

Changelog

7.0

  • Rewrite in TypeScript, provide ESM and CommonJS hybrid interface
  • Add tree-shake friendly exports, like import('tar/create') and import('tar/read-entry') to get individual functions or classes.
  • Add chmod option that defaults to false, and deprecate noChmod. That is, reverse the default option regarding explicitly setting file system modes to match tar entry settings.
  • Add processUmask option to avoid having to call process.umask() when chmod: true (or noChmod: false) is set.

6.2

  • Add support for brotli compression
  • Add maxDepth option to prevent extraction into excessively deep folders.

6.1

6.0

  • Drop support for node 6 and 8
  • fix symlinks and hardlinks on windows being packed with \-style path targets

5.0

  • Address unpack race conditions using path reservations
  • Change large-numbers errors from TypeError to Error
  • Add TAR_* error codes
  • Raise TAR_BAD_ARCHIVE warning/error when there are no valid entries found in an archive
  • do not treat ignored entries as an invalid archive
  • drop support for node v4
  • unpack: conditionally use a file mapping to write files on Windows
  • Set more portable 'mode' value in portable mode
  • Set portable gzip option in portable mode

... (truncated)

Commits

Updates webpack-dev-middleware from 5.3.3 to 5.3.4

Release notes

Sourced from webpack-dev-middleware's releases.

v5.3.4

5.3.4 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1779) (189c4ac)
Changelog

Sourced from webpack-dev-middleware's changelog.

5.3.4 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1779) (189c4ac)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.

dependabot[bot] avatar Apr 16 '24 11:04 dependabot[bot]