fix(deps): bump the production-dependencies group with 2 updates #181

dependabot · 2024-11-01T10:58:41Z

Bumps the production-dependencies group with 2 updates: @actions/core and undici.

Updates @actions/core from 1.10.1 to 1.11.1

Changelog

Sourced from @actions/core's changelog.

1.11.1

Fix uses of crypto.randomUUID on Node 18 and earlier #1842

1.11.0

Add platform info utilities #1551

Remove dependency on uuid package #1824

Commits

See full diff in compare view

Updates undici from 6.19.8 to 6.20.1

Release notes

Sourced from undici's releases.

v6.20.1

What's Changed

[Backport v6.x] jsdoc: add jsdoc to lib/web/fetch/constants.js by @github-actions in nodejs/undici#3710

[Backport v6.x] feat: implement BodyReadable.bytes by @github-actions in nodejs/undici#3711

fix: add more expectsPayload methods by @ronag in nodejs/undici#3715

[Backport v6.x] chore(H2): onboard H2 into Undici queueing system (#3707) by @Uzlopak in nodejs/undici#3724

[Backport v6.x] fix: PoolBase kClose and kDestroy should await and not return the Promise by @github-actions in nodejs/undici#3723

[Backport v6.x] fix: extract noop everywhere by @Uzlopak in nodejs/undici#3727

Full Changelog: nodejs/undici@v6.20.0...v6.20.1

v6.20.0

What's Changed

Remove patched dom types (v6.x branch) by @eXhumer in nodejs/undici#3531

docs(Backport v6.x): Fix signature of RetryHandler by @github-actions in nodejs/undici#3594

deps(dev): update @types/node by @metcoder95 in nodejs/undici#3618

fix: throw on retry when payload is consume by downstream by @github-actions in nodejs/undici#3596

feat(Backport v6.x): move throwOnError to interceptor by @github-actions in nodejs/undici#3595

[Backport v6.x] fix: reduce memory usage in client-h1 by @github-actions in nodejs/undici#3672

[Backport v6.x] fix: refactor fast timers, fix UND_ERR_CONNECT_TIMEOUT on event loop blocking by @github-actions in nodejs/undici#3673

[Backport v6.x] fix: run asserts first if possible by @github-actions in nodejs/undici#3674

[Backport v6.x] fix: use fasttimers for all connection timeouts by @github-actions in nodejs/undici#3675

[Backport v6.x] ci: less flaky test/request-timeout.js test by @github-actions in nodejs/undici#3678

[Backport v6.x] test: less flaky timers acceptance test, rework fast timer tests to pass them faster by @github-actions in nodejs/undici#3679

[Backport v6.x] ignore leading and trailing crlfs in formdata body by @github-actions in nodejs/undici#3681

[Backport v6.x] mock: fix mocking of Uint8Array and ArrayBuffers as provided mock-responses by @github-actions in nodejs/undici#3689

[Backport v6.x] handle body errors by @Uzlopak in nodejs/undici#3700

Full Changelog: nodejs/undici@v6.19.8...v6.20.0

Commits

5344aa5 6.20.1
5415911 fix: extract noop everywhere (#3559) (#3727)
fd32a55 fix: PoolBase kClose and kDestroy should await and not return the Promise (#3...
a699105 chore(H2): onboard H2 into Undici queueing system (#3707) (#3724)
39c5974 fix: add more expectsPayload methods (#3715)
4869e5e feat: implement BodyReadable.bytes (#3391) (#3711)
5be8ebf jsdoc: add jsdoc to lib/web/fetch/constants.js (#3597) (#3710)
24b9403 Bumped v6.20.0
e4439e9 handle body errors (#3632) (#3700)
1df3923 mock: fix mocking of Uint8Array and ArrayBuffers as provided mock-reponses (#...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the production-dependencies group with 2 updates: [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) and [undici](https://github.com/nodejs/undici). Updates `@actions/core` from 1.10.1 to 1.11.1 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core) Updates `undici` from 6.19.8 to 6.20.1 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v6.19.8...v6.20.1) --- updated-dependencies: - dependency-name: "@actions/core" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: undici dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Nov 1, 2024

dependabot bot requested a review from parkerbxyz as a code owner November 1, 2024 10:58

dependabot bot added the javascript Pull requests that update Javascript code label Nov 1, 2024

dependabot bot requested a review from a team as a code owner November 1, 2024 10:58

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(deps): bump the production-dependencies group with 2 updates #181

fix(deps): bump the production-dependencies group with 2 updates #181

dependabot bot commented on behalf of github Nov 1, 2024

fix(deps): bump the production-dependencies group with 2 updates #181

Are you sure you want to change the base?

fix(deps): bump the production-dependencies group with 2 updates #181

Conversation

dependabot bot commented on behalf of github Nov 1, 2024

1.11.1

1.11.0

v6.20.1

What's Changed

v6.20.0

What's Changed