chore(deps): [security] bump merge from 1.2.0 to 1.2.1 #1923
Conversation
![dependabot-preview[bot]](https://avatars.githubusercontent.com/in/2141?s=60&v=4){kind=small}
dependabot-preview
bot
added
dependencies
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
from
e652276
to
e591471
Compare
|
Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting |
3 similar comments
|
Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting |
|
Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting |
|
Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting |
Littly
force-pushed
the
master
branch
2 times, most recently
from
23c5d8e
to
689ecc9
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
4 times, most recently
from
857836c
to
4df8902
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
2 times, most recently
from
5e0d684
to
ee279c3
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
from
ee279c3
to
c7ffb72
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
2 times, most recently
from
457e227
to
28de8a2
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
from
28de8a2
to
b08e9db
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
from
b08e9db
to
26da21f
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
from
26da21f
to
aa9faaf
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
from
aa9faaf
to
f67c0da
Compare
Bumps [merge](https://github.com/yeikos/js.merge) from 1.2.0 to 1.2.1. **This update includes security fixes.** - [Release notes](https://github.com/yeikos/js.merge/releases) - [Commits](swordev/merge@v1.2.0...v1.2.1) Signed-off-by: dependabot[bot] <[email protected]>
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/merge-1.2.1
branch
from
f67c0da
to
02286ea
Compare
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
Bumps merge from 1.2.0 to 1.2.1. This update includes security fixes.
Vulnerabilities fixed
Sourced from The npm Advisory Database.
Sourced from The GitHub Security Advisory Database.
Commits
b31e67flink broken6ad6035Fix prototype pollutionDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.
You can always request more updates by clicking
Bump nowin your Dependabot dashboard.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge@dependabot reopenwill reopen this PR if it is closed@dependabot ignore this [patch|minor|major] versionwill close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labelswill set the current labels as the default for future PRs for this repo and language@dependabot use these reviewerswill set the current reviewers as the default for future PRs for this repo and language@dependabot use these assigneeswill set the current assignees as the default for future PRs for this repo and language@dependabot use this milestonewill set the current milestone as the default for future PRs for this repo and language@dependabot badge mewill comment on this PR with code to add a "Dependabot enabled" badge to your readmeAdditionally, you can set the following in your Dependabot dashboard:
Finally, you can contact us by mentioning @dependabot.