Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump negotiator, errorhandler, express and st #6

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump negotiator, errorhandler, express and st #6

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Jul 21, 2023

Bumps negotiator to 0.6.3 and updates ancestor dependencies negotiator, errorhandler, express and st. These dependencies need to be updated together.

Updates negotiator from 0.2.8 to 0.6.3

Release notes

Sourced from negotiator's releases.

0.6.3

  • Revert "Lazy-load modules from main entry point"

0.6.2

  • Fix sorting charset, encoding, and language with extra parameters

0.6.1

  • perf: improve Accept parsing speed
  • perf: improve Accept-Charset parsing speed
  • perf: improve Accept-Encoding parsing speed
  • perf: improve Accept-Language parsing speed

0.6.0

  • Fix including type extensions in parameters in Accept parsing
  • Fix parsing Accept parameters with quoted equals
  • Fix parsing Accept parameters with quoted semicolons
  • Lazy-load modules from main entry point
  • perf: delay type concatenation until needed
  • perf: enable strict mode
  • perf: hoist regular expressions
  • perf: remove closures getting spec properties
  • perf: remove a closure from media type parsing
  • perf: remove property delete from media type parsing

0.5.3

  • Fix media type parameter matching to be case-insensitive

0.5.2

  • Fix comparing media types with quoted values
  • Fix splitting media types with quoted commas

0.5.1

  • Fix preference sorting to be stable for long acceptable lists

0.5.0

  • Fix list return order when large accepted list
  • Fix missing identity encoding when q=0 exists
  • Remove dynamic building of Negotiator class

0.4.9

  • Fix error when media type has invalid parameter

0.4.8

  • Fix all negotiations to be case-insensitive
  • Stable sort preferences of same quality according to client order
  • Support Node.js 0.6

0.4.7

No release notes provided.

... (truncated)

Changelog

Sourced from negotiator's changelog.

0.6.3 / 2022-01-22

  • Revert "Lazy-load modules from main entry point"

0.6.2 / 2019-04-29

  • Fix sorting charset, encoding, and language with extra parameters

0.6.1 / 2016-05-02

  • perf: improve Accept parsing speed
  • perf: improve Accept-Charset parsing speed
  • perf: improve Accept-Encoding parsing speed
  • perf: improve Accept-Language parsing speed

0.6.0 / 2015-09-29

  • Fix including type extensions in parameters in Accept parsing
  • Fix parsing Accept parameters with quoted equals
  • Fix parsing Accept parameters with quoted semicolons
  • Lazy-load modules from main entry point
  • perf: delay type concatenation until needed
  • perf: enable strict mode
  • perf: hoist regular expressions
  • perf: remove closures getting spec properties
  • perf: remove a closure from media type parsing
  • perf: remove property delete from media type parsing

0.5.3 / 2015-05-10

  • Fix media type parameter matching to be case-insensitive

0.5.2 / 2015-05-06

  • Fix comparing media types with quoted values
  • Fix splitting media types with quoted commas

0.5.1 / 2015-02-14

  • Fix preference sorting to be stable for long acceptable lists

0.5.0 / 2014-12-18

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by dougwilson, a new releaser for negotiator since your current version.


Updates errorhandler from 1.2.0 to 1.5.1

Release notes

Sourced from errorhandler's releases.

1.5.1

1.5.0

  • Pretty print JSON error response
  • deps: accepts@~1.3.3
  • perf: front-load HTML template and stylesheet at middleware construction
  • perf: only load template and stylesheet once
  • perf: resolve file paths at start up

1.4.3

  • deps: accepts@~1.3.0
  • deps: escape-html@~1.0.3
    • perf: enable strict mode
    • perf: optimize string replacement
    • perf: use faster string coercion

1.4.2

  • deps: accepts@~1.2.12
    • deps: mime-types@~2.1.4

1.4.1

  • deps: accepts@~1.2.10
    • deps: mime-types@~2.1.2

1.4.0

  • Add charset to the Content-Type header
  • Support statusCode property on Error objects
  • deps: accepts@~1.2.9
    • deps: mime-types@~2.1.1
    • deps: [email protected]
    • perf: avoid argument reassignment & argument slice
    • perf: avoid negotiator recursive construction
    • perf: enable strict mode
    • perf: remove unnecessary bitwise operator
  • deps: [email protected]

1.3.6

1.3.5

  • deps: accepts@~1.2.5

... (truncated)

Changelog

Sourced from errorhandler's changelog.

1.5.1 / 2019-05-08

1.5.0 / 2016-11-15

  • Pretty print JSON error response
  • deps: accepts@~1.3.3
  • perf: front-load HTML template and stylesheet at middleware construction
  • perf: only load template and stylesheet once
  • perf: resolve file paths at start up

1.4.3 / 2016-01-17

  • deps: accepts@~1.3.0
  • deps: escape-html@~1.0.3
    • perf: enable strict mode
    • perf: optimize string replacement
    • perf: use faster string coercion

1.4.2 / 2015-07-30

  • deps: accepts@~1.2.12
    • deps: mime-types@~2.1.4

1.4.1 / 2015-07-05

  • deps: accepts@~1.2.10
    • deps: mime-types@~2.1.2

1.4.0 / 2015-06-10

  • Add charset to the Content-Type header
  • Support statusCode property on Error objects
  • deps: accepts@~1.2.9
    • deps: mime-types@~2.1.1
    • deps: [email protected]
    • perf: avoid argument reassignment & argument slice

... (truncated)

Commits

Updates express from 4.12.4 to 4.18.2

Release notes

Sourced from express's releases.

4.18.2

4.18.1

  • Fix hanging on large stack of sync routes

4.18.0

... (truncated)

Changelog

Sourced from express's changelog.

4.18.2 / 2022-10-08

4.18.1 / 2022-04-29

  • Fix hanging on large stack of sync routes

4.18.0 / 2022-04-25

... (truncated)

Commits

Updates st from 0.2.4 to 3.0.0

Commits
  • bfa52bf 3.0.0
  • c541c5c chore: update deps, fix linting, fix tap parallel & deprecations
  • 4501e97 chore: remove node 10, add node 14
  • 3bb748b add .nyc_output to .gitignore
  • 5ce8e2d mod: removed the hard-coded error messages
  • 44532a7 fix: change nvm install current to nvm install node
  • ef22df2 2.0.0
  • d09f1ab update README
  • 280538f ipv4 for tests, fix up cli tests
  • ea0ffb4 update travis, latest node etc.
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by rvagg, a new releaser for st since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps): bump negotiator, errorhandler, express and st
1f92b49 
Bumps [negotiator](https://github.com/jshttp/negotiator) to 0.6.3 and updates ancestor dependencies [negotiator](https://github.com/jshttp/negotiator), [errorhandler](https://github.com/expressjs/errorhandler), [express](https://github.com/expressjs/express) and [st](https://github.com/isaacs/st). These dependencies need to be updated together.


Updates `negotiator` from 0.2.8 to 0.6.3
- [Release notes](https://github.com/jshttp/negotiator/releases)
- [Changelog](https://github.com/jshttp/negotiator/blob/master/HISTORY.md)
- [Commits](https://github.com/jshttp/negotiator/commits/0.6.3)

Updates `errorhandler` from 1.2.0 to 1.5.1
- [Release notes](https://github.com/expressjs/errorhandler/releases)
- [Changelog](https://github.com/expressjs/errorhandler/blob/master/HISTORY.md)
- [Commits](expressjs/errorhandler@1.2.0...1.5.1)

Updates `express` from 4.12.4 to 4.18.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@4.12.4...4.18.2)

Updates `st` from 0.2.4 to 3.0.0
- [Commits](isaacs/st@v0.2.4...v3.0.0)

---
updated-dependencies:
- dependency-name: negotiator
  dependency-type: indirect
- dependency-name: errorhandler
  dependency-type: direct:production
- dependency-name: express
  dependency-type: direct:production
- dependency-name: st
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jul 21, 2023
@dependabot dependabot bot mentioned this pull request Jul 21, 2023
Closed
@sonarcloud
Copy link

sonarcloud bot commented Jul 21, 2023

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants