react-components

react-components copied to clipboard

Bumps [json5](https://github.com/json5/json5) to 2.2.3 and updates ancestor dependencies [json5](https://github.com/json5/json5), [babelify](https://github.com/babel/babelify) and [gulp-babel](https://github.com/babel/gulp-babel). These dependencies need to be updated together. Updates `json5` from 0.5.1 to 2.2.3 Release notes Sourced from json5's...

dependabot[bot]

Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...

dependabot[bot]

Bumps [engine.io](https://github.com/socketio/engine.io) from 3.2.1 to 6.2.1. Release notes Sourced from engine.io's releases. 6.2.1 :warning: This release contains an important security fix :warning: A malicious client could send a specially crafted...

dependabot[bot]

Hi `watson-developer-cloud/react-components`! This is a one-off automatically generated pull request from LGTM.com :robot:. You might have heard that we’ve integrated LGTM’s underlying CodeQL analysis engine natively into GitHub. The result...

lgtm-com[bot]

Bumps [minimatch](https://github.com/isaacs/minimatch) to 3.0.4 and updates ancestor dependency [gulp](https://github.com/gulpjs/gulp). These dependencies need to be updated together. Updates `minimatch` from 0.2.14 to 3.0.4 Commits e46989a v3.0.4 ddfacbd update brace-expansion 55ed736 update...

dependabot[bot]

Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser) from 3.2.0 to 4.2.1. Release notes Sourced from socket.io-parser's releases. 4.2.1 Bug Fixes check the format of the index of each attachment (b5d0cb7) Links Diff: https://github.com/socketio/socket.io-parser/compare/4.2.0...4.2.1 4.2.0 Features...

dependabot[bot]

Bumps [shell-quote](https://github.com/substack/node-shell-quote) from 1.6.1 to 1.7.3. Release notes Sourced from shell-quote's releases. v1.7.2 Fix a regression introduced in 1.6.3. This reverts the Windows path quoting fix. (144e1c2) v1.7.1 Fix $...

dependabot[bot]

Bumps [prismjs](https://github.com/PrismJS/prism) from 1.15.0 to 1.27.0. Release notes Sourced from prismjs's releases. v1.27.0 Release 1.27.0 v1.26.0 Release 1.26.0 v1.25.0 Release 1.25.0 v1.24.1 Release 1.24.1 v1.24.0 Release 1.24.0 v1.23.0 Release 1.23.0...

dependabot[bot]

Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.5.10 to 1.14.8. Commits 3d81dc3 Release version 1.14.8 of the npm package. 62e546a Drop confidential headers across schemes. 2ede36d Release version 1.14.7 of the npm package. 8b347cb...

dependabot[bot]

Bumps [cached-path-relative](https://github.com/ashaffer/cached-path-relative) from 1.0.1 to 1.1.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]