Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump axios, @h5web/app and @h5web/h5wasm in /previewers/react-source/hdf5-previewer #11

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump axios, @h5web/app and @h5web/h5wasm in /previewers/react-source/hdf5-previewer #11

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 12, 2024

Bumps axios to 1.6.0 and updates ancestor dependencies axios, @h5web/app and @h5web/h5wasm. These dependencies need to be updated together.

Updates axios from 1.3.4 to 1.6.0

Release notes

Sourced from axios's releases.

Release v1.6.0

Release notes:

Bug Fixes

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

Contributors to this release

Release v1.5.1

Release notes:

Bug Fixes

  • adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)
  • formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)
  • headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)
  • types: removed duplicated code (9e62056)

Contributors to this release

Release v1.5.0

Release notes:

Bug Fixes

  • adapter: make adapter loading error more clear by using platform-specific adapters explicitly (#5837) (9a414bb)
  • dns: fixed cacheable-lookup integration; (#5836) (b3e327d)
  • headers: added support for setting header names that overlap with class methods; (#5831) (d8b4ca0)
  • headers: fixed common Content-Type header merging; (#5832) (8fda276)

Features

... (truncated)

Changelog

Sourced from axios's changelog.

1.6.0 (2023-10-26)

Bug Fixes

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

Contributors to this release

1.5.1 (2023-09-26)

Bug Fixes

  • adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)
  • formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)
  • headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)
  • types: removed duplicated code (9e62056)

Contributors to this release

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

1.5.0 (2023-08-26)

... (truncated)

Commits

Updates @h5web/app from 7.1.0 to 12.0.1

Release notes

Sourced from @​h5web/app's releases.

H5Web 12

Full Changelog: silx-kit/h5web@v11.2.0...v12.0.0

@​h5web/app

  • < NX Line, NX Heatmap > Support complex auxiliary signals #1676 #1680
  • < Line > Replace Autoscale toggle in toolbar with domain widget to allow customising the y axis domain #1665
  • < Compound > Visualize compound scalar datasets #1674
  • < Raw > Add toggle to fit raw JPEG/PNG images to viewport (on by default) #1633
  • [H5GroveProvider, HsdsProvider] Add prop resetKeys to reset fetch cache when file content changes #1673
  • 🐛 < Raw > Disable dark mode on raw JPEG/PNG images #1628
  • 🐛 Fix alignment of toolbar controls in overflow menu #1647
  • 🐛 Don't capitalize attribute names in metadata viewer #1671
  • ⚡ Reduce delay when slicing through a dimension whenever the target slice is already in the cache #1634 #1667
  • Make variable-length string types explicit in metadata viewer #1620
  • Allow inspecting HDF5 string padding metadata with h5grove (>=2.2.0), h5wasm and HSDS providers #1659
  • Errors that occur when retrieving dataset values are no longer stored in the provider's cache, which allows for retrying #1661
  • Throw error when encountering axes or auxiliary_signals attributes with dataset paths #1671

@​h5web/lib

⚠️ Breaking changes

  • [Btn] Prop onClick now receives the MouseEvent as first parameter #1653
    • 👉 Please make sure you don't pass a state setter as is, like onClick={toggleOpen}; if you do, refactor with an arrow function instead: onClick={() => toggleOpen()}
  • [Selector] Remove prop optionComponent #1652
    • 👉 Use new renderOption prop instead, which accepts an inline render function instead of a component
  • Remove component ColorMapOption #1652
    • 👉 Use new ColorMapGradient component instead, which renders only the horizontal color map gradient preview
  • Remove deprecated components GridToggler and FlipYAxisToggler #1653
    • 👉 Use ToggleBtn directly instead
  • [ExportMenu] Remove prop align #1653
    • 👉 The popup is now smart enough to remain within the bounds of the viewport

Other changes

  • ⚙️ Remove react-aria-menubutton dependency to get rid of peer dependency warning
    • 👉 You may now revert any package manager configuration that you had made to silence the warning
  • 🐛 [Line] Fix subtle glitch between two points with finite and infinite/NaN coordinates #1632
  • [VisCanvas] Tweak camera frustrum to provide wider z range, and export Z_MIN and Z_MAX constants #1632
  • [SelectionTool] Start selection on pointerdown instead of pointermove #1625
  • [Btn] Add prop withArrow to display a drop-down arrow #1653
  • [Btn] Forward ref and any valid HTML attributes to the button element (HTMLAttributes<HTMLButtonElement>) #1653
  • New ComplexVisTypeSelector toolbar component and ComplexVisType enum #1652

@​h5web/h5wasm

  • ⚠️ Breaking change: Rename H5WasmProvider to H5WasmBufferProvider #1664
  • [H5WasmLocalFileProvider, H5WasmBufferProvider] Load compression plugins for datasets with compressed virtual sources within the same file #1662
  • [H5WasmLocalFileProvider] Add prop resetKeys to reset fetch cache when file content changes #1673

... (truncated)

Commits
  • 3e13c85 12.0.1
  • e02d178 Fix formatting in READMEs
  • 0003baf Remove CSP policy
  • e4d26ea Allow inline script/styles
  • f653f5f Allow self in CSP policy
  • 6545796 Merge branch 'main' of github.com:silx-kit/h5web into main
  • be5400e Add CSP policy for demo on Netlify
  • 9094618 Remove reference to polyfill.io
  • 8dcf23d Remove reference to polyfill.io
  • e37e2a3 Remove compromised polyfill.io script
  • Additional commits viewable in compare view

Updates @h5web/h5wasm from 7.1.0 to 12.0.1

Release notes

Sourced from @​h5web/h5wasm's releases.

H5Web 12

Full Changelog: silx-kit/h5web@v11.2.0...v12.0.0

@​h5web/app

  • < NX Line, NX Heatmap > Support complex auxiliary signals #1676 #1680
  • < Line > Replace Autoscale toggle in toolbar with domain widget to allow customising the y axis domain #1665
  • < Compound > Visualize compound scalar datasets #1674
  • < Raw > Add toggle to fit raw JPEG/PNG images to viewport (on by default) #1633
  • [H5GroveProvider, HsdsProvider] Add prop resetKeys to reset fetch cache when file content changes #1673
  • 🐛 < Raw > Disable dark mode on raw JPEG/PNG images #1628
  • 🐛 Fix alignment of toolbar controls in overflow menu #1647
  • 🐛 Don't capitalize attribute names in metadata viewer #1671
  • ⚡ Reduce delay when slicing through a dimension whenever the target slice is already in the cache #1634 #1667
  • Make variable-length string types explicit in metadata viewer #1620
  • Allow inspecting HDF5 string padding metadata with h5grove (>=2.2.0), h5wasm and HSDS providers #1659
  • Errors that occur when retrieving dataset values are no longer stored in the provider's cache, which allows for retrying #1661
  • Throw error when encountering axes or auxiliary_signals attributes with dataset paths #1671

@​h5web/lib

⚠️ Breaking changes

  • [Btn] Prop onClick now receives the MouseEvent as first parameter #1653
    • 👉 Please make sure you don't pass a state setter as is, like onClick={toggleOpen}; if you do, refactor with an arrow function instead: onClick={() => toggleOpen()}
  • [Selector] Remove prop optionComponent #1652
    • 👉 Use new renderOption prop instead, which accepts an inline render function instead of a component
  • Remove component ColorMapOption #1652
    • 👉 Use new ColorMapGradient component instead, which renders only the horizontal color map gradient preview
  • Remove deprecated components GridToggler and FlipYAxisToggler #1653
    • 👉 Use ToggleBtn directly instead
  • [ExportMenu] Remove prop align #1653
    • 👉 The popup is now smart enough to remain within the bounds of the viewport

Other changes

  • ⚙️ Remove react-aria-menubutton dependency to get rid of peer dependency warning
    • 👉 You may now revert any package manager configuration that you had made to silence the warning
  • 🐛 [Line] Fix subtle glitch between two points with finite and infinite/NaN coordinates #1632
  • [VisCanvas] Tweak camera frustrum to provide wider z range, and export Z_MIN and Z_MAX constants #1632
  • [SelectionTool] Start selection on pointerdown instead of pointermove #1625
  • [Btn] Add prop withArrow to display a drop-down arrow #1653
  • [Btn] Forward ref and any valid HTML attributes to the button element (HTMLAttributes<HTMLButtonElement>) #1653
  • New ComplexVisTypeSelector toolbar component and ComplexVisType enum #1652

@​h5web/h5wasm

  • ⚠️ Breaking change: Rename H5WasmProvider to H5WasmBufferProvider #1664
  • [H5WasmLocalFileProvider, H5WasmBufferProvider] Load compression plugins for datasets with compressed virtual sources within the same file #1662
  • [H5WasmLocalFileProvider] Add prop resetKeys to reset fetch cache when file content changes #1673

... (truncated)

Commits
  • 3e13c85 12.0.1
  • e02d178 Fix formatting in READMEs
  • 0003baf Remove CSP policy
  • e4d26ea Allow inline script/styles
  • f653f5f Allow self in CSP policy
  • 6545796 Merge branch 'main' of github.com:silx-kit/h5web into main
  • be5400e Add CSP policy for demo on Netlify
  • 9094618 Remove reference to polyfill.io
  • 8dcf23d Remove reference to polyfill.io
  • e37e2a3 Remove compromised polyfill.io script
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump axios, @h5web/app and @h5web/h5wasm
ef57ba5 
Bumps [axios](https://github.com/axios/axios) to 1.6.0 and updates ancestor dependencies [axios](https://github.com/axios/axios), [@h5web/app](https://github.com/silx-kit/h5web) and [@h5web/h5wasm](https://github.com/silx-kit/h5web). These dependencies need to be updated together.


Updates `axios` from 1.3.4 to 1.6.0
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.3.4...v1.6.0)

Updates `@h5web/app` from 7.1.0 to 12.0.1
- [Release notes](https://github.com/silx-kit/h5web/releases)
- [Commits](silx-kit/h5web@v7.1.0...v12.0.1)

Updates `@h5web/h5wasm` from 7.1.0 to 12.0.1
- [Release notes](https://github.com/silx-kit/h5web/releases)
- [Commits](silx-kit/h5web@v7.1.0...v12.0.1)

---
updated-dependencies:
- dependency-name: axios
  dependency-type: indirect
- dependency-name: "@h5web/app"
  dependency-type: direct:production
- dependency-name: "@h5web/h5wasm"
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants