build(deps): bump the npm_and_yarn group with 19 updates #19

dependabot · 2024-11-07T12:42:02Z

Bumps the npm_and_yarn group with 19 updates:

Package	From	To
gatsby	`2.32.11`	`4.25.7`
gatsby-plugin-mdx	`1.10.1`	`2.14.1`
loader-utils	`2.0.0`	`2.0.4`
node-fetch	`2.6.7`	`2.7.0`
@sideway/formula	`3.0.0`	`3.0.1`
body-parser	`1.19.0`	`1.20.2`
browserify-sign	`4.2.1`	`4.2.3`
cookie	`0.4.1`	`0.4.2`
decode-uri-component	`0.2.0`	`0.2.2`
devcert	`1.1.3`	`1.2.2`
elliptic	`6.5.4`	`6.6.0`
express	`4.19.2`	`4.21.1`
jpeg-js	`0.4.3`	`0.4.4`
moment	`2.29.1`	`2.30.1`
send	`0.18.0`	`0.19.0`
serve-static	`1.15.0`	`1.16.2`
ua-parser-js	`0.7.27`	`0.7.39`
url-parse	`1.5.7`	`1.5.10`
word-wrap	`1.2.3`	`1.2.5`

Updates gatsby from 2.32.11 to 4.25.7

Release notes

Sourced from gatsby's releases.

[email protected] and 6 more...

2024-08-26

Updated packages

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

What's Changed

fix: pin cheerio (#39066) by @gatsbybot in gatsbyjs/gatsby#39069

See full release notes: gatsbyjs/gatsby#39070

v4.24

Welcome to [email protected] release (September 2022 #2)

Key highlights of this release:

Gatsby 5 Alpha

Updating File System Routes on data changes

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v4.23

Welcome to [email protected] release (September 2022 #1)

Key highlights of this release:

Open RFCs

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v4.22

Welcome to [email protected] release (August 2022 #3)

Key highlights of this release:

... (truncated)

Commits

db5eb18 chore(release): Publish
fc22f4b fix(gatsby): don't serve codeframes for files outside of compilation (#38059)...
8889bfe chore(release): Publish
d3d5fd0 fix(gatsby-source-wordpress): prevent inconsistent schema customization (#377...
5bdef4a fix(gatsby): don't block event loop during inference (#37780) (#37801)
50e3f94 chore(release): Publish
3f8477d chore: Update get-unowned-packages script to use npm 9 syntax
dcf88ed fix(gatsby-plugin-sharp): don't serve static assets that are not result of cu...
3be4a80 chore(release): Publish
98c4d27 feat(gatsby): add initial webhook body env var to bootstrap context (#37478) ...
Additional commits viewable in compare view

Updates gatsby-plugin-mdx from 1.10.1 to 2.14.1

Release notes

Sourced from gatsby-plugin-mdx's releases.

[email protected] and 6 more...

2024-08-26

Updated packages

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

What's Changed

fix: pin cheerio (#39066) by @gatsbybot in gatsbyjs/gatsby#39069

See full release notes: gatsbyjs/gatsby#39070

Changelog

Sourced from gatsby-plugin-mdx's changelog.

2.14.1 (2022-06-02)

Bug Fixes

don't allow JS frontmatter by default #35830 #35834 (ff94ed5)

2.13.0 (2021-09-01)

🧾 Release notes

Chores

re-generate changelogs #32886 (417df15)

2.12.0 (2021-08-18)

🧾 Release notes

Chores

update formatting & linting #32626 (4a765b5)

update babel monorepo #32564 (a554998)

2.11.0 (2021-08-04)

🧾 Release notes

Bug Fixes

generate mdx once when multiple mdx fields requested #32462 (0f8d747)

2.10.1 (2021-07-26)

Bug Fixes

generate mdx once when multiple mdx fields requested #32462 #32506 (4519a7c)

2.10.0 (2021-07-20)

🧾 Release notes

Chores

update babel monorepo #32238 (466d4c0)

2.9.0 (2021-07-07)

🧾 Release notes

Features

... (truncated)

Commits

4997d63 chore(release): Publish
ff94ed5 fix(gatsby-plugin-mdx): don't allow JS frontmatter by default (#35830) (#35834)
f3f1bbc chore(release): Publish
9e09fb3 chore(release): Publish next
048c7a7 chore(deps): update babel monorepo (#32996)
efdf037 fix(deps): update dependency core-js to ^3.17.2 (#32980)
f8f1666 chore(release): Publish next
3294536 chore(changelogs): update changelogs for 3.13 release (#32970)
eea2687 chore(deps): update fs-extra (major) (#32654)
401b358 chore: add missing @babel/runtime dependencies (#32954)
Additional commits viewable in compare view

Updates loader-utils from 2.0.0 to 2.0.4

Release notes

Sourced from loader-utils's releases.

v2.0.4

2.0.4 (2022-11-11)

Bug Fixes

ReDoS problem (#225) (ac09944)

v2.0.3

2.0.3 (2022-10-20)

Bug Fixes

security: prototype pollution exploit (#217) (a93cf6f)

v2.0.2

2.0.2 (2021-11-04)

Bug Fixes

base64 generation and unicode characters (#197) (8c2d24e)

v2.0.1

2.0.1 (2021-10-29)

Bug Fixes

md4 support on Node.js v17 (#193) (1069f61)

Changelog

Sourced from loader-utils's changelog.

2.0.4 (2022-11-11)

Bug Fixes

ReDoS problem (#225) (ac09944)

2.0.3 (2022-10-20)

Bug Fixes

security: prototype pollution exploit (#217) (a93cf6f)

2.0.2 (2021-11-04)

Bug Fixes

base64 generation and unicode characters (#197) (8c2d24e)

2.0.1 (2021-10-29)

Bug Fixes

md4 support on Node.js v17 (#193) (1069f61)

Commits

6688b50 chore(release): 2.0.4
ac09944 fix: ReDoS problem (#225)
7162619 chore(release): 2.0.3
a93cf6f fix(security): prototype polution exploit (#217)
90c7c4b chore(release): 2.0.2
8c2d24e fix: base64 generation and unicode characters (#197)
5fb5562 chore(release): 2.0.1
1069f61 fix: md4 support on Node.js v17 (#193)
See full diff in compare view

Updates node-fetch from 2.6.7 to 2.7.0

Release notes

Sourced from node-fetch's releases.

v2.7.0

2.7.0 (2023-08-23)

Features

AbortError (#1744) (9b9d458)

v2.6.13

2.6.13 (2023-08-18)

Bug Fixes

Remove the default connection close header (#1765) (65ae25a), closes #1735 #1473 #1736

v2.6.12

2.6.12 (2023-06-29)

Bug Fixes

socket variable testing for undefined (#1726) (8bc3a7c)

v2.6.11

2.6.11 (2023-05-09)

Reverts

Revert "fix: handle bom in text and json (#1739)" (#1741) (afb36f6), closes #1739 #1741

v2.6.10

2.6.10 (2023-05-08)

Bug Fixes

handle bom in text and json (#1739) (29909d7)

v2.6.9

2.6.9 (2023-01-30)

Bug Fixes

"global is not defined" (#1704) (70f592d)

v2.6.8

2.6.8 (2023-01-13)

... (truncated)

Commits

9b9d458 feat: AbortError (#1744)
65ae25a fix: Remove the default connection close header (#1765)
8bc3a7c fix: socket variable testing for undefined (#1726)
afb36f6 Revert "fix: handle bom in text and json (#1739)" (#1741)
29909d7 fix: handle bom in text and json (#1739)
70f592d fix: "global is not defined" (#1704)
0f1ebb0 Prevent error when response is null (#1699)
6e9464d ci(release): install dependencies
dd2a0ba ci(release): install dependencies
49bef02 ci(release): use latest Node LTS
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by node-fetch-bot, a new releaser for node-fetch since your current version.

Updates @sideway/formula from 3.0.0 to 3.0.1

Commits

5b44c1b 3.0.1
9fbc20a chore: better number regex
41ae98e Cleanup
c59f35e Move to Sideway
See full diff in compare view

Maintainer changes

This version was pushed to npm by marsup, a new releaser for @sideway/formula since your current version.

Updates body-parser from 1.19.0 to 1.20.2

Release notes

Sourced from body-parser's releases.

1.20.2

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

perf: skip value escaping when unnecessary

deps: [email protected]

1.20.1

deps: [email protected]

perf: remove unnecessary object clone

1.20.0

Fix error message for json parse whitespace in strict

Fix internal error when inflated body exceeds limit

Prevent loss of async hooks context

Prevent hanging when request already read

deps: [email protected]

Replace internal eval usage with Function constructor

Use instance methods on process to check for listeners

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

1.19.2

deps: [email protected]

deps: [email protected]

Fix handling of __proto__ keys

deps: [email protected]

deps: [email protected]

1.19.1

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: type-is@~1.6.18

Changelog

Sourced from body-parser's changelog.

1.20.2 / 2023-02-21

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

perf: skip value escaping when unnecessary

deps: [email protected]

1.20.1 / 2022-10-06

deps: [email protected]

perf: remove unnecessary object clone

1.20.0 / 2022-04-02

Fix error message for json parse whitespace in strict

Fix internal error when inflated body exceeds limit

Prevent loss of async hooks context

Prevent hanging when request already read

deps: [email protected]

Replace internal eval usage with Function constructor

Use instance methods on process to check for listeners

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

1.19.2 / 2022-02-15

deps: [email protected]

deps: [email protected]

Fix handling of __proto__ keys

deps: [email protected]

deps: [email protected]

1.19.1 / 2021-12-10

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

deps: [email protected]

... (truncated)

Commits

ee91374 1.20.2
368a93a Fix strict json error message on Node.js 19+
0385872 deps: [email protected]
2c35b41 build: [email protected]
f0646c2 build: [email protected]
f345fb1 build: [email protected]
6842efc deps: content-type@~1.0.5
5af7315 build: [email protected]
8e605b3 build: [email protected]
cba6e77 build: [email protected]
Additional commits viewable in compare view

Updates browserify-sign from 4.2.1 to 4.2.3

Changelog

Sourced from browserify-sign's changelog.

v4.2.3 - 2024-03-05

Commits

[patch] widen support to 0.12 9247adf

[patch] drop minimum node support to v1 4d0ee49

[Dev Deps] update aud, npmignore, tape 87f3a35

[actions] remove redundant finisher 37a4758

[Deps] pin hash-base to ~3.0, due to a breaking change 9e2bf12

[Deps] update parse-asn1 [f427270`](browserify/browserify-sign@f427270)

[Deps] update elliptic fb261ce

[Deps] pin elliptic due to a breaking change 168e16f

v4.2.2 - 2023-10-25

Fixed

[Tests] log when openssl doesn't support cipher [#37](https://github.com/crypto-browserify/browserify-sign/issues/37)

Commits

Only apps should have lockfiles 09a8995

[eslint] switch to eslint 83fe463

[meta] add npmignore and auto-changelog 4418183

[meta] fix package.json indentation 9ac5a5e

[Tests] migrate from travis to github actions d845d85

[Fix] sign: throw on unsupported padding scheme 8767739

[Fix] properly check the upper bound for DSA signatures 85994cd

[Tests] handle openSSL not supporting a scheme f5f17c2

[Deps] update bn.js, browserify-rsa, elliptic, parse-asn1, readable-stream, safe-buffer a67d0eb

[Dev Deps] update nyc, standard, tape cc5350b

[Tests] always run coverage; downgrade nyc 75ce1d5

[meta] add safe-publish-latest dcf49ce

[Tests] add npm run posttest 75dd8fd

[Dev Deps] update tape 3aec038

[Tests] skip unsupported schemes 703c83e

[Tests] node < 6 lacks array includes 3aa43cf

[Dev Deps] fix eslint range 98d4e0d

Commits

bf2c3ec v4.2.3
9247adf [patch] widen support to 0.12
f427270 [Deps] update `parse-asn1
87f3a35 [Dev Deps] update aud, npmignore, tape
fb261ce [Deps] update elliptic
4d0ee49 [patch] drop minimum node support to v1
9e2bf12 [Deps] pin hash-base to ~3.0, due to a breaking change
168e16f [Deps] pin elliptic due to a breaking change
37a4758 [actions] remove redundant finisher
4af5a90 v4.2.2
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.

Updates cookie from 0.4.1 to 0.4.2

Release notes

Sourced from cookie's releases.

0.4.2

pref: read value only when assigning in parse

pref: remove unnecessary regexp in parse

Changelog

Sourced from cookie's changelog.

0.4.2 / 2022-02-02

pref: read value only when assigning in parse

pref: remove unnecessary regexp in parse

Commits

55bac40 0.4.2
519feb5 build: [email protected]
fadc4bc build: [email protected]
009b3cb pref: read value only when assigning in parse
04be428 lint: remove deprecated String.prototype.substr
2dc6662 bench: preserve decode behavior for top cookies
aa1a335 pref: remove unnecessary regexp in parse
2bcee5a bench: add cookies from top 20 sites
4f08c95 docs: update benchmark
f056356 build: [email protected]
Additional commits viewable in compare view

Updates decode-uri-component from 0.2.0 to 0.2.2

Release notes

Sourced from decode-uri-component's releases.

v0.2.2

Prevent overwriting previously decoded tokens 980e0bf

SamVerschueren/decode-uri-component@v0.2.1...v0.2.2

v0.2.1

Switch to GitHub workflows 76abc93

Fix issue where decode throws - fixes #6 746ca5d

Update license (#1) 486d7e2

Tidelift tasks a650457

Meta tweaks 66e1c28

SamVerschueren/decode-uri-component@v0.2.0...v0.2.1

Commits

a0eea46 0.2.2
980e0bf Prevent overwriting previously decoded tokens
3c8a373 0.2.1
76abc93 Switch to GitHub workflows
746ca5d Fix issue where decode throws - fixes #6
486d7e2 Update license (#1)
a650457 Tidelift tasks
66e1c28 Meta tweaks
See full diff in compare view

Updates devcert from 1.1.3 to 1.2.2

Commits

2f42b5a 1.2.2
83dd841 Allow subdomains and localhost in new domain validator (#84)
1ed164f 1.2.1
b076321 switch from vulnerable VALID_DOMAIN regex to is-valid-domain lib (#79)
fecd645 1.2.0
92a14f8 chore: bring lockfiles current
be273aa Feature: Allow multiple Subject Alternative Name (SAN) extensions (#52)
See full diff in compare view

Maintainer changes

This version was pushed to npm by jzetlen, a new releaser for devcert since your current version.

Updates elliptic from 6.5.4 to 6.6.0

Commits

b8a7edd 6.6.0
34c8534 fix: signature verification due to leading zeros
3e46a48 6.5.7
accb61e lib: DER signature decoding correction
03e06e1 6.5.6
7ac5360 Merge commit from fork
7570078 6.5.5
206da2e lib: lint
0a78e03 [Fix] restore node < 4 compat
See full diff in compare view

Updates express from 4.19.2 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1

What's Changed

Backport a fix for CVE-2024-47764 to the 4.x branch by @joshbuker in expressjs/express#6029

Release: 4.21.1 by @UlisesGascon in expressjs/express#6031

Full Changelog: expressjs/express@4.21.0...4.21.1

4.21.0

What's Changed

Deprecate "back" magic string in redirects by @blakeembrey in expressjs/express#5935

[email protected] by @wesleytodd in expressjs/express#5954

fix(deps): [email protected] by @wesleytodd in expressjs/express#5951

Upgraded dependency qs to 6.13.0 to match qs in body-parser by @agadzinski93 in expressjs/express#5946

New Contributors

@agadzinski93 made their first contribution in expressjs/express#5946

Full Changelog: expressjs/express@4.20.0...4.21.0

4.20.0

What's Changed

Important

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

Other Changes

4.19.2 Staging by @wesleytodd in expressjs/express#5561

remove duplicate location test for data uri by @wesleytodd in expressjs/express#5562

feat: document beta releases expectations by @marco-ippolito in expressjs/express#5565

Cut down on duplicated CI runs by @jonchurch in expressjs/express#5564

Add a Threat Model by @UlisesGascon in expressjs/express#5526

Assign captain of encodeurl by @blakeembrey in expressjs/express#5579

Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by @jonchurch in expressjs/express#5587

docs: update Security.md by @inigomarquinez in expressjs/express#5590

docs: update triage nomination policy by @UlisesGascon in expressjs/express#5600

Add CodeQL (SAST) by @UlisesGascon in expressjs/express#5433

docs: add UlisesGascon as triage initiative captain by @UlisesGascon in expressjs/express#5605

deps: encodeurl@~2.0.0 by @blakeembrey in expressjs/express#5569

skip QUERY method test by @jonchurch in expressjs/express#5628

ignore ETAG query test on 21 and 22, reuse skip util by @jonchurch in expressjs/express#5639

add support Node.js@22 in the CI by @mertcanaltin in expressjs/express#5627

doc: add table of contents, tc/triager lists to readme by @mertcanaltin in expressjs/express#5619

List and sort all projects, add captains by @blakeembrey in expressjs/express#5653

docs: add @UlisesGascon as captain for cookie-parser by @UlisesGascon in expressjs/express#5666

✨ bring back query tests for node 21 by @ctcpip in expressjs/express#5690

[v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by @jonchurch in expressjs/express#5672

skip QUERY tests for Node 21 only, still not supported by @jonchurch in expressjs/express#5695

... (truncated)

Changelog

Sourced from express's changelog.

4.21.1 / 2024-10-08

Backported a fix for CVE-2024-47764

4.21.0 / 2024-09-11

Deprecate res.location("back") and res.redirect("back") magic string

deps: [email protected]

includes [email protected]

deps: [email protected]

deps: [email protected]

4.20.0 / 2024-09-10

deps: [email protected]

Remove link renderization in html while redirecting

deps: [email protected]

Remove link renderization in html while redirecting

deps: [email protected]

add depth option to customize the depth level in the parser

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

deps: [email protected]

Adds support for named matching groups in the routes using a regex

Adds backtracking protection to parameters without regexes defined

deps: encodeurl@~2.0.0

Removes encoding of \, |, and ^ to align better with URL spec

Deprecate passing options.maxAge and options.expires to res.clearCookie

Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie

Commits

8e229f9 4.21.1
a024c8a fix(deps): [email protected]
7e562c6 4.21.0
1bcde96 fix(deps): [email protected] (#5946)
7d36477 fix(deps): [email protected] (#5951)
40d2d8f fix(deps): [email protected]
77ada90 Deprecate "back" magic string in redirects (#5935)
21df421 4.20.0
4c9ddc1 feat: upgrade to [email protected]
9ebe5d5 feat: upgrade to [email protected] (#5928)
Additional commits viewable in compare view

Updates jpeg-js from 0.4.3 to 0.4.4

Release notes

Sourced from jpeg-js's releases.

v0.4.4

v0.4.4 (2022-06-07)

feat: add comment tag encoding (#87) (13e1ffa), closes #87

fix: validate sampling factors (#106) (9ccd35f), closes #106

fix(decoder): rethrow a more helpful error if Buffer is undefined (#93) (b58cc11), closes #93

chore(ci): migrate to github actions (#86) (417e8e2), closes #86

chore(deps): bump y18n from 4.0.0 to 4.0.3 (#98) (2c90858), closes #98

chore(deps): bump ws from 7.2.3 to 7.4.6 (#91) (fd73289), closes #91

chore(deps): bump hosted-git-info from 2.8.8 to 2.8.9 (#90) (9449a8b), closes #90

chore(deps): bump lodash from 4.17.15 to 4.17.21 (#89) (ffdc4a4), closes #89

Commits

9ccd35f fix: validate sampling factors (#106)
b58cc11 fix(decoder): rethrow a more helpful error if Buffer is undefined (#93)
2c90858 chore(deps): bump y18n from 4.0.0 to 4.0.3 (#98)
fd73289 chore(deps): bump ws from 7.2.3 to 7.4.6 (#91)
9449a8b chore(deps): bump hosted-git-info from 2.8.8 to 2.8.9 (#90)
ffdc4a4 chore(deps): bump lodash from 4.17.15 to 4.17.21 (#89)
13e1ffa feat: add comment tag encoding (#87)
417e8e2 chore(ci): migrate to github actions (#86)
See full diff in compare view

Updates moment from 2.29.1 to 2.30.1

Changelog

Sourced from moment's changelog.

2.30.1

Release Dec 27, 2023

Revert moment/moment#5827, because it's breaking a lot of TS code.

2.30.0 Full changelog

Release Dec 26, 2023

2.29.4

Release Jul 6, 2022

Bumps the npm_and_yarn group with 19 updates: | Package | From | To | | --- | --- | --- | | [gatsby](https://github.com/gatsbyjs/gatsby) | `2.32.11` | `4.25.7` | | [gatsby-plugin-mdx](https://github.com/gatsbyjs/gatsby/tree/HEAD/packages/gatsby-plugin-mdx) | `1.10.1` | `2.14.1` | | [loader-utils](https://github.com/webpack/loader-utils) | `2.0.0` | `2.0.4` | | [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.7` | `2.7.0` | | [@sideway/formula](https://github.com/sideway/formula) | `3.0.0` | `3.0.1` | | [body-parser](https://github.com/expressjs/body-parser) | `1.19.0` | `1.20.2` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.2.1` | `4.2.3` | | [cookie](https://github.com/jshttp/cookie) | `0.4.1` | `0.4.2` | | [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` | | [devcert](https://github.com/davewasmer/devcert) | `1.1.3` | `1.2.2` | | [elliptic](https://github.com/indutny/elliptic) | `6.5.4` | `6.6.0` | | [express](https://github.com/expressjs/express) | `4.19.2` | `4.21.1` | | [jpeg-js](https://github.com/eugeneware/jpeg-js) | `0.4.3` | `0.4.4` | | [moment](https://github.com/moment/moment) | `2.29.1` | `2.30.1` | | [send](https://github.com/pillarjs/send) | `0.18.0` | `0.19.0` | | [serve-static](https://github.com/expressjs/serve-static) | `1.15.0` | `1.16.2` | | [ua-parser-js](https://github.com/faisalman/ua-parser-js) | `0.7.27` | `0.7.39` | | [url-parse](https://github.com/unshiftio/url-parse) | `1.5.7` | `1.5.10` | | [word-wrap](https://github.com/jonschlinkert/word-wrap) | `1.2.3` | `1.2.5` | Updates `gatsby` from 2.32.11 to 4.25.7 - [Release notes](https://github.com/gatsbyjs/gatsby/releases) - [Changelog](https://github.com/gatsbyjs/gatsby/blob/master/CHANGELOG.md) - [Commits](https://github.com/gatsbyjs/gatsby/compare/[email protected]@4.25.7) Updates `gatsby-plugin-mdx` from 1.10.1 to 2.14.1 - [Release notes](https://github.com/gatsbyjs/gatsby/releases) - [Changelog](https://github.com/gatsbyjs/gatsby/blob/[email protected]/packages/gatsby-plugin-mdx/CHANGELOG.md) - [Commits](https://github.com/gatsbyjs/gatsby/commits/[email protected]/packages/gatsby-plugin-mdx) Updates `loader-utils` from 2.0.0 to 2.0.4 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/v2.0.4/CHANGELOG.md) - [Commits](webpack/loader-utils@v2.0.0...v2.0.4) Updates `node-fetch` from 2.6.7 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.7...v2.7.0) Updates `@sideway/formula` from 3.0.0 to 3.0.1 - [Commits](hapijs/formula@v3.0.0...v3.0.1) Updates `body-parser` from 1.19.0 to 1.20.2 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.19.0...1.20.2) Updates `browserify-sign` from 4.2.1 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.2.1...v4.2.3) Updates `cookie` from 0.4.1 to 0.4.2 - [Release notes](https://github.com/jshttp/cookie/releases) - [Changelog](https://github.com/jshttp/cookie/blob/v0.4.2/HISTORY.md) - [Commits](jshttp/cookie@v0.4.1...v0.4.2) Updates `decode-uri-component` from 0.2.0 to 0.2.2 - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) Updates `devcert` from 1.1.3 to 1.2.2 - [Release notes](https://github.com/davewasmer/devcert/releases) - [Changelog](https://github.com/davewasmer/devcert/blob/master/CHANGELOG.md) - [Commits](davewasmer/devcert@v1.1.3...v1.2.2) Updates `elliptic` from 6.5.4 to 6.6.0 - [Commits](indutny/elliptic@v6.5.4...v6.6.0) Updates `express` from 4.19.2 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](expressjs/express@4.19.2...4.21.1) Updates `jpeg-js` from 0.4.3 to 0.4.4 - [Release notes](https://github.com/eugeneware/jpeg-js/releases) - [Commits](jpeg-js/jpeg-js@v0.4.3...v0.4.4) Updates `moment` from 2.29.1 to 2.30.1 - [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md) - [Commits](moment/moment@2.29.1...2.30.1) Updates `send` from 0.18.0 to 0.19.0 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.18.0...0.19.0) Updates `serve-static` from 1.15.0 to 1.16.2 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md) - [Commits](expressjs/serve-static@v1.15.0...v1.16.2) Updates `ua-parser-js` from 0.7.27 to 0.7.39 - [Release notes](https://github.com/faisalman/ua-parser-js/releases) - [Changelog](https://github.com/faisalman/ua-parser-js/blob/0.7.39/changelog.md) - [Commits](faisalman/ua-parser-js@0.7.27...0.7.39) Updates `url-parse` from 1.5.7 to 1.5.10 - [Commits](unshiftio/url-parse@1.5.7...1.5.10) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) --- updated-dependencies: - dependency-name: gatsby dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: gatsby-plugin-mdx dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: loader-utils dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@sideway/formula" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: body-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: decode-uri-component dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: devcert dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jpeg-js dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: moment dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ua-parser-js dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: url-parse dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Nov 7, 2024

This was referenced Nov 7, 2024

build(deps): bump express from 4.19.2 to 4.21.0 #16

Closed

build(deps): bump elliptic from 6.5.4 to 6.6.0 #18

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the npm_and_yarn group with 19 updates #19

build(deps): bump the npm_and_yarn group with 19 updates #19

dependabot bot commented on behalf of github Nov 7, 2024

build(deps): bump the npm_and_yarn group with 19 updates #19

Are you sure you want to change the base?

build(deps): bump the npm_and_yarn group with 19 updates #19

Conversation

dependabot bot commented on behalf of github Nov 7, 2024

[email protected] and 6 more...

Updated packages

What's Changed

v4.24

v4.23

v4.22

[email protected] and 6 more...

Updated packages

What's Changed

2.14.1 (2022-06-02)

Bug Fixes

2.13.0 (2021-09-01)

Chores

2.12.0 (2021-08-18)

Chores

2.11.0 (2021-08-04)

Bug Fixes

2.10.1 (2021-07-26)

Bug Fixes

2.10.0 (2021-07-20)

Chores

2.9.0 (2021-07-07)

Features

v2.0.4

2.0.4 (2022-11-11)

Bug Fixes

v2.0.3

2.0.3 (2022-10-20)

Bug Fixes

v2.0.2

2.0.2 (2021-11-04)

Bug Fixes

v2.0.1

2.0.1 (2021-10-29)

Bug Fixes

2.0.4 (2022-11-11)

Bug Fixes

2.0.3 (2022-10-20)

Bug Fixes

2.0.2 (2021-11-04)

Bug Fixes

2.0.1 (2021-10-29)

Bug Fixes

v2.7.0

2.7.0 (2023-08-23)

Features

v2.6.13

2.6.13 (2023-08-18)

Bug Fixes

v2.6.12

2.6.12 (2023-06-29)

Bug Fixes

v2.6.11

2.6.11 (2023-05-09)

Reverts

v2.6.10

2.6.10 (2023-05-08)

Bug Fixes

v2.6.9

2.6.9 (2023-01-30)

Bug Fixes

v2.6.8

2.6.8 (2023-01-13)

1.20.2

1.20.1

1.20.0

1.19.2

1.19.1

1.20.2 / 2023-02-21

1.20.1 / 2022-10-06

1.20.0 / 2022-04-02

1.19.2 / 2022-02-15

1.19.1 / 2021-12-10

v4.2.3 - 2024-03-05

Commits