profile
viewpoint

tomanagle/GraphQL-Apollo-Next.js 52

A server-rendering GraphQL client with Apollo Client and Next.js

tomanagle/JavaScript-design-patterns 24

Examples of popular design patterns in JavaScript

tomanagle/codenames 10

Play Codenames Online

tomanagle/NextJS-NestJS-GraphQL-Starter 9

A production-ready NextJS & NestJS GraphQL starter pack

tomanagle/deno-http-servers 1

Five ways to create a HTTP server with Deno

tomanagle/javascript-testing-best-practices 1

📗🌐 🚢 Comprehensive and exhaustive JavaScript & Node.js testing best practices (August 2019)

tomanagle/ant-design-mobile-rn 0

Ant Design for React Native

tomanagle/awesome-nestjs 0

😏 Curated list of NestJS

push eventtomanagle/NextJS-NestJS-GraphQL-Starter

dependabot-preview[bot]

commit sha 2808b26f6c4f635a6aab18dd3e01a2251d0d6104

build(deps): [security] bump object-path in /server Bumps [object-path](https://github.com/mariocasciaro/object-path) from 0.11.4 to 0.11.5. **This update includes a security fix.** - [Release notes](https://github.com/mariocasciaro/object-path/releases) - [Commits](https://github.com/mariocasciaro/object-path/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 819673b8ba891c4e5d8a13b7a65c5379588d09a0

Merge pull request #55 from tomanagle/dependabot/npm_and_yarn/server/master/object-path-0.11.5 build(deps): [security] bump object-path from 0.11.4 to 0.11.5 in /server

view details

push time in 4 days

delete branch tomanagle/NextJS-NestJS-GraphQL-Starter

delete branch : dependabot/npm_and_yarn/server/master/object-path-0.11.5

delete time in 4 days

PR merged tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): [security] bump object-path from 0.11.4 to 0.11.5 in /server dependabot dependencies security server

Bumps object-path from 0.11.4 to 0.11.5. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-cwx2-736x-mf6w">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype pollution in object-path</strong></p> <h3>Impact</h3> <p>A prototype pollution vulnerability has been found in <code>object-path</code> <= 0.11.4 affecting the <code>set()</code> method. The vulnerability is limited to the <code>includeInheritedProps</code> mode (if version >= 0.11.0 is used), which has to be explicitly enabled by creating a new instance of <code>object-path</code> and setting the option <code>includeInheritedProps: true</code>, or by using the default <code>withInheritedProps</code> instance. The default operating mode is not affected by the vulnerability if version >= 0.11.0 is used. Any usage of <code>set()</code> in versions < 0.11.0 is vulnerable.</p> <h3>Patches</h3> <p>Upgrade to version >= 0.11.5</p> <h3>Workarounds</h3> <p>Don't use the <code>includeInheritedProps: true</code> options or the <code>withInheritedProps</code> instance if using a version >= 0.11.0.</p> <h3>References</h3> <p><a href="https://codeburst.io/what-is-prototype-pollution-49482fc4b638">Read more about the prototype pollution vulnerability</a></p> <h3>For more information</h3> <p>If you have any questions or comments about this advisory:</p> <ul> <li>Open an issue in <a href="https://github.com/mariocasciaro/object-path">object-path</a></li> </ul> <p>Affected versions: < 0.11.5</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/mariocasciaro/object-path/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha e1bf61e6a33b327f6a2fb3bd2b61b9ae46f5478d

build(deps): [security] bump npm-user-validate from 1.0.0 to 1.0.1 Bumps [npm-user-validate](https://github.com/npm/npm-user-validate) from 1.0.0 to 1.0.1. **This update includes a security fix.** - [Release notes](https://github.com/npm/npm-user-validate/releases) - [Commits](https://github.com/npm/npm-user-validate/compare/v1.0.0...v1.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 541567bb1fe828a24388727ebdc81200d9e3dc81

Merge pull request #174 from localz/dependabot/npm_and_yarn/master/npm-user-validate-1.0.1 build(deps): [security] bump npm-user-validate from 1.0.0 to 1.0.1

view details

push time in 7 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/npm-user-validate-1.0.1

delete time in 7 days

PR merged localz/stroganoff

Reviewers
build(deps): [security] bump npm-user-validate from 1.0.0 to 1.0.1 dependabot dependencies security

Bumps npm-user-validate from 1.0.0 to 1.0.1. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-xgh6-85xh-479p">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Regular Expression Denial of Service in npm-user-validate</strong> <code>npm-user-validate</code> before version <code>1.0.1</code> is vulnerable to a Regular Expression Denial of Service (REDos). The regex that validates user emails took exponentially longer to process long input strings beginning with <code>@</code> characters.</p> <h3>Impact</h3> <p>The issue affects the <code>email</code> function. If you use this function to process arbitrary user input with no character limit the application may be susceptible to Denial of Service.</p> <h3>Patches</h3> <p>The issue is patched in version 1.0.1 by improving the regular expression used and also enforcing a 254 character limit.</p> <h3>Workarounds</h3> <p>Restrict the character length to a reasonable degree before passing a value to <code>.emal()</code>; Also, consider doing a more rigorous sanitizing/validation beforehand.</p> <p>Affected versions: <= 1.0.0</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/npm-user-validate/commit/5c5471ceee0d9f5249157f5ae10d65a5b92605c9"><code>5c5471c</code></a> 1.0.1</li> <li><a href="https://github.com/npm/npm-user-validate/commit/c8a87dac1a4cc6988b5418f30411a8669bef204e"><code>c8a87da</code></a> fix: update email validation</li> <li><a href="https://github.com/npm/npm-user-validate/commit/cd7539362b08727f91c18a9dcd8a766bd13d997c"><code>cd75393</code></a> Publish only the minimum of files</li> <li>See full diff in <a href="https://github.com/npm/npm-user-validate/compare/v1.0.0...v1.0.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/jest-26.6.0

delete time in 7 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha 80415b2694d39af8d52beee1707f46e3d4278a94

build(deps-dev): bump jest from 26.5.2 to 26.6.0 Bumps [jest](https://github.com/facebook/jest) from 26.5.2 to 26.6.0. - [Release notes](https://github.com/facebook/jest/releases) - [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md) - [Commits](https://github.com/facebook/jest/compare/v26.5.2...v26.6.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha a0a492b210cedbf07727616368723a5e6f344ece

Merge pull request #177 from localz/dependabot/npm_and_yarn/master/jest-26.6.0 build(deps-dev): bump jest from 26.5.2 to 26.6.0

view details

push time in 7 days

PR merged localz/stroganoff

Reviewers
build(deps-dev): bump jest from 26.5.2 to 26.6.0 dependabot dependencies

Bumps jest from 26.5.2 to 26.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/releases">jest's releases</a>.</em></p> <blockquote> <h2>26.6.0</h2> <h3>Features</h3> <ul> <li><code>[jest-cli, jest-config]</code> Add support for the <code>jest.config.ts</code> configuration file (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10564">#10564</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-config]</code> Simplify transform RegExp (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10207">#10207</a>)</li> <li><code>[jest-fake-timers]</code> Lazily instantiate mock timers (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10551">#10551</a>)</li> <li><code>[jest-runtime]</code> <code>require.main</code> is no longer <code>undefined</code> when using <code>jest.resetModules</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10626">#10626</a>)</li> <li><code>[@jest/types]</code> Add missing values for <code>timers</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10632">#10632</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[docs]</code> Add step for fetching <code>backers.json</code> file in website setup docs (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10631">#10631</a>)</li> <li><code>[docs]</code> Add page detailing environment variables set by Jest (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10630">#10630</a>)</li> <li><code>[jest-circus]</code> Refactor <code>callAsyncCircusFn</code> parameters (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10629">#10629</a>)</li> </ul> <h2>26.5.3</h2> <h3>Features</h3> <ul> <li><code>[jest-runtime]</code> add support for dynamic <code>import()</code> from CommonJS (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10620">#10620</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-runner, jest-runtime]</code> <code>require.main</code> should not be <code>undefined</code> with <code>createRequire()</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10610">#10610</a>)</li> <li><code>[jest-runtime]</code> add missing <code>module.path</code> property (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10615">#10615</a>)</li> <li><code>[jest-runtime]</code> Add <code>mainModule</code> instance variable to runtime (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10621">#10621</a>)</li> <li><code>[jest-runtime]</code> Evaluate Node core modules on dynamic <code>import()</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10622">#10622</a>)</li> <li><code>[jest-validate]</code> Show suggestion only when unrecognized cli param is longer than 1 character (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10604">#10604</a>)</li> <li><code>[jest-validate]</code> Validate <code>testURL</code> as CLI option (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10595">#10595</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/blob/master/CHANGELOG.md">jest's changelog</a>.</em></p> <blockquote> <h2>26.6.0</h2> <h3>Features</h3> <ul> <li><code>[jest-cli, jest-config]</code> Add support for the <code>jest.config.ts</code> configuration file (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10564">#10564</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-config]</code> Simplify transform RegExp (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10207">#10207</a>)</li> <li><code>[jest-fake-timers]</code> Lazily instantiate mock timers (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10551">#10551</a>)</li> <li><code>[jest-runtime]</code> <code>require.main</code> is no longer <code>undefined</code> when using <code>jest.resetModules</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10626">#10626</a>)</li> <li><code>[@jest/types]</code> Add missing values for <code>timers</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10632">#10632</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[docs]</code> Add step for fetching <code>backers.json</code> file in website setup docs (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10631">#10631</a>)</li> <li><code>[docs]</code> Add page detailing environment variables set by Jest (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10630">#10630</a>)</li> <li><code>[jest-circus]</code> Refactor <code>callAsyncCircusFn</code> parameters (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10629">#10629</a>)</li> </ul> <h2>26.5.3</h2> <h3>Features</h3> <ul> <li><code>[jest-runtime]</code> add support for dynamic <code>import()</code> from CommonJS (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10620">#10620</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-runner, jest-runtime]</code> <code>require.main</code> should not be <code>undefined</code> with <code>createRequire()</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10610">#10610</a>)</li> <li><code>[jest-runtime]</code> add missing <code>module.path</code> property (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10615">#10615</a>)</li> <li><code>[jest-runtime]</code> Add <code>mainModule</code> instance variable to runtime (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10621">#10621</a>)</li> <li><code>[jest-runtime]</code> Evaluate Node core modules on dynamic <code>import()</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10622">#10622</a>)</li> <li><code>[jest-validate]</code> Show suggestion only when unrecognized cli param is longer than 1 character (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10604">#10604</a>)</li> <li><code>[jest-validate]</code> Validate <code>testURL</code> as CLI option (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10595">#10595</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/facebook/jest/commit/b254fd82fdedcba200e1c7eddeaab83a09bdaaef"><code>b254fd8</code></a> v26.6.0</li> <li><a href="https://github.com/facebook/jest/commit/30a22fc6f63aeab25aba57176a67e4aad3796601"><code>30a22fc</code></a> chore: update changelog for release</li> <li><a href="https://github.com/facebook/jest/commit/7d7e97fb9ce82a91969b67a3d18b638b266ff988"><code>7d7e97f</code></a> fix: simplify transform RegExp (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10207">#10207</a>)</li> <li><a href="https://github.com/facebook/jest/commit/ecb31a71f03e6ba191c96988e1e88379bacfb241"><code>ecb31a7</code></a> refactor(fake-timers): don't setup fakeTimerAPIs unless needed (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10551">#10551</a>)</li> <li><a href="https://github.com/facebook/jest/commit/621ecf7cf47ce7612e5ea433c0b0981b3be7d373"><code>621ecf7</code></a> chore(docs): Added MIT Licence Badge and aligned all badges (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10411">#10411</a>)</li> <li><a href="https://github.com/facebook/jest/commit/8ea403dece7cbd15606098069985832e7263953e"><code>8ea403d</code></a> chore(website): minor CSS improvements to logos (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10410">#10410</a>)</li> <li><a href="https://github.com/facebook/jest/commit/e84a70c8456d61daa36b5c79a4df7ee752d6d6d6"><code>e84a70c</code></a> refactor: add missing options for timers on config.ts file (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10632">#10632</a>)</li> <li><a href="https://github.com/facebook/jest/commit/50b534ee612d0bf3de56df4c1b974a1792b8c022"><code>50b534e</code></a> chore: fix snapshot</li> <li><a href="https://github.com/facebook/jest/commit/19886b5a93a351eb77b570721eba1eecaa86f888"><code>19886b5</code></a> chore: refactor <code>callAsyncCircusFn</code> parameters (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10629">#10629</a>)</li> <li><a href="https://github.com/facebook/jest/commit/d077f2e6f36cc5717d61b973cda51f63bd1a280e"><code>d077f2e</code></a> Add environment variables docs page (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10630">#10630</a>)</li> <li>Additional commits viewable in <a href="https://github.com/facebook/jest/compare/v26.5.2...v26.6.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+308 -285

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 7 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha ab7a89d5aa230867bc88e91d4f58899a6b4bc2d6

build(deps): bump rollup from 2.29.0 to 2.32.1 Bumps [rollup](https://github.com/rollup/rollup) from 2.29.0 to 2.32.1. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v2.29.0...v2.32.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 65b43d96bc66c177bc92043eb25b40a0a2df85ee

Merge pull request #178 from localz/dependabot/npm_and_yarn/master/rollup-2.32.1 build(deps): bump rollup from 2.29.0 to 2.32.1

view details

push time in 7 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/rollup-2.32.1

delete time in 7 days

PR merged localz/stroganoff

Reviewers
build(deps): bump rollup from 2.29.0 to 2.32.1 dependabot dependencies

Bumps rollup from 2.29.0 to 2.32.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/releases">rollup's releases</a>.</em></p> <blockquote> <h2>v2.32.1</h2> <p><em>2020-10-21</em></p> <h3>Bug Fixes</h3> <ul> <li>Print warning location for plugin warnings if only <code>loc</code> is supplied (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3824">#3824</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3824">#3824</a>: plugin warnings not showing warning.loc (<a href="https://github.com/luciotato">@luciotato</a>)</li> </ul> <h2>v2.32.0</h2> <p><em>2020-10-16</em></p> <h3>Features</h3> <ul> <li>Extend <code>preserveEntrySignatures</code> with a value <code>"exports-only"</code> to allow extension only if an entry does not have exports (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3823">#3823</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3823">#3823</a>: Add "exports-only" option to preserveSignature (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.31.0</h2> <p><em>2020-10-15</em></p> <h3>Features</h3> <ul> <li>When using the <code>output.moduleToStringTag</code> option, also add the tag to entries with exports and simulated external namespaces (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3822">#3822</a>)</li> <li>Add the <code>__esModule</code> interop marker to IIFE global variables unless <code>output.esModule</code> is turned off (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3822">#3822</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3822">#3822</a>: Add module toStringTag to entries and interop namespaces (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.30.0</h2> <p><em>2020-10-13</em></p> <h3>Features</h3> <ul> <li>Add <code>moduleParsed</code> hook that is called for each module once code and AST are available (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3813">#3813</a>)</li> <li>Include code and AST in <code>this.getModuleInfo</code> (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3813">#3813</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Provide the original Acorn AST instead of the internal one when resolving dynamic imports that contain non-trivial expressions (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3813">#3813</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3813">#3813</a>: Add moduleParsed plugin hook (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3815">#3815</a>: Docs: wile => while (<a href="https://github.com/tjenkinson">@tjenkinson</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3817">#3817</a>: Docs: fix code snippet (<a href="https://github.com/codefrau">@codefrau</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3818">#3818</a>: Update documentation on configuring Babel, removing the section on passing '{"modules": false}' as that is no longer needed since Babel 7 (<a href="https://github.com/Robin-Hoodie">@Robin-Hoodie</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/blob/master/CHANGELOG.md">rollup's changelog</a>.</em></p> <blockquote> <h2>2.32.1</h2> <p><em>2020-10-21</em></p> <h3>Bug Fixes</h3> <ul> <li>Print warning location for plugin warnings if only <code>loc</code> is supplied (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3824">#3824</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3824">#3824</a>: plugin warnings not showing warning.loc (<a href="https://github.com/luciotato">@luciotato</a>)</li> </ul> <h2>2.32.0</h2> <p><em>2020-10-16</em></p> <h3>Features</h3> <ul> <li>Extend <code>preserveEntrySignatures</code> with a value <code>"exports-only"</code> to allow extension only if an entry does not have exports (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3823">#3823</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3823">#3823</a>: Add "exports-only" option to preserveSignature (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.31.0</h2> <p><em>2020-10-15</em></p> <h3>Features</h3> <ul> <li>When using the <code>output.moduleToStringTag</code> option, also add the tag to entries with exports and simulated external namespaces (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3822">#3822</a>)</li> <li>Add the <code>__esModule</code> interop marker to IIFE global variables unless <code>output.esModule</code> is turned off (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3822">#3822</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3822">#3822</a>: Add module toStringTag to entries and interop namespaces (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.30.0</h2> <p><em>2020-10-13</em></p> <h3>Features</h3> <ul> <li>Add <code>moduleParsed</code> hook that is called for each module once code and AST are available (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3813">#3813</a>)</li> <li>Include code and AST in <code>this.getModuleInfo</code> (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3813">#3813</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Provide the original Acorn AST instead of the internal one when resolving dynamic imports that contain non-trivial expressions (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3813">#3813</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3813">#3813</a>: Add moduleParsed plugin hook (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3815">#3815</a>: Docs: wile => while (<a href="https://github.com/tjenkinson">@tjenkinson</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3817">#3817</a>: Docs: fix code snippet (<a href="https://github.com/codefrau">@codefrau</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3818">#3818</a>: Update documentation on configuring Babel, removing the section on passing '{"modules": false}' as that is no longer needed since Babel 7 (<a href="https://github.com/Robin-Hoodie">@Robin-Hoodie</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rollup/rollup/commit/51e727c99bfc67a6bc46087c63950cec2a7fe12f"><code>51e727c</code></a> 2.32.1</li> <li><a href="https://github.com/rollup/rollup/commit/c8efd0712408fd581b3a312ae296704ba50e0cdc"><code>c8efd07</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/53e30e2d52c0c692202308afff14a82f28380764"><code>53e30e2</code></a> fix: plugin warnings not showing warning.loc (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3824">#3824</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/b794a132a35cc46d7c9ba5b7134aeacd75bdb27d"><code>b794a13</code></a> Fix this.resolve return type in docs (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3825">#3825</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/41fd96810749433cae2787f156a530c1ef04b9ef"><code>41fd968</code></a> 2.32.0</li> <li><a href="https://github.com/rollup/rollup/commit/396a91f4dae700476f9670305834cefae0304724"><code>396a91f</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/4b07a9607b7fb82ed07a6e4ead0e17e18b2130b9"><code>4b07a96</code></a> Add "exports-only" option to preserveSignature (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3823">#3823</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/8cdbc617d4d5883c283480df179f516a8527b06d"><code>8cdbc61</code></a> 2.31.0</li> <li><a href="https://github.com/rollup/rollup/commit/81ce46b16969e3e80e0eeea2d65e9bee16fa14e2"><code>81ce46b</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/05d578a1c1baca0e860ad71db6a5690a5ea82e82"><code>05d578a</code></a> Add module toStringTag to entries and interop namespaces (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3822">#3822</a>)</li> <li>Additional commits viewable in <a href="https://github.com/rollup/rollup/compare/v2.29.0...v2.32.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 7 days

push eventtomanagle/NextJS-NestJS-GraphQL-Starter

dependabot-preview[bot]

commit sha 26c2091ca01d8b2b163dc5c7c582dce5e0d15198

build(deps): [security] bump next from 9.5.3 to 9.5.4 in /client Bumps [next](https://github.com/vercel/next.js) from 9.5.3 to 9.5.4. **This update includes security fixes.** - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v9.5.3...v9.5.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha bb96fd87786deca4bb866c2217b97fa2f6a0acce

Merge pull request #54 from tomanagle/dependabot/npm_and_yarn/client/master/next-9.5.4 build(deps): [security] bump next from 9.5.3 to 9.5.4 in /client

view details

push time in 20 days

delete branch tomanagle/NextJS-NestJS-GraphQL-Starter

delete branch : dependabot/npm_and_yarn/client/master/next-9.5.4

delete time in 20 days

PR merged tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): [security] bump next from 9.5.3 to 9.5.4 in /client client dependabot dependencies security

Bumps next from 9.5.3 to 9.5.4. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-x56p-c8cg-q435">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Open Redirect in Next.js versions</strong></p> <h3>Impact</h3> <ul> <li><strong>Affected</strong>: Users of Next.js between 9.5.0 and 9.5.3</li> <li><strong>Not affected</strong>: Deployments on Vercel (<a href="https://vercel.com">https://vercel.com</a>) are not affected</li> <li><strong>Not affected</strong>: Deployments using <code>next export</code></li> </ul> <p>We recommend everyone to upgrade regardless of whether you can reproduce the issue or not.</p> <h3>Patches</h3> <p><a href="https://github.com/zeit/next.js/releases/tag/v9.5.4">https://github.com/zeit/next.js/releases/tag/v9.5.4</a></p> <h3>References</h3> <p><a href="https://github.com/zeit/next.js/releases/tag/v9.5.4">https://github.com/zeit/next.js/releases/tag/v9.5.4</a></p> <p>Affected versions: >= 9.5.0 < 9.5.4</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-x56p-c8cg-q435">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Open Redirect in Next.js versions</strong></p> <h3>Impact</h3> <ul> <li><strong>Affected</strong>: Users of Next.js between 9.5.0 and 9.5.3</li> <li><strong>Not affected</strong>: Deployments on Vercel (<a href="https://vercel.com">https://vercel.com</a>) are not affected</li> <li><strong>Not affected</strong>: Deployments using <code>next export</code></li> </ul> <p>We recommend everyone to upgrade regardless of whether you can reproduce the issue or not.</p> <h3>Patches</h3> <p><a href="https://github.com/zeit/next.js/releases/tag/v9.5.4">https://github.com/zeit/next.js/releases/tag/v9.5.4</a></p> <h3>References</h3> <p><a href="https://github.com/zeit/next.js/releases/tag/v9.5.4">https://github.com/zeit/next.js/releases/tag/v9.5.4</a></p> <p>Affected versions: >= 9.5.0 < 9.5.4</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vercel/next.js/releases">next's releases</a>.</em></p> <blockquote> <h2>v9.5.4</h2> <p><strong>This upgrade is <em>completely backwards compatible and recommended for all users on versions below 9.5.4.</em> For future security related communications of our OSS projects, please <a href="https://vercel.com/security">join this mailing list</a>.</strong></p> <p>A security team from one of our partners noticed an issue in Next.js that allowed for open redirects to occur.</p> <p>Specially encoded paths could be used with the trailing slash redirect to allow an open redirect to occur to an external site.</p> <p>In general, this redirect does not directly harm users although can allow for phishing attacks by redirecting to an attackers domain from a trusted domain.</p> <p>We recommend upgrading to the latest version of Next.js to improve the overall security of your application.</p> <h2>How to Upgrade</h2> <ul> <li>We have released patch versions for both the stable and canary channels of Next.js.</li> <li>To upgrade run <code>npm install next@latest --save</code></li> </ul> <h2>Impact</h2> <ul> <li><strong>Affected</strong>: Users of Next.js between 9.5.0 and 9.5.3</li> <li><strong>Not affected</strong>: Deployments on Vercel (<a href="https://vercel.com">https://vercel.com</a>) are not affected</li> <li><strong>Not affected</strong>: Deployments using <code>next export</code></li> </ul> <p>We recommend everyone to upgrade regardless of whether you can reproduce the issue or not.</p> <h3>How to Assess Impact</h3> <p>If you think users could have been affected, you can filter logs of affected sites by <code>%2F</code> with a 308 response.</p> <h2>What is Being Done</h2> <p>As Next.js has grown in popularity, it has received the attention of security teams and auditors. We are thankful to those that reached out for their investigation and discovery of the original bug and subsequent responsible disclosure.</p> <p>We've landed a patch that ensures encoding is handled properly for these types of redirects so the open redirect can no longer occur.</p> <p>Regression tests for this attack were added to the <a href="https://github.com/vercel/next.js/blob/canary/test/integration/production/test/security.js">security</a> integration test suite.</p> <ul> <li>We have notified known Next.js users in advance of this publication.</li> <li>A public CVE was released.</li> <li>If you want to stay on top of our security related news impacting Next.js or other Vercel projects, please <a href="https://zeit.co/security">join this mailing list</a>.</li> <li>We encourage responsible disclosure of future issues. Please email us at <strong><a href="https://github.com/vercel/next.js/blob/HEAD/mailto:security@zeit.co">security@vercel.com</a>.</strong> We are actively monitoring this mailbox.</li> </ul> <hr /> <h3>Core Changes</h3> <ul> <li>Make the image post-processor ignore SVG images: <a href="https://github-redirect.dependabot.com/vercel/next.js/issues/16732">#16732</a></li> <li>Only update lookups for dev overlay if mounted: <a href="https://github-redirect.dependabot.com/vercel/next.js/issues/16776">#16776</a></li> <li>Ensure interpolating dynamic href values works correctly: <a href="https://github-redirect.dependabot.com/vercel/next.js/issues/16774">#16774</a></li> <li>Add automatic reloading when editing GS(S)P methods: <a href="https://github-redirect.dependabot.com/vercel/next.js/issues/16744">#16744</a></li> <li>Update to show build indicator while re-fetching GS(S)P data in dev: <a href="https://github-redirect.dependabot.com/vercel/next.js/issues/16789">#16789</a></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vercel/next.js/commit/658810815035e55a7031f27c5a6f3c01baa31ccf"><code>6588108</code></a> v9.5.4</li> <li><a href="https://github.com/vercel/next.js/commit/7108567b06bba6586296fe2bb7e6957410147c8f"><code>7108567</code></a> v9.5.4-canary.25</li> <li><a href="https://github.com/vercel/next.js/commit/5d79a8c0c4928d718e71707cf3305a51c9a5adc4"><code>5d79a8c</code></a> Update workflow step to restore cache (<a href="https://github-redirect.dependabot.com/vercel/next.js/issues/17656">#17656</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/4c38e3ed8ec402862ea6b42b02297f8c28ab9b53"><code>4c38e3e</code></a> fix typo (<a href="https://github-redirect.dependabot.com/vercel/next.js/issues/17653">#17653</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/241f38eaa8aa2199360dc28d76759c936f16cdd6"><code>241f38e</code></a> v9.5.4-canary.24</li> <li><a href="https://github.com/vercel/next.js/commit/7dec91175cb69f773fa623417e0e497acc606dc2"><code>7dec911</code></a> change anonymous functions to named in docs examples (<a href="https://github-redirect.dependabot.com/vercel/next.js/issues/17510">#17510</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/1659e4da617db3effc63f1dd919ce628eb59e135"><code>1659e4d</code></a> Update migrating from Gatsby docs. (<a href="https://github-redirect.dependabot.com/vercel/next.js/issues/17636">#17636</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/06a8b1ad67b07ffae68cba7863ba31b53fc8b95d"><code>06a8b1a</code></a> Add docs on how to migrate from Gatsby. (<a href="https://github-redirect.dependabot.com/vercel/next.js/issues/17491">#17491</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/04234cc312b7b780a52ba6f9f63490d5699da4a3"><code>04234cc</code></a> Update to use hasNextSupport for custom-routes in next export check (<a href="https://github-redirect.dependabot.com/vercel/next.js/issues/17630">#17630</a>)</li> <li><a href="https://github.com/vercel/next.js/commit/742f5d9a46ed5244409ea0389d019fce375f28e3"><code>742f5d9</code></a> test(create-next-app): increase coverage (<a href="https://github-redirect.dependabot.com/vercel/next.js/issues/17507">#17507</a>)</li> <li>Additional commits viewable in <a href="https://github.com/vercel/next.js/compare/v9.5.3...v9.5.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+146 -117

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 20 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha 6b8efaad5c437d125f5d31b78776a34e99ed8789

build(deps): bump rollup from 2.28.2 to 2.29.0 Bumps [rollup](https://github.com/rollup/rollup) from 2.28.2 to 2.29.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v2.28.2...v2.29.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 37bc937ca3004980d0c176fdabbdf0d1b670d10e

Merge pull request #166 from localz/dependabot/npm_and_yarn/master/rollup-2.29.0 build(deps): bump rollup from 2.28.2 to 2.29.0

view details

push time in 20 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/rollup-2.29.0

delete time in 20 days

PR merged localz/stroganoff

Reviewers
build(deps): bump rollup from 2.28.2 to 2.29.0 dependabot dependencies

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps rollup from 2.28.2 to 2.29.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/releases">rollup's releases</a>.</em></p> <blockquote> <h2>v2.29.0</h2> <p><em>2020-10-08</em></p> <h3>Features</h3> <ul> <li>Allow passing custom options to other plugins via <code>this.resolve</code> (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> <li>Allow attaching custom meta information to modules when resolving, loading or transforming (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> <li>Do not throw but return <code>null</code> when using <code>this.getModuleInfo</code> for an unknown id (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Trigger build in watch mode when files are added to a watched directory (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3812">#3812</a>)</li> <li>Make <code>code</code> optional when transforming modules (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3807">#3807</a>: Implement new APIs for inter-plugin communication (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3808">#3808</a>: Document that the default value of --format is 'es' (<a href="https://github.com/jameshfisher">@jameshfisher</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3812">#3812</a>: Watch: listen for new files added to a directory (<a href="https://github.com/dmitrage">@dmitrage</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/blob/master/CHANGELOG.md">rollup's changelog</a>.</em></p> <blockquote> <h2>2.29.0</h2> <p><em>2020-10-08</em></p> <h3>Features</h3> <ul> <li>Allow passing custom options to other plugins via <code>this.resolve</code> (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> <li>Allow attaching custom meta information to modules when resolving, loading or transforming (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> <li>Do not throw but return <code>null</code> when using <code>this.getModuleInfo</code> for an unknown id (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Trigger build in watch mode when files are added to a watched directory (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3812">#3812</a>)</li> <li>Make <code>code</code> optional when transforming modules (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3807">#3807</a>: Implement new APIs for inter-plugin communication (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3808">#3808</a>: Document that the default value of --format is 'es' (<a href="https://github.com/jameshfisher">@jameshfisher</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3812">#3812</a>: Watch: listen for new files added to a directory (<a href="https://github.com/dmitrage">@dmitrage</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rollup/rollup/commit/0b02e52bc7816c473784794670a2c3047ac62a07"><code>0b02e52</code></a> 2.29.0</li> <li><a href="https://github.com/rollup/rollup/commit/17cd450d0f392fd391ae9947f0ddd9bc321fa5fb"><code>17cd450</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/1ad8289205b7af3d5adf3043f782934adbcb8b65"><code>1ad8289</code></a> Implement new APIs for inter-plugin communication (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3807">#3807</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/74e5081321e1ac951423a6c5ed3559a8f3fff966"><code>74e5081</code></a> Watch: listen for new files added to a directory (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3812">#3812</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/929f0ac7cf3a9b469461cd1d46ee454f76c27ace"><code>929f0ac</code></a> Document that the default value of --format is 'es' (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3808">#3808</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/26d067557faba6ae6da1e130b98a12450f6328e2"><code>26d0675</code></a> Update changelog</li> <li>See full diff in <a href="https://github.com/rollup/rollup/compare/v2.28.2...v2.29.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 20 days

pull request commentlocalz/stroganoff

build(deps): bump rollup from 2.28.2 to 2.29.0

@dependabot rebase

dependabot-preview[bot]

comment created time in 20 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha ddab4ef36abb0ae64e0ad1a77955785331e0fafc

build(deps-dev): bump ts-jest from 26.3.0 to 26.4.1 Bumps [ts-jest](https://github.com/kulshekhar/ts-jest) from 26.3.0 to 26.4.1. - [Release notes](https://github.com/kulshekhar/ts-jest/releases) - [Changelog](https://github.com/kulshekhar/ts-jest/blob/master/CHANGELOG.md) - [Commits](https://github.com/kulshekhar/ts-jest/compare/v26.3.0...v26.4.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha ae9cf662e27afe60b6c5a74093e456101b071ae9

Merge pull request #160 from localz/dependabot/npm_and_yarn/master/ts-jest-26.4.1 build(deps-dev): bump ts-jest from 26.3.0 to 26.4.1

view details

push time in 21 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/ts-jest-26.4.1

delete time in 21 days

PR merged localz/stroganoff

build(deps-dev): bump ts-jest from 26.3.0 to 26.4.1 dependabot dependencies

Bumps ts-jest from 26.3.0 to 26.4.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kulshekhar/ts-jest/blob/master/CHANGELOG.md">ts-jest's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/kulshekhar/ts-jest/compare/v26.4.0...v26.4.1">26.4.1</a> (2020-09-29)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>utils:</strong> <code>MaybeMockedConstructor</code> returns T (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1976">#1976</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/b7712b2055d8f32dd97999de1d94e8f3515d79e8">b7712b2</a>)</li> <li><strong>utils:</strong> revert <code>path.join</code> and add check on prefix ends with <code>/</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1989">#1989</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/3d9035bd70dc087d4c5a943bb2fe2af2d0822875">3d9035b</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1982">#1982</a></li> </ul> <h1><a href="https://github.com/kulshekhar/ts-jest/compare/v26.3.0...v26.4.0">26.4.0</a> (2020-09-20)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>utils:</strong> <code>pathsToModuleNameMapper</code> resolve path mapping with <code>path.join</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1969">#1969</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/81fce4c090811a1cc071579a99dc193fb976b117">81fce4c</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1968">#1968</a></li> <li>set minimum <code>jest-util</code> version at 26.1.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1914">#1914</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/f00414c6fbf8fc5413fd33d0a271c4a164c50d45">f00414c</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1913">#1913</a></li> </ul> <h3>Features</h3> <ul> <li><strong>config:</strong> allow custom options in custom transformers (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1966">#1966</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/1452ce4afcd36049cddd0db0861f1ac26b66f8c1">1452ce4</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1942">#1942</a></li> <li><strong>transformers:</strong> support hoisting when using <code>@jest/globals</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1937">#1937</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/0e5be1597d755fed11869f67df05eeea54b3106f">0e5be15</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1593">#1593</a></li> <li><strong>transformers:</strong> add <code>path-mapping</code> custom AST transformer (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1927">#1927</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/3325186b6e55f41eb9bf7d81e092a358fc402b13">3325186</a>)</li> </ul> <h3>Performance Improvements</h3> <ul> <li><strong>compiler:</strong> remove <code>createProgram</code> for <code>isolatedModules: true</code> to boost startup speed (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1941">#1941</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/dd8453401840862186f991e2d514e0d328a67987">dd84534</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kulshekhar/ts-jest/commit/2caeaf4747cc0b61ac503b9b50b08221b261075b"><code>2caeaf4</code></a> chore(release): 26.4.1 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1991">#1991</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/3d9035bd70dc087d4c5a943bb2fe2af2d0822875"><code>3d9035b</code></a> fix(utils): revert <code>path.join</code> and add check on prefix ends with <code>/</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1989">#1989</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/dcd836dcd95853c2ba58b8951823b695450fab5a"><code>dcd836d</code></a> build(deps-dev): bump eslint-plugin-jsdoc from 30.6.0 to 30.6.1 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1990">#1990</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/39fc887bdcb3fdda2456b27c5a2ecaf8fa25cb68"><code>39fc887</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1988">#1988</a> from kulshekhar/dependabot/npm_and_yarn/eslint-7.10.0</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/d2b4a2e768d737a6ea593be37968d4cf628591ba"><code>d2b4a2e</code></a> build(deps-dev): bump eslint from 7.9.0 to 7.10.0</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/a876a3de632aa50a369c15ecf92beebc4644cbc5"><code>a876a3d</code></a> build(deps-dev): bump eslint-config-prettier from 6.11.0 to 6.12.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1987">#1987</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/09470dde421f7c5c2e00819248a4257f2b9930bd"><code>09470dd</code></a> build(deps-dev): bump eslint-plugin-jsdoc from 30.5.1 to 30.6.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1986">#1986</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/5b2334356930081410d8f93bc578c27a8c3bd8c7"><code>5b23343</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1983">#1983</a> from kulshekhar/dependabot/npm_and_yarn/types/babel_...</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/e6addd2e7201911bf8d2c20dc85f430043e381a4"><code>e6addd2</code></a> build(deps-dev): bump @types/babel__core from 7.1.9 to 7.1.10</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/6d3ef4408293a322f641d17757a99b676238a648"><code>6d3ef44</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1981">#1981</a> from kulshekhar/dependabot/npm_and_yarn/types/yargs-...</li> <li>Additional commits viewable in <a href="https://github.com/kulshekhar/ts-jest/compare/v26.3.0...v26.4.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+20 -38

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 21 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha 7172c8715db5a991719841d6da7075c9ccb0413c

build(deps): bump rollup-plugin-typescript2 from 0.27.2 to 0.27.3 Bumps [rollup-plugin-typescript2](https://github.com/ezolenko/rollup-plugin-typescript2) from 0.27.2 to 0.27.3. - [Release notes](https://github.com/ezolenko/rollup-plugin-typescript2/releases) - [Commits](https://github.com/ezolenko/rollup-plugin-typescript2/compare/0.27.2...0.27.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 2b4ae2110f5cff3832d1795808434b1bdba4b460

Merge pull request #159 from localz/dependabot/npm_and_yarn/master/rollup-plugin-typescript2-0.27.3 build(deps): bump rollup-plugin-typescript2 from 0.27.2 to 0.27.3

view details

push time in 21 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/rollup-plugin-typescript2-0.27.3

delete time in 21 days

PR merged localz/stroganoff

build(deps): bump rollup-plugin-typescript2 from 0.27.2 to 0.27.3 dependabot dependencies

Bumps rollup-plugin-typescript2 from 0.27.2 to 0.27.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/ezolenko/rollup-plugin-typescript2/releases">rollup-plugin-typescript2's releases</a>.</em></p> <blockquote> <h2>0.27.3</h2> <p>PR <a href="https://github-redirect.dependabot.com/ezolenko/rollup-plugin-typescript2/issues/243">#243</a></p> <p>Updating dependencies</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/ezolenko/rollup-plugin-typescript2/commit/2cace3fd80b3436b063bf8a7db246657c42c5c03"><code>2cace3f</code></a> - updating dependencies</li> <li><a href="https://github.com/ezolenko/rollup-plugin-typescript2/commit/c183d330239c90a797d4d1c6fed5a40c483794b9"><code>c183d33</code></a> stop roll() from failing if the new cache folder is not created (<a href="https://github-redirect.dependabot.com/ezolenko/rollup-plugin-typescript2/issues/243">#243</a>)</li> <li><a href="https://github.com/ezolenko/rollup-plugin-typescript2/commit/dcf59ac4882ffe7019387596518cfa66ab87910e"><code>dcf59ac</code></a> - package version</li> <li>See full diff in <a href="https://github.com/ezolenko/rollup-plugin-typescript2/compare/0.27.2...0.27.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 21 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha d00a38d3d72197ae0f2ce2bf076bd31a3f805842

build(deps): bump typedoc from 0.19.1 to 0.19.2 Bumps [typedoc](https://github.com/TypeStrong/TypeDoc) from 0.19.1 to 0.19.2. - [Release notes](https://github.com/TypeStrong/TypeDoc/releases) - [Commits](https://github.com/TypeStrong/TypeDoc/compare/v0.19.1...v0.19.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 5266c403d8cc82314a39ea865255077f748e63ca

Merge pull request #156 from localz/dependabot/npm_and_yarn/master/typedoc-0.19.2 build(deps): bump typedoc from 0.19.1 to 0.19.2

view details

push time in 21 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/typedoc-0.19.2

delete time in 21 days

PR merged localz/stroganoff

build(deps): bump typedoc from 0.19.1 to 0.19.2 dependabot dependencies

Bumps typedoc from 0.19.1 to 0.19.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/TypeStrong/TypeDoc/releases">typedoc's releases</a>.</em></p> <blockquote> <h2>v0.19.2</h2> <h2><a href="https://github.com/TypeStrong/TypeDoc/compare/v0.19.1...v0.19.2">0.19.2</a> (2020-09-21)</h2> <h3>Bug Fixes</h3> <ul> <li>Export declarations within namespaces weren't detected (<a href="https://github.com/TypeStrong/TypeDoc/commit/983c0e60fb7b58e89a0c62a0a65eb2ee2b6e04c6">983c0e6</a>), closes <a href="https://github-redirect.dependabot.com/TypeStrong/TypeDoc/issues/1366">#1366</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/TypeStrong/typedoc/commit/714e0382ddaa98ff45d8657714a705dfd9a05e6d"><code>714e038</code></a> chore: Bump version to 0.19.2</li> <li><a href="https://github.com/TypeStrong/typedoc/commit/f178fc4522dc32a5a9137485e35f58f2c55945a1"><code>f178fc4</code></a> chore: Upgrade dependencies</li> <li><a href="https://github.com/TypeStrong/typedoc/commit/983c0e60fb7b58e89a0c62a0a65eb2ee2b6e04c6"><code>983c0e6</code></a> fix: Export declarations within namespaces weren't detected</li> <li>See full diff in <a href="https://github.com/TypeStrong/TypeDoc/compare/v0.19.1...v0.19.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+13 -15

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 21 days

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha 2b5b68813b3ed74579151b2c3765bd062d07c237

build(deps): bump semantic-release from 17.1.1 to 17.1.2 Bumps [semantic-release](https://github.com/semantic-release/semantic-release) from 17.1.1 to 17.1.2. - [Release notes](https://github.com/semantic-release/semantic-release/releases) - [Commits](https://github.com/semantic-release/semantic-release/compare/v17.1.1...v17.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha fe10a8486c05f5b2cc8a036e7b173e23fb0eedbb

Merge pull request #153 from localz/dependabot/npm_and_yarn/master/semantic-release-17.1.2 build(deps): bump semantic-release from 17.1.1 to 17.1.2

view details

push time in 21 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/semantic-release-17.1.2

delete time in 21 days

PR merged localz/stroganoff

build(deps): bump semantic-release from 17.1.1 to 17.1.2 dependabot dependencies

Bumps semantic-release from 17.1.1 to 17.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/semantic-release/semantic-release/releases">semantic-release's releases</a>.</em></p> <blockquote> <h2>v17.1.2</h2> <h2><a href="https://github.com/semantic-release/semantic-release/compare/v17.1.1...v17.1.2">17.1.2</a> (2020-09-17)</h2> <h3>Bug Fixes</h3> <ul> <li>add logging for when ssh falls back to http (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1639">#1639</a>) (<a href="https://github.com/semantic-release/semantic-release/commit/b4c5d0a436fa5a4e98d8326f0512fa8a2f1f4f67">b4c5d0a</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/semantic-release/semantic-release/commit/b4c5d0a436fa5a4e98d8326f0512fa8a2f1f4f67"><code>b4c5d0a</code></a> fix: add logging for when ssh falls back to http (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1639">#1639</a>)</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/c982249f876b0ec5109ad90ad110093fcbecd896"><code>c982249</code></a> docs(contributing): typo fix (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1638">#1638</a>)</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/9635f50da67f252ef1d495d8b2c7cc3a7cde717c"><code>9635f50</code></a> docs: improve github actions recipe on git plugin (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1626">#1626</a>)</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/d036a899d51568d616ecff7fc11ffc483d5bfabf"><code>d036a89</code></a> ci(docs): use actions/checkout@v2 (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1620">#1620</a>)</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/9303d1dba0790fb765ae46625d8e7fdecbf6ffe6"><code>9303d1d</code></a> docs(resources.md): added more sematnic release article (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1610">#1610</a>)</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/b72cdb331b6db057ec0f44cf4f6a281726075f3b"><code>b72cdb3</code></a> docs(configuration.md): Updated documentation for dry-run feature of semantic...</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/ee44ee80c875c3131ffd8148b136ca46ae394b35"><code>ee44ee8</code></a> docs(github-actions): suggest action_dispatch as trigger (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1605">#1605</a>)</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/b24d2474b1cfd49e1e29b31044038bfee921c003"><code>b24d247</code></a> docs: add <code>semantic-release-rubygem</code> to community plugins (<a href="https://github-redirect.dependabot.com/semantic-release/semantic-release/issues/1602">#1602</a>)</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/6d118c6c1433cb713eddd0e7cb0f0baffa11e4a0"><code>6d118c6</code></a> docs: be clear about what module of semantic-release handles updating the pa...</li> <li><a href="https://github.com/semantic-release/semantic-release/commit/b5c9dea21503a2bcd2c4d639aded89dde6c8438d"><code>b5c9dea</code></a> docs: update github documentation to <code>docs.github.com</code></li> <li>Additional commits viewable in <a href="https://github.com/semantic-release/semantic-release/compare/v17.1.1...v17.1.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 21 days

created taglocalz/stroganoff

tag1.1.10

Are your users' passwords stroganoff, or beef stew?

created time in 24 days

release localz/stroganoff

1.1.10

released time in 24 days

PullRequestReviewEvent
PullRequestReviewEvent

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha 0438876f0ab91e38ad73bd032636f5b0b76b0ba9

build(deps): bump rollup from 2.26.11 to 2.28.2 Bumps [rollup](https://github.com/rollup/rollup) from 2.26.11 to 2.28.2. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v2.26.11...v2.28.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha c00d3a5f7b96fee41322f877f167d3494d82e5ac

Merge pull request #158 from localz/dependabot/npm_and_yarn/master/rollup-2.28.2 build(deps): bump rollup from 2.26.11 to 2.28.2

view details

push time in 24 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/rollup-2.28.2

delete time in 24 days

PR merged localz/stroganoff

build(deps): bump rollup from 2.26.11 to 2.28.2 dependabot dependencies

Bumps rollup from 2.26.11 to 2.28.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/releases">rollup's releases</a>.</em></p> <blockquote> <h2>v2.28.2</h2> <p><em>2020-09-24</em></p> <h3>Bug Fixes</h3> <ul> <li>Fix a source of possible variable name conflicts when using preserveModules with SystemJS (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3796">#3796</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3796">#3796</a>: Fix SystemJS default variable conflict (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.28.1</h2> <p><em>2020-09-21</em></p> <h3>Bug Fixes</h3> <ul> <li>Fix a path slash issue when using the preserveModulesRoot option on Windows (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3791">#3791</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3791">#3791</a>: Fix preserveModulesRoot path on Windows (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.28.0</h2> <p><em>2020-09-21</em></p> <h3>Features</h3> <ul> <li>Add an option to treat modules at a given path as located at root when preserving modules (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3786">#3786</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3786">#3786</a>: Add preserveModulesRoot config option (<a href="https://github.com/davidroeca">@davidroeca</a>)</li> </ul> <h2>v2.27.1</h2> <p><em>2020-09-17</em></p> <h3>Bug Fixes</h3> <ul> <li>Do not fail when using ES module imports in symlinked config files (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3783">#3783</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3783">#3783</a>: Handle loading symlinked config files (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>v2.27.0</h2> <p><em>2020-09-16</em></p> <h3>Features</h3> <ul> <li>Support specifying a file extension when reading from stdin (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3775">#3775</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Do not break logic if a branch with hoisted variables is tree-shaken in an else-if statement (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3782">#3782</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3770">#3770</a>: Docs: Exception for babel plugin and commonjs plugin (<a href="https://github.com/jsk7">@jsk7</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3775">#3775</a>: add ability to specify stdin file extension via --stdin=ext (<a href="https://github.com/kzc">@kzc</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3782">#3782</a>: Handle hoisted variables in dead branches of nested if statements (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rollup/rollup/blob/master/CHANGELOG.md">rollup's changelog</a>.</em></p> <blockquote> <h2>2.28.2</h2> <p><em>2020-09-24</em></p> <h3>Bug Fixes</h3> <ul> <li>Fix a source of possible variable name conflicts when using preserveModules with SystemJS (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3796">#3796</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3796">#3796</a>: Fix SystemJS default variable conflict (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.28.1</h2> <p><em>2020-09-21</em></p> <h3>Bug Fixes</h3> <ul> <li>Fix a path slash issue when using the preserveModulesRoot option on Windows (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3791">#3791</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3791">#3791</a>: Fix preserveModulesRoot path on Windows (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.28.0</h2> <p><em>2020-09-21</em></p> <h3>Features</h3> <ul> <li>Add an option to treat modules at a given path as located at root when preserving modules (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3786">#3786</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3786">#3786</a>: Add preserveModulesRoot config option (<a href="https://github.com/davidroeca">@davidroeca</a>)</li> </ul> <h2>2.27.1</h2> <p><em>2020-09-17</em></p> <h3>Bug Fixes</h3> <ul> <li>Do not fail when using ES module imports in symlinked config files (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3783">#3783</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3783">#3783</a>: Handle loading symlinked config files (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> <h2>2.27.0</h2> <p><em>2020-09-16</em></p> <h3>Features</h3> <ul> <li>Support specifying a file extension when reading from stdin (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3775">#3775</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Do not break logic if a branch with hoisted variables is tree-shaken in an else-if statement (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3782">#3782</a>)</li> </ul> <h3>Pull Requests</h3> <ul> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3770">#3770</a>: Docs: Exception for babel plugin and commonjs plugin (<a href="https://github.com/jsk7">@jsk7</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3775">#3775</a>: add ability to specify stdin file extension via --stdin=ext (<a href="https://github.com/kzc">@kzc</a>)</li> <li><a href="https://github-redirect.dependabot.com/rollup/rollup/pull/3782">#3782</a>: Handle hoisted variables in dead branches of nested if statements (<a href="https://github.com/lukastaegert">@lukastaegert</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rollup/rollup/commit/351e1d02697df4e195d38d65dc384a3da1b711fc"><code>351e1d0</code></a> 2.28.2</li> <li><a href="https://github.com/rollup/rollup/commit/2535853d838846412b1a15cd0d8dc2fab7212ea4"><code>2535853</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/72417f4b0c64cbbb44761e3519a4d175f4d99efb"><code>72417f4</code></a> Fix SystemJS default variable conflict (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3796">#3796</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/6a974a785d2248cf19d032e14ef33b156d947be2"><code>6a974a7</code></a> add documentation for output.PreserveModulesRoot (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3792">#3792</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/1040292e0b1ad6496d8cf0a3eee63b17d9a39a4f"><code>1040292</code></a> 2.28.1</li> <li><a href="https://github.com/rollup/rollup/commit/0aa50f2f847c3dd9a61e3de493e8ec18052fb8fa"><code>0aa50f2</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/b7bb66054fc84e5fc9fb9d8602352cde31125aa5"><code>b7bb660</code></a> Fix preserveModulesRoot path on Windows (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3791">#3791</a>)</li> <li><a href="https://github.com/rollup/rollup/commit/b2172df5723bb16dc6730ccefc4563547d3cf30b"><code>b2172df</code></a> 2.28.0</li> <li><a href="https://github.com/rollup/rollup/commit/a0aa0b30e7f6c3aad8b80db64c651553f7505ad1"><code>a0aa0b3</code></a> Update changelog</li> <li><a href="https://github.com/rollup/rollup/commit/f6b14efa882c486d3814c06f02f2c78cfc8e5257"><code>f6b14ef</code></a> [Feature] Add preserveModulesRoot config option (<a href="https://github-redirect.dependabot.com/rollup/rollup/issues/3786">#3786</a>)</li> <li>Additional commits viewable in <a href="https://github.com/rollup/rollup/compare/v2.26.11...v2.28.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 24 days

PullRequestReviewEvent
PullRequestReviewEvent
PullRequestReviewEvent

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha cbfe033e2c1bb0df1e88732937ad1f6e1d45e809

build(deps): bump lint-staged from 10.3.0 to 10.4.0 Bumps [lint-staged](https://github.com/okonet/lint-staged) from 10.3.0 to 10.4.0. - [Release notes](https://github.com/okonet/lint-staged/releases) - [Commits](https://github.com/okonet/lint-staged/compare/v10.3.0...v10.4.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 7b816293002187f919dea69bc73a6c567ac034d8

Merge pull request #150 from localz/dependabot/npm_and_yarn/master/lint-staged-10.4.0 build(deps): bump lint-staged from 10.3.0 to 10.4.0

view details

push time in 24 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/lint-staged-10.4.0

delete time in 24 days

PR merged localz/stroganoff

build(deps): bump lint-staged from 10.3.0 to 10.4.0 dependabot dependencies

Bumps lint-staged from 10.3.0 to 10.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/okonet/lint-staged/releases">lint-staged's releases</a>.</em></p> <blockquote> <h2>v10.4.0</h2> <h1><a href="https://github.com/okonet/lint-staged/compare/v10.3.0...v10.4.0">10.4.0</a> (2020-09-16)</h1> <h3>Features</h3> <ul> <li>Add ability to use function as config (<a href="https://github-redirect.dependabot.com/okonet/lint-staged/issues/913">#913</a>) (<a href="https://github.com/okonet/lint-staged/commit/67a4d06e39c4638a546494940bf99934692fb610">67a4d06</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/okonet/lint-staged/commit/67a4d06e39c4638a546494940bf99934692fb610"><code>67a4d06</code></a> feat: Add ability to use function as config (<a href="https://github-redirect.dependabot.com/okonet/lint-staged/issues/913">#913</a>)</li> <li><a href="https://github.com/okonet/lint-staged/commit/643038d9fcea7611f1828a40bb9033a0c5f0fef1"><code>643038d</code></a> docs: fix & enhance "Use your own globs" example (<a href="https://github-redirect.dependabot.com/okonet/lint-staged/issues/912">#912</a>)</li> <li>See full diff in <a href="https://github.com/okonet/lint-staged/compare/v10.3.0...v10.4.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 24 days

PullRequestReviewEvent

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha 77fcd330f72f9c90a72acb694f4b9c456d19e24d

build(deps): bump typescript from 4.0.2 to 4.0.3 Bumps [typescript](https://github.com/Microsoft/TypeScript) from 4.0.2 to 4.0.3. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Commits](https://github.com/Microsoft/TypeScript/compare/v4.0.2...v4.0.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 67a824b2002b760fbf2d01626b5b6db39368256c

Merge pull request #154 from localz/dependabot/npm_and_yarn/master/typescript-4.0.3 build(deps): bump typescript from 4.0.2 to 4.0.3

view details

push time in 24 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/typescript-4.0.3

delete time in 24 days

PR merged localz/stroganoff

build(deps): bump typescript from 4.0.2 to 4.0.3 dependabot dependencies

Bumps typescript from 4.0.2 to 4.0.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Microsoft/TypeScript/releases">typescript's releases</a>.</em></p> <blockquote> <h2>TypeScript 4.0.3</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-4-0/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.0%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.1%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.2%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.2</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+4.0.3%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.3</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-40">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/microsoft/TypeScript/commit/fee3bfbe91b7582f42e2f49814b87353f67e63f4"><code>fee3bfb</code></a> Bump version to 4.0.3 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/2eb5deae4bafe169ec1d2ecf66999003574164bb"><code>2eb5dea</code></a> Update LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/1dde4bbe4ebc7fb210bf124b9590a82573a49806"><code>1dde4bb</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40595">#40595</a> from typescript-bot/pick/39924/release-4.0</li> <li><a href="https://github.com/microsoft/TypeScript/commit/23c77c4e329ee3a27c4dfe7d9f6905aca12281b0"><code>23c77c4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40444">#40444</a> from amcasey/Cherry40043</li> <li><a href="https://github.com/microsoft/TypeScript/commit/e3301f7294c759be4141f4a49b691fe2614f93ef"><code>e3301f7</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39924">#39924</a> into release-4.0</li> <li><a href="https://github.com/microsoft/TypeScript/commit/65b84e707e118b802ad41ca164debd15f4915a95"><code>65b84e7</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40273">#40273</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40303">#40303</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/657576ae7c9da142bdbbe43e64d425fa292124fe"><code>657576a</code></a> Set stackTraceLimit to 0 in fileSystemEntryExists</li> <li><a href="https://github.com/microsoft/TypeScript/commit/3e7a8e7e45aed722d7955e35e9fbac14ea75958a"><code>3e7a8e7</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40348">#40348</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40349">#40349</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/8890dcb7ca81857678b110a1586f3642d1447ee2"><code>8890dcb</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40118">#40118</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40134">#40134</a>)</li> <li>See full diff in <a href="https://github.com/Microsoft/TypeScript/compare/v4.0.2...v4.0.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 24 days

PullRequestReviewEvent

push eventlocalz/stroganoff

dependabot-preview[bot]

commit sha 0653a13316e830dfe4cdd93fdd57ab48c69cabe9

build(deps-dev): bump jest from 26.4.2 to 26.5.2 Bumps [jest](https://github.com/facebook/jest) from 26.4.2 to 26.5.2. - [Release notes](https://github.com/facebook/jest/releases) - [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md) - [Commits](https://github.com/facebook/jest/compare/v26.4.2...v26.5.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha e4a306359fc3533508660230cf75f673e8431c50

Merge pull request #164 from localz/dependabot/npm_and_yarn/master/jest-26.5.2 build(deps-dev): bump jest from 26.4.2 to 26.5.2

view details

push time in 24 days

delete branch localz/stroganoff

delete branch : dependabot/npm_and_yarn/master/jest-26.5.2

delete time in 24 days

PR merged localz/stroganoff

build(deps-dev): bump jest from 26.4.2 to 26.5.2 dependabot dependencies

Bumps jest from 26.4.2 to 26.5.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/releases">jest's releases</a>.</em></p> <blockquote> <h2>26.5.2</h2> <h3>Fixes</h3> <ul> <li><code>[]</code> Revert usage of Escalade and rollback Yargs to v15 as it breaks Node 13 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10599">#10599</a>)</li> <li><code>[jest-circus]</code> Setup globals before emitting <code>setup</code>, and include Jest globals in the <code>setup</code> payload (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10598">#10598</a>)</li> <li><code>[jest-mock]</code> Fix typings for <code>mockResolvedValue</code>, <code>mockResolvedValueOnce</code>, <code>mockRejectedValue</code> and <code>mockRejectedValueOnce</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10600">#10600</a>)</li> </ul> <h2>26.5.1</h2> <h3>Fixes</h3> <ul> <li><code>[jest-circus]</code> Handle older <code>jest-runtime</code> in <code>jest-circus</code></li> </ul> <h2>26.5.0</h2> <h3>Features</h3> <ul> <li><code>[jest-circus, jest-config, jest-runtime]</code> Add new <code>injectGlobals</code> config and CLI option to disable injecting global variables into the runtime (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10484">#10484</a>)</li> <li><code>[jest-each]</code> Fixes <code>.each</code> type to always be callable (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10447">#10447</a>)</li> <li><code>[jest-runner]</code> Add support for <code>moduleLoader</code>s with <code>default</code> exports (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10541">#10541</a>)</li> <li><code>[@jest/create-cache-key-function]</code> Added a new package for creating cache keys (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10587">#10587</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-circus, jest-jasmine2]</code> Find correct location for <code>test.each</code> tests (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10413">#10413</a>)</li> <li><code>[jest-console]</code> Add <code>Console</code> constructor to <code>console</code> object (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10502">#10502</a>)</li> <li><code>[jest-globals]</code> Fix lifecycle hook function types (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10480">#10480</a>)</li> <li><code>[jest-runtime]</code> Remove usage of <code>vm.compileFunction</code> due to a performance issue (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10586">#10586</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[jest-resolve]</code> Replace read-pkg-up with escalade package (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10558">10558</a>)</li> <li><code>[jest-environment-jsdom]</code> Update jsdom to 16.4.0 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10578">10578</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/facebook/jest/blob/master/CHANGELOG.md">jest's changelog</a>.</em></p> <blockquote> <h2>26.5.2</h2> <h3>Fixes</h3> <ul> <li><code>[]</code> Revert usage of Escalade and rollback Yargs to v15 as it breaks Node 13 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10599">#10599</a>)</li> <li><code>[jest-circus]</code> Setup globals before emitting <code>setup</code>, and include Jest globals in the <code>setup</code> payload (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10598">#10598</a>)</li> <li><code>[jest-mock]</code> Fix typings for <code>mockResolvedValue</code>, <code>mockResolvedValueOnce</code>, <code>mockRejectedValue</code> and <code>mockRejectedValueOnce</code> (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10600">#10600</a>)</li> </ul> <h2>26.5.1</h2> <h3>Fixes</h3> <ul> <li><code>[jest-circus]</code> Handle older <code>jest-runtime</code> in <code>jest-circus</code></li> </ul> <h2>26.5.0</h2> <h3>Features</h3> <ul> <li><code>[jest-circus, jest-config, jest-runtime]</code> Add new <code>injectGlobals</code> config and CLI option to disable injecting global variables into the runtime (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10484">#10484</a>)</li> <li><code>[jest-each]</code> Fixes <code>.each</code> type to always be callable (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10447">#10447</a>)</li> <li><code>[jest-runner]</code> Add support for <code>moduleLoader</code>s with <code>default</code> exports (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10541">#10541</a>)</li> <li><code>[@jest/create-cache-key-function]</code> Added a new package for creating cache keys (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10587">#10587</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>[jest-circus, jest-jasmine2]</code> Find correct location for <code>test.each</code> tests (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10413">#10413</a>)</li> <li><code>[jest-console]</code> Add <code>Console</code> constructor to <code>console</code> object (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10502">#10502</a>)</li> <li><code>[jest-globals]</code> Fix lifecycle hook function types (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10480">#10480</a>)</li> <li><code>[jest-runtime]</code> Remove usage of <code>vm.compileFunction</code> due to a performance issue (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10586">#10586</a>)</li> </ul> <h3>Chore & Maintenance</h3> <ul> <li><code>[jest-resolve]</code> Replace read-pkg-up with escalade package (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10558">10558</a>)</li> <li><code>[jest-environment-jsdom]</code> Update jsdom to 16.4.0 (<a href="https://github-redirect.dependabot.com/facebook/jest/pull/10578">10578</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/facebook/jest/commit/d2bacceb51e7f05c9cb6d764d5cd886a2fd71267"><code>d2bacce</code></a> v26.5.2</li> <li><a href="https://github.com/facebook/jest/commit/05a1bcb4fb38d4e8dd26036dcf64579e23eea670"><code>05a1bcb</code></a> chore: update changelog for release</li> <li><a href="https://github.com/facebook/jest/commit/7e51ac129bc7c0a67b15b3eafe0fdf834d7795ed"><code>7e51ac1</code></a> fix: revert usage of Escalade and yargs@16 as they breaks Node 13 (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10599">#10599</a>)</li> <li><a href="https://github.com/facebook/jest/commit/75bf0387afe653e079bb81ccbf4cb1c2ada7e532"><code>75bf038</code></a> chore: fix type error in test</li> <li><a href="https://github.com/facebook/jest/commit/d49cb30fb2540efa8c451fb6cb24e8997284bc67"><code>d49cb30</code></a> fix(circus): make sure to install globals before emitting <code>setup</code> event (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10598">#10598</a>)</li> <li><a href="https://github.com/facebook/jest/commit/911b74e4d8af4846ccf964793b9042bd7401f600"><code>911b74e</code></a> Fix type definitions for promises (<a href="https://github-redirect.dependabot.com/facebook/jest/issues/10600">#10600</a>)</li> <li><a href="https://github.com/facebook/jest/commit/999ee461262c217db2827db79296129a13d6e23a"><code>999ee46</code></a> chore: update lockfile after publish</li> <li><a href="https://github.com/facebook/jest/commit/8a70bc269edfc10e20803a0f69e1e39fb2942511"><code>8a70bc2</code></a> v26.5.1</li> <li><a href="https://github.com/facebook/jest/commit/9d977bc36d1e9ca15e3f3741f69a951a0a2977de"><code>9d977bc</code></a> fix: handle older <code>jest-runtime</code> in <code>jest-circus</code></li> <li><a href="https://github.com/facebook/jest/commit/2a7b77c324fd9d447c332552d57bccf80e11b9c6"><code>2a7b77c</code></a> chore: update lockfile after publish</li> <li>Additional commits viewable in <a href="https://github.com/facebook/jest/compare/v26.4.2...v26.5.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+357 -326

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 24 days

PullRequestReviewEvent

push eventlocalz/stroganoff

Tom Nagle

commit sha e0f4b43d86e48bae3e08f2a6d8ad05513db01bce

feat: add joi and yup examples

view details

Tom Nagle

commit sha c98414f0d3e8fe0ed0fac90dd04dda2ebf3f0e91

1.1.10

view details

Tom Nagle

commit sha 615122be08ed1753903bdc883e34551c0e4c2987

Merge pull request #161 from localz/feat/with-examples feat: add joi and yup examples

view details

push time in 24 days

delete branch localz/stroganoff

delete branch : feat/with-examples

delete time in 24 days

PR merged localz/stroganoff

feat: add joi and yup examples

Adds examples for Joi and Yup validation schemas

+23 -1

0 comment

2 changed files

tomanagle

pr closed time in 24 days

push eventlocalz/stroganoff

Tom Nagle

commit sha 6f63349cb10e617202ea57e15b2445313b8d0635

fix: missing special characters

view details

Tom Nagle

commit sha 5c4cbc8cca9e3105a384fea2da67528fbe13b200

feat: add special chars

view details

Tom Nagle

commit sha f3b6e9777d099cc402068d6c604398c85c5589bc

Merge pull request #163 from localz/fix/missing-special-chars fix: missing special characters

view details

push time in 24 days

delete branch localz/stroganoff

delete branch : fix/missing-special-chars

delete time in 24 days

PR merged localz/stroganoff

fix: missing special characters

Adds missing special characters

+25 -8

0 comment

2 changed files

tomanagle

pr closed time in 24 days

push eventlocalz/stroganoff

Tom Nagle

commit sha 5c4cbc8cca9e3105a384fea2da67528fbe13b200

feat: add special chars

view details

push time in 24 days

PR opened localz/stroganoff

fix: missing special characters

Adds missing special characters

+11 -3

0 comment

2 changed files

pr created time in 25 days

create barnchlocalz/stroganoff

branch : fix/missing-special-chars

created branch time in 25 days

PR closed tomanagle/Mongoose-TypeScript-example

Bump ts-jest from 26.2.0 to 26.4.1 dependencies

Bumps ts-jest from 26.2.0 to 26.4.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kulshekhar/ts-jest/blob/master/CHANGELOG.md">ts-jest's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/kulshekhar/ts-jest/compare/v26.4.0...v26.4.1">26.4.1</a> (2020-09-29)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>utils:</strong> <code>MaybeMockedConstructor</code> returns T (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1976">#1976</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/b7712b2055d8f32dd97999de1d94e8f3515d79e8">b7712b2</a>)</li> <li><strong>utils:</strong> revert <code>path.join</code> and add check on prefix ends with <code>/</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1989">#1989</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/3d9035bd70dc087d4c5a943bb2fe2af2d0822875">3d9035b</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1982">#1982</a></li> </ul> <h1><a href="https://github.com/kulshekhar/ts-jest/compare/v26.3.0...v26.4.0">26.4.0</a> (2020-09-20)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>utils:</strong> <code>pathsToModuleNameMapper</code> resolve path mapping with <code>path.join</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1969">#1969</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/81fce4c090811a1cc071579a99dc193fb976b117">81fce4c</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1968">#1968</a></li> <li>set minimum <code>jest-util</code> version at 26.1.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1914">#1914</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/f00414c6fbf8fc5413fd33d0a271c4a164c50d45">f00414c</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1913">#1913</a></li> </ul> <h3>Features</h3> <ul> <li><strong>config:</strong> allow custom options in custom transformers (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1966">#1966</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/1452ce4afcd36049cddd0db0861f1ac26b66f8c1">1452ce4</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1942">#1942</a></li> <li><strong>transformers:</strong> support hoisting when using <code>@jest/globals</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1937">#1937</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/0e5be1597d755fed11869f67df05eeea54b3106f">0e5be15</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1593">#1593</a></li> <li><strong>transformers:</strong> add <code>path-mapping</code> custom AST transformer (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1927">#1927</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/3325186b6e55f41eb9bf7d81e092a358fc402b13">3325186</a>)</li> </ul> <h3>Performance Improvements</h3> <ul> <li><strong>compiler:</strong> remove <code>createProgram</code> for <code>isolatedModules: true</code> to boost startup speed (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1941">#1941</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/dd8453401840862186f991e2d514e0d328a67987">dd84534</a>)</li> </ul> <h1><a href="https://github.com/kulshekhar/ts-jest/compare/v26.2.0...v26.3.0">26.3.0</a> (2020-08-25)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>config:</strong> compute cache key without reading <code>package.json</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1893">#1893</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/4875a58345666e0407f9f5b3f95049ae2c9d056d">4875a58</a>), closes <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1892">#1892</a></li> </ul> <h3>Features</h3> <ul> <li>support TypeScript 4.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1889">#1889</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/f070e9334a9cf31fa6f0d73b3f69d805be72601d">f070e93</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kulshekhar/ts-jest/commit/2caeaf4747cc0b61ac503b9b50b08221b261075b"><code>2caeaf4</code></a> chore(release): 26.4.1 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1991">#1991</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/3d9035bd70dc087d4c5a943bb2fe2af2d0822875"><code>3d9035b</code></a> fix(utils): revert <code>path.join</code> and add check on prefix ends with <code>/</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1989">#1989</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/dcd836dcd95853c2ba58b8951823b695450fab5a"><code>dcd836d</code></a> build(deps-dev): bump eslint-plugin-jsdoc from 30.6.0 to 30.6.1 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1990">#1990</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/39fc887bdcb3fdda2456b27c5a2ecaf8fa25cb68"><code>39fc887</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1988">#1988</a> from kulshekhar/dependabot/npm_and_yarn/eslint-7.10.0</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/d2b4a2e768d737a6ea593be37968d4cf628591ba"><code>d2b4a2e</code></a> build(deps-dev): bump eslint from 7.9.0 to 7.10.0</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/a876a3de632aa50a369c15ecf92beebc4644cbc5"><code>a876a3d</code></a> build(deps-dev): bump eslint-config-prettier from 6.11.0 to 6.12.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1987">#1987</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/09470dde421f7c5c2e00819248a4257f2b9930bd"><code>09470dd</code></a> build(deps-dev): bump eslint-plugin-jsdoc from 30.5.1 to 30.6.0 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1986">#1986</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/5b2334356930081410d8f93bc578c27a8c3bd8c7"><code>5b23343</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1983">#1983</a> from kulshekhar/dependabot/npm_and_yarn/types/babel_...</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/e6addd2e7201911bf8d2c20dc85f430043e381a4"><code>e6addd2</code></a> build(deps-dev): bump @types/babel__core from 7.1.9 to 7.1.10</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/6d3ef4408293a322f641d17757a99b676238a648"><code>6d3ef44</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1981">#1981</a> from kulshekhar/dependabot/npm_and_yarn/types/yargs-...</li> <li>Additional commits viewable in <a href="https://github.com/kulshekhar/ts-jest/compare/v26.2.0...v26.4.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+32 -30

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump mongodb-memory-server from 6.2.1 to 6.9.0 dependencies

Bumps mongodb-memory-server from 6.2.1 to 6.9.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nodkz/mongodb-memory-server/releases">mongodb-memory-server's releases</a>.</em></p> <blockquote> <h2>v6.9.0</h2> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.8.1...v6.9.0">6.9.0</a> (2020-09-30)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>MongoInstance:</strong> try "SIGKILL" after timeout (<a href="https://github.com/nodkz/mongodb-memory-server/commit/f2a06bcd08922dccd11a8ade9d637cb2efcd157f">f2a06bc</a>)</li> <li><strong>MongoMemoryReplSet:</strong> change "process.on" to "process.once" for "beforeExit" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/0e0795341ff914b4aca059317aa7cd41bae6db68">0e07953</a>)</li> <li><strong>MongoMemoryReplSet:</strong> remove "beforeExit" listener inside "stop" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/c7328c9a1a2f68da5463a4fd2cb6a7e588aef6dc">c7328c9</a>)</li> <li><strong>MongoMemoryServer:</strong> remove double check (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b99f3a4b855e5630ff1b26285dae4942601c0735">b99f3a4</a>)</li> </ul> <h3>Features</h3> <ul> <li><strong>MongoInstance:</strong> warn if nodejs version is below "10.15.0" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/8693b4613e3cac078b611f1c581f268a37a38680">8693b46</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/379">#379</a></li> <li><strong>MongoMemoryReplSet:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b088af2fad9660a685b15efdffeb03b16ce58579">b088af2</a>)</li> <li><strong>MongoMemoryServer:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/9abf04f23188e1ad4eb47b0797c33e8210b8056b">9abf04f</a>)</li> </ul> <h2>v6.9.0-beta.2</h2> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.9.0-beta.1...v6.9.0-beta.2">6.9.0-beta.2</a> (2020-09-30)</h1> <h3>Features</h3> <ul> <li><strong>MongoMemoryReplSet:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b088af2fad9660a685b15efdffeb03b16ce58579">b088af2</a>)</li> <li><strong>MongoMemoryServer:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/9abf04f23188e1ad4eb47b0797c33e8210b8056b">9abf04f</a>)</li> </ul> <h2>v6.9.0-beta.1</h2> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.8.1...v6.9.0-beta.1">6.9.0-beta.1</a> (2020-09-29)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>MongoInstance:</strong> try "SIGKILL" after timeout (<a href="https://github.com/nodkz/mongodb-memory-server/commit/f2a06bcd08922dccd11a8ade9d637cb2efcd157f">f2a06bc</a>)</li> <li><strong>MongoMemoryReplSet:</strong> change "process.on" to "process.once" for "beforeExit" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/0e0795341ff914b4aca059317aa7cd41bae6db68">0e07953</a>)</li> <li><strong>MongoMemoryReplSet:</strong> remove "beforeExit" listener inside "stop" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/c7328c9a1a2f68da5463a4fd2cb6a7e588aef6dc">c7328c9</a>)</li> <li><strong>MongoMemoryServer:</strong> remove double check (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b99f3a4b855e5630ff1b26285dae4942601c0735">b99f3a4</a>)</li> </ul> <h3>Features</h3> <ul> <li><strong>MongoInstance:</strong> warn if nodejs version is below "10.15.0" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/8693b4613e3cac078b611f1c581f268a37a38680">8693b46</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/379">#379</a></li> </ul> <h2>v6.8.1</h2> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.8.0...v6.8.1">6.8.1</a> (2020-09-28)</h2> <h3>Bug Fixes</h3> <ul> <li>explicitly re-export "default" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/d3a1f6e624399ffcdbe2c8ffb8f174692d007169">d3a1f6e</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/386">nodkz/mongodb-memory-server#386</a></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/nodkz/mongodb-memory-server/blob/master/CHANGELOG.md">mongodb-memory-server's changelog</a>.</em></p> <blockquote> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.8.1...v6.9.0">6.9.0</a> (2020-09-30)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>MongoInstance:</strong> try "SIGKILL" after timeout (<a href="https://github.com/nodkz/mongodb-memory-server/commit/f2a06bcd08922dccd11a8ade9d637cb2efcd157f">f2a06bc</a>)</li> <li><strong>MongoMemoryReplSet:</strong> change "process.on" to "process.once" for "beforeExit" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/0e0795341ff914b4aca059317aa7cd41bae6db68">0e07953</a>)</li> <li><strong>MongoMemoryReplSet:</strong> remove "beforeExit" listener inside "stop" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/c7328c9a1a2f68da5463a4fd2cb6a7e588aef6dc">c7328c9</a>)</li> <li><strong>MongoMemoryServer:</strong> remove double check (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b99f3a4b855e5630ff1b26285dae4942601c0735">b99f3a4</a>)</li> </ul> <h3>Features</h3> <ul> <li><strong>MongoInstance:</strong> warn if nodejs version is below "10.15.0" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/8693b4613e3cac078b611f1c581f268a37a38680">8693b46</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/379">#379</a></li> <li><strong>MongoMemoryReplSet:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b088af2fad9660a685b15efdffeb03b16ce58579">b088af2</a>)</li> <li><strong>MongoMemoryServer:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/9abf04f23188e1ad4eb47b0797c33e8210b8056b">9abf04f</a>)</li> </ul> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.9.0-beta.1...v6.9.0-beta.2">6.9.0-beta.2</a> (2020-09-30)</h1> <h3>Features</h3> <ul> <li><strong>MongoMemoryReplSet:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b088af2fad9660a685b15efdffeb03b16ce58579">b088af2</a>)</li> <li><strong>MongoMemoryServer:</strong> deprecate "getConnectionString" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/9abf04f23188e1ad4eb47b0797c33e8210b8056b">9abf04f</a>)</li> </ul> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.8.1...v6.9.0-beta.1">6.9.0-beta.1</a> (2020-09-29)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>MongoInstance:</strong> try "SIGKILL" after timeout (<a href="https://github.com/nodkz/mongodb-memory-server/commit/f2a06bcd08922dccd11a8ade9d637cb2efcd157f">f2a06bc</a>)</li> <li><strong>MongoMemoryReplSet:</strong> change "process.on" to "process.once" for "beforeExit" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/0e0795341ff914b4aca059317aa7cd41bae6db68">0e07953</a>)</li> <li><strong>MongoMemoryReplSet:</strong> remove "beforeExit" listener inside "stop" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/c7328c9a1a2f68da5463a4fd2cb6a7e588aef6dc">c7328c9</a>)</li> <li><strong>MongoMemoryServer:</strong> remove double check (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b99f3a4b855e5630ff1b26285dae4942601c0735">b99f3a4</a>)</li> </ul> <h3>Features</h3> <ul> <li><strong>MongoInstance:</strong> warn if nodejs version is below "10.15.0" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/8693b4613e3cac078b611f1c581f268a37a38680">8693b46</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/379">#379</a></li> </ul> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.8.0...v6.8.1">6.8.1</a> (2020-09-28)</h2> <h3>Bug Fixes</h3> <ul> <li>explicitly re-export "default" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/d3a1f6e624399ffcdbe2c8ffb8f174692d007169">d3a1f6e</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/386">nodkz/mongodb-memory-server#386</a></li> <li><strong>MongoInstance:</strong> add call to "instanceFailed" to "closeHandler" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/c6010f411d5c72f100e55d0b918b7c252e47a5ec">c6010f4</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/385">#385</a></li> <li><strong>MongoInstance:</strong> fix log in "run" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/38b2f0dd9737299fd9b0f750be0594779b5df0ac">38b2f0d</a>)</li> </ul> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.8.1-beta.1...v6.8.1-beta.2">6.8.1-beta.2</a> (2020-09-28)</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/706408deb382444103871bd223490c93d470bd94"><code>706408d</code></a> v6.9.0</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/c7eea3062a04a87d4ec4121d82245e66abf81147"><code>c7eea30</code></a> v6.9.0-beta.2</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/cbece463143257a12abd94af8a8390cbc7bce5af"><code>cbece46</code></a> v6.9.0-beta.1</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/e563cf1e5444e485c7662178883634611297a04f"><code>e563cf1</code></a> v6.8.1</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/98e28e7658746c63c10759e6cdacea9e183c521b"><code>98e28e7</code></a> v6.8.1-beta.2</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/d3a1f6e624399ffcdbe2c8ffb8f174692d007169"><code>d3a1f6e</code></a> fix: explicitly re-export "default"</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/7214f09c514fa6e3f2bbaddc6949c400fea77c72"><code>7214f09</code></a> v6.8.1-beta.1</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/0dba6ea5df2382642ca98b6ecc58a5cfbdbee0e3"><code>0dba6ea</code></a> v6.8.0</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/716a489f433143013712980cb579640583505864"><code>716a489</code></a> v6.7.6</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/6dada8b78cae3b574d94c7f651c391c1540782ec"><code>6dada8b</code></a> v6.7.5</li> <li>Additional commits viewable in <a href="https://github.com/nodkz/mongodb-memory-server/commits/v6.9.0/packages/mongodb-memory-server">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+335 -718

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump mongoose from 5.8.4 to 5.10.7 dependencies

Bumps mongoose from 5.8.4 to 5.10.7. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Automattic/mongoose/blob/master/History.md">mongoose's changelog</a>.</em></p> <blockquote> <h1>5.10.7 / 2020-09-24</h1> <ul> <li>fix(schema): set correct path and schema on nested primitive arrays <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9429">#9429</a></li> <li>fix(document): pass document to required validator so <code>required</code> can use arrow functions <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9435">#9435</a> <a href="https://github.com/AbdelrahmanHafez">AbdelrahmanHafez</a></li> <li>fix(document): handle required when schema has property named <code>isSelected</code> <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9438">#9438</a></li> <li>fix(timestamps): allow using timestamps when schema has a property named 'set' <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9428">#9428</a></li> <li>fix(schema): make <code>Schema#clone()</code> use parent Mongoose instance's Schema constructor <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9426">#9426</a></li> </ul> <h1>5.10.6 / 2020-09-18</h1> <ul> <li>fix(populate): handle <code>options.perDocumentLimit</code> option same as <code>perDocumentLimit</code> when calling <code>populate()</code> <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9418">#9418</a></li> <li>fix(document): invalidate path if default function throws an error <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9408">#9408</a></li> <li>fix: ensure subdocument defaults run after initial values are set when initing <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9408">#9408</a></li> <li>docs(faq+queries): add more detail about duplicate queries, including an faq entry <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9386">#9386</a></li> <li>docs: replace var with let and const in docs and test files <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9414">#9414</a> <a href="https://github.com/jmadankumar">jmadankumar</a></li> <li>docs(model+query): document using array of strings as projection <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9413">#9413</a></li> <li>docs(middleware): add missing backtick <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9425">#9425</a> <a href="https://github.com/tphobe9312">tphobe9312</a></li> </ul> <h1>5.10.5 / 2020-09-11</h1> <ul> <li>fix: bump mongodb -> 3.6.2 <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9411">#9411</a> <a href="https://github.com/AbdelrahmanHafez">AbdelrahmanHafez</a></li> <li>fix(query+aggregate+cursor): support async iteration over a cursor instance as opposed to a Query or Aggregate instance <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9403">#9403</a></li> <li>fix(document): respect child schema <code>minimize</code> if <code>toObject()</code> is called without an explicit <code>minimize</code> <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9405">#9405</a></li> <li>docs(guide): use const instead of var <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9394">#9394</a> <a href="https://github.com/nainardev">nainardev</a></li> <li>docs(query): link to lean, findOneAndUpdate, query casting tutorials from query docs <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9410">#9410</a></li> </ul> <h1>5.10.4 / 2020-09-09</h1> <ul> <li>fix(document): allow setting nested path to instance of model <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9392">#9392</a></li> <li>fix: handle <code>findOneAndRemove()</code> with <code>orFail()</code> <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9381">#9381</a></li> <li>fix(schema): support setting <code>_id</code> option to <code>false</code> after instantiating schema <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9390">#9390</a></li> <li>docs(document): fix formatting on <code>getChanges()</code> <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9376">#9376</a></li> </ul> <h1>5.10.3 / 2020-09-03</h1> <ul> <li>fix: upgrade mongodb -> 3.6.1 <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9380">#9380</a> <a href="https://github.com/lamhieu-vk">lamhieu-vk</a></li> <li>fix(populate): allow populating paths underneath subdocument maps <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9359">#9359</a></li> <li>fix(update): handle casting map paths when map is underneath a single nested subdoc <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9298">#9298</a></li> <li>fix(discriminator): avoid removing nested path if both base and discriminator schema have the same nested path <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9362">#9362</a></li> <li>fix(schema): support <code>Schema#add()</code> with schematype instances with different paths <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9370">#9370</a></li> <li>docs(api): fix typo in <code>Query#get()</code> example <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9372">#9372</a> <a href="https://github.com/elainewlin">elainewlin</a></li> </ul> <h1>5.10.2 / 2020-08-28</h1> <ul> <li>fix(model): avoid uncaught error if <code>insertMany()</code> fails due to server selection error <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9355">#9355</a></li> <li>fix(aggregate): automatically convert accumulator function options to strings <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9364">#9364</a></li> <li>fix(document): handle <code>pull()</code> on a document array when <code>_id</code> is an alias <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9319">#9319</a></li> <li>fix(queryhelpers): avoid path collision error when projecting in discriminator key with <code>.$</code> <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9361">#9361</a></li> <li>fix: fix typo in error message thrown by unimplemented createIndex <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9367">#9367</a> <a href="https://github.com/timhaley94">timhaley94</a></li> <li>docs(plugins): note that plugins should be applied before you call <code>mongoose.model()</code> <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/7723">#7723</a></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Automattic/mongoose/commit/a37dc2b800358f40eb580848aa4feac3cfaf71d4"><code>a37dc2b</code></a> chore: release 5.10.7</li> <li><a href="https://github.com/Automattic/mongoose/commit/9cc9651eb150d6876981462c4aab8f5e8bfd28f0"><code>9cc9651</code></a> fix(schema): set correct path and schema on nested primitive arrays</li> <li><a href="https://github.com/Automattic/mongoose/commit/a1506cb60f003c0409090ddf9ccb10de17a34a95"><code>a1506cb</code></a> test(schema): repro <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9429">#9429</a></li> <li><a href="https://github.com/Automattic/mongoose/commit/b128c9bf21b4d4edce09d39b0f9fbd5741f3e800"><code>b128c9b</code></a> fix(document): handle required when schema has property named <code>isSelected</code></li> <li><a href="https://github.com/Automattic/mongoose/commit/1b2202d822534b9bfbf32b4a0ccf553855793b7a"><code>1b2202d</code></a> test(document): repro <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9438">#9438</a></li> <li><a href="https://github.com/Automattic/mongoose/commit/a23f4d306b65f47a1c4c2df7d5670bdec28defeb"><code>a23f4d3</code></a> refactor(timestamps): consolidate timestamps tests, move setupTimestamps() lo...</li> <li><a href="https://github.com/Automattic/mongoose/commit/9faa7305e3596a5dbae4f4823b6a9d503f1090dc"><code>9faa730</code></a> fix(timestamps): allow using timestamps when schema has a property named 'set'</li> <li><a href="https://github.com/Automattic/mongoose/commit/fee3af19c622b153bb8f4ddf663d41a2796f98ac"><code>fee3af1</code></a> test(timestamps): repro <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9428">#9428</a></li> <li><a href="https://github.com/Automattic/mongoose/commit/2007bc74e474c8908b5fdac3d66354ca424ceb6a"><code>2007bc7</code></a> fix(schema): make <code>Schema#clone()</code> use parent Mongoose instance's Schema cons...</li> <li><a href="https://github.com/Automattic/mongoose/commit/40d408e62ec9baa3251694f538bf3d89c7bbdc04"><code>40d408e</code></a> test(schema): repro <a href="https://github-redirect.dependabot.com/Automattic/mongoose/issues/9426">#9426</a></li> <li>Additional commits viewable in <a href="https://github.com/Automattic/mongoose/compare/5.8.4...5.10.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+23 -38

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump typescript from 3.7.4 to 4.0.3 dependencies

Bumps typescript from 3.7.4 to 4.0.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Microsoft/TypeScript/releases">typescript's releases</a>.</em></p> <blockquote> <h2>TypeScript 4.0.3</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-4-0/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.0%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.1%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.2%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.2</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+4.0.3%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.3</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-40">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> <h2>TypeScript 4.0</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-4-0/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.0%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.1%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0.2%22+is%3Aclosed+">fixed issues query for TypeScript v4.0.2</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-40">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> <h2>TypeScript 4.0 Beta</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-4-0-beta/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+4.0%22+is%3Aclosed+">fixed issues query for Typescript v4.0-beta</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-40beta">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> <h2>TypeScript 3.9.7</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-3-9/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.0%22+is%3Aclosed+">fixed issues query for TypeScript v3.9.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.1%22+is%3Aclosed+">fixed issues query for TypeScript v3.9.1 (RC)</a>.</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/microsoft/TypeScript/commit/fee3bfbe91b7582f42e2f49814b87353f67e63f4"><code>fee3bfb</code></a> Bump version to 4.0.3 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/2eb5deae4bafe169ec1d2ecf66999003574164bb"><code>2eb5dea</code></a> Update LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/1dde4bbe4ebc7fb210bf124b9590a82573a49806"><code>1dde4bb</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40595">#40595</a> from typescript-bot/pick/39924/release-4.0</li> <li><a href="https://github.com/microsoft/TypeScript/commit/23c77c4e329ee3a27c4dfe7d9f6905aca12281b0"><code>23c77c4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40444">#40444</a> from amcasey/Cherry40043</li> <li><a href="https://github.com/microsoft/TypeScript/commit/e3301f7294c759be4141f4a49b691fe2614f93ef"><code>e3301f7</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39924">#39924</a> into release-4.0</li> <li><a href="https://github.com/microsoft/TypeScript/commit/65b84e707e118b802ad41ca164debd15f4915a95"><code>65b84e7</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40273">#40273</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40303">#40303</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/657576ae7c9da142bdbbe43e64d425fa292124fe"><code>657576a</code></a> Set stackTraceLimit to 0 in fileSystemEntryExists</li> <li><a href="https://github.com/microsoft/TypeScript/commit/3e7a8e7e45aed722d7955e35e9fbac14ea75958a"><code>3e7a8e7</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40348">#40348</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40349">#40349</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/8890dcb7ca81857678b110a1586f3642d1447ee2"><code>8890dcb</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40118">#40118</a> into release-4.0 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/40134">#40134</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/912cbdfcb6b5ed1b0623390fc350c3c313fc8f1b"><code>912cbdf</code></a> Update LKG</li> <li>Additional commits viewable in <a href="https://github.com/Microsoft/TypeScript/compare/v3.7.4...v4.0.3">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~typescript-bot">typescript-bot</a>, a new releaser for typescript since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+8 -8

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump @types/jest from 24.0.25 to 26.0.14 dependencies

Bumps @types/jest from 24.0.25 to 26.0.14. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+8 -8

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump decompress from 4.2.0 to 4.2.1 dependencies

Bumps decompress from 4.2.0 to 4.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/kevva/decompress/releases">decompress's releases</a>.</em></p> <blockquote> <h2>v4.2.1</h2> <ul> <li>Prevent directory traversal (<a href="https://github-redirect.dependabot.com/kevva/decompress/issues/73">#73</a>) 967146e</li> </ul> <p><a href="https://github.com/kevva/decompress/compare/v4.2.0...v4.2.1">https://github.com/kevva/decompress/compare/v4.2.0...v4.2.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kevva/decompress/commit/84a8c1046946add1a6ae01c54dbebf312e4ffc85"><code>84a8c10</code></a> 4.2.1</li> <li><a href="https://github.com/kevva/decompress/commit/fafff47880cb5b47b022cd7be5542d576448603a"><code>fafff47</code></a> Meta tweaks</li> <li><a href="https://github.com/kevva/decompress/commit/967146e70f48be32ed1a69daa3941d681944d513"><code>967146e</code></a> Prevent directory traversal (<a href="https://github-redirect.dependabot.com/kevva/decompress/issues/73">#73</a>)</li> <li><a href="https://github.com/kevva/decompress/commit/74a462a139cc2561b6695e696266c8dc31562d3d"><code>74a462a</code></a> Meta tweaks</li> <li><a href="https://github.com/kevva/decompress/commit/7ddadd92139079e520cb822a03fe4260b7db7676"><code>7ddadd9</code></a> Add note about <code>filter</code> option</li> <li>See full diff in <a href="https://github.com/kevva/decompress/compare/v4.2.0...v4.2.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+67 -47

0 comment

2 changed files

dependabot[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump @types/express from 4.17.2 to 4.17.8 dependencies

Bumps @types/express from 4.17.2 to 4.17.8. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/express">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+31 -17

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump ts-node from 8.5.4 to 9.0.0 dependencies

Bumps ts-node from 8.5.4 to 9.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/TypeStrong/ts-node/releases">ts-node's releases</a>.</em></p> <blockquote> <h2>v9.0.0</h2> <p>Breaking changes are labelled [BREAKING] below.</p> <p><strong>Added</strong></p> <ul> <li>Throw <code>ERR_REQUIRE_ESM</code> when a file is <code>require()</code>d which should be loaded as ESM (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1031">#1031</a>)</li> <li>Re-add <code>"exports"</code> declaration to package.json in backwards-compatible way, enabling <code>node --loader ts-node/esm</code> without file extension (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1028">#1028</a>)</li> <li>Allow specifying <code>"require"</code> option via tsconfig (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/925">#925</a>)</li> <li>REPL respects node's <code>NODE_NO_READLINE</code> environment variable (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1090">#1090</a>)</li> <li>Add a transpile-only entrypoint for ESM loader: <code>node --loader ts-node/esm/transpile-only</code> (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1102">#1102</a>) <a href="https://github.com/concision">@concision</a></li> </ul> <p><strong>Changed</strong></p> <ul> <li>[BREAKING] Drops support for node versions < 10 (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1036">#1036</a>)</li> </ul> <p><strong>Fixed</strong></p> <ul> <li>[BREAKING] Re-add <code>realpath</code>, which should fix workflows that use symlinks, such as <code>pnpm</code>, Lerna workspaces, or other mono-repo configurations (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/970">#970</a>)</li> <li>Compile files within <code>node_modules</code> when <code>--skip-ignore</code> or <code>--ignore</code> options are configured to allow it (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/970">#970</a>)</li> <li>Fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/884">#884</a> by not adding all referenced files to <code>getSourceFileNames</code>/<code>rootNames</code> (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/999">#999</a>)</li> <li>Fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/996">#996</a>: bump <code>projectVersion</code> every time <code>getSourceFileNames</code> changes, avoiding accidentally outdated typechecking (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/998">#998</a>)</li> <li>Fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1051">#1051</a>: pass transformers object to <code>ts.transpileModule</code> (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1054">#1054</a>) <a href="https://github.com/thetutlage">@thetutlage</a></li> <li>Fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1060">#1060</a>: use source maps for stack traces in ESM modules (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1087">#1087</a>)</li> <li>Fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1072">#1072</a>: Respect <code>--experimental-specifier-resolution</code> coming from <code>NODE_OPTIONS</code> in ESM loader (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1085">#1085</a>) <a href="https://github.com/evg656e">@evg656e</a></li> <li>Fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1098">#1098</a>: ESM loader should skip <code>.cjs</code>, <code>.mjs</code>, and any unexpected file extensions (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1103">#1103</a>) <a href="https://github.com/concision">@concision</a></li> </ul> <p><strong>Docs</strong></p> <ul> <li>Better explain how to compile imports, either CommonJS or using experimental ESM loader. Resolves <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1075">#1075</a> (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1086">#1086</a>)</li> </ul> <p><strong>Misc</strong></p> <ul> <li>Fix, re-enable, and add various tests (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1044">#1044</a>, <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1088">#1088</a>, <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1108">#1108</a>, <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1110">#1110</a>, <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1109">#1109</a>, <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1115">#1115</a>, <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1043">#1043</a>, <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/999">#999</a>)</li> </ul> <p><a href="https://github.com/TypeStrong/ts-node/compare/v8.10.2...v9.0.0">https://github.com/TypeStrong/ts-node/compare/v8.10.2...v9.0.0</a></p> <h2>v8.10.2</h2> <p><strong>Fixed</strong></p> <p>Fixes <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1037">#1037</a>: source maps broken on Windows. (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1038">#1038</a>)</p> <p><strong>Misc</strong></p> <p>Fix failing tests on node 6 (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1035">#1035</a>) Push coverage from Github Actions; remove TravisCI (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1034">#1034</a>) Run tests e2e against an <code>npm pack && npm install</code>ed ts-node (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1032">#1032</a>) Run CI tests on Windows (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1041">#1041</a>) Run CI only once per commit on pull requests and master (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1042">#1042</a>)</p> <h2>Fix breaking change for require('ts-node/')</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/TypeStrong/ts-node/commit/41e7109e9f6c4ac3f072b16859f5f2876377b185"><code>41e7109</code></a> 9.0.0</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/c2a2048aa6a4697bd11c20b48605c2db9adc5f08"><code>c2a2048</code></a> Override <code>isExternalLibraryImport</code> as needed; re-add <code>realpath</code> (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/970">#970</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/836d1f22cca49c8e5b55e11d55f791b606136e51"><code>836d1f2</code></a> bump to typescript 4.0.2 (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1117">#1117</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/89e42cc09af89e9007b93e4cb2d0de8b66fb4c28"><code>89e42cc</code></a> add test for REPL .type command (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1115">#1115</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/66732d6679ccde9fc94ac4dc2fc2c8a7d6ff6f25"><code>66732d6</code></a> Fix coverage and testing badges (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1095">#1095</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/7cb6d570f531fd7efaa83a526b68610abd927dab"><code>7cb6d57</code></a> Add test coverage (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1109">#1109</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/e29ae0470fcf02751c2e1913f66ae1451518fe4f"><code>e29ae04</code></a> Added a transpile-only ESM loader (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1101">#1101</a>) (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1102">#1102</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/08dc47d06adb9abd72e9f8c9bef3126e222ac56d"><code>08dc47d</code></a> Fix <a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1098">#1098</a>: <code>ignored()</code> bug: ESM loader will try to compile .cjs, .mjs… (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1103">#1103</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/54963b856162f7a3300e011ed360ea6e5d31b863"><code>54963b8</code></a> remove duplicated test (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1110">#1110</a>)</li> <li><a href="https://github.com/TypeStrong/ts-node/commit/77f568ded01cae1e37bc36a95e9b8e1f6ca35a78"><code>77f568d</code></a> fix broken tests (<a href="https://github-redirect.dependabot.com/TypeStrong/ts-node/issues/1108">#1108</a>)</li> <li>Additional commits viewable in <a href="https://github.com/TypeStrong/ts-node/compare/v8.5.4...v9.0.0">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~cspotcode">cspotcode</a>, a new releaser for ts-node since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+36 -22

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump mongodb-memory-server from 6.2.1 to 6.5.2

Bumps mongodb-memory-server from 6.2.1 to 6.5.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nodkz/mongodb-memory-server/releases">mongodb-memory-server's releases</a>.</em></p> <blockquote> <h2>v6.5.2</h2> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.5.1...v6.5.2">6.5.2</a> (2020-04-05)</h2> <h3>Bug Fixes</h3> <ul> <li>insensitive the regexp when a primary is elected (<a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/294">#294</a>) (<a href="https://github.com/nodkz/mongodb-memory-server/commit/746ccb1">746ccb1</a>), closes <a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/292">#292</a></li> </ul> <h2>v6.5.1</h2> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.5.0...v6.5.1">6.5.1</a> (2020-04-02)</h2> <h3>Bug Fixes</h3> <ul> <li>change "waiting for connections on port" to "waiting for connections" (<a href="https://github.com/nodkz/mongodb-memory-server/commit/02228c3">02228c3</a>)</li> </ul> <h2>v6.5.0</h2> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.4.1...v6.5.0">6.5.0</a> (2020-03-24)</h1> <h3>Features</h3> <ul> <li>add support for rhel & coreos 8 (<a href="https://github-redirect.dependabot.com/nodkz/mongodb-memory-server/issues/288">#288</a>) (<a href="https://github.com/nodkz/mongodb-memory-server/commit/2d15e6a">2d15e6a</a>)</li> </ul> <h2>v6.4.1</h2> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.4.0...v6.4.1">6.4.1</a> (2020-03-19)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>MongoBinaryDownload:</strong> Replace <code>decompress</code> with <code>tar-stream</code>, <code>zlib</code> and <code>yauzl</code> (<a href="https://github.com/nodkz/mongodb-memory-server/commit/58faef2">58faef2</a>)</li> </ul> <h2>v6.4.0</h2> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.3.3...v6.4.0">6.4.0</a> (2020-03-19)</h1> <h3>Bug Fixes</h3> <ul> <li>set timeout per test (<a href="https://github.com/nodkz/mongodb-memory-server/commit/b3f9a10">b3f9a10</a>)</li> </ul> <h3>Features</h3> <ul> <li>add try/catch for reinit of repl set (<a href="https://github.com/nodkz/mongodb-memory-server/commit/ab7f5f6">ab7f5f6</a>)</li> </ul> <h2>v6.3.3</h2> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.3.2...v6.3.3">6.3.3</a> (2020-03-11)</h2> </tr></table> ... (truncated) </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/nodkz/mongodb-memory-server/blob/master/packages/mongodb-memory-server/CHANGELOG.md">mongodb-memory-server's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.5.1...v6.5.2">6.5.2</a> (2020-04-05)</h2> <p><strong>Note:</strong> Version bump only for package mongodb-memory-server</p> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.5.0...v6.5.1">6.5.1</a> (2020-04-02)</h2> <p><strong>Note:</strong> Version bump only for package mongodb-memory-server</p> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.4.1...v6.5.0">6.5.0</a> (2020-03-24)</h1> <p><strong>Note:</strong> Version bump only for package mongodb-memory-server</p> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.4.0...v6.4.1">6.4.1</a> (2020-03-19)</h2> <p><strong>Note:</strong> Version bump only for package mongodb-memory-server</p> <h1><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.3.3...v6.4.0">6.4.0</a> (2020-03-19)</h1> <p><strong>Note:</strong> Version bump only for package mongodb-memory-server</p> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.3.2...v6.3.3">6.3.3</a> (2020-03-11)</h2> <p><strong>Note:</strong> Version bump only for package mongodb-memory-server</p> <h2><a href="https://github.com/nodkz/mongodb-memory-server/compare/v6.3.1...v6.3.2">6.3.2</a> (2020-03-03)</h2> </tr></table> ... (truncated) </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/7c0d3defc37122f1c5b58481aaedd859996045b9"><code>7c0d3de</code></a> v6.5.2</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/c1757140c5f3d6911f4a673607173b124cf284fb"><code>c175714</code></a> v6.5.1</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/3ed31f62179940ba269b28992ef9f5e0d312827a"><code>3ed31f6</code></a> v6.5.0</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/6653542a3867689dbbf8b168e1eea5b959b5ce09"><code>6653542</code></a> v6.4.1</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/9bd61b9ae98099f63d273a4db4dcbcf62ed4937e"><code>9bd61b9</code></a> v6.4.0</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/52289e85710ac0b552ba50e9c9db32d4aef26547"><code>52289e8</code></a> v6.3.3</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/a498bef1ab18d6bc229c76551ebc7ce4289af1b9"><code>a498bef</code></a> v6.3.2</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/dde00c95b262dbae7b443cd60b95b7d78748b89e"><code>dde00c9</code></a> v6.3.1</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/2b8d9d2b72da05ea63e323744f5a46ffc5496954"><code>2b8d9d2</code></a> v6.3.0</li> <li><a href="https://github.com/nodkz/mongodb-memory-server/commit/bd40272ba1fdce1fabe80ca5501ef3ba6141d9b1"><code>bd40272</code></a> v6.2.4</li> <li>Additional commits viewable in <a href="https://github.com/nodkz/mongodb-memory-server/commits/v6.5.2/packages/mongodb-memory-server">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+406 -498

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/Mongoose-TypeScript-example

Bump @types/body-parser from 1.17.1 to 1.19.0 dependencies

Bumps @types/body-parser from 1.17.1 to 1.19.0. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/body-parser">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+11 -10

0 comment

3 changed files

dependabot-preview[bot]

pr closed time in a month

delete branch tomanagle/Mongoose-TypeScript-example

delete branch : dependabot/npm_and_yarn/bl-1.2.3

delete time in a month

push eventtomanagle/Mongoose-TypeScript-example

dependabot-preview[bot]

commit sha 4cac863ab86b7672824334935694ae1c1a9eabad

[Security] Bump bl from 1.2.2 to 1.2.3 Bumps [bl](https://github.com/rvagg/bl) from 1.2.2 to 1.2.3. **This update includes a security fix.** - [Release notes](https://github.com/rvagg/bl/releases) - [Commits](https://github.com/rvagg/bl/compare/v1.2.2...v1.2.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha 11016e57c9fe25a9ba3ca17e9cdd2a85702f75dc

Merge pull request #377 from tomanagle/dependabot/npm_and_yarn/bl-1.2.3 [Security] Bump bl from 1.2.2 to 1.2.3

view details

push time in a month

PR merged tomanagle/Mongoose-TypeScript-example

[Security] Bump bl from 1.2.2 to 1.2.3 dependencies security

Bumps bl from 1.2.2 to 1.2.3. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-pp7h-53gx-mx7r">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Remote Memory Exposure in bl</strong> A buffer over-read vulnerability exists in bl <4.0.3, <3.0.1, <2.2.1 and <1.2.3 which could allow an attacker to supply user input (even typed) that if it ends up in consume() argument and can become negative, the BufferList state can be corrupted, tricking it into exposing uninitialized memory via regular .slice() calls.</p> <p>Affected versions: < 1.2.3</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rvagg/bl/commit/d69edfd66f2b1d8b50abc0ecfe42216437540178"><code>d69edfd</code></a> 1.2.3</li> <li><a href="https://github.com/rvagg/bl/commit/847473ab543e99a687a1ef871ba9a1c4d2e26ee7"><code>847473a</code></a> test all branches</li> <li><a href="https://github.com/rvagg/bl/commit/0bd87ec97be399b129fc62feff2943ffa21bcc00"><code>0bd87ec</code></a> Fix unintialized memory access</li> <li><a href="https://github.com/rvagg/bl/commit/dc097f3f33dffbe11ce4753cf0806ffca632260e"><code>dc097f3</code></a> test newer versions of Node</li> <li>See full diff in <a href="https://github.com/rvagg/bl/compare/v1.2.2...v1.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+35 -25

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

issue closedtomanagle/Mongoose-TypeScript-example

Need a concrete class

User controller is creating a dynamic object while calling User.create. This object needs to have the same properties as defined in IUser. I am not able to do something like : new UserObj(x,y,x) and pass it to User.create. Ideally I would like to define a concrete class like UserObj , fill it, and then invoke the model functions. that possible?

closed time in a month

yashgt

issue closedtomanagle/Mongoose-TypeScript-example

How to write interface for model in sub document.

i have a sub document struktur, like this:

name: { fullname: string, nickname: string, }, address: { street: string, city: string, postCode: string, }

how i make interface for this model?

closed time in a month

ssembara

push eventtomanagle/Mongoose-TypeScript-example

dependabot-preview[bot]

commit sha 2eeeb105382b03b907b492b38a1da080015405d7

[Security] Bump lodash from 4.17.15 to 4.17.20 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.20. **This update includes security fixes.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.20) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha fcd8dd8208f4e73b8dbbb31ed23e5c97e853a620

Merge pull request #359 from tomanagle/dependabot/npm_and_yarn/lodash-4.17.20 [Security] Bump lodash from 4.17.15 to 4.17.20

view details

push time in a month

PR merged tomanagle/Mongoose-TypeScript-example

[Security] Bump lodash from 4.17.15 to 4.17.20 dependencies security

Bumps lodash from 4.17.15 to 4.17.20. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/nodejs/security-wg/blob/master/vuln/npm/516.json">The Node Security Working Group</a>.</em></p> <blockquote> <p><strong>Allocation of Resources Without Limits or Throttling</strong> Prototype pollution attack (lodash)</p> <p>Affected versions: >=4.17.15 <4.17.19</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.20">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4528 -5791

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

push eventtomanagle/NextJS-NestJS-GraphQL-Starter

Tom Nagle

commit sha 41a311b56ccb16f477f110bab441f496da3c429d

feat: update dependancies

view details

push time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump prettier from 1.19.1 to 2.1.2 in /client client dependabot

Bumps prettier from 1.19.1 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/releases">prettier's releases</a>.</em></p> <blockquote> <h2>2.1.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#212">🔗Changelog</a></p> <h2>2.1.1</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#211">🔗Changelog</a></p> <h1>2.1.0</h1> <p><a href="https://github.com/prettier/prettier/compare/2.0.5...2.1.0">diff</a></p> <p>🔗 <a href="https://prettier.io/blog/2020/08/24/2.1.0.html">Release Notes</a></p> <h2>2.0.5</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#205">🔗 Changelog</a></p> <h2>2.0.4</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#204">🔗 Changelog</a></p> <h2>2.0.3</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#203">🔗 Changelog</a></p> <h2>2.0.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#202">🔗 Changelog</a></p> <h2>2.0.1</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#201">🔗 Changelog</a></p> <h2>2.0.0</h2> <p><a href="https://github.com/prettier/prettier/compare/1.19.1...2.0.0">diff</a></p> <p>🔗 <a href="https://prettier.io/blog/2020/03/21/2.0.0.html">Release Notes</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md">prettier's changelog</a>.</em></p> <blockquote> <h1>2.1.2</h1> <p><a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">diff</a></p> <h4>Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9116">#9116</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="graphql"><code># Input type Query { someQuery(id: ID!, someOtherData: String!): String! @deprecated @isAuthenticated versions: Versions! } <h1>Prettier stable</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <h1>Prettier master</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <p></code></pre></p> <h4>Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9136">#9136</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="js"><code>// Input styled.div// prettier-ignore @media (aaaaaaaaaaaaa) { z-index: ${(props) =&gt; (props.isComplete ? '1' : '0')}; }; styled.div${props =&gt; getSize(props.$size.xs)} ${props =&gt; getSize(props.$size.sm, 'sm')} ${props =&gt; getSize(props.$size.md, 'md')}; <p></tr></table> ... (truncated) </code></pre></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/prettier/commit/8eb8f9ed2dc5eb1c3e6f787e5a5e6fe68af2b8d1"><code>8eb8f9e</code></a> Release 2.1.2</li> <li><a href="https://github.com/prettier/prettier/commit/f75844a453beb6cb16791c14e5ff738c02d0b4df"><code>f75844a</code></a> Fix changelog</li> <li><a href="https://github.com/prettier/prettier/commit/9153bf20ac2dfcd525b5dd3f3b37d9b6005d20bc"><code>9153bf2</code></a> Build(deps): Bump yaml-unist-parser from 1.3.0 to 1.3.1 (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9169">#9169</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ec1b4193079a625633dd0dc86f9a9217a3ad9d7e"><code>ec1b419</code></a> YAML: Fix printing doubles a blank line before a comment (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9143">#9143</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ab9474eacc9c883e588ef2500c6230057328ade5"><code>ab9474e</code></a> Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9136">#9136</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/d5da779cb195443c935fd7171f5e81141e2f62e5"><code>d5da779</code></a> GraphQL: Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9116">#9116</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/a8363197118e530d948978da6e5c414a765ba9c0"><code>a836319</code></a> Bump Prettier dependency to 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/18bcaefc773ba0480aef266350c7af3defcf1f0d"><code>18bcaef</code></a> Release 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/ebe9e07716f0ec1e04efc661bec754321e1c937e"><code>ebe9e07</code></a> Vue: Fix format on self-closing and empty blocks (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9055">#9055</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/5a12f52bbeccaa1de3e69ab163bd48037e4978c2"><code>5a12f52</code></a> Replace changelog versions in ./scripts/draft-blog-post.js (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9058">#9058</a>)</li> <li>Additional commits viewable in <a href="https://github.com/prettier/prettier/compare/1.19.1...2.1.2">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~sosukesuzuki">sosukesuzuki</a>, a new releaser for prettier since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump eslint-plugin-import from 2.21.1 to 2.22.1 in /server dependabot server

Bumps eslint-plugin-import from 2.21.1 to 2.22.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/benmosher/eslint-plugin-import/blob/master/CHANGELOG.md">eslint-plugin-import's changelog</a>.</em></p> <blockquote> <h2>[2.22.1] - 2020-09-27</h2> <h3>Fixed</h3> <ul> <li>[<code>default</code>]/TypeScript: avoid crash on <code>export =</code> with a MemberExpression (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1841">#1841</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> <li>[<code>extensions</code>]/importType: Fix @/abc being treated as scoped module (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1854">#1854</a>, thanks [<a href="https://github.com/3nuc">@3nuc</a>])</li> <li>allow using rest operator in named export (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1878">#1878</a>, thanks [<a href="https://github.com/foray1010">@foray1010</a>])</li> <li>[<code>dynamic-import-chunkname</code>]: allow single quotes to match Webpack support (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1848">#1848</a>, thanks [<a href="https://github.com/straub">@straub</a>])</li> </ul> <h3>Changed</h3> <ul> <li>[<code>export</code>]: add tests for a name collision with <code>export * from</code> (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1704">#1704</a>, thanks <a href="https://github.com/tomprats">@tomprats</a>)</li> </ul> <h2>[2.22.0] - 2020-06-26</h2> <h3>Added</h3> <ul> <li>[<code>no-unused-modules</code>]: consider exported TypeScript interfaces, types and enums (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1819">#1819</a>, thanks [<a href="https://github.com/nicolashenry">@nicolashenry</a>])</li> <li>[<code>no-cycle</code>]: allow <code>maxDepth</code> option to be <code>"∞"</code> (thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> <h3>Fixed</h3> <ul> <li>[<code>order</code>]/TypeScript: properly support <code>import = object</code> expressions (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1823">#1823</a>, thanks [<a href="https://github.com/manuth">@manuth</a>])</li> <li>[<code>no-extraneous-dependencies</code>]/TypeScript: do not error when importing type from dev dependencies (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1820">#1820</a>, thanks [<a href="https://github.com/fernandopasik">@fernandopasik</a>])</li> <li>[<code>default</code>]: avoid crash with <code>export =</code> (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1822">#1822</a>, thanks [<a href="https://github.com/AndrewLeedham">@AndrewLeedham</a>])</li> <li>[<code>order</code>]/[<code>newline-after-import</code>]: ignore TypeScript's "export import object" (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1830">#1830</a>, thanks [<a href="https://github.com/be5invis">@be5invis</a>])</li> <li>[<code>dynamic-import-chunkname</code>]/TypeScript: supports <code>@typescript-eslint/parser</code> (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1833">#1833</a>, thanks [<a href="https://github.com/noelebrun">@noelebrun</a>])</li> <li>[<code>order</code>]/TypeScript: ignore ordering of object imports (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1831">#1831</a>, thanks [<a href="https://github.com/manuth">@manuth</a>])</li> <li>[<code>namespace</code>]: do not report on shadowed import names (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/518">#518</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> <li>[<code>export</code>]: avoid warning on <code>export * as</code> non-conflicts (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1834">#1834</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> <h3>Changed</h3> <ul> <li>[<code>no-extraneous-dependencies</code>]: add tests for importing types (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1824">#1824</a>, thanks [<a href="https://github.com/taye">@taye</a>])</li> <li>[docs] [<code>no-default-export</code>]: Fix docs url (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1836">#1836</a>, thanks [<a href="https://github.com/beatrizrezener">@beatrizrezener</a>])</li> <li>[docs] [<code>imports-first</code>]: deprecation info and link to <code>first</code> docs (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1835">#1835</a>, thanks [<a href="https://github.com/beatrizrezener">@beatrizrezener</a>])</li> </ul> <h2>[2.21.2] - 2020-06-09</h2> <h3>Fixed</h3> <ul> <li>[<code>order</code>]: avoid a crash on TypeScript’s <code>export import</code> syntax (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1808">#1808</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> <li>[<code>newline-after-import</code>]: consider TypeScript <code>import =</code> syntax' (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1811">#1811</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> <li>[<code>no-internal-modules</code>]: avoid a crash on a named export declaration (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1814">#1814</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/bdda0691cf703f13f6472b6e824d5168343dd52e"><code>bdda069</code></a> Bump to v2.22.1</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/aa427595698ec1ad7ab9b347c122eac33de8a136"><code>aa42759</code></a> [Dev Deps] update <code>coveralls</code>, <code>eslint-import-resolver-typescript</code>, `eslint-p...</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/b366e50be8c0738b6ac27ccde7b689785a5a3309"><code>b366e50</code></a> [Deps] update <code>eslint-import-resolver-node</code></li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/fef718cb134016855afe61682e32c63ba3ed9281"><code>fef718c</code></a> [resolvers/webpack] [Breaking] Allow to resolve config path relative to worki...</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/bbe529a4ffe7ddb76a1620e55c90be884400456f"><code>bbe529a</code></a> [eslint] don’t warn about console logs in scripts</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/f40c8aef2af736867ce9399326b3ae6faba06d94"><code>f40c8ae</code></a> [meta] convert eslint config to json</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/227d9a25098b359c11cce3c95d6168acdb87eb99"><code>227d9a2</code></a> [Fix] <code>dynamic-import-chunkname</code>: allow single quotes to match Webpack support</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/569d72688fa6ae5c038c51eafa4f6016fc1ee802"><code>569d726</code></a> fixup! [Tests] <code>export</code>: add tests for a name collision with <code>export * from</code></li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/b2d3707fdfb512b2c2c69ee27617eef0fa48db17"><code>b2d3707</code></a> fixup! [Tests] <code>export</code>: add tests for a name collision with <code>export * from</code></li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/1a67453752af2a596ecf2590b6efe4c4512935fc"><code>1a67453</code></a> [Tests] <code>export</code>: add tests for a name collision with <code>export * from</code></li> <li>Additional commits viewable in <a href="https://github.com/benmosher/eslint-plugin-import/compare/v2.21.1...v2.22.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+10 -10

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump @nestjs/testing from 7.1.3 to 7.4.4 in /server dependabot server

Bumps @nestjs/testing from 7.1.3 to 7.4.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nestjs/nest/releases">@nestjs/testing's releases</a>.</em></p> <blockquote> <h2>v7.4.0</h2> <h3>Bug fixes</h3> <ul> <li><strong>microservices</strong>: add microservice <code>dispose()</code> to close server on shutdown <a href="https://github-redirect.dependabot.com/nestjs/nest/pull/5154">nestjs/nest#5154</a></li> <li><strong>microservices</strong>: properly handle a promise returned by the <code>registerModules</code> <a href="https://github-redirect.dependabot.com/nestjs/nest/pull/5136">nestjs/nest#5136</a></li> </ul> <h3>Dependencies</h3> <ul> <li><strong>platform-fastify</strong>: Fastify 3.0 support <a href="https://github-redirect.dependabot.com/nestjs/nest/pull/5070">nestjs/nest#5070</a></li> </ul> <h2>v7.3.0</h2> <h3>Features</h3> <ul> <li><strong>core</strong>: add the <code>introspect()</code> method to <code>ModuleRef</code> and <code>NestApplicationContext</code> classes</li> <li><strong>core</strong>: add the <code>registerRequestByContextId()</code> method to <code>ModuleRef</code> and <code>NestApplicationContext</code> classes</li> </ul> <h3>Improvements</h3> <ul> <li><strong>core</strong>: user <code>InstanceLinksHost</code> to speed-up <code>get()</code> and <code>resolve()</code> methods</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nestjs/nest/commit/9c468e3eb4be7e0791309808f020f02c42fa7dbd"><code>9c468e3</code></a> chore(<a href="https://github.com/nestjs">@nestjs</a>) publish v7.4.4 release</li> <li><a href="https://github.com/nestjs/nest/commit/ba61c790e603443d0f910b905396435595a7658d"><code>ba61c79</code></a> Merge branch 'master' of <a href="https://github.com/nestjs/nest">https://github.com/nestjs/nest</a></li> <li><a href="https://github.com/nestjs/nest/commit/ce606e768d84ad8b8382705cfd6234d06342d930"><code>ce606e7</code></a> fix(platform-fastify): fix exception filter issue (reply ctor)</li> <li><a href="https://github.com/nestjs/nest/commit/4d1c1279ae1634f5faa083d9b650b9600c07767d"><code>4d1c127</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/nestjs/nest/issues/5349">#5349</a> from nestjs/renovate/mongoose-5.x</li> <li><a href="https://github.com/nestjs/nest/commit/1f8a953f313d8b01fd0a324b7148a661275c46f1"><code>1f8a953</code></a> fix(deps): update dependency mongoose to v5.10.2</li> <li><a href="https://github.com/nestjs/nest/commit/2d9d912c61fae1e0f63e9c0efbbc472355feef42"><code>2d9d912</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/nestjs/nest/issues/5357">#5357</a> from nestjs/renovate/confluentinc-cp-kafka-5.x</li> <li><a href="https://github.com/nestjs/nest/commit/0eacce32ea5be472741cabc7100f86d3a6f7e0bf"><code>0eacce3</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/nestjs/nest/issues/5351">#5351</a> from nestjs/renovate/mocha-8.x</li> <li><a href="https://github.com/nestjs/nest/commit/97efd2b9f7eec6f986e7974f0bbdb657c2a48411"><code>97efd2b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/nestjs/nest/issues/5350">#5350</a> from nestjs/renovate/fastify-multipart-3.x</li> <li><a href="https://github.com/nestjs/nest/commit/7eee39504484a296f44225431e334f37591343e8"><code>7eee395</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/nestjs/nest/issues/5346">#5346</a> from nestjs/renovate/nest-monorepo</li> <li><a href="https://github.com/nestjs/nest/commit/23008d5b5cf682b53077c1cbe26ec584d7a6f0c6"><code>23008d5</code></a> chore(deps): update confluentinc/cp-kafka docker tag to v5.5.1</li> <li>Additional commits viewable in <a href="https://github.com/nestjs/nest/compare/v7.1.3...v7.4.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+12 -7

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump helmet from 3.22.0 to 4.1.1 in /server dependabot server

Bumps helmet from 3.22.0 to 4.1.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/helmetjs/helmet/blob/master/CHANGELOG.md">helmet's changelog</a>.</em></p> <blockquote> <h2>4.1.1 - 2020-09-10</h2> <h3>Changed</h3> <ul> <li>Fixed a few errors in the README</li> </ul> <h2>4.1.0 - 2020-08-15</h2> <h3>Added</h3> <ul> <li><code>helmet.contentSecurityPolicy</code>: <ul> <li>Directive values can now include functions, as they could in Helmet 3. See <a href="https://github-redirect.dependabot.com/helmetjs/helmet/issues/243">#243</a></li> </ul> </li> </ul> <h3>Changed</h3> <ul> <li>Helmet should now play more nicely with TypeScript</li> </ul> <h3>Removed</h3> <ul> <li>The <code>HelmetOptions</code> interface is no longer exported. This only affects TypeScript users. If you need the functionality back, see <a href="https://github-redirect.dependabot.com/helmetjs/helmet/issues/235#issuecomment-674016883">this comment</a></li> </ul> <h2>4.0.0 - 2020-08-02</h2> <p>See the <a href="https://github.com/helmetjs/helmet/wiki/Helmet-4-upgrade-guide">Helmet 4 upgrade guide</a> for help upgrading from Helmet 3.</p> <h3>Added</h3> <ul> <li><code>helmet.contentSecurityPolicy</code>: <ul> <li>If no <code>default-src</code> directive is supplied, an error is thrown</li> <li>Directive lists can be any iterable, not just arrays</li> </ul> </li> </ul> <h3>Changed</h3> <ul> <li>This package no longer has dependencies. This should have no effect on end users, other than speeding up installation time.</li> <li><code>helmet.contentSecurityPolicy</code>: <ul> <li>There is now a default set of directives if none are supplied</li> <li>Duplicate keys now throw an error. See <a href="https://github-redirect.dependabot.com/helmetjs/csp/issues/73">helmetjs/csp#73</a></li> <li>This middleware is more lenient, allowing more directive names or values</li> </ul> </li> <li><code>helmet.xssFilter</code> now disables the buggy XSS filter by default. See <a href="https://github-redirect.dependabot.com/helmetjs/helmet/issues/230">#230</a></li> </ul> <h3>Removed</h3> <ul> <li>Dropped support for old Node versions. Node 10+ is now required</li> <li><code>helmet.featurePolicy</code>. If you still need it, use the <code>feature-policy</code> package on npm.</li> <li><code>helmet.hpkp</code>. If you still need it, use the <code>hpkp</code> package on npm.</li> <li><code>helmet.noCache</code>. If you still need it, use the <code>nocache</code> package on npm.</li> <li><code>helmet.contentSecurityPolicy</code>: <ul> <li>Removed browser sniffing (including the <code>browserSniff</code> and <code>disableAndroid</code> parameters). See <a href="https://github-redirect.dependabot.com/helmetjs/csp/issues/97">helmetjs/csp#97</a></li> <li>Removed conditional support. This includes directive functions and support for a function as the <code>reportOnly</code>. <a href="https://github.com/helmetjs/helmet/wiki/Conditionally-using-middleware">Read this if you need help.</a></li> <li>Removed a lot of checks—you should be checking your CSP with a different tool</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/helmetjs/helmet/commit/e95fe5ab37ea7bc310ce5558c5ecec8a318fe296"><code>e95fe5a</code></a> 4.1.1</li> <li><a href="https://github.com/helmetjs/helmet/commit/b35f66d030f2ce2321c18a59976b16ced2c8c3fd"><code>b35f66d</code></a> Update changelog for 4.1.1 release</li> <li><a href="https://github.com/helmetjs/helmet/commit/af88b8e713f84cf707f15c2fe3a61afd7e5798a7"><code>af88b8e</code></a> Update devDependencies to latest versions</li> <li><a href="https://github.com/helmetjs/helmet/commit/4bdad390c3166666e861b5107b3e5b15eff51d11"><code>4bdad39</code></a> Update README docs for xssFilter and hidePoweredBy</li> <li><a href="https://github.com/helmetjs/helmet/commit/b2c573daf8fa43fa133038d791aaddb95671ef0f"><code>b2c573d</code></a> Update HSTS instructions in readme</li> <li><a href="https://github.com/helmetjs/helmet/commit/105acb0e0fb49bc398dc4bae28495b2d2cbfbc26"><code>105acb0</code></a> Repeat instructions about how to edit custom middleware</li> <li><a href="https://github.com/helmetjs/helmet/commit/1b53850392105e080a9a0c149cda1b294a442ce6"><code>1b53850</code></a> Content-Security-Policy 3.1.0</li> <li><a href="https://github.com/helmetjs/helmet/commit/0b1137f75f27f4448ca6116697a06bf0c3a99c71"><code>0b1137f</code></a> 4.1.0</li> <li><a href="https://github.com/helmetjs/helmet/commit/a9b5fd14d3d98a63da17468bbd422c82499390f5"><code>a9b5fd1</code></a> Update changelog for 4.1.0 release</li> <li><a href="https://github.com/helmetjs/helmet/commit/897a06fb5b0683ae3b1cf18eceb2e7bcb1a4dfd4"><code>897a06f</code></a> Add note to changelog about replicating <code>HelmetOptions</code> behavior</li> <li>Additional commits viewable in <a href="https://github.com/helmetjs/helmet/compare/v3.22.0...v4.1.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -123

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump prettier from 1.19.1 to 2.1.2 in /server dependabot server

Bumps prettier from 1.19.1 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/releases">prettier's releases</a>.</em></p> <blockquote> <h2>2.1.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#212">🔗Changelog</a></p> <h2>2.1.1</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#211">🔗Changelog</a></p> <h1>2.1.0</h1> <p><a href="https://github.com/prettier/prettier/compare/2.0.5...2.1.0">diff</a></p> <p>🔗 <a href="https://prettier.io/blog/2020/08/24/2.1.0.html">Release Notes</a></p> <h2>2.0.5</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#205">🔗 Changelog</a></p> <h2>2.0.4</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#204">🔗 Changelog</a></p> <h2>2.0.3</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#203">🔗 Changelog</a></p> <h2>2.0.2</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#202">🔗 Changelog</a></p> <h2>2.0.1</h2> <p><a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md#201">🔗 Changelog</a></p> <h2>2.0.0</h2> <p><a href="https://github.com/prettier/prettier/compare/1.19.1...2.0.0">diff</a></p> <p>🔗 <a href="https://prettier.io/blog/2020/03/21/2.0.0.html">Release Notes</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/prettier/blob/master/CHANGELOG.md">prettier's changelog</a>.</em></p> <blockquote> <h1>2.1.2</h1> <p><a href="https://github.com/prettier/prettier/compare/2.1.1...2.1.2">diff</a></p> <h4>Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9116">#9116</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="graphql"><code># Input type Query { someQuery(id: ID!, someOtherData: String!): String! @deprecated @isAuthenticated versions: Versions! } <h1>Prettier stable</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <h1>Prettier master</h1> <p>type Query { someQuery(id: ID!, someOtherData: String!): String! <a href="https://github.com/deprecated">@deprecated</a> <a href="https://github.com/isAuthenticated">@isAuthenticated</a> versions: Versions! }</p> <p></code></pre></p> <h4>Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/pull/9136">#9136</a> by <a href="https://github.com/sosukesuzuki">@sosukesuzuki</a>)</h4> <!-- raw HTML omitted --> <pre lang="js"><code>// Input styled.div// prettier-ignore @media (aaaaaaaaaaaaa) { z-index: ${(props) =&gt; (props.isComplete ? '1' : '0')}; }; styled.div${props =&gt; getSize(props.$size.xs)} ${props =&gt; getSize(props.$size.sm, 'sm')} ${props =&gt; getSize(props.$size.md, 'md')}; <p></tr></table> ... (truncated) </code></pre></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/prettier/commit/8eb8f9ed2dc5eb1c3e6f787e5a5e6fe68af2b8d1"><code>8eb8f9e</code></a> Release 2.1.2</li> <li><a href="https://github.com/prettier/prettier/commit/f75844a453beb6cb16791c14e5ff738c02d0b4df"><code>f75844a</code></a> Fix changelog</li> <li><a href="https://github.com/prettier/prettier/commit/9153bf20ac2dfcd525b5dd3f3b37d9b6005d20bc"><code>9153bf2</code></a> Build(deps): Bump yaml-unist-parser from 1.3.0 to 1.3.1 (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9169">#9169</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ec1b4193079a625633dd0dc86f9a9217a3ad9d7e"><code>ec1b419</code></a> YAML: Fix printing doubles a blank line before a comment (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9143">#9143</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/ab9474eacc9c883e588ef2500c6230057328ade5"><code>ab9474e</code></a> Fix line breaks for CSS in JS (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9136">#9136</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/d5da779cb195443c935fd7171f5e81141e2f62e5"><code>d5da779</code></a> GraphQL: Fix formatting for directives in fields (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9116">#9116</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/a8363197118e530d948978da6e5c414a765ba9c0"><code>a836319</code></a> Bump Prettier dependency to 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/18bcaefc773ba0480aef266350c7af3defcf1f0d"><code>18bcaef</code></a> Release 2.1.1</li> <li><a href="https://github.com/prettier/prettier/commit/ebe9e07716f0ec1e04efc661bec754321e1c937e"><code>ebe9e07</code></a> Vue: Fix format on self-closing and empty blocks (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9055">#9055</a>)</li> <li><a href="https://github.com/prettier/prettier/commit/5a12f52bbeccaa1de3e69ab163bd48037e4978c2"><code>5a12f52</code></a> Replace changelog versions in ./scripts/draft-blog-post.js (<a href="https://github-redirect.dependabot.com/prettier/prettier/issues/9058">#9058</a>)</li> <li>Additional commits viewable in <a href="https://github.com/prettier/prettier/compare/1.19.1...2.1.2">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~sosukesuzuki">sosukesuzuki</a>, a new releaser for prettier since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump lodash from 4.17.19 to 4.17.20 in /client client dependabot

Bumps lodash from 4.17.19 to 4.17.20. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li>See full diff in <a href="https://github.com/lodash/lodash/compare/4.17.19...4.17.20">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump typescript from 3.9.5 to 3.9.7 in /server dependabot server

Bumps typescript from 3.9.5 to 3.9.7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Microsoft/TypeScript/releases">typescript's releases</a>.</em></p> <blockquote> <h2>TypeScript 3.9.7</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-3-9/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.0%22+is%3Aclosed+">fixed issues query for Typescript v3.9.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.1%22+is%3Aclosed+">fixed issues query for Typescript v3.9.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.2%22+is%3Aclosed+">fixed issues query for Typescript v3.9.2 (Final)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.3%22+is%3Aclosed+">fixed issues query for Typescript v3.9.3 (patch release)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.5%22+is%3Aclosed+">fixed issues query for Typescript v3.9.5 (patch release)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.6%22+is%3Aclosed+">fixed issues query for Typescript v3.9.6 (patch release)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?q=milestone%3A%22TypeScript+3.9.7%22+is%3Aclosed+">fixed issues query for Typescript v3.9.7 (patch release)</a>.</li> </ul> <p>(note, 3.9.4 was intentionally skipped due to minor complications in publishing)</p> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-397">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> <h2>TypeScript 3.9.6</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-3-9/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.0%22+is%3Aclosed+">fixed issues query for Typescript v3.9.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.1%22+is%3Aclosed+">fixed issues query for Typescript v3.9.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.2%22+is%3Aclosed+">fixed issues query for Typescript v3.9.2 (Final)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.3%22+is%3Aclosed+">fixed issues query for Typescript v3.9.3 (patch release)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.5%22+is%3Aclosed+">fixed issues query for Typescript v3.9.5 (patch release)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.6%22+is%3Aclosed+">fixed issues query for Typescript v3.9.6 (patch release)</a>.</li> </ul> <p>(note, 3.9.4 was intentionally skipped due to minor complications in publishing)</p> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-396">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/microsoft/TypeScript/commit/a7d801176ca6cdfe45162c7d7cc80b2fdd144240"><code>a7d8011</code></a> Bump version to 3.9.7 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/761a9ed6dba3a010a5c6385d04afcd3e170bd63e"><code>761a9ed</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39599">#39599</a> into release-3.9 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39601">#39601</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/75d6648f89c3dbc8ec0b600bab51ba458c7ca696"><code>75d6648</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39573">#39573</a> into release-3.9 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39602">#39602</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/c6f934381cf6ba7400495268919d82e0ed66d5c7"><code>c6f9343</code></a> Bump version to 3.9.6 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/1ee1212952668c671fe9a7a3827a08b1473bd845"><code>1ee1212</code></a> isDynamicName skips parentheses for element access</li> <li><a href="https://github.com/microsoft/TypeScript/commit/986e9dd252b24d61772d3ddfb1487c43d25025b8"><code>986e9dd</code></a> Fix crash when serializing the return type of a generic call to Array.prototy...</li> <li><a href="https://github.com/microsoft/TypeScript/commit/9ec5fc5f35d9262be46d7b7f21ad5d6b8cc16ad5"><code>9ec5fc5</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38653">#38653</a> into release-3.9 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38687">#38687</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/2fff32561967615177f1910e66c02afe409af28c"><code>2fff325</code></a> Fix recently added test so it is cross-plat</li> <li><a href="https://github.com/microsoft/TypeScript/commit/c88ed727ded5f2b63d1ba40ca94c02bc1678e96f"><code>c88ed72</code></a> Patch to use this.timeout() > 0 rather than this.enableTimeout() to work with...</li> <li><a href="https://github.com/microsoft/TypeScript/commit/338e42fabe3b73b0e563c291f321123d37b98d24"><code>338e42f</code></a> Update request-pr-review script to latest version of octokit (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/39031">#39031</a>)</li> <li>See full diff in <a href="https://github.com/Microsoft/TypeScript/compare/v3.9.5...v3.9.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump lodash from 4.17.19 to 4.17.20 in /server dependabot server

Bumps lodash from 4.17.19 to 4.17.20. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li>See full diff in <a href="https://github.com/lodash/lodash/compare/4.17.19...4.17.20">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump eslint-config-prettier from 6.10.0 to 6.11.0 in /client client

Bumps eslint-config-prettier from 6.10.0 to 6.11.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prettier/eslint-config-prettier/blob/master/CHANGELOG.md">eslint-config-prettier's changelog</a>.</em></p> <blockquote> <h3>Version 6.11.0 (2020-04-21)</h3> <ul> <li>Added: [@typescript-eslint/keyword-spacing]. Thanks to Hans Bergren (<a href="https://github.com/hbergren">@hbergren</a>)!</li> </ul> <h3>Version 6.10.1 (2020-03-22)</h3> <ul> <li>Improved: Recommend using <code>npx</code> when running the CLI helper tool.</li> <li>Updated: Mention that eslint-config-prettier has been tested with Prettier 2.0 and the latest versions of plugins.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/97b4997c54494a1b47e0dd30207f005b7eb86162"><code>97b4997</code></a> eslint-config-prettier v6.11.0</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/574876ed09ebbf46887db561d2841dcb8f700286"><code>574876e</code></a> Add @typescript-eslint/keyword-spacing</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/3f7a3b87bfbe755cb152e6108404d6206bc5c740"><code>3f7a3b8</code></a> Update npm packages</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/35fb6a12f4cb32ac5c9bf98a92f46f3b24490567"><code>35fb6a1</code></a> Run CI on PRs</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/a188a3c50774fcf721b3e8420aa6159613243538"><code>a188a3c</code></a> eslint-config-prettier v6.10.1</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/a5b25ac6c3a6994cc15f6be91327c414e64af9ec"><code>a5b25ac</code></a> Fix Windows tests</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/8126c586e1ff62b100bb6923144f0469c57c599a"><code>8126c58</code></a> Update readme</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/a91a6a567eafec61321d348059af7e4229035789"><code>a91a6a5</code></a> Update versions in readme</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/2a7fa6a35a05421394d9317f7a5a3c7bb17ec591"><code>2a7fa6a</code></a> Use proseWrap: never for better git diffs</li> <li><a href="https://github.com/prettier/eslint-config-prettier/commit/b76e31671cdc70009adbbf8f5aedbf569758b543"><code>b76e316</code></a> Recommend running the CLI helper tool using npx</li> <li>Additional commits viewable in <a href="https://github.com/prettier/eslint-config-prettier/compare/v6.10.0...v6.11.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump graphql-tag from 2.10.3 to 2.11.0 in /client client

Bumps graphql-tag from 2.10.3 to 2.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/apollographql/graphql-tag/releases">graphql-tag's releases</a>.</em></p> <blockquote> <h2>2.11.0</h2> <ul> <li><code>package.json</code> <code>sideEffects</code> changes to clearly identify that <code>graphql-tag</code> doesn't have side effects. <a href="http://github.com/hwillson">@hwillson</a> in <a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/pull/313">#313</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apollographql/graphql-tag/blob/master/CHANGELOG.md">graphql-tag's changelog</a>.</em></p> <blockquote> <h3>v2.11.0 (2020-07-28)</h3> <ul> <li><code>package.json</code> <code>sideEffects</code> changes to clearly identify that <code>graphql-tag</code> doesn't have side effects. <!-- raw HTML omitted --> <a href="http://github.com/hwillson">@hwillson</a> in <a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/pull/313">#313</a></li> </ul> <h3>v2.10.4 (2020-07-08)</h3> <ul> <li>Bump dev/peer deps to accommodate <code>graphql</code> 15. <!-- raw HTML omitted --> <a href="https://github.com/adriencohen">@adriencohen</a> in <a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/pull/299">#299</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apollographql/graphql-tag/commit/fbbb02e53de7e8a9a9d849ed2ee306d4d0599bfb"><code>fbbb02e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/issues/313">#313</a> from apollographql/side-effects</li> <li><a href="https://github.com/apollographql/graphql-tag/commit/0d0b22054ad52e249b62a488b16344904546188a"><code>0d0b220</code></a> Clearly identify that <code>graphql-tag</code> doesn't have side effects</li> <li><a href="https://github.com/apollographql/graphql-tag/commit/3bd664b7230e200815f2a9b07574d5d63da689ea"><code>3bd664b</code></a> Bump js-yaml from 3.10.0 to 3.13.1 (<a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/issues/287">#287</a>)</li> <li><a href="https://github.com/apollographql/graphql-tag/commit/61cd678f6063dd7c0ef01f0bcb8838cad2902ff0"><code>61cd678</code></a> Add a package-lock.json file.</li> <li><a href="https://github.com/apollographql/graphql-tag/commit/c2f818929da7534529658f79a09300c4d251908b"><code>c2f8189</code></a> Bump lodash from 4.17.4 to 4.17.19 (<a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/issues/310">#310</a>)</li> <li><a href="https://github.com/apollographql/graphql-tag/commit/a73bc250d8f3fdd1304c77d1102138171a29b266"><code>a73bc25</code></a> Version bump, changelog update, prep for publish</li> <li><a href="https://github.com/apollographql/graphql-tag/commit/7b66f0501ff05f1ea6a01385f846f09df60b8ab4"><code>7b66f05</code></a> fix(deps): update to graphql@15 (<a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/issues/299">#299</a>)</li> <li><a href="https://github.com/apollographql/graphql-tag/commit/9b719a77530b81acc48be238e2dee3cf28e65beb"><code>9b719a7</code></a> Cleaning up the README a bit (<a href="https://github-redirect.dependabot.com/apollographql/graphql-tag/issues/246">#246</a>)</li> <li>See full diff in <a href="https://github.com/apollographql/graphql-tag/compare/v2.10.3...v2.11.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+7 -2

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump graphql from 14.6.0 to 14.7.0 in /client client

Bumps graphql from 14.6.0 to 14.7.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/graphql/graphql-js/releases">graphql's releases</a>.</em></p> <blockquote> <h2>v14.7.0 (2020-07-06)</h2> <h4>New Feature 🚀</h4> <ul> <li>Backport <a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2688">#2688</a> Added new 'FormattedExecutionResult' type (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> </ul> <h4>Committers: 1</h4> <ul> <li>Ivan Goncharov(<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/graphql/graphql-js/commit/6bb002d74d32067540c0dc8401c977520fa1ed20"><code>6bb002d</code></a> v14.7.0</li> <li><a href="https://github.com/graphql/graphql-js/commit/0060551b1f0a38aed70ce66d39e7d02bf03b66e2"><code>0060551</code></a> Added new 'FormattedExecutionResult' type</li> <li>See full diff in <a href="https://github.com/graphql/graphql-js/compare/v14.6.0...v14.7.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump ts-jest from 25.2.1 to 25.5.1 in /server server

Bumps ts-jest from 25.2.1 to 25.5.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kulshekhar/ts-jest/blob/master/CHANGELOG.md">ts-jest's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/kulshekhar/ts-jest/compare/v25.5.0...v25.5.1">25.5.1</a> (2020-05-09)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>compiler:</strong> don't resolve files from build folder for <code>projectReferences</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1614">#1614</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/74b92d3">74b92d3</a>)</li> <li><strong>config:</strong> don't set <code>include</code> value of <code>tsconfig</code> to empty array (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1606">#1606</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/8a29aaa">8a29aaa</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h1><a href="https://github.com/kulshekhar/ts-jest/compare/v25.4.0...v25.5.0">25.5.0</a> (2020-05-05)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>compiler:</strong> make <code>projectReferences</code> work with <code>isolatedModules: false</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1541">#1541</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/3e8efbe">3e8efbe</a>)</li> <li><strong>compiler:</strong> allow using <code>files</code> provided by <code>tsconfig</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1562">#1562</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/a9f02bd">a9f02bd</a>)</li> <li><strong>config:</strong> verify <code>testMatchPatterns</code> contain RegExp instance or string type values (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1569">#1569</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/7f85bab">7f85bab</a>)</li> </ul> <h3>Features</h3> <ul> <li><strong>config:</strong> add <code>tsconfig</code> alias to <code>tsConfig</code> option (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1565">#1565</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/c10eb6d">c10eb6d</a>)</li> <li><strong>config:</strong> define 'ts-jest' on <code>ConfigGlobals</code> interface of <code>@jest/types</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1592">#1592</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/4526392">4526392</a>)</li> </ul> <h3>Performance Improvements</h3> <ul> <li><strong>compiler:</strong> don’t write compile output to file system but rely on jest cache (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1561">#1561</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/d11a4ea">d11a4ea</a>)</li> <li><strong>compiler:</strong> improve performance for <code>isolatedModules: false</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1558">#1558</a>) (<a href="https://github.com/kulshekhar/ts-jest/commit/85c09e3">85c09e3</a>)</li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li>Any custom typing files or files which are needed to be compiled and intended to use with <code>jest</code> need to be defined in <code>files</code> option of <code>tsconfig</code>.</li> </ul> <p>For example:</p> <pre><code>// tsconfig.json { // ...other configs "files": [ "my-custom-typings.d.ts", "my-global-module.ts" ] } </code></pre> <ul> <li><strong>compiler:</strong> <code>incremental</code> and <code>compilerHost</code> options are no longer available. Please remove it from your <code>ts-jest</code> config.</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kulshekhar/ts-jest/commit/4d4850e638d4b6354a4f0aeb2521a7c05548aa04"><code>4d4850e</code></a> chore(release): 25.5.1 (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1611">#1611</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/74b92d3ad5d6bd1dcd01a49e7dec2c22517bbcb2"><code>74b92d3</code></a> fix(compiler): don't resolve files from build folder for <code>projectReferences</code> ...</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/8a29aaa3b1f30cd51cd2507f236b314a966baa29"><code>8a29aaa</code></a> fix(config): don't set include to empty array (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1606">#1606</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/5cdbabbff9d5db032368a594cbe9c1481554580e"><code>5cdbabb</code></a> chore(release): prepare 25.5.0 release</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/45502b692da2d6c6d4a720a2a51f3aad23419b91"><code>45502b6</code></a> chore(release): update CHANGELOG and version for 25.5.0</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/b032d5d85a99718f5eb78806ad00ace45df4d9e1"><code>b032d5d</code></a> build(deps-dev): organize dependencies' versions consistently (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1596">#1596</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/452639242d7f59502bda7aa94b81735f9c9ad203"><code>4526392</code></a> feat(config): define 'ts-jest' on <code>ConfigGlobals</code> interface of <code>@jest/types</code> ...</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/526265da0737b3a7e7cfcb6abd69197ea34c49fa"><code>526265d</code></a> chore: migrate tslint to eslint (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1590">#1590</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/720c8546578bdbb3d6525581fbeffce82016dba5"><code>720c854</code></a> chore: remove unused variable <code>input</code> in <code>readTsConfig</code> of <code>ConfigSet</code> (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1584">#1584</a>)</li> <li><a href="https://github.com/kulshekhar/ts-jest/commit/de59e3f1f26ff37869d33ec74f104b5ea31a5c1b"><code>de59e3f</code></a> test: correct unit tests and e2e tests for language service (<a href="https://github-redirect.dependabot.com/kulshekhar/ts-jest/issues/1579">#1579</a>)</li> <li>Additional commits viewable in <a href="https://github.com/kulshekhar/ts-jest/compare/25.2.1...v25.5.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~tsjest">tsjest</a>, a new releaser for ts-jest since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+20 -28

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump graphql from 15.1.0 to 15.3.0 in /server server

Bumps graphql from 15.1.0 to 15.3.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/graphql/graphql-js/releases">graphql's releases</a>.</em></p> <blockquote> <h2>v15.3.0 (2020-07-05)</h2> <h4>New Feature 🚀</h4> <ul> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2688">#2688</a> Added new 'FormattedExecutionResult' type (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> </ul> <h4>Docs 📝</h4> <!-- raw HTML omitted --> <ul> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2680">#2680</a> Docs: some language cleanup in readme and API reference (<a href="https://github.com/rmcteggart-r7">@rmcteggart-r7</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2681">#2681</a> Sync JSDoc comments with docs changes (<a href="https://github.com/danielrearden">@danielrearden</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2687">#2687</a> Make documentation for 'getFieldDef' more accurate (<a href="https://github.com/Cito">@Cito</a>)</li> </ul> <!-- raw HTML omitted --> <h4>Polish 💅</h4> <!-- raw HTML omitted --> <ul> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2679">#2679</a> mapAsyncIterator-test: replace 'invariant' with expect chains (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2686">#2686</a> ESLint: remove 'ts-lint' commits (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> </ul> <!-- raw HTML omitted --> <h4>Internal 🏠</h4> <ul> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2685">#2685</a> workflows: check commit for ignored files (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> </ul> <h4>Dependency 📦</h4> <!-- raw HTML omitted --> <ul> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2678">#2678</a> Update deps (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2683">#2683</a> Update deps (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> </ul> <!-- raw HTML omitted --> <h4>Committers: 4</h4> <ul> <li>Christoph Zwerschke(<a href="https://github.com/Cito">@Cito</a>)</li> <li>Daniel Rearden(<a href="https://github.com/danielrearden">@danielrearden</a>)</li> <li>Ivan Goncharov(<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> <li><a href="https://github.com/rmcteggart-r7">@rmcteggart-r7</a></li> </ul> <h2>v15.2.0 (2020-06-29)</h2> <h4>New Feature 🚀</h4> <ul> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2465">#2465</a> Change type of extensions from anonymous Record to named interfaces (<a href="https://github.com/benjie">@benjie</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2600">#2600</a> Add NoSchemaIntrospectionCustomRule (<a href="https://github.com/danielrearden">@danielrearden</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2605">#2605</a> Add NoDeprecatedCustomRule and deprecate findDeprecatedUsages (<a href="https://github.com/danielrearden">@danielrearden</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2644">#2644</a> ExecutionResult: add 'extensions' field (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2669">#2669</a> Add parentType to path to avoid path ambiguity (<a href="https://github.com/benjie">@benjie</a>)</li> <li><a href="https://github-redirect.dependabot.com/graphql/graphql-js/pull/2671">#2671</a> Added 'executeSync': promise free version of <code>execute</code>. (<a href="https://github.com/IvanGoncharov">@IvanGoncharov</a>)</li> </ul> <h4>Bug Fix 🐞</h4> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/graphql/graphql-js/commit/b7ec154cd1df7083dd0672e436a683b781de7178"><code>b7ec154</code></a> 15.3.0</li> <li><a href="https://github.com/graphql/graphql-js/commit/0c660536c5c9f32ef275ef56fc1e93c5b7420c95"><code>0c66053</code></a> Added new 'FormattedExecutionResult' type (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2688">#2688</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/fb042fcee9b3f9c4ae13ba4d8db5b7bd977524c1"><code>fb042fc</code></a> Make documentation for 'getFieldDef' more accurate (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2687">#2687</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/c8b06142cb104c6c9da79a4d11b3309e99496b67"><code>c8b0614</code></a> ESLint: remove 'ts-lint' commits (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2686">#2686</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/fe94f5630767c7ee9cdc0369d064cdf9c0ae0703"><code>fe94f56</code></a> workflows: check commit for ignored files (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2685">#2685</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/b5c004634c7fcbbe0b74d8c530939c1bbd3efcc0"><code>b5c0046</code></a> Update deps (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2683">#2683</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/38b4f9ebe0076325277689b851d92d4585cb49e1"><code>38b4f9e</code></a> Sync JSDoc comments with docs changes (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2681">#2681</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/5aba9c9e946e221b4a0a05d69578756a9869928c"><code>5aba9c9</code></a> mapAsyncIterator-test: replace 'invariant' with expect chains (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2679">#2679</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/11505d72b4332f936f2feea1742bc05441e692cf"><code>11505d7</code></a> Docs: some language cleanup in readme and API reference (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2680">#2680</a>)</li> <li><a href="https://github.com/graphql/graphql-js/commit/1e1d75e9b7914abb66d91bfa0ae1de8612674628"><code>1e1d75e</code></a> Update deps (<a href="https://github-redirect.dependabot.com/graphql/graphql-js/issues/2678">#2678</a>)</li> <li>Additional commits viewable in <a href="https://github.com/graphql/graphql-js/compare/v15.1.0...v15.3.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump @graphql-codegen/typescript from 1.13.2 to 1.16.0 in /client client

Bumps @graphql-codegen/typescript from 1.13.2 to 1.16.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dotansimha/graphql-code-generator/releases">@graphql-codegen/typescript's releases</a>.</em></p> <blockquote> <h2>v1.16.0</h2> <blockquote> <p>Come talk to us directly on our <a href="http://bit.ly/guild-chat">Discord channel</a> Contact us here: <a href="https://the-guild.dev/">the-guild.dev</a></p> </blockquote> <h2><code>core</code> / <code>cli</code></h2> <ul> <li>Update typescript-eslint monorepo to v3.5.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4304">#4304</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/js-yaml to v3.12.5 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4288">#4288</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency graphql to v15.2.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4210">#4210</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency flow-parser to v0.128.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4298">#4298</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Fix DeclarationBlock to omit the semicolon for functions (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4294">#4294</a>) <a href="https://github.com/Zhouzi">@Zhouzi</a></li> <li>Update dependency @oclif/command to v1.7.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4302">#4302</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency nock to v13 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4300">#4300</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency flow-bin to v0.128.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4299">#4299</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency eslint-plugin-import to v2.22.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4297">#4297</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update graphql-tools monorepo to v6.0.11 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4293">#4293</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>chore(deps): update dependency @types/jest to v26.0.3 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4285">#4285</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>chore(deps): update dependency @types/lodash to v4.14.157 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4286">#4286</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @vue/composition-api to v0.6.7 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4283">#4283</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/react to v16.9.41 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4282">#4282</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/react to v16.9.40 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4280">#4280</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/jest to v26.0.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4279">#4279</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/react to v16.9.39 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4277">#4277</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency jest to v26.1.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4276">#4276</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency eslint to v7.3.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4274">#4274</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update typescript-eslint monorepo to v3.4.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4271">#4271</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency jest-junit to v11.0.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4270">#4270</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency ts-jest to v26.1.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4267">#4267</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @docusaurus/core to v2.0.0-alpha.58 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4254">#4254</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @docusaurus/preset-classic to v2.0.0-alpha.58 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4255">#4255</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/lodash to v4.14.156 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4266">#4266</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @vue/composition-api to v0.6.6 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4265">#4265</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency jest-junit to v11 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4262">#4262</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency eslint to v7.3.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4261">#4261</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @vue/composition-api to v0.6.5 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4259">#4259</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency moment to v2.27.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4257">#4257</a>) <a href="https://github.com/renovate">@renovate</a></li> </ul> <h2><code>c-sharp</code> / <code>c-sharp-operations</code></h2> <ul> <li>Added nested array support (eg [[[String]]]) (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Dropped assigning default values (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Mark fields with default value optional, even when it had a ! (see <a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4273">#4273</a>) (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Generate C# interface from gql interface (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>If request doesn't have input args, don't include the variable arg in Request (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Solved circular dependency issue (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>C sharp operation request and summary (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4284">#4284</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>C sharp operations improvements (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4264">#4264</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>C sharp reserved keywords (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4250">#4250</a>) <a href="https://github.com/cklam2">@cklam2</a></li> </ul> <h2><code>typescript-resolvers</code></h2> <ul> <li>Allow to customize the Resolvers suffix for each type resolvers type (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4292">#4292</a>) <a href="https://github.com/dotansimha">@dotansimha</a></li> <li>Allow to customize the root exported Resolvers type name (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4292">#4292</a>) <a href="https://github.com/dotansimha">@dotansimha</a></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/e93412bb7620cd6f60058d3f3ec7fab0a6bb8267"><code>e93412b</code></a> v1.15.4</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/615fff1337abb423715b0578a957f0954050c25c"><code>615fff1</code></a> fix(typescript): duplicate Exact definition when used with presets (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4235">#4235</a>)</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/f4bc3ff602f51384c3bd2782d4f31d2a323c3b20"><code>f4bc3ff</code></a> v1.15.3</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/7098076abd020d9605d9516b4ef582ec76388ceb"><code>7098076</code></a> v1.15.2</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/6163b1434b01c2e26bd63819e8e210e8dec99c15"><code>6163b14</code></a> Adding option for numeric typescript enums (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4158">#4158</a>)</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/54fa48755d77e498f8c0118c575bae14b9c5b1e9"><code>54fa487</code></a> v1.15.1</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/41e93585d3b23e2df1591ddbd6df398c25088934"><code>41e9358</code></a> v1.15.0</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/80a1e6726c42e5a74d2717befb0834d94b515df4"><code>80a1e67</code></a> Introduce JSON Schema validations and auto-complete for <code>codegen.yml</code> (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4072">#4072</a>)</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/2ff8e755efc6a16fca2e0220a5a7653927d0a41e"><code>2ff8e75</code></a> v1.14.0</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/5abbc86df1cb0237e25f5b87a9306373dea616b6"><code>5abbc86</code></a> Update dependency tslib to v2 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/typescript/issues/4017">#4017</a>)</li> <li>Additional commits viewable in <a href="https://github.com/dotansimha/graphql-code-generator/commits/v1.16.0/packages/plugins/typescript/typescript">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+149 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump next-offline from 5.0.0 to 5.0.2 in /client client

Bumps next-offline from 5.0.0 to 5.0.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hanford/next-offline/blob/master/CHANGELOG.md">next-offline's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/hanford/next-offline/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump @apollo/react-hooks from 3.1.4 to 3.1.5 in /client client

Bumps @apollo/react-hooks from 3.1.4 to 3.1.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apollographql/react-apollo/blob/@apollo/react-hooks@3.1.5/Changelog.md">@apollo/react-hooks's changelog</a>.</em></p> <blockquote> <h2>3.1.5 (2020-04-14)</h2> <ul> <li>Another pass at preventing new data re-render attempts during an existing render (the solution published with React Apollo 3.1.4 wasn't as all encompassing as it needs to be). This helps avoid React 16.13.0's "Cannot update a component from inside the function body of a different component" warning (<a href="https://github-redirect.dependabot.com/facebook/react/pull/17099">facebook/react#17099</a>). <!-- raw HTML omitted --> <a href="https://github.com/hwillson">@hwillson</a> in <a href="https://github-redirect.dependabot.com/apollographql/react-apollo/pull/3930">#3930</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apollographql/react-apollo/commit/4bd40a94b18102b1eb42864d2e59d52ced0303f5"><code>4bd40a9</code></a> Publish</li> <li><a href="https://github.com/apollographql/react-apollo/commit/7f2a77b89fcabf60c051ef5748591d7d4ace2169"><code>7f2a77b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/apollographql/react-apollo/issues/3930">#3930</a> from apollographql/issue-3863-again</li> <li><a href="https://github.com/apollographql/react-apollo/commit/63f8a198db6f01e236ed5b1ece10a14060b4f892"><code>63f8a19</code></a> Avoid React 16.13.0 update during render warning</li> <li>See full diff in <a href="https://github.com/apollographql/react-apollo/compare/@apollo/react-hooks@3.1.4...@apollo/react-hooks@3.1.5">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps-dev): bump @graphql-codegen/typescript-document-nodes from 1.13.2 to 1.16.0 in /client client

Bumps @graphql-codegen/typescript-document-nodes from 1.13.2 to 1.16.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dotansimha/graphql-code-generator/releases">@graphql-codegen/typescript-document-nodes's releases</a>.</em></p> <blockquote> <h2>v1.16.0</h2> <blockquote> <p>Come talk to us directly on our <a href="http://bit.ly/guild-chat">Discord channel</a> Contact us here: <a href="https://the-guild.dev/">the-guild.dev</a></p> </blockquote> <h2><code>core</code> / <code>cli</code></h2> <ul> <li>Update typescript-eslint monorepo to v3.5.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4304">#4304</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/js-yaml to v3.12.5 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4288">#4288</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency graphql to v15.2.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4210">#4210</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency flow-parser to v0.128.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4298">#4298</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Fix DeclarationBlock to omit the semicolon for functions (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4294">#4294</a>) <a href="https://github.com/Zhouzi">@Zhouzi</a></li> <li>Update dependency @oclif/command to v1.7.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4302">#4302</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency nock to v13 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4300">#4300</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency flow-bin to v0.128.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4299">#4299</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency eslint-plugin-import to v2.22.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4297">#4297</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update graphql-tools monorepo to v6.0.11 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4293">#4293</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>chore(deps): update dependency @types/jest to v26.0.3 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4285">#4285</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>chore(deps): update dependency @types/lodash to v4.14.157 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4286">#4286</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @vue/composition-api to v0.6.7 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4283">#4283</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/react to v16.9.41 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4282">#4282</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/react to v16.9.40 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4280">#4280</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/jest to v26.0.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4279">#4279</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/react to v16.9.39 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4277">#4277</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency jest to v26.1.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4276">#4276</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency eslint to v7.3.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4274">#4274</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update typescript-eslint monorepo to v3.4.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4271">#4271</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency jest-junit to v11.0.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4270">#4270</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency ts-jest to v26.1.1 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4267">#4267</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @docusaurus/core to v2.0.0-alpha.58 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4254">#4254</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @docusaurus/preset-classic to v2.0.0-alpha.58 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4255">#4255</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @types/lodash to v4.14.156 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4266">#4266</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @vue/composition-api to v0.6.6 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4265">#4265</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency jest-junit to v11 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4262">#4262</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency eslint to v7.3.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4261">#4261</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency @vue/composition-api to v0.6.5 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4259">#4259</a>) <a href="https://github.com/renovate">@renovate</a></li> <li>Update dependency moment to v2.27.0 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4257">#4257</a>) <a href="https://github.com/renovate">@renovate</a></li> </ul> <h2><code>c-sharp</code> / <code>c-sharp-operations</code></h2> <ul> <li>Added nested array support (eg [[[String]]]) (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Dropped assigning default values (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Mark fields with default value optional, even when it had a ! (see <a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4273">#4273</a>) (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Generate C# interface from gql interface (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>If request doesn't have input args, don't include the variable arg in Request (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>Solved circular dependency issue (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4296">#4296</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>C sharp operation request and summary (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4284">#4284</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>C sharp operations improvements (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4264">#4264</a>) <a href="https://github.com/cklam2">@cklam2</a></li> <li>C sharp reserved keywords (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4250">#4250</a>) <a href="https://github.com/cklam2">@cklam2</a></li> </ul> <h2><code>typescript-resolvers</code></h2> <ul> <li>Allow to customize the Resolvers suffix for each type resolvers type (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4292">#4292</a>) <a href="https://github.com/dotansimha">@dotansimha</a></li> <li>Allow to customize the root exported Resolvers type name (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4292">#4292</a>) <a href="https://github.com/dotansimha">@dotansimha</a></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/e93412bb7620cd6f60058d3f3ec7fab0a6bb8267"><code>e93412b</code></a> v1.15.4</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/f4bc3ff602f51384c3bd2782d4f31d2a323c3b20"><code>f4bc3ff</code></a> v1.15.3</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/7098076abd020d9605d9516b4ef582ec76388ceb"><code>7098076</code></a> v1.15.2</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/54fa48755d77e498f8c0118c575bae14b9c5b1e9"><code>54fa487</code></a> v1.15.1</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/41e93585d3b23e2df1591ddbd6df398c25088934"><code>41e9358</code></a> v1.15.0</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/80a1e6726c42e5a74d2717befb0834d94b515df4"><code>80a1e67</code></a> Introduce JSON Schema validations and auto-complete for <code>codegen.yml</code> (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4072">#4072</a>)</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/2ff8e755efc6a16fca2e0220a5a7653927d0a41e"><code>2ff8e75</code></a> v1.14.0</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/5abbc86df1cb0237e25f5b87a9306373dea616b6"><code>5abbc86</code></a> Update dependency tslib to v2 (<a href="https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/plugins/typescript/document-nodes/issues/4017">#4017</a>)</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/cffc6c52f866d66bebf1c58eda776d564061c3d4"><code>cffc6c5</code></a> v1.13.5</li> <li><a href="https://github.com/dotansimha/graphql-code-generator/commit/a6ba7ff6815eba7b8e1e313abf320707d55e339d"><code>a6ba7ff</code></a> v1.13.4</li> <li>Additional commits viewable in <a href="https://github.com/dotansimha/graphql-code-generator/commits/v1.16.0/packages/plugins/typescript/document-nodes">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+145 -10

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump node from 12-alpine to 14-alpine in /client client docker

Bumps node from 12-alpine to 14-alpine.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in a month

PR closed tomanagle/NextJS-NestJS-GraphQL-Starter

Reviewers
build(deps): bump node from 12-alpine to 14-alpine in /server docker server

Bumps node from 12-alpine to 14-alpine.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in a month

push eventtomanagle/NextJS-NestJS-GraphQL-Starter

dependabot-preview[bot]

commit sha e955cb2af0d84c5990a60f5ea64043abdc0b72cb

build(deps-dev): bump @types/jest from 25.1.4 to 26.0.14 in /server Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 25.1.4 to 26.0.14. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Tom Nagle

commit sha e27ffd041442b6de3343a95a1ac22d165923338d

Merge pull request #41 from tomanagle/dependabot/npm_and_yarn/server/master/types/jest-26.0.14 build(deps-dev): bump @types/jest from 25.1.4 to 26.0.14 in /server

view details

push time in a month

more