steedos-app-purchase
steedos-app-purchase copied to clipboard
steedos
开源采购管理系统,基于华炎魔方开发,多租户,云服务。
Bumps [cookiejar](https://github.com/bmeck/node-cookiejar) from 2.1.2 to 2.1.4. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [qs](https://github.com/ljharb/qs) from 6.4.0 to 6.4.1. Changelog Sourced from qs's changelog. 6.4.1 [Fix] parse: ignore __proto__ keys (#428) [Fix] fix for an impossible situation: when the formatter is called with...
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...
Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser) from 3.3.0 to 3.3.3. Release notes Sourced from socket.io-parser's releases. 3.3.2 Bug Fixes prevent DoS (OOM) via massive packets (#95) (89197a0) Links Diff: https://github.com/Automattic/socket.io-parser/compare/3.3.1...3.3.2 3.3.1 Links Diff: https://github.com/socketio/socket.io-parser/compare/3.3.0...3.3.1...
Bumps [jszip](https://github.com/Stuk/jszip) from 3.4.0 to 3.10.1. Changelog Sourced from jszip's changelog. v3.10.1 2022-08-02 Add sponsorship files. If you appreciate the time spent maintaining JSZip then I would really appreciate your...
Bumps [moment-timezone](https://github.com/moment/moment-timezone) from 0.5.31 to 0.5.37. Release notes Sourced from moment-timezone's releases. Release 0.5.34 Updated data to IANA TZDB 2021e Release 0.5.33 Updated data to IANA TZDB 2021a Release 0.5.32...
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...
Bumps [pathval](https://github.com/chaijs/pathval) from 1.1.0 to 1.1.1. Release notes Sourced from pathval's releases. v1.1.1 Fixes a security issue around prototype pollution. Commits db6c3e3 chore: v1.1.1 7859e0e Merge pull request #60 from...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...