Bump the js-production-dependencies group across 1 directory with 15 updates #4116

dependabot · 2024-05-15T03:53:11Z

Bumps the js-production-dependencies group with 15 updates in the / directory:

Package	From	To
@uppy/core	`3.11.1`	`3.11.3`
sass	`1.77.0`	`1.77.1`
@jsonjoy.com/base64	`1.1.1`	`1.1.2`
@jsonjoy.com/json-pack	`1.0.3`	`1.0.4`
@jsonjoy.com/util	`1.1.2`	`1.1.3`
caniuse-lite	`1.0.30001616`	`1.0.30001618`
core-js-compat	`3.37.0`	`3.37.1`
electron-to-chromium	`1.4.758`	`1.4.768`
immutable	`4.3.5`	`4.3.6`
path-scurry	`1.10.2`	`1.11.1`
picocolors	`1.0.0`	`1.0.1`
rimraf	`5.0.5`	`5.0.7`
sonic-forest	`1.0.2`	`1.0.3`
svgo	`3.3.0`	`3.3.2`
update-browserslist-db	`1.0.15`	`1.0.16`

Updates @uppy/core from 3.11.1 to 3.11.3

Changelog

Sourced from @uppy/core's changelog.

Changelog

This is our changelog which contains planned todos and past dones.

Items can be optionally tagged by the GitHub issue's owner, if a discussion happened / is needed.

Please add your entries in this format:

- [ ] (<plugin name>|website|core|meta|build|test): <Present tense verb> <subject> \(<list of associated owners/gh-issues>\).

In the current stage we aim to release a new version at least every month.

3.25.3

Released: 2024-05-14

Package Version Package Version

@uppy/core 3.11.3 uppy 3.25.3

@uppy/image-editor 2.4.6

@uppy/image-editor: fix tooltips (Avneet Singh Malhotra / #5156)

meta: Remove redundant plugins prop from examples (Merlijn Vos / #5145)

@uppy/image-editor: Remove target option from examples and document consistently (Merlijn Vos / #5146)

@uppy/core: make getObjectOfFilesPerState more efficient (Merlijn Vos / #5155)

3.25.2

Released: 2024-05-07

Package Version Package Version

@uppy/compressor 1.1.4 @uppy/status-bar 3.3.3

@uppy/core 3.11.2 uppy 3.25.2

@uppy/dashboard 3.8.3

@uppy/compressor,@uppy/core,@uppy/dashboard,@uppy/status-bar: Upgrade @transloadit/prettier-bytes (Merlijn Vos / #5150)

meta: run Prettier in the release workflow (Antoine du Hamel)

3.25.1

Released: 2024-05-03

Package Version Package Version

@uppy/companion 4.13.2 @uppy/xhr-upload 3.6.6

... (truncated)

Commits

86e2e67 Release: uppy@3.25.3 (#5161)
4acd793 @uppy/image-editor: fix tooltips (#5156)
61647c7 Remove redundant plugins prop from examples (#5145)
0bb21cb Remove target option from examples and document consistently (#5146)
e9ccb94 @uppy/core: make getObjectOfFilesPerState more efficient (#5155)
d01c50a Release: uppy@3.25.2 (#5151)
1a7c71d Upgrade @transloadit/prettier-bytes (#5150)
5bc82b5 meta: run Prettier in the release workflow
See full diff in compare view

Updates sass from 1.77.0 to 1.77.1

Release notes

Sourced from sass's releases.

Dart Sass 1.77.1

To install Sass 1.77.1, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

Fix a crash that could come up with importers in certain contexts.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.77.1

Fix a crash that could come up with importers in certain contexts.

Commits

372f15c Fix MapExtensions.getOption() for nullable types (#2241)
See full diff in compare view

Updates @jsonjoy.com/base64 from 1.1.1 to 1.1.2

Release notes

Sourced from @jsonjoy.com/base64's releases.

v1.1.2

1.1.2 (2024-05-08)

Bug Fixes

add license to package.json (b35dba6)

Commits

b35dba6 fix: add license to package.json
592169d docs: add license
See full diff in compare view

Updates @jsonjoy.com/json-pack from 1.0.3 to 1.0.4

Release notes

Sourced from @jsonjoy.com/json-pack's releases.

v1.0.4

1.0.4 (2024-05-08)

Bug Fixes

add license info to package.json (73a1a63)

Commits

73a1a63 fix: add license info to package.json
6e7dbf5 docs: add licesnse
See full diff in compare view

Updates @jsonjoy.com/util from 1.1.2 to 1.1.3

Release notes

Sourced from @jsonjoy.com/util's releases.

v1.1.3

1.1.3 (2024-05-08)

Bug Fixes

add license to package.json (5afc2d1)

Commits

5afc2d1 fix: add license to package.json
6594f6e docs: add license
See full diff in compare view

Updates caniuse-lite from 1.0.30001616 to 1.0.30001618

Commits

79ed423 Update caniuse-db 1.0.30001618
883a70e Update caniuse-db 1.0.30001617
See full diff in compare view

Updates core-js-compat from 3.37.0 to 3.37.1

Changelog

Sourced from core-js-compat's changelog.

3.37.1 - 2024.05.14

Changes v3.37.0...v3.37.1

Fixed URL.parse feature detection for some specific cases

Compat data improvements:

Set methods proposal added and marked as supported from FF 127

Symbol.dispose added and marked as supported from V8 ~ Chromium 125

Math.f16round and DataView.prototype.{ getFloat16, setFloat16 } added and marked as supported from Deno 1.43

URL.parse added and marked as supported from Chromium 126

URL.parse added and marked as supported from NodeJS 22.0

URL.parse added and marked as supported from Deno 1.43

Added Rhino 1.7.15 compat data, many features marked as supported

Added NodeJS 22.0 compat data mapping

Added Deno 1.43 compat data mapping

Added Electron 31 compat data mapping

Updated Opera Android 82 compat data mapping

Added Samsung Internet 26 compat data mapping

Added Oculus Quest Browser 33 compat data mapping

Commits

d044cb5 3.37.1
ca59ee7 update Electron 31 compat data mapping
d27edd5 URL.parse added and marked as supported from Chromium 126
f0f7416 Set methods proposal added and marked as supported from FF 127
de8ce56 add Rhino 1.7.15 compat data
1b7d98d Math.f16round and DataView.prototype.{ getFloat16, setFloat16 } from `Flo...
54b6a86 URL.parse added and marked as supported from Deno 1.43
8b92f43 add Deno 1.43 compat data mapping
e863c48 add Samsung Internet 26 compat data mapping
22bd526 add Oculus Quest Browser 33 compat data mapping
Additional commits viewable in compare view

Updates electron-to-chromium from 1.4.758 to 1.4.768

Commits

See full diff in compare view

Updates immutable from 4.3.5 to 4.3.6

Release notes

Sourced from immutable's releases.

v4.3.6

What's Changed

Fix Repeat().equals(undefined) incorrectly returning true by @butchler in immutable-js/immutable-js#1994

Internals

change youtube image by @jdeniau in immutable-js/immutable-js#1973

Upgrade eslint and ignore no-constructor-return rule for actual constructors by @jdeniau in immutable-js/immutable-js#1974

upgrate documentation website to next 14 by @jdeniau in immutable-js/immutable-js#1975

start migrating to nextjs app router by @jdeniau in immutable-js/immutable-js#1976

upgrade next sitemap by @jdeniau in immutable-js/immutable-js#1978

New Contributors

@butchler made their first contribution in immutable-js/immutable-js#1994

Full Changelog: immutable-js/immutable-js@v4.3.5...v4.3.6

Changelog

Sourced from immutable's changelog.

[4.3.6] - 2024-05-13

Fix Repeat(<value>).equals(undefined) incorrectly returning true #1994 by @butchler

Commits

493afba release 4.3.6 (#1997)
be3cb9a Fix Repeat(<value>).equals(undefined) incorrectly returning true (#1994)
d7664bf generate sitemap in path that will be deployed
f8327b1 upgrade next sitemap (#1978)
32de514 start migrating to nextjs app router (#1976)
b118ffb upgrate documentation website to next 14 (#1975)
7f9ba58 Upgrade eslint and ignore no-constructor-return rule for actual constructors ...
8c6ea52 image max-width on home page
7ec62dd change youtube image (#1973)
See full diff in compare view

Updates path-scurry from 1.10.2 to 1.11.1

Changelog

Sourced from path-scurry's changelog.

churnge loog

1.11

Add path.isCWD, correctly report relative paths of entries when the root is the cwd.

1.10

fixes for the Dirent type changes in node 20

correctly readlink() when in multiply-nested symlink dirs

update Minipass to v7

add getType(), isType() methods

1.9

Add path for compatibility with Node v20 Dirent

Correctly readlink() in multiply nested symlink directories

1.8

add PathScurry.chdir method

1.7

Add Path.fullpathPosix(), Path.relativePosix(), PathScurry.resolvePosix(), PathScurry.relativePosix(), for getting posix style paths on Windows.

1.6

Allow overriding the default fs with custom methods

make Stats fields available after lstat()

add depth() method

add declarationMap to tsconfig

1.5

support file:// url as cwd

handle in-flight readdirCB, readdir

1.4

add isNamed() for case and unicode normalization

1.3

expose calledReaddir, isENOENT, and canReadlink methods

1.2.0

... (truncated)

Commits

766c9b0 1.11.1
7b02e5d engines: need 14.18, where 'node:path' shows up
281b6db 1.11.0
1f4d1f2 changelog 1.11
7b26587 add isCWD, correct relative() when cwd is root
9cdd8e9 update prettier, reformat
34e0e2d 1.10.4
38c51b2 fix: use node:-prefixed requires for builtins
6be7491 update word-wrap for advisory fix
200e9f8 1.10.3
Additional commits viewable in compare view

Updates picocolors from 1.0.0 to 1.0.1

Release notes

Sourced from picocolors's releases.

picocolors 1.0.1

What's new?

Updated color detection mechanism to work properly on Vercel Edge Runtime alexeyraspopov/picocolors#64

Remove use of recursion to avoid possible stack overflow for very long inputs alexeyraspopov/picocolors#56

Changelog

Sourced from picocolors's changelog.

v1.0.1

Updated color detection mechanism to work properly on Vercel Edge Runtime (#64)

Remove use of recursion to avoid possible stack overflow for very long inputs (#56)

Commits

5f0c047 v1.0.1
a014200 fix: iteratively replace "close" to avoid maximum stack error (#64)
b626148 Fix color detection in edge runtime (#56)
6b43e8e uniform api usage in complex benchmark
0836f3c update benchmarks per recent job run
e9b2731 Create .gitignore (#37)
See full diff in compare view

Updates rimraf from 5.0.5 to 5.0.7

Commits

fb974ad 5.0.7
8ba2442 engines: need 14.18, where 'node:path' shows up
39340d1 update deps
e729f76 5.0.6
4472c0e DOC: add that it is cross platform
46b425f Improve readability of README
a3b93ed update deps, format codes
d2fa213 update devDeps
f3b2bf1 Upgrade GitHub Actions
81c631e remove FUNDING.yml (coming from .github repo now)
See full diff in compare view

Updates sonic-forest from 1.0.2 to 1.0.3

Release notes

Sourced from sonic-forest's releases.

v1.0.3

1.0.3 (2024-05-08)

Bug Fixes

add license to package.json (b2bb700)

Commits

b2bb700 fix: add license to package.json
2e353cf Create LICENSE
c45f70d chore(deps): lock file maintenance
See full diff in compare view

Updates svgo from 3.3.0 to 3.3.2

Release notes

Sourced from svgo's releases.

v3.3.2

Notice

An update on what happened with v3.3.0 and v3.3.1. While we have retained CJS support, the migration to EMS has changed the acceptable ways to import SVGO, in ways that users depended on before. This effectively made SVGO v3 a breaking change.

Rather than resolve or workaround these differences, we've opted to release SVGO v3.3.2, which is effectively a revert to v3.2.0, and deprecate versions v3.3.0 and v3.3.1. We'll then proceed to work on releasing v4 which will document the breaking changes, and feature further breaking changes that were slated for v4, like disabling removeViewBox by default.

Before the v4.0.0 release, I'll put more focus on testing and use release candidates, just to help make the release go smoothly! 👍🏽

Sorry for the headache, and thanks for your patience.

v3.3.1

Notice

SVGO v3.3.0, which was meant to migrate to ESM without breaking CJS support, unfortunately broke CJS projects. There was a mistake with exports, so the loadConfig function wasn't available in the CJS bundle and lead to issues for many users.

Thanks to everyone who raised the issue, and to @nuintun who submitted a pull request to resolve it so quickly.

I apologize for letting that breaking change through, and will aim to do better. Namely, by adding more tests to cover our exports, and any other public interface in general for each distribution of SVGO, so this doesn't happen again.

SVGO v3.3.1 should resolve the issue for CJS projects, but if you encounter anything else, do let us know by opening an issue on GitHub.

Commits

c4dc2be chore: increment version to v3.3.2
252b28c chore: increment version to 3.2.0 (#1919)
8644cf3 feat(convertPathData): convert c to q (#1892)
2661dac fix(convertTransform): fix scale and rotate on skew + refactors (#1916)
f6a2ca2 chore: improve jest tests with more precise assertions (#1912)
db05c57 chore: Use idiomatic Jest patterns to assert exceptions (#1909)
433dcef refactor(convertPaths): clean up plugin (#1913)
f238d6a feat(convertPathData): allow converting q to t in more cases (#1889)
967d2f1 deps: update css-tree and clean ts-ignores (#1911)
4768af6 chore: Update @types/csso and correct types (#1910)
Additional commits viewable in compare view

Updates update-browserslist-db from 1.0.15 to 1.0.16

Release notes

Sourced from update-browserslist-db's releases.

1.0.16

Fixed old Node.js support.

Changelog

Sourced from update-browserslist-db's changelog.

1.0.16

Fixed old Node.js support.

Commits

f85ac35 Release 1.0.16 version
4588ddc Remove node: protocol to support Node.js 14
67aa402 Update dependencies
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…updates Bumps the js-production-dependencies group with 15 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@uppy/core](https://github.com/transloadit/uppy) | `3.11.1` | `3.11.3` | | [sass](https://github.com/sass/dart-sass) | `1.77.0` | `1.77.1` | | [@jsonjoy.com/base64](https://github.com/jsonjoy-com/base64) | `1.1.1` | `1.1.2` | | [@jsonjoy.com/json-pack](https://github.com/jsonjoy-com/json-pack) | `1.0.3` | `1.0.4` | | [@jsonjoy.com/util](https://github.com/jsonjoy-com/util) | `1.1.2` | `1.1.3` | | [caniuse-lite](https://github.com/browserslist/caniuse-lite) | `1.0.30001616` | `1.0.30001618` | | [core-js-compat](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js-compat) | `3.37.0` | `3.37.1` | | [electron-to-chromium](https://github.com/kilian/electron-to-chromium) | `1.4.758` | `1.4.768` | | [immutable](https://github.com/immutable-js/immutable-js) | `4.3.5` | `4.3.6` | | [path-scurry](https://github.com/isaacs/path-scurry) | `1.10.2` | `1.11.1` | | [picocolors](https://github.com/alexeyraspopov/picocolors) | `1.0.0` | `1.0.1` | | [rimraf](https://github.com/isaacs/rimraf) | `5.0.5` | `5.0.7` | | [sonic-forest](https://github.com/streamich/sonic-forest) | `1.0.2` | `1.0.3` | | [svgo](https://github.com/svg/svgo) | `3.3.0` | `3.3.2` | | [update-browserslist-db](https://github.com/browserslist/update-db) | `1.0.15` | `1.0.16` | Updates `@uppy/core` from 3.11.1 to 3.11.3 - [Release notes](https://github.com/transloadit/uppy/releases) - [Changelog](https://github.com/transloadit/uppy/blob/main/CHANGELOG.md) - [Commits](https://github.com/transloadit/uppy/compare/@uppy/core@3.11.1...@uppy/core@3.11.3) Updates `sass` from 1.77.0 to 1.77.1 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](sass/dart-sass@1.77.0...1.77.1) Updates `@jsonjoy.com/base64` from 1.1.1 to 1.1.2 - [Release notes](https://github.com/jsonjoy-com/base64/releases) - [Commits](jsonjoy-com/base64@v1.1.1...v1.1.2) Updates `@jsonjoy.com/json-pack` from 1.0.3 to 1.0.4 - [Release notes](https://github.com/jsonjoy-com/json-pack/releases) - [Commits](jsonjoy-com/json-pack@v1.0.3...v1.0.4) Updates `@jsonjoy.com/util` from 1.1.2 to 1.1.3 - [Release notes](https://github.com/jsonjoy-com/util/releases) - [Commits](jsonjoy-com/util@v1.1.2...v1.1.3) Updates `caniuse-lite` from 1.0.30001616 to 1.0.30001618 - [Commits](browserslist/caniuse-lite@1.0.30001616...1.0.30001618) Updates `core-js-compat` from 3.37.0 to 3.37.1 - [Release notes](https://github.com/zloirock/core-js/releases) - [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md) - [Commits](https://github.com/zloirock/core-js/commits/v3.37.1/packages/core-js-compat) Updates `electron-to-chromium` from 1.4.758 to 1.4.768 - [Changelog](https://github.com/Kilian/electron-to-chromium/blob/master/CHANGELOG.md) - [Commits](https://github.com/kilian/electron-to-chromium/commits) Updates `immutable` from 4.3.5 to 4.3.6 - [Release notes](https://github.com/immutable-js/immutable-js/releases) - [Changelog](https://github.com/immutable-js/immutable-js/blob/main/CHANGELOG.md) - [Commits](immutable-js/immutable-js@v4.3.5...v4.3.6) Updates `path-scurry` from 1.10.2 to 1.11.1 - [Changelog](https://github.com/isaacs/path-scurry/blob/main/CHANGELOG.md) - [Commits](isaacs/path-scurry@v1.10.2...v1.11.1) Updates `picocolors` from 1.0.0 to 1.0.1 - [Release notes](https://github.com/alexeyraspopov/picocolors/releases) - [Changelog](https://github.com/alexeyraspopov/picocolors/blob/main/CHANGELOG.md) - [Commits](alexeyraspopov/picocolors@v1.0.0...v1.0.1) Updates `rimraf` from 5.0.5 to 5.0.7 - [Changelog](https://github.com/isaacs/rimraf/blob/main/CHANGELOG.md) - [Commits](isaacs/rimraf@v5.0.5...v5.0.7) Updates `sonic-forest` from 1.0.2 to 1.0.3 - [Release notes](https://github.com/streamich/sonic-forest/releases) - [Commits](streamich/sonic-forest@v1.0.2...v1.0.3) Updates `svgo` from 3.3.0 to 3.3.2 - [Release notes](https://github.com/svg/svgo/releases) - [Changelog](https://github.com/svg/svgo/blob/main/CHANGELOG-old.md) - [Commits](svg/svgo@v3.3.0...v3.3.2) Updates `update-browserslist-db` from 1.0.15 to 1.0.16 - [Release notes](https://github.com/browserslist/update-db/releases) - [Changelog](https://github.com/browserslist/update-db/blob/main/CHANGELOG.md) - [Commits](browserslist/update-db@1.0.15...1.0.16) --- updated-dependencies: - dependency-name: "@uppy/core" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: sass dependency-type: direct:production update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: "@jsonjoy.com/base64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: "@jsonjoy.com/json-pack" dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: "@jsonjoy.com/util" dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: caniuse-lite dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: core-js-compat dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: electron-to-chromium dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: immutable dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: path-scurry dependency-type: indirect update-type: version-update:semver-minor dependency-group: js-production-dependencies - dependency-name: picocolors dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: rimraf dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: sonic-forest dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: svgo dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies - dependency-name: update-browserslist-db dependency-type: indirect update-type: version-update:semver-patch dependency-group: js-production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependency fix javascript Pull requests that update Javascript code labels May 15, 2024

texpert merged commit 767be26 into main May 15, 2024
4 checks passed

texpert deleted the dependabot/npm_and_yarn/js-production-dependencies-50cd2b62eb branch May 15, 2024 17:49

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the js-production-dependencies group across 1 directory with 15 updates #4116

Bump the js-production-dependencies group across 1 directory with 15 updates #4116

dependabot bot commented on behalf of github May 15, 2024

Package	Version	Package	Version
`@uppy/compressor`	1.1.4	`@uppy/status-bar`	3.3.3
`@uppy/core`	3.11.2	uppy	3.25.2
`@uppy/dashboard`	3.8.3

Bump the js-production-dependencies group across 1 directory with 15 updates #4116

Bump the js-production-dependencies group across 1 directory with 15 updates #4116

Conversation

dependabot bot commented on behalf of github May 15, 2024

Changelog

3.25.3

3.25.2

3.25.1

Dart Sass 1.77.1

Changes

1.77.1

v1.1.2

1.1.2 (2024-05-08)

Bug Fixes

v1.0.4

1.0.4 (2024-05-08)

Bug Fixes

v1.1.3

1.1.3 (2024-05-08)

Bug Fixes

3.37.1 - 2024.05.14

v4.3.6

What's Changed

Internals

New Contributors

[4.3.6] - 2024-05-13

churnge loog

1.11

1.10

1.9

1.8

1.7

1.6

1.5

1.4

1.3

1.2.0

picocolors 1.0.1

What's new?

v1.0.1

v1.0.3

1.0.3 (2024-05-08)

Bug Fixes

v3.3.2

Notice

v3.3.1

Notice

1.0.16

1.0.16