profile
viewpoint

steelbrain/atom-linter 27

Helper module for linter providers

steelbrain/Atom-Hack 19

HackLang Package for Atom Editor

mdgriffith/atom-inline-messenger 15

Inline Messaging in the Atom Editor

steelbrain/autocomplete-swift 10

Swift autocomplete provider

steelbrain/babel-plugin-remove-unused-vars 8

Babel plugin to remove unused variables and imports (Babel autofix for ESLint's no-unused-vars)

steelbrain/Async-Redis 6

Async Redis Pub/Sub in HackLang

steelbrain/autocomplete-hack 6

Hack Lang AutoComplete for Atom Editor

steelbrain/babel-cli 4

A smarter babel-cli

steelbrain/apollo-link-firebase-ng 3

Query/Subscribe to Firebase Realtime DB with GraphQL/Apollo.

steelbrain/atom-autocomplete 3

Collection of node helpers for Atom's autocomplete providers

startedcrowdsecurity/crowdsec

started time in 8 hours

push eventsteelbrain/babel-cli

Anees I

commit sha bef155cc629ce68d369bcd6524fd4549f479e292

4.1.0-beta1

view details

push time in 21 hours

created tagsteelbrain/babel-cli

tagv4.1.0-beta1

A smarter babel-cli

created time in 21 hours

delete branch steelbrain/babel-cli

delete branch : improve-restart-behavior

delete time in 21 hours

push eventsteelbrain/babel-cli

Anees I

commit sha 9d325ebda753d042cb3ccf3e2d953c0b34df3503

:new: Improve restart behavior

view details

Anees Iqbal

commit sha ade5d475ec59d89d5f755035c57ed921bbc40cc7

Merge pull request #159 from steelbrain/improve-restart-behavior Improve restart behavior

view details

push time in 21 hours

PR merged steelbrain/babel-cli

Improve restart behavior

Improves developer experience

+31 -19

0 comment

2 changed files

steelbrain

pr closed time in 21 hours

PR opened steelbrain/babel-cli

Improve restart behavior

Improves developer experience

+31 -19

0 comment

2 changed files

pr created time in 21 hours

create barnchsteelbrain/babel-cli

branch : improve-restart-behavior

created branch time in 21 hours

created tagsteelbrain/babel-cli

tagv4.0.1

A smarter babel-cli

created time in a day

push eventsteelbrain/babel-cli

Anees I

commit sha a6e3e23f340fcdfd04ced4c603cfb672c4c60a11

:bug: Set output newLine to lf in tsc

view details

Anees I

commit sha 48be7b233ee5c97d3d9b950ec34c70ea92eb49c3

:memo: Document change in CHANGELOG

view details

Anees I

commit sha 7ea926730d53b28e4b8b3c94a53d9d34841c7150

4.0.1

view details

push time in a day

push eventsteelbrain/template

Anees I

commit sha 1db446a8639839361a4ea082357eefd33e085b96

:bug: Set output newLine to lf in tsc

view details

push time in a day

push eventsteelbrain/steelbrain.github.io

Anees I

commit sha 4852c17ded71f13097fe0bf1dac3b70f3583f33a

:minibus: Move away from Github handle

view details

push time in 2 days

PR opened GoogleCloudPlatform/cloud-build-notifiers

Move env empty warning to info

Fixes #75

Thanks to @LOZORD for specifying the fix

+1 -1

0 comment

1 changed file

pr created time in 2 days

create barnchsteelbrain/cloud-build-notifiers

branch : turn-env-warning-into-info

created branch time in 2 days

fork steelbrain/cloud-build-notifiers

Notifier images for Cloud Build, complete with build status filtering and Cloud Secret Manager integration

fork in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha fbbf0be75d394da11edeede413e03d7d281a9af0

4.0.0

view details

push time in 2 days

created tagsteelbrain/babel-cli

tagv4.0.0

A smarter babel-cli

created time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha c425c4bc09aa9092a49da5635ad15759033636ef

:shirt: Make linter happy

view details

push time in 2 days

created tagsteelbrain/babel-cli

tagv4.0.0-beta1

A smarter babel-cli

created time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha 07f45f0ba7e0d10d1ec773143599944510972762

4.0.0-beta1

view details

Anees I

commit sha f0cefdcc8ee77d631e7a755ac9e73be44e0bc901

:bug: Fix paths in output logging

view details

Anees I

commit sha 8a89dba68c74c43877ead14c311b72d18be813d3

:new: Target ES2019 in TSC

view details

Anees I

commit sha c1304e2d1f229c90d744910ae5679d836f0d14f2

:bug: Fix config mergal with manifest config

view details

Anees I

commit sha 4bbf106923916317d73f8a59d6975217de33bf16

:bug: Fix empty ignored being fed to chokidar

view details

Anees I

commit sha d428c28e2402b623f5ec2063c7ea33adff5508d4

:bug: Fix invalid outputDirectory for files

view details

push time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha 7372597c940d109ff7b9550fe9973ac74730568e

:art: Moar README cleanup

view details

push time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha dbfdff663e3246a16b2d0faa1991e27aba372b42

:bug: Fix README formatting

view details

push time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha 90b9f32efa59e99ddeade32678859047eb6c46ba

:arrow_up: Bring README up to date with code

view details

push time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/eslint-config-steelbrain-9.0.2

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump eslint-config-steelbrain from 9.0.0 to 9.0.2 dependencies

Bumps eslint-config-steelbrain from 9.0.0 to 9.0.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/steelbrain/eslint-config/blob/master/CHANGELOG.md">eslint-config-steelbrain's changelog</a>.</em></p> <blockquote> <h3>9.0.2</h3> <ul> <li>Remove extension requirement when importing TS files</li> </ul> <h3>9.0.1</h3> <ul> <li>Configure ESLint plugin import to resolve TS properly</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/steelbrain/eslint-config/commit/84d573a03d0c734f4a5ce3907b6aedcb69c6f3e5"><code>84d573a</code></a> 9.0.2</li> <li><a href="https://github.com/steelbrain/eslint-config/commit/cdb981ab960adb94b120c44a93a5f852a6d47978"><code>cdb981a</code></a> :bug: Fix import/extensions</li> <li><a href="https://github.com/steelbrain/eslint-config/commit/c2e23aaf6a729ce5b5adc1a71e363ff4990f6746"><code>c2e23aa</code></a> 9.0.1</li> <li><a href="https://github.com/steelbrain/eslint-config/commit/ad1f33f4946d2d4dec1d2d63aa476f088b936022"><code>ad1f33f</code></a> :art: Tag v9.0.1 for ts resolve bugfix</li> <li><a href="https://github.com/steelbrain/eslint-config/commit/81f72ffe21263049e713e57fefbec2ffde0ca1d1"><code>81f72ff</code></a> :new: Add TS import resolve support in config</li> <li>See full diff in <a href="https://github.com/steelbrain/eslintrc/compare/v9.0.0...v9.0.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+393 -280

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/p-queue-6.6.0

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump p-queue from 6.2.1 to 6.6.0 dependencies

Bumps p-queue from 6.2.1 to 6.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sindresorhus/p-queue/releases">p-queue's releases</a>.</em></p> <blockquote> <h2>v6.6.0</h2> <ul> <li>Add <code>add</code> and <code>next</code> events (<a href="https://github-redirect.dependabot.com/sindresorhus/p-queue/issues/111">#111</a>) edd2e8a</li> </ul> <p><a href="https://github.com/sindresorhus/p-queue/compare/v6.5.0...v6.6.0">https://github.com/sindresorhus/p-queue/compare/v6.5.0...v6.6.0</a></p> <h2>v6.5.0</h2> <ul> <li>Update to TypeScript 3.9 4b4d2fa b4f2158</li> </ul> <p><a href="https://github.com/sindresorhus/p-queue/compare/v6.4.0...v6.5.0">https://github.com/sindresorhus/p-queue/compare/v6.4.0...v6.5.0</a></p> <h2>v6.4.0</h2> <ul> <li>Add <code>idle</code> event (<a href="https://github-redirect.dependabot.com/sindresorhus/p-queue/issues/109">#109</a>) 54a017b</li> </ul> <p><a href="https://github.com/sindresorhus/p-queue/compare/v6.3.0...v6.4.0">https://github.com/sindresorhus/p-queue/compare/v6.3.0...v6.4.0</a></p> <h2>v6.3.0</h2> <ul> <li>Add <code>.sizeBy()</code> method to find queue size by priority (<a href="https://github-redirect.dependabot.com/sindresorhus/p-queue/issues/94">#94</a>) a9f5778 If you implement your own queue, you need to implement the <code>filter</code> method to use <code>.sizeBy()</code>.</li> </ul> <p><a href="https://github.com/sindresorhus/p-queue/compare/v6.2.1...v6.3.0">https://github.com/sindresorhus/p-queue/compare/v6.2.1...v6.3.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sindresorhus/p-queue/commit/67b64e3a161f8db45f8f4627506e0f015a980a71"><code>67b64e3</code></a> 6.6.0</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/b770eaed88cacfddc716fb8df0ee83908458f553"><code>b770eae</code></a> Meta tweaks</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/edd2e8a8661d47039bb81c3d264b87cedd8de18b"><code>edd2e8a</code></a> Add <code>add</code> and <code>next</code> events (<a href="https://github-redirect.dependabot.com/sindresorhus/p-queue/issues/111">#111</a>)</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/1e9dcf8d197db7b5db69dfec60a7cdcb58daf743"><code>1e9dcf8</code></a> Clarify <code>carryoverConcurrencyCount</code> documentation (<a href="https://github-redirect.dependabot.com/sindresorhus/p-queue/issues/100">#100</a>)</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/9672a3d6be06fe52f2481460c6d12645343c7ae4"><code>9672a3d</code></a> 6.5.0</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/4b4d2faf265ee7c1625f62c51b2fd5cf6fa6a9af"><code>4b4d2fa</code></a> Update to TypeScript 3.9</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/b4f2158ac14111699a0d8929ba8efda91e21ca6e"><code>b4f2158</code></a> Upgrade eventemitter3 for TS 3.9 (<a href="https://github-redirect.dependabot.com/sindresorhus/p-queue/issues/112">#112</a>)</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/68f8d6ed4b783d99c934dc79075750986a82a7b1"><code>68f8d6e</code></a> 6.4.0</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/68d69354126ea0c99ef29d66e871358451e0cc8c"><code>68d6935</code></a> Fix tests</li> <li><a href="https://github.com/sindresorhus/p-queue/commit/54a017b3eb38008258141b8008c043076500666a"><code>54a017b</code></a> Add <code>idle</code> event (<a href="https://github-redirect.dependabot.com/sindresorhus/p-queue/issues/109">#109</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sindresorhus/p-queue/compare/v6.2.1...v6.6.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+7 -7

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/commander-6.0.0

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump commander from 4.1.1 to 6.0.0 dependencies

Bumps commander from 4.1.1 to 6.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tj/commander.js/releases">commander's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h3>Added</h3> <ul> <li>add support for variadic options (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1250">#1250</a>)</li> <li>allow options to be added with just a short flag (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1256">#1256</a>)</li> <li>throw an error if there might be a clash between option name and a Command property, with advice on how to resolve (#</li> </ul> <ol start="1275"> <li></li> </ol> <h3>Fixed</h3> <ul> <li>Options which contain -no- in the middle of the option flag should not be treated as negatable. (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1301">#1301</a>)</li> </ul> <h2>v6.0.0-0</h2> <h3>Added</h3> <ul> <li>add support for variadic options (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1250">#1250</a>)</li> <li>allow options to be added with just a short flag (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1256">#1256</a>)</li> <li>throw an error if there might be a clash between option name and a Command property, with advice on how to resolve (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1275">#1275</a>)</li> </ul> <h2>v5.1.0</h2> <h3>Added</h3> <ul> <li>support for multiple command aliases, the first of which is shown in the auto-generated help (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/531">#531</a>, <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1236">#1236</a>)</li> <li>configuration support in <code>addCommand()</code> for <code>hidden</code> and <code>isDefault</code> (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1232">#1232</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>omit masked help flags from the displayed help (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/645">#645</a>, <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1247">#1247</a>)</li> <li>remove old short help flag when change help flags using <code>helpOption</code> (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1248">#1248</a>)</li> </ul> <h3>Changed</h3> <ul> <li>remove use of <code>arguments</code> to improve auto-generated help in editors (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1235">#1235</a>)</li> <li>rename <code>.command()</code> configuration <code>noHelp</code> to <code>hidden</code> (but not remove old support) (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1232">#1232</a>)</li> <li>improvements to documentation</li> <li>update dependencies</li> <li>update tested versions of node</li> <li>eliminate lint errors in TypeScript (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1208">#1208</a>)</li> </ul> <h2>v5.0.0</h2> <h3>Added</h3> <ul> <li>support for nested commands with action-handlers (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1">#1</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/764">#764</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li><code>.addCommand()</code> for adding a separately configured command (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/764">#764</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>allow a non-executable to be set as the default command (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/742">#742</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>implicit help command when there are subcommands (previously only if executables) (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>customise implicit help command with <code>.addHelpCommand()</code> (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>display error message for unknown subcommand, by default (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/432">#432</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1088">#1088</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>display help for missing subcommand, by default (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1088">#1088</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>combined short options as single argument may include boolean flags and value flag and value (e.g. <code>-a -b -p 80</code> can be written as <code>-abp80</code>) (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1145">#1145</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/tj/commander.js/blob/master/CHANGELOG.md">commander's changelog</a>.</em></p> <blockquote> <h2>[6.0.0] (2020-07-21)</h2> <h3>Added</h3> <ul> <li>add support for variadic options (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1250">#1250</a>)</li> <li>allow options to be added with just a short flag (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1256">#1256</a>)</li> <li>throw an error if there might be a clash between option name and a Command property, with advice on how to resolve (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1275">#1275</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Options which contain -no- in the middle of the option flag should not be treated as negatable. (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1301">#1301</a>)</li> </ul> <h2>[6.0.0-0] (2020-06-20)</h2> <p>(Released in 6.0.0)</p> <h2>[5.1.0] (2020-04-25)</h2> <h3>Added</h3> <ul> <li>support for multiple command aliases, the first of which is shown in the auto-generated help (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/531">#531</a>, <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1236">#1236</a>)</li> <li>configuration support in <code>addCommand()</code> for <code>hidden</code> and <code>isDefault</code> (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1232">#1232</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>omit masked help flags from the displayed help (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/645">#645</a>, <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1247">#1247</a>)</li> <li>remove old short help flag when change help flags using <code>helpOption</code> (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1248">#1248</a>)</li> </ul> <h3>Changed</h3> <ul> <li>remove use of <code>arguments</code> to improve auto-generated help in editors (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1235">#1235</a>)</li> <li>rename <code>.command()</code> configuration <code>noHelp</code> to <code>hidden</code> (but not remove old support) (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1232">#1232</a>)</li> <li>improvements to documentation</li> <li>update dependencies</li> <li>update tested versions of node</li> <li>eliminate lint errors in TypeScript (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1208">#1208</a>)</li> </ul> <h2>[5.0.0] (2020-03-14)</h2> <h3>Added</h3> <ul> <li>support for nested commands with action-handlers (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1">#1</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/764">#764</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li><code>.addCommand()</code> for adding a separately configured command (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/764">#764</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>allow a non-executable to be set as the default command (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/742">#742</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>implicit help command when there are subcommands (previously only if executables) (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>customise implicit help command with <code>.addHelpCommand()</code> (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>display error message for unknown subcommand, by default (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/432">#432</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1088">#1088</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>display help for missing subcommand, by default (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1088">#1088</a> <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1149">#1149</a>)</li> <li>combined short options as single argument may include boolean flags and value flag and value (e.g. <code>-a -b -p 80</code> can be written as <code>-abp80</code>) (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1145">#1145</a>)</li> <li><code>.parseOption()</code> includes short flag and long flag expansions (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1145">#1145</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/tj/commander.js/commit/c5a5e7b70d425d6f739bd84cc622c1d8775743f1"><code>c5a5e7b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1305">#1305</a> from tj/release/6.x</li> <li><a href="https://github.com/tj/commander.js/commit/d7b179adf0c011151d7efbca9d429d5a5baf0d00"><code>d7b179a</code></a> Add fix that was quietly added along with other work</li> <li><a href="https://github.com/tj/commander.js/commit/394caefb4baf0cb6eec493f0290c60fd4c926550"><code>394caef</code></a> Update dependencies except eslint (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1303">#1303</a>)</li> <li><a href="https://github.com/tj/commander.js/commit/531a0fd0cc0ec5409e257272f68fcf7c25352495"><code>531a0fd</code></a> Add regression test for <a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1301">#1301</a> (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1304">#1304</a>)</li> <li><a href="https://github.com/tj/commander.js/commit/3c8508781bec7905d936f670365fc935a12ab973"><code>3c85087</code></a> Bump version for release</li> <li><a href="https://github.com/tj/commander.js/commit/601f2de6da36a2e45d12a606bdf685349e32fe03"><code>601f2de</code></a> update Chinese README (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1299">#1299</a>)</li> <li><a href="https://github.com/tj/commander.js/commit/36285711142d05afb27b3f719ff92651095c3102"><code>3628571</code></a> Add esm documentation (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1298">#1298</a>)</li> <li><a href="https://github.com/tj/commander.js/commit/fdf6ee94e24149aa3aacf13330d5ecffd96d0cbd"><code>fdf6ee9</code></a> Update supported versions (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1297">#1297</a>)</li> <li><a href="https://github.com/tj/commander.js/commit/09c103d490bc9f2ab42f1e46950d1c597fb3821b"><code>09c103d</code></a> Optimize Chinese readme typesetting (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1289">#1289</a>)</li> <li><a href="https://github.com/tj/commander.js/commit/ca2256eb59fd895e4abb1412c0ffb45e28a1b4fa"><code>ca2256e</code></a> Feature/update dependencies (<a href="https://github-redirect.dependabot.com/tj/commander.js/issues/1286">#1286</a>)</li> <li>Additional commits viewable in <a href="https://github.com/tj/commander.js/compare/v4.1.1...v6.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+10 -4

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/lodash-4.17.19

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️🔒 Bump lodash from 4.17.15 to 4.17.19 dependencies security

Bumps lodash from 4.17.15 to 4.17.19. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/babel/core-7.10.5

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump @babel/core from 7.8.4 to 7.10.5 dependencies

Bumps @babel/core from 7.8.4 to 7.10.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/releases">@babel/core's releases</a>.</em></p> <blockquote> <h2>v7.10.5 (2020-07-14)</h2> <p>Thanks <a href="https://github.com/jayaddison">@jayaddison</a> and <a href="https://github.com/RafaelSalguero">@RafaelSalguero</a> for their first PRs!</p> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-helper-builder-react-jsx-experimental</code>, <code>babel-helper-create-class-features-plugin</code>, <code>babel-helper-member-expression-to-functions</code>, <code>babel-helper-module-transforms</code>, <code>babel-helper-transform-fixture-test-runner</code>, <code>babel-plugin-proposal-async-generator-functions</code>, <code>babel-plugin-proposal-decorators</code>, <code>babel-plugin-proposal-function-bind</code>, <code>babel-plugin-proposal-partial-application</code>, <code>babel-plugin-proposal-pipeline-operator</code>, <code>babel-plugin-transform-block-scoping</code>, <code>babel-plugin-transform-modules-amd</code>, <code>babel-plugin-transform-modules-systemjs</code>, <code>babel-plugin-transform-parameters</code>, <code>babel-plugin-transform-react-jsx-source</code>, <code>babel-plugin-transform-runtime</code>, <code>babel-plugin-transform-template-literals</code>, <code>babel-plugin-transform-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11807">#11807</a> Disallow duplicated AST nodes (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11814">#11814</a> fix: add optional: false to chained optional call expression (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11774">#11774</a> fix: throw expect jsx plugin error when an idStart or > is seen (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-plugin-transform-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11816">#11816</a> Typescript transform now removes generic arguments from optional calls (Closes <a href="https://github-redirect.dependabot.com/babel/babel/issues/11813">#11813</a>) (<a href="https://github.com/RafaelSalguero">@RafaelSalguero</a>)</li> </ul> </li> <li><code>babel-plugin-transform-block-scoping</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11802">#11802</a> Fix break/continue when switch is nested inside loop (<a href="https://github.com/existentialism">@existentialism</a>)</li> </ul> </li> <li><code>babel-generator</code>, <code>babel-plugin-transform-typescript</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11582">#11582</a> Refactor generated builder names in @babel/types (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> </ul> </li> <li><code>babel-compat-data</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11783">#11783</a> fix: update class properties support matrix (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li>Other <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11799">#11799</a> docs: update README example and REPL link (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11761">#11761</a> Add note about running Make targets in Windows 10 (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11729">#11729</a> docs: add AST spec on optional chain [skip ci] (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>babel-cli</code>, <code>babel-compat-data</code>, <code>babel-core</code>, <code>babel-helper-define-map</code>, <code>babel-helper-fixtures</code>, <code>babel-helper-module-transforms</code>, <code>babel-helper-regex</code>, <code>babel-helper-transform-fixture-test-runner</code>, <code>babel-node</code>, <code>babel-plugin-transform-proto-to-assign</code>, <code>babel-register</code>, <code>babel-traverse</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11818">#11818</a> Bump some deps for audit (<a href="https://github.com/existentialism">@existentialism</a>)</li> </ul> </li> <li><code>babel-helper-fixtures</code>, <code>babel-traverse</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11811">#11811</a> Replace lodash 'clone' usage with ES6 Spread initializer (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li><code>babel-helper-fixtures</code>, <code>babel-helper-transform-fixture-test-runner</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11812">#11812</a> Replace lodash 'extend' usage with Object.assign (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li><code>babel-plugin-transform-block-scoping</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11798">#11798</a> Reduce dependency on lodash functions: values, extends (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li><code>babel-generator</code>, <code>babel-plugin-transform-typescript</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11582">#11582</a> Refactor generated builder names in @babel/types (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> </ul> </li> <li><code>babel-cli</code>, <code>babel-generator</code>, <code>babel-helper-transform-fixture-test-runner</code>, <code>babel-traverse</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11790">#11790</a> Reduce dependency on lodash functions: includes, uniq, repeat, isinteger (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li>Other <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11782">#11782</a> chore: refine yarn cache config (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-register</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11780">#11780</a> test: add console warn spy on babel-register tests (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11776">#11776</a> chore: remove babel-register generated test artifacts (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>Committers: 7</h4> <ul> <li>Bogdan Savluk (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> <li>Brian Ng (<a href="https://github.com/existentialism">@existentialism</a>)</li> <li>Huáng Jùnliàng (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li>James Addison (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/blob/main/CHANGELOG.md">@babel/core's changelog</a>.</em></p> <blockquote> <h2>v7.10.5 (2020-07-14)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-helper-builder-react-jsx-experimental</code>, <code>babel-helper-create-class-features-plugin</code>, <code>babel-helper-member-expression-to-functions</code>, <code>babel-helper-module-transforms</code>, <code>babel-helper-transform-fixture-test-runner</code>, <code>babel-plugin-proposal-async-generator-functions</code>, <code>babel-plugin-proposal-decorators</code>, <code>babel-plugin-proposal-function-bind</code>, <code>babel-plugin-proposal-partial-application</code>, <code>babel-plugin-proposal-pipeline-operator</code>, <code>babel-plugin-transform-block-scoping</code>, <code>babel-plugin-transform-modules-amd</code>, <code>babel-plugin-transform-modules-systemjs</code>, <code>babel-plugin-transform-parameters</code>, <code>babel-plugin-transform-react-jsx-source</code>, <code>babel-plugin-transform-runtime</code>, <code>babel-plugin-transform-template-literals</code>, <code>babel-plugin-transform-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11807">#11807</a> Disallow duplicated AST nodes (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11814">#11814</a> fix: add optional: false to chained optional call expression (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11774">#11774</a> fix: throw expect jsx plugin error when an idStart or > is seen (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-plugin-transform-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11816">#11816</a> Typescript transform now removes generic arguments from optional calls (Closes <a href="https://github-redirect.dependabot.com/babel/babel/issues/11813">#11813</a>) (<a href="https://github.com/RafaelSalguero">@RafaelSalguero</a>)</li> </ul> </li> <li><code>babel-plugin-transform-block-scoping</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11802">#11802</a> Fix break/continue when switch is nested inside loop (<a href="https://github.com/existentialism">@existentialism</a>)</li> </ul> </li> <li><code>babel-generator</code>, <code>babel-plugin-transform-typescript</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11582">#11582</a> Refactor generated builder names in @babel/types (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> </ul> </li> <li><code>babel-compat-data</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11783">#11783</a> fix: update class properties support matrix (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li>Other <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11799">#11799</a> docs: update README example and REPL link (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11761">#11761</a> Add note about running Make targets in Windows 10 (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11729">#11729</a> docs: add AST spec on optional chain [skip ci] (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>babel-cli</code>, <code>babel-compat-data</code>, <code>babel-core</code>, <code>babel-helper-define-map</code>, <code>babel-helper-fixtures</code>, <code>babel-helper-module-transforms</code>, <code>babel-helper-regex</code>, <code>babel-helper-transform-fixture-test-runner</code>, <code>babel-node</code>, <code>babel-plugin-transform-proto-to-assign</code>, <code>babel-register</code>, <code>babel-traverse</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11818">#11818</a> Bump some deps for audit (<a href="https://github.com/existentialism">@existentialism</a>)</li> </ul> </li> <li><code>babel-helper-fixtures</code>, <code>babel-traverse</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11811">#11811</a> Replace lodash 'clone' usage with ES6 Spread initializer (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li><code>babel-helper-fixtures</code>, <code>babel-helper-transform-fixture-test-runner</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11812">#11812</a> Replace lodash 'extend' usage with Object.assign (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li><code>babel-plugin-transform-block-scoping</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11798">#11798</a> Reduce dependency on lodash functions: values, extends (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li><code>babel-generator</code>, <code>babel-plugin-transform-typescript</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11582">#11582</a> Refactor generated builder names in @babel/types (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> </ul> </li> <li><code>babel-cli</code>, <code>babel-generator</code>, <code>babel-helper-transform-fixture-test-runner</code>, <code>babel-traverse</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11790">#11790</a> Reduce dependency on lodash functions: includes, uniq, repeat, isinteger (<a href="https://github.com/jayaddison">@jayaddison</a>)</li> </ul> </li> <li>Other <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11782">#11782</a> chore: refine yarn cache config (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-register</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11780">#11780</a> test: add console warn spy on babel-register tests (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11776">#11776</a> chore: remove babel-register generated test artifacts (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h2>v7.10.4 (2020-06-30)</h2> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11669">#11669</a> Add <code>delete obj?.#x.a</code> support (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-parser</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11652">#11652</a> fix: implement early errors for record and tuple (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/babel/babel/commit/f7964a9ac51356f7df6404a25b27ba1cffba1ba7"><code>f7964a9</code></a> v7.10.5</li> <li><a href="https://github.com/babel/babel/commit/ffb42488ba1a9d05a41d028cd72ae8c77dfe2071"><code>ffb4248</code></a> Bump some deps for audit (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-core/issues/11818">#11818</a>)</li> <li><a href="https://github.com/babel/babel/commit/7fd40d86a0d03ff0e9c3ea16b29689945433d4df"><code>7fd40d8</code></a> v7.10.4</li> <li><a href="https://github.com/babel/babel/commit/1dd94e813ed8161ed0efc7e99fd3cd4277c6ab02"><code>1dd94e8</code></a> Replace non-inclusive "whitelist" and "blacklist" terms with "allowlist" etc....</li> <li><a href="https://github.com/babel/babel/commit/601c824873a2606b0292ea1460a3a79f5f704215"><code>601c824</code></a> Refine babel core types (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-core/issues/11544">#11544</a>)</li> <li><a href="https://github.com/babel/babel/commit/2787ee2f967b6d8e1121fca00a8d578d75449a53"><code>2787ee2</code></a> v7.10.3</li> <li><a href="https://github.com/babel/babel/commit/41085248560b1403b8d0f99f108491e679531c6c"><code>4108524</code></a> Update prettier to v2 (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-core/issues/11579">#11579</a>)</li> <li><a href="https://github.com/babel/babel/commit/b0350e5b1e86bd2d53b4a25705e39eb380ec65a2"><code>b0350e5</code></a> v7.10.2</li> <li><a href="https://github.com/babel/babel/commit/6b7a6dccd2425883eb68afb0e90d0bfd67763407"><code>6b7a6dc</code></a> fix: add new plugin names to missing plugin helpers (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-core/issues/11643">#11643</a>)</li> <li><a href="https://github.com/babel/babel/commit/88f57a7ea659d25232bf62de1efceb5d6299b8cf"><code>88f57a7</code></a> v7.10.1</li> <li>Additional commits viewable in <a href="https://github.com/babel/babel/commits/v7.10.5/packages/babel-core">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~jlhwung">jlhwung</a>, a new releaser for @babel/core since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+351 -35

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/babel/preset-env-7.10.4

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump @babel/preset-env from 7.8.4 to 7.10.4 dependencies

Bumps @babel/preset-env from 7.8.4 to 7.10.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/releases">@babel/preset-env's releases</a>.</em></p> <blockquote> <h2>v7.10.4 (2020-06-30)</h2> <p>Thanks <a href="https://github.com/penguingovernor">@penguingovernor</a>, <a href="https://github.com/sajadtorkamani">@sajadtorkamani</a> and <a href="https://github.com/wojtekmaj">@wojtekmaj</a> for their first PRs!</p> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11669">#11669</a> Add <code>delete obj?.#x.a</code> support (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-parser</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11652">#11652</a> fix: implement early errors for record and tuple (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11752">#11752</a> [regression] Don't validate file.comments in <code>@babel/types</code> (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-do-expressions</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11724">#11724</a> fix: do-statementlist behavior (<a href="https://github.com/wlawt">@wlawt</a>)</li> </ul> </li> </ul> <h4>:nail_care: Polish</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11722">#11722</a> Add better parser error when using jsx (<a href="https://github.com/penguingovernor">@penguingovernor</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>babel-core</code>, <code>babel-helper-fixtures</code>, <code>babel-standalone</code>, <code>babel-traverse</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11758">#11758</a> Replace non-inclusive "whitelist" and "blacklist" terms with "allowlist" etc. (<a href="https://github.com/wojtekmaj">@wojtekmaj</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11376">#11376</a> Add @babel/eslint-plugin-development-internal (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>Committers: 7</h4> <ul> <li>Huáng Jùnliàng (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li>Jorge Henriquez (<a href="https://github.com/penguingovernor">@penguingovernor</a>)</li> <li>Kai Cataldo (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> <li>Nicolò Ribaudo (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> <li>Simon Kotwicz (<a href="https://github.com/simonkotwicz">@simonkotwicz</a>)</li> <li>William Law (<a href="https://github.com/wlawt">@wlawt</a>)</li> <li>Wojciech Maj (<a href="https://github.com/wojtekmaj">@wojtekmaj</a>)</li> </ul> <h2>v7.10.3 (2020-06-19)</h2> <p>Thanks <a href="https://github.com/AjayPoshak">@AjayPoshak</a>, <a href="https://github.com/jessethomson">@jessethomson</a>, <a href="https://github.com/sajadtorkamani">@sajadtorkamani</a>, <a href="https://github.com/shaodahong">@shaodahong</a> and <a href="https://github.com/wlawt">@wlawt</a> for their first PRs!</p> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11676">#11676</a> Properly parse <code>export default from</code> when <code>exportDefaultFrom</code> is not enabled (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-optional-chaining</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11662">#11662</a> refactor: do not rely on AST extra properties in plugins (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-logical-assignment-operators</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11658">#11658</a> Perform NamedEvaluation of Anonymous Functions in Logical Assignment (<a href="https://github.com/jridgewell">@jridgewell</a>)</li> </ul> </li> <li><code>babel-helper-create-class-features-plugin</code>, <code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-optional-chaining</code></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/blob/main/CHANGELOG.md">@babel/preset-env's changelog</a>.</em></p> <blockquote> <h2>v7.10.4 (2020-06-30)</h2> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11669">#11669</a> Add <code>delete obj?.#x.a</code> support (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-parser</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11652">#11652</a> fix: implement early errors for record and tuple (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11752">#11752</a> [regression] Don't validate file.comments in <code>@babel/types</code> (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-do-expressions</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11724">#11724</a> fix: do-statementlist behavior (<a href="https://github.com/wlawt">@wlawt</a>)</li> </ul> </li> </ul> <h4>:nail_care: Polish</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11722">#11722</a> Add better parser error when using jsx (<a href="https://github.com/penguingovernor">@penguingovernor</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>babel-core</code>, <code>babel-helper-fixtures</code>, <code>babel-standalone</code>, <code>babel-traverse</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11758">#11758</a> Replace non-inclusive "whitelist" and "blacklist" terms with "allowlist" etc. (<a href="https://github.com/wojtekmaj">@wojtekmaj</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11376">#11376</a> Add @babel/eslint-plugin-development-internal (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> </li> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11544">#11544</a> Refine babel core types (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h2>v7.10.3 (2020-06-19)</h2> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11676">#11676</a> Properly parse <code>export default from</code> when <code>exportDefaultFrom</code> is not enabled (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-optional-chaining</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11662">#11662</a> refactor: do not rely on AST extra properties in plugins (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-logical-assignment-operators</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11658">#11658</a> Perform NamedEvaluation of Anonymous Functions in Logical Assignment (<a href="https://github.com/jridgewell">@jridgewell</a>)</li> </ul> </li> <li><code>babel-helper-create-class-features-plugin</code>, <code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-optional-chaining</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11623">#11623</a> fix: ensure (a?.b)() has proper this (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-parser</code>, <code>babel-plugin-transform-flow-comments</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11697">#11697</a> Fix innercomments (<a href="https://github.com/shaodahong">@shaodahong</a>)</li> </ul> </li> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11703">#11703</a> fix:added check for forXstatement pattern (<a href="https://github.com/wlawt">@wlawt</a>)</li> </ul> </li> <li><code>babel-template</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11695">#11695</a> Allow templates to parse v8intrinsics (<a href="https://github.com/jridgewell">@jridgewell</a>)</li> </ul> </li> <li><code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11687">#11687</a> improve node type definitions to avoid any's in generated types (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> </ul> </li> <li><code>babel-plugin-transform-react-pure-annotations</code></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/babel/babel/commit/7fd40d86a0d03ff0e9c3ea16b29689945433d4df"><code>7fd40d8</code></a> v7.10.4</li> <li><a href="https://github.com/babel/babel/commit/2787ee2f967b6d8e1121fca00a8d578d75449a53"><code>2787ee2</code></a> v7.10.3</li> <li><a href="https://github.com/babel/babel/commit/eea156b2cb8deecfcf82d52aa1b71ba4995c7d68"><code>eea156b</code></a> Migrate from "master" branch to "main" (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11715">#11715</a>)</li> <li><a href="https://github.com/babel/babel/commit/41085248560b1403b8d0f99f108491e679531c6c"><code>4108524</code></a> Update prettier to v2 (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11579">#11579</a>)</li> <li><a href="https://github.com/babel/babel/commit/3a3457d8084d2da5cce2c1a517b3ff84f95d6398"><code>3a3457d</code></a> Fix some test fixtures (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11655">#11655</a>)</li> <li><a href="https://github.com/babel/babel/commit/b0350e5b1e86bd2d53b4a25705e39eb380ec65a2"><code>b0350e5</code></a> v7.10.2</li> <li><a href="https://github.com/babel/babel/commit/e6d873e061a967c64c9999f15b831aa121cc5a68"><code>e6d873e</code></a> Class features loose should have precedence over preset-env (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11634">#11634</a>)</li> <li><a href="https://github.com/babel/babel/commit/88f57a7ea659d25232bf62de1efceb5d6299b8cf"><code>88f57a7</code></a> v7.10.1</li> <li><a href="https://github.com/babel/babel/commit/32bd530f25bbcf05753eeb7293b305659acc64ec"><code>32bd530</code></a> [hotfix] Use same targets for fields as for private methods (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11633">#11633</a>)</li> <li><a href="https://github.com/babel/babel/commit/242d9e0b20af3ec3f05c929eb0cf5a57cc576e39"><code>242d9e0</code></a> Use <code>repository.directory</code> field in <code>package.json</code> files (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11625">#11625</a>)</li> <li>Additional commits viewable in <a href="https://github.com/babel/babel/commits/v7.10.4/packages/babel-preset-env">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~jlhwung">jlhwung</a>, a new releaser for @babel/preset-env since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1760 -412

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/acorn-7.3.1

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️🔒 Bump acorn from 7.1.0 to 7.3.1 dependencies security

Bumps acorn from 7.1.0 to 7.3.1. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-7fhm-mqm4-2wp7">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Moderate severity vulnerability that affects acorn and minimist</strong> minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "<strong>proto</strong>" payload.</p> <p>Affected versions: >= 7.0.0 < 7.1.1</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-7fhm-mqm4-2wp7">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Moderate severity vulnerability that affects acorn, minimist, and svjsl</strong> There are high severity security vulnerabilities in two of ESLints dependencies:

  • <a href="https://app.snyk.io/vuln/SNYK-JS-ACORN-559469">acorn</a>
  • <a href="https://app.snyk.io/vuln/SNYK-JS-MINIMIST-559764">minimist</a></p> <p>The releases 1.8.3 and lower of svjsl (JSLib-npm) are vulnerable, but only if installed in a developer environment. A patch has been released (v1.8.4) which fixes these vulnerabilities.</p> <p>Identifiers:</p> <ul> <li><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7598">CVE-2020-7598</a></li> <li>SNYK-JS-ACORN-559469 (doesn&#39;t have a CVE identifier)</li> </ul> <p>Affected versions: >= 7.0.0 < 7.1.1</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/acornjs/acorn/commit/e265eae3499b01b176e71bdab8bdb0fe042f3e3d"><code>e265eae</code></a> Mark version 7.3.1</li> <li><a href="https://github.com/acornjs/acorn/commit/50fd1bc3d3f963109a55415903cb046a1c60421f"><code>50fd1bc</code></a> Mark version 7.1.0 of acorn-loose</li> <li><a href="https://github.com/acornjs/acorn/commit/ee03be32a82c31430f5f3f820f368b53c191cc25"><code>ee03be3</code></a> Mark version 7.3.0</li> <li><a href="https://github.com/acornjs/acorn/commit/4adea30d3aa0e536eb76f516344cab3cf93ee87e"><code>4adea30</code></a> add optional chaining</li> <li><a href="https://github.com/acornjs/acorn/commit/eec9b3762bb12314c1a82b71077d76eff4699547"><code>eec9b37</code></a> Fix parsing of ambiguous object pattern with a 'set' property with a default ...</li> <li><a href="https://github.com/acornjs/acorn/commit/f66c4e727368da794f4ded115990ce7accbcc08a"><code>f66c4e7</code></a> Add type definitions for acorn.mjs (<a href="https://github-redirect.dependabot.com/acornjs/acorn/issues/954">#954</a>)</li> <li><a href="https://github.com/acornjs/acorn/commit/304ae5e62aafd5362c52e74778026a08ff35f562"><code>304ae5e</code></a> Enable allowAwaitOutsideFunction in test262, update whitelist</li> <li><a href="https://github.com/acornjs/acorn/commit/6d555e826d962db66b3a2f4fb8361e57e5a1b171"><code>6d555e8</code></a> Mark verison 7.2.0</li> <li><a href="https://github.com/acornjs/acorn/commit/82ed10dfb6a3bdce15c77856fc4ed40abc628a39"><code>82ed10d</code></a> make test262 success on Windows</li> <li><a href="https://github.com/acornjs/acorn/commit/ec7cbd145d7e89ce1f6f31dc875b5dfb8092418a"><code>ec7cbd1</code></a> Add nullish coalescing</li> <li>Additional commits viewable in <a href="https://github.com/acornjs/acorn/compare/7.1.0...7.3.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/make-dir-3.1.0

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump make-dir from 3.0.0 to 3.1.0 dependencies

Bumps make-dir from 3.0.0 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sindresorhus/make-dir/releases">make-dir's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <ul> <li>Stop using deprecated <code>process.umask()</code> (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/28">#28</a>) b5a98ef</li> </ul> <p><a href="https://github.com/sindresorhus/make-dir/compare/v3.0.2...v3.1.0">https://github.com/sindresorhus/make-dir/compare/v3.0.2...v3.1.0</a></p> <h2>v3.0.2</h2> <ul> <li>Throw original error if stat fails; to match sync implementation (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/24">#24</a>) 25231fe</li> </ul> <p><a href="https://github.com/sindresorhus/make-dir/compare/v3.0.1...v3.0.2">https://github.com/sindresorhus/make-dir/compare/v3.0.1...v3.0.2</a></p> <h2>v3.0.1</h2> <ul> <li>Fetch fresh <code>process.umask()</code> on every method call (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/19">#19</a>) dea15ae</li> </ul> <p><a href="https://github.com/sindresorhus/make-dir/compare/v3.0.0...v3.0.1">https://github.com/sindresorhus/make-dir/compare/v3.0.0...v3.0.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sindresorhus/make-dir/commit/6d029fe1f75f1a02fcdd7a67f34eadf0941a424f"><code>6d029fe</code></a> 3.1.0</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/b5a98efbe37afa91b02c3a62cb0ad0c14f03cc87"><code>b5a98ef</code></a> Stop using deprecated <code>process.umask()</code> (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/28">#28</a>)</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/960ecf1ac7f5dd26b012dd867d5f81b80775efd9"><code>960ecf1</code></a> Fix readme typo (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/26">#26</a>)</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/66ba0d9def1b32054bbb94eaeb27a345e35abdd7"><code>66ba0d9</code></a> 3.0.2</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/25231fe7a734cca79860baf6522434623fc06efc"><code>25231fe</code></a> Throw original error if stat fails; to match sync implementation (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/24">#24</a>)</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/cde3270aa23b6bf094feeb90a34779e1da4880db"><code>cde3270</code></a> 3.0.1</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/dea15ae6a368549d910234a2e9609618fb5b488c"><code>dea15ae</code></a> Fetch fresh <code>process.umask()</code> on every method call (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/19">#19</a>)</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/8632e52cc8f47cb1f44bd4084d60818b24d3946a"><code>8632e52</code></a> Upgrade <code>nyc</code></li> <li><a href="https://github.com/sindresorhus/make-dir/commit/7201491d26cc0c225273dee0f18b5e4c60f33b5a"><code>7201491</code></a> Fix linting</li> <li><a href="https://github.com/sindresorhus/make-dir/commit/3354122931ec82fed6990e3d0f3c6e63f682ffd1"><code>3354122</code></a> Fix tests on Windows and Node.js 12 (<a href="https://github-redirect.dependabot.com/sindresorhus/make-dir/issues/22">#22</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sindresorhus/make-dir/compare/v3.0.0...v3.1.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+6 -6

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/p-map-4.0.0

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump p-map from 3.0.0 to 4.0.0 dependencies

Bumps p-map from 3.0.0 to 4.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sindresorhus/p-map/releases">p-map's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h3>Breaking</h3> <ul> <li>Require Node.js 10 bf03769</li> </ul> <h3>Improvements</h3> <ul> <li>Ensure <code>concurrency</code> option is an integer b342717</li> </ul> <p><a href="https://github.com/sindresorhus/p-map/compare/v3.0.0...v4.0.0">https://github.com/sindresorhus/p-map/compare/v3.0.0...v4.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sindresorhus/p-map/commit/a4b4dec459544d98880bc53a580e53691aff9fa9"><code>a4b4dec</code></a> 4.0.0</li> <li><a href="https://github.com/sindresorhus/p-map/commit/b342717a9c44a2d3973b92a7cbf5eaef3a6252a2"><code>b342717</code></a> Ensure <code>concurrency</code> is an integer</li> <li><a href="https://github.com/sindresorhus/p-map/commit/bf037695761aa3c8a54ef4efffdadff0d4cb0cd9"><code>bf03769</code></a> Require Node.js 10</li> <li><a href="https://github.com/sindresorhus/p-map/commit/f8ccb4e778a9f08881da8adca65b5446401c2317"><code>f8ccb4e</code></a> Tidelift tasks</li> <li><a href="https://github.com/sindresorhus/p-map/commit/ed1b661ae96f46ecb1d5796601b221aae779e4b9"><code>ed1b661</code></a> Fix test race condition (<a href="https://github-redirect.dependabot.com/sindresorhus/p-map/issues/21">#21</a>)</li> <li>See full diff in <a href="https://github.com/sindresorhus/p-map/compare/v3.0.0...v4.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+12 -4

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/pify-5.0.0

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️ Bump pify from 4.0.1 to 5.0.0 dependencies

Bumps pify from 4.0.1 to 5.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sindresorhus/pify/releases">pify's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <h3>Breaking</h3> <ul> <li>Require Node.js 10 a6c20b3</li> </ul> <h3>Enhancements</h3> <ul> <li>Implement using <a href="https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Proxy"><code>Proxy</code></a> (<a href="https://github-redirect.dependabot.com/sindresorhus/pify/issues/73">#73</a>) 57e9a04 This means that it should work seamlessly in more cases as the promisified function is just a transparent wrapper around the original function.</li> </ul> <p><a href="https://github.com/sindresorhus/pify/compare/v4.0.1...v5.0.0">https://github.com/sindresorhus/pify/compare/v4.0.1...v5.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sindresorhus/pify/commit/5ef286ffc5310e7dbe99eee1891378ffde962ae9"><code>5ef286f</code></a> 5.0.0</li> <li><a href="https://github.com/sindresorhus/pify/commit/a6c20b396d06678055f1ac9b7aa8d5fcc4bdf836"><code>a6c20b3</code></a> Require Node.js 10</li> <li><a href="https://github.com/sindresorhus/pify/commit/57e9a0442e9e1224e73b844f1ed89b9bdbd10ec6"><code>57e9a04</code></a> Implement using Proxy (<a href="https://github-redirect.dependabot.com/sindresorhus/pify/issues/73">#73</a>)</li> <li><a href="https://github.com/sindresorhus/pify/commit/e0a8b71e68e9101beaf272c1b77c664d1c09fc98"><code>e0a8b71</code></a> Add FAQ section to the readme</li> <li><a href="https://github.com/sindresorhus/pify/commit/d3572b066e147163ef6e42ceddc72117befb0a93"><code>d3572b0</code></a> Tidelift tasks</li> <li><a href="https://github.com/sindresorhus/pify/commit/5e979a3da4c24cc27db406160a713ce22e002602"><code>5e979a3</code></a> Create funding.yml</li> <li><a href="https://github.com/sindresorhus/pify/commit/884bee36b88c4cd7c7a436ebe1c545f096b1b818"><code>884bee3</code></a> Readme tweaks</li> <li><a href="https://github.com/sindresorhus/pify/commit/147f2c88e28427e4900dbb4762acc0213f805fc7"><code>147f2c8</code></a> Add Node.js 12 to testing (<a href="https://github-redirect.dependabot.com/sindresorhus/pify/issues/72">#72</a>)</li> <li><a href="https://github.com/sindresorhus/pify/commit/0113ce5167d37e3f55eb1ee6364f3bfa8e64e7be"><code>0113ce5</code></a> Add security section</li> <li>See full diff in <a href="https://github.com/sindresorhus/pify/compare/v4.0.1...v5.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+12 -4

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 2 days

delete branch steelbrain/babel-cli

delete branch : dependabot/npm_and_yarn/mixin-deep-1.3.2

delete time in 2 days

PR closed steelbrain/babel-cli

⬆️🔒 Bump mixin-deep from 1.3.1 to 1.3.2 dependencies security

Bumps mixin-deep from 1.3.1 to 1.3.2. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

High severity vulnerability that affects mixin-deep mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.

Affected versions: < 1.3.2

</details> <details> <summary>Commits</summary>

  • 754f0c2 1.3.2
  • 90ee1fa ensure keys are valid when mixing in values
  • See full diff in compare view </details> <details> <summary>Maintainer changes</summary>

This version was pushed to npm by doowb, a new releaser for mixin-deep since your current version. </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

pull request commentsteelbrain/babel-cli

⬆️🔒 Bump mixin-deep from 1.3.1 to 1.3.2

@dependabot rebase

dependabot-preview[bot]

comment created time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha 3c4a5803b52e031a6a06c65b166050d4077dd47d

:new: Use node v12 on CI

view details

push time in 2 days

delete branch steelbrain/babel-cli

delete branch : v4-work

delete time in 2 days

push eventsteelbrain/babel-cli

SteelBrain

commit sha 664e430f7beab39678214eecca5938384253fcc0

:new: Add node-supported flags to commander options

view details

Anees I

commit sha 452af529be128f14f332d0a1de469652515ddaf1

:new: Improve CLI args outlook

view details

Anees I

commit sha 11225a8af285e2aab376890a244c53d99545b2f7

:minibus: Rename stuff to TS

view details

Anees I

commit sha d2c775258d7e7545f79f22c1d6cd605fe250c1e0

:new: More package struct changes

view details

Anees I

commit sha 1482614a1f5beb23b2bd6b4e4f179c6d1db6463c

:memo: Add rest of the changes to CHANGELOG

view details

Anees I

commit sha d6951beb128840fa6594bffb4f459e6679e8956b

:arrow_up: Upgrade everything

view details

Anees I

commit sha d7a1c0e2c7518108b3a4a966e8ec3aa0f3b3689a

:new: Add a new TS Config Type

view details

Anees I

commit sha b74e62f4143a5948a2574b1f907e53b77abba70e

:new: Rest of the ****ing owl

view details

Anees I

commit sha a3479b8681c0686d8531e740d79512727136f5eb

:memo: Document path to v3 branch

view details

Anees I

commit sha 406db04c65b14969ac5421522b5d1710ade5efe0

:bug: Fix CI config

view details

Anees I

commit sha 1e16510c529c894624584ae8e7ab39f1814ba3f3

Merge pull request #158 from steelbrain/v4-work V4 work

view details

push time in 2 days

PR merged steelbrain/babel-cli

V4 work

Expect Moar Cleanup Eventually rewrite in Typescript

+870 -2411

1 comment

21 changed files

steelbrain

pr closed time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha 406db04c65b14969ac5421522b5d1710ade5efe0

:bug: Fix CI config

view details

push time in 2 days

pull request commentsteelbrain/babel-cli

V4 work

Boom de yada. Boom de yada.

steelbrain

comment created time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha a3479b8681c0686d8531e740d79512727136f5eb

:memo: Document path to v3 branch

view details

push time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha b74e62f4143a5948a2574b1f907e53b77abba70e

:new: Rest of the ****ing owl

view details

push time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha 11225a8af285e2aab376890a244c53d99545b2f7

:minibus: Rename stuff to TS

view details

Anees I

commit sha d2c775258d7e7545f79f22c1d6cd605fe250c1e0

:new: More package struct changes

view details

Anees I

commit sha 1482614a1f5beb23b2bd6b4e4f179c6d1db6463c

:memo: Add rest of the changes to CHANGELOG

view details

Anees I

commit sha d6951beb128840fa6594bffb4f459e6679e8956b

:arrow_up: Upgrade everything

view details

Anees I

commit sha d7a1c0e2c7518108b3a4a966e8ec3aa0f3b3689a

:new: Add a new TS Config Type

view details

push time in 2 days

push eventsteelbrain/template

Anees I

commit sha e6409cb0319070e1f368aaf021bacfbb014b91ce

:art: Restore closest matching CI cache

view details

push time in 2 days

push eventsteelbrain/template

Anees I

commit sha f779d1213b1a8a0296d5ba2717715b58f9ceee60

:fire: Remove yarn.lock from template

view details

push time in 2 days

push eventsteelbrain/template

Anees I

commit sha c1808a9191e6c093101e14525935bf4793963ed2

:arrow_up: Upgrade dependencies to the latest version

view details

push time in 2 days

created tagsteelbrain/eslint-config

tagv11.0.0

My eslintrc

created time in 2 days

push eventsteelbrain/eslint-config

Anees I

commit sha 54e3b2b110b95aaddcdfcc00827cf7acf7fc468c

:arrow_up: Upgrade to Typescript v4

view details

Anees I

commit sha 60a8db4f889ec9e5fa0e6e87a42d4ac8c0ac9100

:memo: Document changes in CHANGELOG

view details

Anees I

commit sha 41d0e19018e18f7a50c58b6986f81809029bb47d

11.0.0

view details

push time in 2 days

push eventsteelbrain/babel-cli

Anees I

commit sha 452af529be128f14f332d0a1de469652515ddaf1

:new: Improve CLI args outlook

view details

push time in 2 days

startedc-smile/sciter-js-sdk

started time in 2 days

startedxo/usql

started time in 4 days

startedpal1000/Realtek-UAD-generic

started time in 4 days

startedanuraghazra/github-readme-stats

started time in 4 days

startedtaniarascia/webpack-boilerplate

started time in 6 days

issue openedGoogleCloudPlatform/cloud-build-notifiers

Lack of IGNORE_BAD_MESSAGES is logged

I'm seeing a lot of this in stderr, and it's not useful or relevant for end-users. Maybe remove it?

env var "IGNORE_BAD_MESSAGES" is empty

created time in 11 days

startednikolaeu/numi

started time in 14 days

push eventsteelbrain/eslint-config

SteelBrain

commit sha c7a2f9a6a2a3d7c1a775d740c9d5cad529609c43

:memo: Document changes in CHANGELOG

view details

push time in 14 days

push eventsteelbrain/eslint-config

SteelBrain

commit sha eee2cbda9153b0abdcc07ee1d9662abe630cf182

10.0.0

view details

push time in 14 days

created tagsteelbrain/eslint-config

tagv10.0.0

My eslintrc

created time in 14 days

PR opened steelbrain/babel-cli

V4 work

Expect Moar Cleanup Eventually rewrite in Typescript

+25 -35

0 comment

3 changed files

pr created time in 14 days

create barnchsteelbrain/babel-cli

branch : v4-work

created branch time in 14 days

push eventsteelbrain/babel-cli

SteelBrain

commit sha c76d39f7f3d3fecb670bed8365f73afc69e5c4c2

:bug: Fix .files in package.json

view details

push time in 14 days

startedMusish/Musish

started time in 14 days

created tagsteelbrain/babel-cli

tagv3.1.2

A smarter babel-cli

created time in 14 days

issue commentsteelbrain/babel-cli

iterate.js missing from 3.1.1

v3.1.2 is out with the fix!

sfarthin

comment created time in 14 days

push eventsteelbrain/babel-cli

steelbrain

commit sha 25e4e86eb214e0dc19df47129d586fb539119db5

:bug: Fix files in manifest

view details

steelbrain

commit sha 734799340c3029d1a792a61a114ac0b31dfb1e8b

3.1.2

view details

push time in 14 days

issue commentsteelbrain/babel-cli

iterate.js missing from 3.1.1

Super embarrassing. I'm so sorry 😬 Fixing

sfarthin

comment created time in 14 days

issue commentsteelbrain/node-ssh

stderr always coming in stdout

Well the code in this package is doing the same thing mentioned in your snippet so not sure what's up 🤷‍♂️ You're more than welcome to debug and share your findings

syedhabib53

comment created time in 14 days

delete branch steelbrain/babel-cli

delete branch : maintenance

delete time in 14 days

push eventsteelbrain/babel-cli

Anees I

commit sha ca3bbc9076679db114196829c08bfa454b830db1

:fire: Get rid of write flow sources

view details

Anees I

commit sha 3f1ba0fede84b831d66b2ab305b424153be16f22

:minibus: Rename disable-cache to reset-cache

view details

Anees I

commit sha d2dd89a7c84dbac0bf7da6f48f26c10f8c01950f

:new: Make --ignored accept only one glob

view details

Anees I

commit sha e98f203e4e6dc545f488b717f61fe3e2c4c511b2

:bug: Fix typo and allow unknown args in commander

view details

steelbrain

commit sha 2323884931ca35976614620a7ce1e2fa9ee5c184

Merge remote-tracking branch 'origin/master' into maintenance

view details

Anees I

commit sha 764396dffce77873f876baaad4b6a51f773336bf

Merge pull request #155 from steelbrain/maintenance Phase 1 - v4

view details

push time in 14 days

PR merged steelbrain/babel-cli

Phase 1 - v4

Gets rid of legacy stuff and prepares for the TS rewrite

+28 -48

1 comment

5 changed files

steelbrain

pr closed time in 14 days

push eventsteelbrain/babel-cli

steelbrain

commit sha 35b68c8c50272aa7cc61459e974f06677b871b42

:bug: Fix unknown options passthrough

view details

steelbrain

commit sha 1a5ad6f221c31826115e27bd7f9fbe7c2f4fdc5f

:new: Whitelist npm allowed files

view details

steelbrain

commit sha dbdf51391a4e8e470556c03c2bc109eb48bcefb4

3.1.1

view details

steelbrain

commit sha 2323884931ca35976614620a7ce1e2fa9ee5c184

Merge remote-tracking branch 'origin/master' into maintenance

view details

push time in 14 days

pull request commentsteelbrain/babel-cli

Phase 1 - v4

v3 is now branched out, pushing this to master

steelbrain

comment created time in 14 days

create barnchsteelbrain/babel-cli

branch : v3

created branch time in 14 days

issue closedsteelbrain/babel-cli

Issue running with --enable-source-maps

image

^^ I am not able to use --enable-source-maps currently. Am I doing something wrong?

closed time in 14 days

sfarthin

issue commentsteelbrain/babel-cli

Issue running with --enable-source-maps

Fixed v3.1.1

sfarthin

comment created time in 14 days

push eventsteelbrain/babel-cli

steelbrain

commit sha 35b68c8c50272aa7cc61459e974f06677b871b42

:bug: Fix unknown options passthrough

view details

steelbrain

commit sha 1a5ad6f221c31826115e27bd7f9fbe7c2f4fdc5f

:new: Whitelist npm allowed files

view details

steelbrain

commit sha dbdf51391a4e8e470556c03c2bc109eb48bcefb4

3.1.1

view details

push time in 14 days

created tagsteelbrain/babel-cli

tagv3.1.1

A smarter babel-cli

created time in 14 days

startedMonitorControl/MonitorControl

started time in 14 days

issue commentsteelbrain/babel-cli

Issue running with --enable-source-maps

commander’s upgrade bit back, expect a fix soon

sfarthin

comment created time in 15 days

push eventsteelbrain/lint-unpushed

steelbrain

commit sha 1dc1f83c0138ebeb8084d312c9b8735f34dedb13

:memo: Document Husky bug in README

view details

push time in 15 days

pull request commenttypicode/husky

capture all git args with rest param syntax

Just got bit by this. Applied the patch and it worked well. Can a maintainer please have a look at this?

kirkoman

comment created time in 15 days

issue openedgajus/babel-plugin-graphql-tag

Changelog please

Hello @gajus

Thank you for working on this.

The lack of a changelog file and the lack of tagged releases makes it difficult to upgrade this package in dependents. Are you open to the idea of changelogs?

Cheers

created time in 15 days

push eventsteelbrain/link-tilde

SteelBrain

commit sha 0b860e34aa1bbf58feda47fee49ad5356b2a0833

:new: Specify files to pack for npm

view details

SteelBrain

commit sha 0cd60fb1febdfa3ce066a826c002f6cc4fcaeb7a

2.0.0

view details

push time in 16 days

created tagsteelbrain/link-tilde

tagv2.0.0

Node.js module to get nicer import paths

created time in 16 days

push eventsteelbrain/link-tilde

SteelBrain

commit sha e3d1323367630cd350bcf5814da90fd833c8f3ef

:new: Replace mkdirp with make-dir

view details

push time in 16 days

push eventsteelbrain/link-tilde

SteelBrain

commit sha e2ef9e8121298414a0fdb84b8dd2a210ac857f6b

:new: Add warning message for windows

view details

SteelBrain

commit sha 34d1e6e1c139b9e5188cddd33e62d2789d506622

:arrow_up: Require Node 10 or higher

view details

push time in 16 days

more