chore(deps): bump the npm_and_yarn group across 6 directories with 9 updates #15

dependabot · 2024-04-23T03:32:03Z

Bumps the npm_and_yarn group with 1 update in the /bench/hot-module-reloading/css-stress-test directory: next.
Bumps the npm_and_yarn group with 1 update in the /examples/react-fast-refresh-test directory: next.
Bumps the npm_and_yarn group with 1 update in the /packages/bun-release directory: octokit.
Bumps the npm_and_yarn group with 4 updates in the /test directory: express, sharp, svelte and undici.
Bumps the npm_and_yarn group with 1 update in the /test/cli/install/migration/complex-workspace directory: sharp.
Bumps the npm_and_yarn group with 4 updates in the /test/cli/install/migration/contoso-test directory: next, express, qs and webpack-dev-middleware.

Updates next from 12.3.4 to 14.2.2

Release notes

Sourced from next's releases.

v14.2.2

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Fix Server Action error logs for unhandled POST requests (#64315)

Improve rendering performance (#64408)

Fix the method prop case in Server Actions transform (#64398)

fix(next-lint): update option --report-unused-disable-directives to --report-unused-disable-directives-severity (#64405)

tweak test for Azure (#64424)

router restore should take priority over pending actions (#64449)

Fix client boundary inheritance for barrel optimization (#64467)

improve turborepo caching (#64493)

feat: strip traceparent header from cachekey (#64499)

Fix more Turbopack build tests

Update lockfile for compatibility with turbo (#64360)

Fix typo in dynamic-rendering.ts (#64365)

Fix DynamicServerError not being thrown in fetch (#64511)

fix(next): Metadata.openGraph values not resolving basic values when type is set (#63620)

disable production chunking in dev (#64488)

Fix cjs client components tree-shaking (#64558)

fix refresh behavior for discarded actions (#64532)

fix: filter out middleware requests in logging (#64549)

Turbopack: Allow client components to be imported in app routes (#64520)

Fix ASL bundling for dynamic css (#64451)

add pathname normalizer for actions (#64592)

fix incorrect refresh request when basePath is set (#64589)

test: skip turbopack build test (#64356)

hotfix(turbopack): Update with patch for postcss.config.js path resolution on Windows (#64677)

Credits

Huge thanks to @shuding, @coltonehrman, @ztanner, @huozhi, @sokra, @Jeffrey-Zutt, @timneutkens, @wbinnssmith, @wiesson, @ijjk, @devjiwonchoi, and @bgw for helping!

v14.2.1

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

use pathToFileUrl to make esm import()s work with absolute windows paths (#64386) @sokra

Credits

Huge thanks to @sokra for helping!

v14.2.1-canary.7

Core Changes

... (truncated)

Commits

c850e4a v14.2.2
a340d9e hotfix(turbopack): Update with patch for postcss.config.js path resolution on...
6462b74 test: skip turbopack build test (#64356)
12982ef fix incorrect refresh request when basePath is set (#64589)
6f27f94 add pathname normalizer for actions (#64592)
8d18e0c Fix ASL bundling for dynamic css (#64451)
3709dd9 Turbopack: Allow client components to be imported in app routes (#64520)
373fbba fix: filter out middleware requests in logging (#64549)
2f8e096 fix refresh behavior for discarded actions (#64532)
6838f57 Fix cjs client components tree-shaking (#64558)
Additional commits viewable in compare view

Updates next from 11.1.4 to 14.2.2

Release notes

Sourced from next's releases.

v14.2.2

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Fix Server Action error logs for unhandled POST requests (#64315)

Improve rendering performance (#64408)

Fix the method prop case in Server Actions transform (#64398)

fix(next-lint): update option --report-unused-disable-directives to --report-unused-disable-directives-severity (#64405)

tweak test for Azure (#64424)

router restore should take priority over pending actions (#64449)

Fix client boundary inheritance for barrel optimization (#64467)

improve turborepo caching (#64493)

feat: strip traceparent header from cachekey (#64499)

Fix more Turbopack build tests

Update lockfile for compatibility with turbo (#64360)

Fix typo in dynamic-rendering.ts (#64365)

Fix DynamicServerError not being thrown in fetch (#64511)

fix(next): Metadata.openGraph values not resolving basic values when type is set (#63620)

disable production chunking in dev (#64488)

Fix cjs client components tree-shaking (#64558)

fix refresh behavior for discarded actions (#64532)

fix: filter out middleware requests in logging (#64549)

Turbopack: Allow client components to be imported in app routes (#64520)

Fix ASL bundling for dynamic css (#64451)

add pathname normalizer for actions (#64592)

fix incorrect refresh request when basePath is set (#64589)

test: skip turbopack build test (#64356)

hotfix(turbopack): Update with patch for postcss.config.js path resolution on Windows (#64677)

Credits

Huge thanks to @shuding, @coltonehrman, @ztanner, @huozhi, @sokra, @Jeffrey-Zutt, @timneutkens, @wbinnssmith, @wiesson, @ijjk, @devjiwonchoi, and @bgw for helping!

v14.2.1

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

use pathToFileUrl to make esm import()s work with absolute windows paths (#64386) @sokra

Credits

Huge thanks to @sokra for helping!

v14.2.1-canary.7

Core Changes

... (truncated)

Commits

c850e4a v14.2.2
a340d9e hotfix(turbopack): Update with patch for postcss.config.js path resolution on...
6462b74 test: skip turbopack build test (#64356)
12982ef fix incorrect refresh request when basePath is set (#64589)
6f27f94 add pathname normalizer for actions (#64592)
8d18e0c Fix ASL bundling for dynamic css (#64451)
3709dd9 Turbopack: Allow client components to be imported in app routes (#64520)
373fbba fix: filter out middleware requests in logging (#64549)
2f8e096 fix refresh behavior for discarded actions (#64532)
6838f57 Fix cjs client components tree-shaking (#64558)
Additional commits viewable in compare view

Updates octokit from 2.1.0 to 3.2.0

Release notes

Sourced from octokit's releases.

v3.2.0

3.2.0 (2024-04-03)

Features

security: Add provenance (#2653) (a90799a)

v3.1.2

3.1.2 (2023-11-15)

Bug Fixes

updates app.js for the handling of an error being thrown by the verify method in webhooks.js (#2576) (b59da80)

v3.1.1

3.1.1 (2023-09-25)

Bug Fixes

deps: update octokit monorepo (major) (#2541) (f366919)

v3.1.0

3.1.0 (2023-07-26)

Features

add plugin-paginate-graphql (#2487) (74856f6)

v3.0.0

3.0.0 (2023-07-11)

Features

v3 (#2456) (84e6569)

BREAKING CHANGES

Drop support for NodeJS v14, v16

Remove previews support for the REST API

remove agent option from octokit.request()

Replace support for Node.js http(s) Agents with documentation on using fetch dispatchers instead (via @octokit/request)

Remove ability to pass custom request options, except for method, headers, body, signal (via @octokit/request)

v3.0.0-beta.5

... (truncated)

Commits

a90799a feat(security): Add provenance (#2653)
353e0d5 build(deps): lock file maintenance (#2651)
6a60c15 ci(action): update actions/add-to-project action to v1
df14a57 build(deps): lock file maintenance (#2646)
f98aeec ci(action): update actions/add-to-project action to v0.6.1 (#2645)
cf88b74 build(deps): lock file maintenance (#2644)
5402983 build(deps): lock file maintenance (#2640)
89c89de docs(README): Missing required parameter issue_number (#2639)
27b068a build(deps): lock file maintenance (#2637)
1f06127 ci(action): update actions/add-to-project action to v0.6.0 (#2633)
Additional commits viewable in compare view

Updates express from 4.18.2 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Improved fix for open redirect allow list bypass

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

Fix ci after location patch by @wesleytodd in expressjs/express#5552

fixed un-edited version in history.md for 4.19.0 by @wesleytodd in expressjs/express#5556

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

fix typo in release date by @UlisesGascon in expressjs/express#5527

docs: nominating @wesleytodd to be project captian by @wesleytodd in expressjs/express#5511

docs: loosen TC activity rules by @wesleytodd in expressjs/express#5510

Add note on how to update docs for new release by @crandmck in expressjs/express#5541

Prevent open redirect allow list bypass due to encodeurl

Release 4.19.0 by @wesleytodd in expressjs/express#5551

New Contributors

@crandmck made their first contribution in expressjs/express#5541

Full Changelog: expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

Fix routing requests without method

deps: [email protected]

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: [email protected]

Other Changes

Use https: protocol instead of deprecated git: protocol by @vcsjones in expressjs/express#5032

build: [email protected] and [email protected] by @abenhamdine in expressjs/express#5034

ci: update actions/checkout to v3 by @armujahid in expressjs/express#5027

test: remove unused function arguments in params by @raksbisht in expressjs/express#5124

Remove unused originalIndex from acceptParams by @raksbisht in expressjs/express#5119

Fixed typos by @raksbisht in expressjs/express#5117

examples: remove unused params by @raksbisht in expressjs/express#5113

fix: parameter str is not described in JSDoc by @raksbisht in expressjs/express#5130

fix: typos in History.md by @raksbisht in expressjs/express#5131

build : add [email protected] by @abenhamdine in expressjs/express#5028

test: remove unused function arguments in params by @raksbisht in expressjs/express#5137

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

Prevent open redirect allow list bypass due to encodeurl

deps: [email protected]

4.18.3 / 2024-02-29

Fix routing requests without method

deps: [email protected]

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: [email protected]

deps: [email protected]

Add partitioned option

Commits

04bc627 4.19.2
da4d763 Improved fix for open redirect allow list bypass
4f0f6cc 4.19.1
a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
a1fa90f fixed un-edited version in history.md for 4.19.0
11f2b1d build: fix build due to inconsistent supertest behavior in older versions
084e365 4.19.0
0867302 Prevent open redirect allow list bypass due to encodeurl
567c9c6 Add note on how to update docs for new release (#5541)
69a4cf2 deps: [email protected]
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.

Updates sharp from 0.33.2 to 0.33.3

Changelog

Sourced from sharp's changelog.

v0.33.3 - 23rd March 2024

Upgrade to libvips v8.15.2 for upstream bug fixes.

Ensure keepIccProfile retains P3 and CMYK input profiles. #3906 #4008

Ensure text.wrap property can accept word-char as value. #4028 @yolopunk

Ensure clone takes a deep copy of existing options. #4029

Add bitdepth option to heif output (prebuilt binaries support 8-bit only). #4036 @mertalev

Commits

55466f1 Release v0.33.3
ede8217 Prerelease v0.33.3-rc.0
2689fb4 Bump deps
eaf31a5 Docs: changelog and credit for #4036
aa1bbcb Guard heif bitdepth property for prebuilt binaries
3c26080 Add bitdepth option to heif output (#4036)
dc07fd4 Upgrade to libvips v8.15.2
7bc74fe Ensure clone takes deep copy of options #4029
c5f318e Docs: add changelog and credit for #4028
8fbb1cd Ensure text.wrap property can accept word-char as value (#4028)
Additional commits viewable in compare view

Updates svelte from 4.2.12 to 4.2.15

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

support attribute selector inside :global() (#11135)

[email protected]

Patch Changes

fix parsing camelcase container query name (#11131)

[email protected]

Patch Changes

fix: applying :global for +,~ sibling combinator when slots are present (#9282)

Changelog

Sourced from svelte's changelog.

4.2.15

Patch Changes

support attribute selector inside :global() (#11135)

4.2.14

Patch Changes

fix parsing camelcase container query name (#11131)

4.2.13

Patch Changes

fix: applying :global for +,~ sibling combinator when slots are present (#9282)

Commits

9f2341f Version Packages (#11202)
a510c6a fix: support attribute selector inside :global() (#11135)
ad00cad Version Packages (#11148)
41eb8da feat: support parsing camel case in container queries (#11131)
11b8e94 Version Packages (#11101)
9de149c fix: applying :global for +,~ sibling combinator when slots are present. fixe...
a6bf91c docs: add file annotations to examples that benefit from ts toggle (#11058)
See full diff in compare view

Updates undici from 5.28.3 to 5.28.4

Release notes

Sourced from undici's releases.

v5.28.4

⚠️ Security Release ⚠️

Fixes GHSA-m4v8-wqvr-p9f7 CVE-2024-30260

Fixes GHSA-9qxr-qj54-h672 CVE-2024-30261

Full Changelog: nodejs/undici@v5.28.3...v5.28.4

Commits

fb98306 Bumped v5.28.4
2b39440 Merge pull request from GHSA-9qxr-qj54-h672
64e3402 Merge pull request from GHSA-m4v8-wqvr-p9f7
723c4e7 Revert "build(deps-dev): bump formdata-node from 4.4.1 to 6.0.3 (#2389)"
0e9d54b skip failing test due to Node.js changes
See full diff in compare view

Updates sharp from 0.33.2 to 0.33.3

Changelog

Sourced from sharp's changelog.

v0.33.3 - 23rd March 2024

Upgrade to libvips v8.15.2 for upstream bug fixes.

Ensure keepIccProfile retains P3 and CMYK input profiles. #3906 #4008

Ensure text.wrap property can accept word-char as value. #4028 @yolopunk

Ensure clone takes a deep copy of existing options. #4029

Add bitdepth option to heif output (prebuilt binaries support 8-bit only). #4036 @mertalev

Commits

55466f1 Release v0.33.3
ede8217 Prerelease v0.33.3-rc.0
2689fb4 Bump deps
eaf31a5 Docs: changelog and credit for #4036
aa1bbcb Guard heif bitdepth property for prebuilt binaries
3c26080 Add bitdepth option to heif output (#4036)
dc07fd4 Upgrade to libvips v8.15.2
7bc74fe Ensure clone takes deep copy of options #4029
c5f318e Docs: add changelog and credit for #4028
8fbb1cd Ensure text.wrap property can accept word-char as value (#4028)
Additional commits viewable in compare view

Updates next from 13.5.3 to 14.2.2

Release notes

Sourced from next's releases.

v14.2.2

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Fix Server Action error logs for unhandled POST requests (#64315)

Improve rendering performance (#64408)

Fix the method prop case in Server Actions transform (#64398)

fix(next-lint): update option --report-unused-disable-directives to --report-unused-disable-directives-severity (#64405)

tweak test for Azure (#64424)

router restore should take priority over pending actions (#64449)

Fix client boundary inheritance for barrel optimization (#64467)

improve turborepo caching (#64493)

feat: strip traceparent header from cachekey (#64499)

Fix more Turbopack build tests

Update lockfile for compatibility with turbo (#64360)

Fix typo in dynamic-rendering.ts (#64365)

Fix DynamicServerError not being thrown in fetch (#64511)

fix(next): Metadata.openGraph values not resolving basic values when type is set (#63620)

disable production chunking in dev (#64488)

Fix cjs client components tree-shaking (#64558)

fix refresh behavior for discarded actions (#64532)

fix: filter out middleware requests in logging (#64549)

Turbopack: Allow client components to be imported in app routes (#64520)

Fix ASL bundling for dynamic css (#64451)

add pathname normalizer for actions (#64592)

fix incorrect refresh request when basePath is set (#64589)

test: skip turbopack build test (#64356)

hotfix(turbopack): Update with patch for postcss.config.js path resolution on Windows (#64677)

Credits

Huge thanks to @shuding, @coltonehrman, @ztanner, @huozhi, @sokra, @Jeffrey-Zutt, @timneutkens, @wbinnssmith, @wiesson, @ijjk, @devjiwonchoi, and @bgw for helping!

v14.2.1

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

use pathToFileUrl to make esm import()s work with absolute windows paths (#64386) @sokra

Credits

Huge thanks to @sokra for helping!

v14.2.1-canary.7

Core Changes

... (truncated)

Commits

c850e4a v14.2.2
a340d9e hotfix(turbopack): Update with patch for postcss.config.js path resolution on...
6462b74 test: skip turbopack build test (#64356)
12982ef fix incorrect refresh request when basePath is set (#64589)
6f27f94 add pathname normalizer for actions (#64592)
8d18e0c Fix ASL bundling for dynamic css (#64451)
3709dd9 Turbopack: Allow client components to be imported in app routes (#64520)
373fbba fix: filter out middleware requests in logging (#64549)
2f8e096 fix refresh behavior for discarded actions (#64532)
6838f57 Fix cjs client components tree-shaking (#64558)
Additional commits viewable in compare view

Updates express from 4.18.2 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Improved fix for open redirect allow list bypass

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

Fix ci after location patch by @wesleytodd in expressjs/express#5552

fixed un-edited version in history.md for 4.19.0 by @wesleytodd in expressjs/express#5556

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

fix typo in release date by @UlisesGascon in expressjs/express#5527

docs: nominating @wesleytodd to be project captian by @wesleytodd in expressjs/express#5511

docs: loosen TC activity rules by @wesleytodd in expressjs/express#5510

Add note on how to update docs for new release by @crandmck in expressjs/express#5541

Prevent open redirect allow list bypass due to encodeurl

Release 4.19.0 by @wesleytodd in expressjs/express#5551

New Contributors

@crandmck made their first contribution in expressjs/express#5541

Full Changelog: expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

Fix routing requests without method

deps: [email protected]

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: [email protected]

Other Changes

Use https: protocol instead of deprecated git: protocol by @vcsjones in expressjs/express#5032

build: [email protected] and [email protected] by @abenhamdine in expressjs/express#5034

ci: update actions/checkout to v3 by @armujahid in expressjs/express#5027

test: remove unused function arguments in params by @raksbisht in expressjs/express#5124

Remove unused originalIndex from acceptParams by @raksbisht in expressjs/express#5119

Fixed typos by @raksbisht in expressjs/express#5117

examples: remove unused params by @raksbisht in expressjs/express#5113

fix: parameter str is not described in JSDoc by @raksbisht in expressjs/express#5130

fix: typos in History.md by @raksbisht in expressjs/express#5131

build : add [email protected] by @abenhamdine in expressjs/express#5028

test: remove unused function arguments in params by @raksbisht in expressjs/express#5137

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

Prevent open redirect allow list bypass due to encodeurl

deps: [email protected]

4.18.3 / 2024-02-29

Fix routing requests without method

deps: [email protected]

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: [email protected]

deps: [email protected]

Add partitioned option

Commits

04bc627 4.19.2
da4d763 Improved fix for open redirect allow list bypass
4f0f6cc 4.19.1
a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
a1fa90f fixed un-edited version in history.md for 4.19.0
11f2b1d build: fix build due to inconsistent supertest behavior in older versions
084e365 4.19.0
0867302 Prevent open redirect allow list bypass due to encodeurl
567c9c6 Add note on how to update docs for new release (#5541)
69a4cf2 deps: [email protected]
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.

Updates qs from 6.12.0 to 6.12.1

Changelog

Sourced from qs's changelog.

6.12.1

[Fix] parse: Disable decodeDotInKeys by default to restore previous behavior (#501)

[Performance] utils: Optimize performance under large data volumes, reduce memory usage, and speed up processing (#502)

[Refactor] utils: use +=

[Tests] increase coverage

Commits

29dda21 v6.12.1
7e18298 [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior
fd3cd7a [Tests] increase coverage
6d7df02 [Performance] utils: Optimize performance under large data volumes, reduce ...
572533c [Refactor] utils: use +=
c4d29f3 [meta] add tea.yaml
See full diff in compare view

Updates postcss from 8.4.14 to 8.4.27

Release notes

Sourced from postcss's releases.

8.4.27

Fixed Container clone methods types.

8.4.26

Fixed clone methods types.

8.4.25

Improve stringify performance (by @romainmenke).

Fixed docs (by @vikaskaliramna07).

8.4.24

Fixed Plugin types.

8.4.23

Fixed warnings in TypeDoc.

8.4.22

Fixed TypeScript support with node16 (by @remcohaszing).

8.4.21

Fixed Input#error types (by @hudochenkov).

8.4.20

Fixed source map generation for childless at-rules like @layer.

8.4.19

Fixed whitespace preserving after AST transformations (by @romainmenke).

8.4.18

Fixed an error on absolute: true with empty sourceContent (by @KingSora).

8.4.17

Fixed Node.before() unexpected behavior (by @romainmenke).

Added TOC to docs (by @muddv).

8.4.16

Fixed Root AST migration.

8.4.15

Fixed AST normalization after using custom parser with old PostCSS AST.

Changelog

Sourced from postcss's changelog.

8.4.27

Fixed Container clone methods types.

8.4.26

Fixed clone methods types.

8.4.25

Improve stringify performance (by Romain Menke).

Fixed docs (by @vikaskaliramna07).

8.4.24

Fixed Plugin types.

8.4.23

Fixed warnings in TypeDoc.

8.4.22

Fixed TypeScript support with node16 (by Remco Haszing).

8.4.21

Fixed Input#error types (by Aleks Hudochenkov).

8.4.20

Fixed source map generation for childless at-rules like @layer.

8.4.19

Fixed whitespace preserving after AST transformations (by Romain Menke).

8.4.18

Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

8.4.17

Fixed Node.before() unexpected behavior (by Romain Menke).

Added TOC to docs (by Mikhail Dedov).

8.4.16

Fixed Root AST migration.

8.4.15

Fixed AST normalization after using custom parser with old PostCSS AST.

Commits

fb4bb8a Release 8.4.27 version
16cddfd Fix types
c938a9a Update dependencies

…updates Bumps the npm_and_yarn group with 1 update in the /bench/hot-module-reloading/css-stress-test directory: [next](https://github.com/vercel/next.js). Bumps the npm_and_yarn group with 1 update in the /examples/react-fast-refresh-test directory: [next](https://github.com/vercel/next.js). Bumps the npm_and_yarn group with 1 update in the /packages/bun-release directory: [octokit](https://github.com/octokit/octokit.js). Bumps the npm_and_yarn group with 4 updates in the /test directory: [express](https://github.com/expressjs/express), [sharp](https://github.com/lovell/sharp), [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) and [undici](https://github.com/nodejs/undici). Bumps the npm_and_yarn group with 1 update in the /test/cli/install/migration/complex-workspace directory: [sharp](https://github.com/lovell/sharp). Bumps the npm_and_yarn group with 4 updates in the /test/cli/install/migration/contoso-test directory: [next](https://github.com/vercel/next.js), [express](https://github.com/expressjs/express), [qs](https://github.com/ljharb/qs) and [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware). Updates `next` from 12.3.4 to 14.2.2 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v12.3.4...v14.2.2) Updates `next` from 11.1.4 to 14.2.2 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v12.3.4...v14.2.2) Updates `octokit` from 2.1.0 to 3.2.0 - [Release notes](https://github.com/octokit/octokit.js/releases) - [Commits](octokit/octokit.js@v2.1.0...v3.2.0) Updates `express` from 4.18.2 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.18.2...4.19.2) Updates `sharp` from 0.33.2 to 0.33.3 - [Release notes](https://github.com/lovell/sharp/releases) - [Changelog](https://github.com/lovell/sharp/blob/main/docs/changelog.md) - [Commits](lovell/sharp@v0.33.2...v0.33.3) Updates `svelte` from 4.2.12 to 4.2.15 - [Release notes](https://github.com/sveltejs/svelte/releases) - [Changelog](https://github.com/sveltejs/svelte/blob/[email protected]/packages/svelte/CHANGELOG.md) - [Commits](https://github.com/sveltejs/svelte/commits/[email protected]/packages/svelte) Updates `undici` from 5.28.3 to 5.28.4 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.28.3...v5.28.4) Updates `sharp` from 0.33.2 to 0.33.3 - [Release notes](https://github.com/lovell/sharp/releases) - [Changelog](https://github.com/lovell/sharp/blob/main/docs/changelog.md) - [Commits](lovell/sharp@v0.33.2...v0.33.3) Updates `next` from 13.5.3 to 14.2.2 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v12.3.4...v14.2.2) Updates `express` from 4.18.2 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.18.2...4.19.2) Updates `qs` from 6.12.0 to 6.12.1 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.12.0...v6.12.1) Updates `postcss` from 8.4.14 to 8.4.27 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.14...8.4.27) Updates `webpack-dev-middleware` from 5.3.3 to 5.3.4 - [Release notes](https://github.com/webpack/webpack-dev-middleware/releases) - [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md) - [Commits](webpack/webpack-dev-middleware@v5.3.3...v5.3.4) --- updated-dependencies: - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: octokit dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: express dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: sharp dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: svelte dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: undici dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: sharp dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: qs dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-middleware dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-05-10T01:32:50Z

Superseded by #16.

dependabot bot added the dependencies Pull requests that update a dependency file label Apr 23, 2024

dependabot bot mentioned this pull request Apr 23, 2024

chore(deps): bump the npm_and_yarn group across 6 directories with 8 updates #14

Closed

dependabot bot closed this May 10, 2024

dependabot bot deleted the dependabot/npm_and_yarn/bench/hot-module-reloading/css-stress-test/npm_and_yarn-bebdb04407 branch May 10, 2024 01:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the npm_and_yarn group across 6 directories with 9 updates #15

chore(deps): bump the npm_and_yarn group across 6 directories with 9 updates #15

dependabot bot commented on behalf of github Apr 23, 2024

dependabot bot commented on behalf of github May 10, 2024

chore(deps): bump the npm_and_yarn group across 6 directories with 9 updates #15

chore(deps): bump the npm_and_yarn group across 6 directories with 9 updates #15

Conversation

dependabot bot commented on behalf of github Apr 23, 2024

v14.2.2

Core Changes

Credits

v14.2.1

Core Changes

Credits

v14.2.1-canary.7

Core Changes

v14.2.2

Core Changes

Credits

v14.2.1

Core Changes

Credits

v14.2.1-canary.7

Core Changes

v3.2.0

3.2.0 (2024-04-03)

Features

v3.1.2

3.1.2 (2023-11-15)

Bug Fixes

v3.1.1

3.1.1 (2023-09-25)

Bug Fixes

v3.1.0

3.1.0 (2023-07-26)

Features

v3.0.0

3.0.0 (2023-07-11)

Features

BREAKING CHANGES

v3.0.0-beta.5

4.19.2

What's Changed

4.19.1

What's Changed

4.19.0

What's Changed

New Contributors

4.18.3

Main Changes

Other Changes

4.19.2 / 2024-03-25

4.19.1 / 2024-03-20

4.19.0 / 2024-03-20

4.18.3 / 2024-02-29

v0.33.3 - 23rd March 2024

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

4.2.15

Patch Changes

4.2.14

Patch Changes

4.2.13

Patch Changes

v5.28.4

⚠️ Security Release ⚠️

v0.33.3 - 23rd March 2024

v14.2.2

Core Changes

Credits

v14.2.1

Core Changes

Credits

v14.2.1-canary.7

Core Changes

4.19.2

What's Changed

4.19.1

What's Changed

4.19.0