New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump ajv, @angular/cli and har-validator #32
Closed
dependabot
wants to merge
1
commit into
master
from
dependabot/npm_and_yarn/ajv-and-angular/cli-and-har-validator-8.11.0
Closed
Bump ajv, @angular/cli and har-validator #32
dependabot
wants to merge
1
commit into
master
from
dependabot/npm_and_yarn/ajv-and-angular/cli-and-har-validator-8.11.0
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@dependabot merge
Sent from Proton Mail mobile
…-------- Original Message --------
On Dec 2, 2022, 15:50, dependabot[bot] wrote:
This automated pull request fixes a [security vulnerability](https://github.com/reposman33/assignmentAngularRabobank/security/dependabot/72) (moderate severity).
[Learn more about Dependabot security updates](https://docs.github.com/github/managing-security-vulnerabilities/configuring-dependabot-security-updates).
---------------------------------------------------------------
Bumps [ajv](https://github.com/ajv-validator/ajv) to 8.11.0 and updates ancestor dependencies [ajv](https://github.com/ajv-validator/ajv), ***@***.***/cli](https://github.com/angular/angular-cli) and [har-validator](https://github.com/ahmadnassri/node-har-validator). These dependencies need to be updated together.
Updates ajv from 5.5.2 to 8.11.0
Release notes
Sourced from [ajv's releases](https://github.com/ajv-validator/ajv/releases).
> v8.11.0
>
> Use root schemaEnv when resolving references in oneOf ([#1901](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1901), [@asprouse](https://github.com/asprouse))
>
> Only use equal function in generated code when it is used ([#1922](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1922), [@bhvngt](https://github.com/bhvngt))
>
> v8.10.0
>
> uriResolver option ([@zekth](https://github.com/zekth), [#1862](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1862))
>
> v8.9.0
>
> Option code.esm to generate ESM exports for standalone validation functions ([@rehanvdm](https://github.com/rehanvdm), [#1861](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1861)) Support discriminator keyword with $ref in oneOf subschemas ([@dfeufel](https://github.com/dfeufel), [#1815](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1815))
>
> v8.8.2
>
> Use full RegExp string (with flags) as cache key, related to [ajv-validator/ajv-keywords#220](https://github-redirect.dependabot.com/ajv-validator/ajv-keywords/issues/220)
>
> v8.8.1
>
> Fix minContains: 0 ([#1819](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1819))
>
> v8.8.0
>
> Fix browser bundles in cdnjs regExp option allowing to specify alternative RegExp engine, e.g. re2 ([@efebarlas](https://github.com/efebarlas))
>
> v8.7.1
>
> Publish Ajv bundle for JSON Schema 2020-12 to cdnjs.com
>
> v8.7.0
>
> Update JSON Schema Test Suite. Change minContains: 0 now correctly allows empty array.
>
> v8.6.3
>
> Fix $ref resolution for schemas without $id ([@rbuckton](https://github.com/rbuckton), [#1725](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1725)) Support standalone module import from ESM modules without using .default property ([@bhvngt](https://github.com/bhvngt), [#1757](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1757)) Update code for breaking TS change - error in catch has type unknown ([#1760](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1760))
>
> v8.6.2
>
> Fix JTD serialiser ([#1691](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1691))
>
> v8.6.1
>
> Fix "not" keyword preventing validation of "allOf" and some other keywords ([#1668](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1668))
>
> v8.6.0
>
> Track evaluated properties with patternProperties that have always valid schemas (e.g., true) ([@P0lip](https://github.com/P0lip), [#1626](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1626)) Option [int32range](https://ajv.js.org/options.html#int32range) to disable number range checking for int32 and uint32 type in [JTD schemas](https://ajv.js.org/json-type-definition.html)
>
> v8.5.0
>
> Optimize validation code for const keyword with scalar values ([@SoAsEr](https://github.com/SoAsEr), [#1561](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1561)) Add option schemaId to support [ajv-draft-04](https://github.com/ajv-validator/ajv-draft-04) - Ajv for JSON Schema drat-04.
>
> v8.4.0
>
> JSON Type Definition schema options:
... (truncated)
Commits
- [c067d6d](ajv-validator/ajv@c067d6d) 8.11.0
- [a5119ef](ajv-validator/ajv@a5119ef) Update limitProperties.ts ([#1918](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1918))
- [3ec588b](ajv-validator/ajv@3ec588b) Fix some relative links ([#1900](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1900))
- [09f67f2](ajv-validator/ajv@09f67f2) fix: emit equal when needed - alternative to [#1853](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1853) ([#1922](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1922))
- [bd7cf15](ajv-validator/ajv@bd7cf15) Fix KeywordCxt links ([#1931](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1931))
- [95b15b6](ajv-validator/ajv@95b15b6) Use root schemaEnv when resolving references in oneOf ([#1901](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1901))
- [6e53e43](ajv-validator/ajv@6e53e43) doc: add uriResolver ([#1896](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1896))
- [a27f782](ajv-validator/ajv@a27f782) 8.10.0
- [d0be809](ajv-validator/ajv@d0be809) docs: fix typo in discriminator documentation ([#1885](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1885))
- [b3e0cb1](ajv-validator/ajv@b3e0cb1) docs: Fix typo ([#1890](https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1890))
- Additional commits viewable in [compare view](ajv-validator/ajv@v5.5.2...v8.11.0)
Updates @angular/cli from 6.2.4 to 15.0.2
Release notes
Sourced from [@angular/cli's releases](https://github.com/angular/angular-cli/releases).
> v15.0.2
>
> 15.0.2 (2022-11-30)
>
> @angular-devkit/build-angular
>
> Commit Description
> [fix - 2891d5bc9](angular/angular-cli@2891d5b) correctly set Sass quietDeps and verbose options
>
> @ngtools/webpack
>
> Commit Description
> [fix - d9cc4b028](angular/angular-cli@d9cc4b0) elide unused type references
>
> Special Thanks
>
> Alan Agius and Juuso Valkeejärvi
>
> v15.0.1
>
> 15.0.1 (2022-11-23)
>
> @schematics/angular
>
> Commit Description
> [fix - 48426852b](angular/angular-cli@4842685) show warning when a TS Config is not found during migrations
>
> @angular/cli
>
> Commit Description
> [fix - eda96def4](angular/angular-cli@eda96de) use global version of the CLI when running ng new
>
> @angular-devkit/build-angular
>
> Commit Description
> [fix - 2af32fd3a](angular/angular-cli@2af32fd) hide loader paths in webpack warnings
> [fix - 19f5cc746](angular/angular-cli@19f5cc7) improve package deep import Sass index resolution in esbuild plugin
> [fix - 2220a907d](angular/angular-cli@2220a90) use url function lexer to rebase Sass URLs
>
> Special Thanks
>
> Alan Agius, Charles Lyding, Doug Parker, Joey Perrott and Piotr Wysocki
>
> v15.0.0
>
> 15.0.0 (2022-11-16)
>
> Breaking Changes
>
> @angular/cli
>
> - The Angular CLI no longer supports 16.10.x, 16.11.x and 16.12.x. Current supported versions of Node.js are 14.20.x, 16.13.x and 18.10.x.
> - Node.js versions older than 14.20 are no longer supported.
> - The 'path' option in schematics schema no longer has a special meaning. Use 'workingDirectory' smart default provider should be used instead.
>
> @schematics/angular
>
> - Removed unusedappDir option from Universal and App-Shell schematic. This option can safely be removed if present since it no longer has effect.
>
> -
>
> analyticsSharing option in the global angular configuration has been removed without replacement. This option was used to configure the Angular CLI to access to your own users' CLI usage data.
>
> If this option is used, it can be removed using ng config --global cli.analyticsSharing undefined.
>
> -
>
> analytics APIs have been removed without replacement from @angular-devkit/core and @angular-devkit/architect.
... (truncated)
Changelog
Sourced from [@angular/cli's changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md).
> 15.0.2 (2022-11-30)
>
> @angular-devkit/build-angular
>
> Commit Type Description
> [2891d5bc9](angular/angular-cli@2891d5b) fix correctly set Sass quietDeps and verbose options
>
> @ngtools/webpack
>
> Commit Type Description
> [d9cc4b028](angular/angular-cli@d9cc4b0) fix elide unused type references
>
> Special Thanks
>
> Alan Agius and Juuso Valkeejärvi
>
> 15.1.0-next.0 (2022-11-23)
>
> @schematics/angular
>
> Commit Type Description
> [6c39a162b](angular/angular-cli@6c39a16) feat Add schematics for generating functional router guards and resolvers
> [62121f89a](angular/angular-cli@62121f8) feat add sideEffects:false to library package.json
>
> @angular-devkit/build-angular
>
> Commit Type Description
> [c29df6954](angular/angular-cli@c29df69) feat add assets option to server builder
> [0c01532cb](angular/angular-cli@0c01532) perf use worker pool for JavaScript transforms in esbuild builder
>
> Special Thanks
>
> Alan Agius, Andrew Scott, Charles Lyding, Doug Parker, Felix Hamann and Joey Perrott
>
> 15.0.1 (2022-11-23)
>
> @angular/cli
... (truncated)
Commits
- [d77416f](angular/angular-cli@d77416f) release: cut the v15.0.2 release
- [0a543ea](angular/angular-cli@0a543ea) Revert "docs: remove @latest reference from npm init command"
- [d9cc4b0](angular/angular-cli@d9cc4b0) fix(@ngtools/webpack): elide unused type references
- [2891d5b](angular/angular-cli@2891d5b) fix(@angular-devkit/build-angular): correctly set Sass quietDeps and verbose ...
- [324f8da](angular/angular-cli@324f8da) release: cut the v15.0.1 release
- [2af32fd](angular/angular-cli@2af32fd) fix(@angular-devkit/build-angular): hide loader paths in webpack warnings
- [2220a90](angular/angular-cli@2220a90) fix(@angular-devkit/build-angular): use url function lexer to rebase Sass URLs
- [fc0d924](angular/angular-cli@fc0d924) ci: update browser-tools
- [19f5cc7](angular/angular-cli@19f5cc7) fix(@angular-devkit/build-angular): improve package deep import Sass index re...
- [52f63b1](angular/angular-cli@52f63b1) build: enable the ng-dev auth service
- Additional commits viewable in [compare view](angular/angular-cli@v6.2.4...15.0.2)
Maintainer changes
This version was pushed to npm by [google-wombot](https://www.npmjs.com/~google-wombot), a new releaser for @angular/cli since your current version.
Updates har-validator from 5.1.0 to 5.1.5
Release notes
Sourced from [har-validator's releases](https://github.com/ahmadnassri/node-har-validator/releases).
> v5.1.5
>
> [5.1.5](ahmadnassri/node-har-validator@v5.1.4...v5.1.5) (2020-07-30)
>
> v5.1.4
>
> [5.1.4](ahmadnassri/node-har-validator@v5.1.3...v5.1.4) (2020-07-30)
>
> v5.1.2
>
> [5.1.2](ahmadnassri/node-har-validator@v5.1.1...v5.1.2) (2018-11-07)
>
> Bug Fixes
>
> - docs: update badge links ([1764b7c](ahmadnassri/node-har-validator@1764b7c))
>
> v5.1.1
>
> [5.1.1](ahmadnassri/node-har-validator@v5.1.0...v5.1.1) (2018-11-07)
>
> Bug Fixes
>
> - scaffold: update project scaffold template ([fd01aff](ahmadnassri/node-har-validator@fd01aff))
Commits
- [b77cdcb](ahmadnassri/node-har-validator@b77cdcb) build(semantic-release): should release when docs are updated
- [3a4d4f3](ahmadnassri/node-har-validator@3a4d4f3) docs(readme): correct badge
- [01c5f2a](ahmadnassri/node-har-validator@01c5f2a) style(lint): correct lint errors
- [ab43db4](ahmadnassri/node-har-validator@ab43db4) build(semantic-release): correct .releaserc file name
- [bab9612](ahmadnassri/node-har-validator@bab9612) build(deps): update dependencies
- [6742cb5](ahmadnassri/node-har-validator@6742cb5) test(docker-compose): docker-compose for unified testing
- [fd48174](ahmadnassri/node-har-validator@fd48174) ci(actions): replace old ci setup with new github actions workflows
- [5c53c92](ahmadnassri/node-har-validator@5c53c92) build(deps): [security] bump handlebars from 4.0.11 to 4.7.1 ([#160](https://github-redirect.dependabot.com/ahmadnassri/node-har-validator/issues/160))
- [ea53334](ahmadnassri/node-har-validator@ea53334) chore(deps): lock file maintenance ([#114](https://github-redirect.dependabot.com/ahmadnassri/node-har-validator/issues/114))
- [a38c067](ahmadnassri/node-har-validator@a38c067) 5.1.3
- Additional commits viewable in [compare view](ahmadnassri/node-har-validator@v5.1.0...v5.1.5)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
---------------------------------------------------------------
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- @dependabot rebase will rebase this PR
- @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
- @dependabot merge will merge this PR after your CI passes on it
- @dependabot squash and merge will squash and merge this PR after your CI passes on it
- @dependabot cancel merge will cancel a previously requested merge and block automerging
- @dependabot reopen will reopen this PR if it is closed
- @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
- @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
- @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
- @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/reposman33/assignmentAngularRabobank/network/alerts).
---------------------------------------------------------------
You can view, comment on, or merge this pull request online at:
#32
Commit Summary
- [78a7444](78a7444) Bump ajv, @angular/cli and har-validator
File Changes
([2 files](https://github.com/reposman33/assignmentAngularRabobank/pull/32/files))
- M [package-lock.json](https://github.com/reposman33/assignmentAngularRabobank/pull/32/files#diff-053150b640a7ce75eff69d1a22cae7f0f94ad64ce9a855db544dda0929316519) (2222)
- M [package.json](https://github.com/reposman33/assignmentAngularRabobank/pull/32/files#diff-7ae45ad102eab3b6d7e7896acd08c427a9b25b346470d7bc6507b6481575d519) (2)
Patch Links:
- https://github.com/reposman33/assignmentAngularRabobank/pull/32.patch
- https://github.com/reposman33/assignmentAngularRabobank/pull/32.diff
—
Reply to this email directly, [view it on GitHub](#32), or [unsubscribe](https://github.com/notifications/unsubscribe-auth/AAYNOZR4SDKYNMLM53AEUPLWLIEEFANCNFSM6AAAAAASR72BXI).
You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>
|
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/ajv-and-angular/cli-and-har-validator-8.11.0
branch
2 times, most recently
from
December 2, 2022 14:55
e586d77
to
98c4016
Compare
Bumps [ajv](https://github.com/ajv-validator/ajv) to 8.11.0 and updates ancestor dependencies [ajv](https://github.com/ajv-validator/ajv), [@angular/cli](https://github.com/angular/angular-cli) and [har-validator](https://github.com/ahmadnassri/node-har-validator). These dependencies need to be updated together. Updates `ajv` from 5.5.2 to 8.11.0 - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](ajv-validator/ajv@v5.5.2...v8.11.0) Updates `@angular/cli` from 6.2.4 to 15.0.2 - [Release notes](https://github.com/angular/angular-cli/releases) - [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md) - [Commits](angular/angular-cli@v6.2.4...15.0.2) Updates `har-validator` from 5.1.0 to 5.1.5 - [Release notes](https://github.com/ahmadnassri/node-har-validator/releases) - [Changelog](https://github.com/ahmadnassri/node-har-validator/blob/master/.releaserc) - [Commits](ahmadnassri/node-har-validator@v5.1.0...v5.1.5) --- updated-dependencies: - dependency-name: ajv dependency-type: indirect - dependency-name: "@angular/cli" dependency-type: direct:development - dependency-name: har-validator dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/ajv-and-angular/cli-and-har-validator-8.11.0
branch
from
December 2, 2022 14:56
98c4016
to
da76b92
Compare
Looks like these dependencies are updatable in another way, so this is no longer needed. |
dependabot
bot
deleted the
dependabot/npm_and_yarn/ajv-and-angular/cli-and-har-validator-8.11.0
branch
December 2, 2022 14:57
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps ajv to 8.11.0 and updates ancestor dependencies ajv, @angular/cli and har-validator. These dependencies need to be updated together.
Updates
ajv
from 5.5.2 to 8.11.0Release notes
Sourced from ajv's releases.
... (truncated)
Commits
c067d6d
8.11.0a5119ef
Update limitProperties.ts (#1918)3ec588b
Fix some relative links (#1900)09f67f2
fix: emit equal when needed - alternative to #1853 (#1922)bd7cf15
Fix KeywordCxt links (#1931)95b15b6
Use root schemaEnv when resolving references in oneOf (#1901)6e53e43
doc: add uriResolver (#1896)a27f782
8.10.0d0be809
docs: fix typo in discriminator documentation (#1885)b3e0cb1
docs: Fix typo (#1890)Updates
@angular/cli
from 6.2.4 to 15.0.2Release notes
Sourced from
@angular/cli
's releases.... (truncated)
Changelog
Sourced from
@angular/cli
's changelog.... (truncated)
Commits
d77416f
release: cut the v15.0.2 release0a543ea
Revert "docs: remove@latest
reference fromnpm init
command"d9cc4b0
fix(@ngtools/webpack
): elide unused type references2891d5b
fix(@angular-devkit/build-angular
): correctly set Sass quietDeps and verbose ...324f8da
release: cut the v15.0.1 release2af32fd
fix(@angular-devkit/build-angular
): hide loader paths in webpack warnings2220a90
fix(@angular-devkit/build-angular
): use url function lexer to rebase Sass URLsfc0d924
ci: update browser-tools19f5cc7
fix(@angular-devkit/build-angular
): improve package deep import Sass index re...52f63b1
build: enable the ng-dev auth serviceMaintainer changes
This version was pushed to npm by google-wombot, a new releaser for
@angular/cli
since your current version.Updates
har-validator
from 5.1.0 to 5.1.5Release notes
Sourced from har-validator's releases.
Commits
b77cdcb
build(semantic-release): should release when docs are updated3a4d4f3
docs(readme): correct badge01c5f2a
style(lint): correct lint errorsab43db4
build(semantic-release): correct .releaserc file namebab9612
build(deps): update dependencies6742cb5
test(docker-compose): docker-compose for unified testingfd48174
ci(actions): replace old ci setup with new github actions workflows5c53c92
build(deps): [security] bump handlebars from 4.0.11 to 4.7.1 (#160)ea53334
chore(deps): lock file maintenance (#114)a38c067
5.1.3Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @reposman33.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.