Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump parse-path and documentation #277

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 21, 2022

Bumps parse-path to 5.0.0 and updates ancestor dependency documentation. These dependencies need to be updated together.

Updates parse-path from 4.0.3 to 5.0.0

Release notes

Sourced from parse-path's releases.

5.0.0

parse-path 5.0.0

⭐ This is a major release of parse-path! ⭐

Breaking changes

  • parse-path will not parse git@... ssh URLs anymore. Use parse-url for that.
  • If the input url has a trailing slash, the trailing slash will be added in the pathname too.
  • The port field is a string. By default empty.
  • Added the password field (default: "")
  • The resource may contain the port in it (e.g. resource: "domain.com:4200").

Features

  • Faster
  • More secure
  • Cleaner codebase

Any questions, suggestions, contributions are always welcome! 😊

4.0.4

Remove the new line characters.

Commits

Updates documentation from 13.1.1 to 14.0.0

Release notes

Sourced from documentation's releases.

v14.0.0

chore(release): 14.0.0

v13.2.5

No release notes provided.

v13.2.4

No release notes provided.

v13.2.3

No release notes provided.

Changelog

Sourced from documentation's changelog.

14.0.0 (2022-08-19)

14.0.0-alpha.1 (2022-08-07)

Features

  • ✨ update Babel, copy list of plugins from Prettier (3f187d7)

14.0.0-alpha.0 (2022-08-05)

⚠ BREAKING CHANGES

  • all Extensions whould contains '.' so that mean if you have just 'ts' then need to convert to '.ts'
  • external parameter was removed Migration plan propose to move all external resources to input usages Motivation: packages has many inputs which describe in package.json so that mean need each time to parse all package.json of exsternal resources to understand which etry point need to pick. But it is base on guesses because entry point may could not contains a documentation and the best way to handle it manualy.
  • The serve parametr was remove, you can use any other tools which could be refresh and store your html site The private parameter has removed, use a access
  • documentation.js will now require node 14 or later.

Bug Fixes

  • add micromark dependencies fixed #1381 (3ba8165)

  • add TS and TSX as default extensions fixed #1377 (f0cb1c0)

  • external was removed as prefer of input usages (e3c59d7)

  • html report, it is return html if output is not defined (0975871)

  • remove private parameter, use access (BREAKING CHANGES) (874069c)

  • The server parameter deprecated and will be remove in next Major version fixed #1413 (810e08b)

  • use process.cwd vs . which can fail (4cc70a5)

  • replace module-deps-sortable on own implementation to control how parse files (abb781a)

  • Update Node minimum version to 14 (fc0bb3c)

13.2.5 (2021-04-24)

Bug Fixes

13.2.4 (2021-04-21)

Bug Fixes

... (truncated)

Commits
  • 849a083 chore(release): 14.0.0
  • 42b14a0 build(deps-dev): bump eslint from 8.21.0 to 8.22.0 (#1547)
  • 85ecbbf build(deps): bump @​babel/generator from 7.18.10 to 7.18.12 (#1545)
  • 4609719 chore(release): 14.0.0-alpha.1
  • f513485 Align babel plugin list with Prettier
  • 5d66953 Sort babel plugins
  • 7e17203 revert to upsteam package-lock.json
  • 3f187d7 feat: ✨ update Babel, copy list of plugins from Prettier
  • 73bb2a4 chore(release): 14.0.0-alpha.0
  • 390edff Update release instructions
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by birkskyum, a new releaser for documentation since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 21, 2022
@guardrails
Copy link

guardrails bot commented Oct 21, 2022

⚠️ We detected 5 security issues in this pull request:

Vulnerable Libraries (5)
Severity Details
High pkg:npm/[email protected]@3.0.4 (t) upgrade to: 3.0.5
High pkg:npm/[email protected]@0.0.8 (t) - no patch available
High pkg:npm/[email protected]@7.0.2 (t) - no patch available
High [email protected] (t) upgrade to: 3.0.0 || >4.1.0
High [email protected] (t) upgrade to: >=10.1.0

More info on how to fix Vulnerable Libraries in JavaScript.


👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/parse-path-and-documentation-5.0.0 branch 3 times, most recently from d2110fa to f529885 Compare October 27, 2022 17:34
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/parse-path-and-documentation-5.0.0 branch 2 times, most recently from 22e3f5c to 8a2ce71 Compare November 15, 2022 22:02
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/parse-path-and-documentation-5.0.0 branch from 8a2ce71 to 1af261a Compare November 16, 2022 22:22
Bumps [parse-path](https://github.com/IonicaBizau/parse-path) to 5.0.0 and updates ancestor dependency [documentation](https://github.com/documentationjs/documentation). These dependencies need to be updated together.


Updates `parse-path` from 4.0.3 to 5.0.0
- [Release notes](https://github.com/IonicaBizau/parse-path/releases)
- [Commits](IonicaBizau/parse-path@4.0.3...5.0.0)

Updates `documentation` from 13.1.1 to 14.0.0
- [Release notes](https://github.com/documentationjs/documentation/releases)
- [Changelog](https://github.com/documentationjs/documentation/blob/master/CHANGELOG.md)
- [Commits](documentationjs/documentation@v13.1.1...v14.0.0)

---
updated-dependencies:
- dependency-name: parse-path
  dependency-type: indirect
- dependency-name: documentation
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/parse-path-and-documentation-5.0.0 branch from 1af261a to 2fccf6a Compare November 17, 2022 18:27
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 16, 2022

Superseded by #287.

@dependabot dependabot bot closed this Dec 16, 2022
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/parse-path-and-documentation-5.0.0 branch December 16, 2022 21:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants