Skip to content

chore(deps): bump the npm_and_yarn group across 1 directory with 21 updates #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): bump the npm_and_yarn group across 1 directory with 21 updates #2

wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Mar 27, 2024

Bumps the npm_and_yarn group with 20 updates in the / directory:

Package From To
karma 1.3.0 6.3.16
qs 6.2.3 6.2.4
browserify-sign 4.2.1 4.2.3
decode-uri-component 0.2.0 0.2.2
eventsource 1.0.7 1.1.2
express 4.17.1 4.19.2
follow-redirects 1.13.2 1.15.6
semantic-release 6.3.6 6.3.6
hoek 2.16.3 ``
karma-coveralls 1.1.2 1.2.1
phantomjs-prebuilt 2.1.13 2.1.16
loader-utils 0.2.17 ``
babel-loader 6.2.7 9.1.3
karma-webpack 1.8.0 5.0.1
webpack 1.13.3 5.91.0
webpack-stream 3.2.0 7.0.0
shell-quote 1.7.2 1.8.1
url-parse 1.4.7 1.5.10
webpack-dev-middleware 1.12.2 7.1.1
webpack-dev-server 1.16.2 5.0.4

Updates karma from 1.3.0 to 6.3.16

Release notes

Sourced from karma's releases.

v6.3.16

6.3.16 (2022-02-10)

Bug Fixes

  • security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

v6.3.15

6.3.15 (2022-02-05)

Bug Fixes

v6.3.14

6.3.14 (2022-02-05)

Bug Fixes

  • remove string template from client code (91d5acd)
  • warn when singleRun and autoWatch are false (69cfc76)
  • security: remove XSS vulnerability in returnUrl query param (839578c)

v6.3.13

6.3.13 (2022-01-31)

Bug Fixes

  • deps: bump log4js to resolve security issue (5bf2df3), closes #3751

v6.3.12

6.3.12 (2022-01-24)

Bug Fixes

  • remove depreciation warning from log4js (41bed33)

v6.3.11

6.3.11 (2022-01-13)

Bug Fixes

  • deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

... (truncated)

Changelog

Sourced from karma's changelog.

6.3.16 (2022-02-10)

Bug Fixes

  • security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

6.3.14 (2022-02-05)

Bug Fixes

  • remove string template from client code (91d5acd)
  • warn when singleRun and autoWatch are false (69cfc76)
  • security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

  • deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

  • remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

  • deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

  • logger: create parent folders if they are missing (0d24bd9), closes #3734

... (truncated)

Commits
  • ab4b328 chore(release): 6.3.16 [skip ci]
  • ff7edbb fix(security): mitigate the "Open Redirect Vulnerability"
  • c1befa0 chore(release): 6.3.15 [skip ci]
  • d9dade2 fix(helper): make mkdirIfNotExists helper resilient to concurrent calls
  • 653c762 ci: prevent duplicate CI tasks on creating a PR
  • c97e562 chore(release): 6.3.14 [skip ci]
  • 91d5acd fix: remove string template from client code
  • 69cfc76 fix: warn when singleRun and autoWatch are false
  • 839578c fix(security): remove XSS vulnerability in returnUrl query param
  • db53785 chore(release): 6.3.13 [skip ci]
  • Additional commits viewable in compare view

Updates qs from 6.2.3 to 6.2.4

Changelog

Sourced from qs's changelog.

6.2.4

  • [Fix] parse: ignore __proto__ keys (#428)
  • [Fix] utils.merge: avoid a crash with a null target and an array source
  • [Fix] utils.merge: avoid a crash with a null target and a truthy non-array source
  • [Fix] utils: merge: fix crash when source is a truthy primitive & no options are provided
  • [Fix] when parseArrays is false, properly handle keys ending in []
  • [Robustness] stringify: avoid relying on a global undefined (#427)
  • [Refactor] use cached Array.isArray
  • [Docs] Clarify the need for "arrayLimit" option
  • [meta] fix README.md (#399)
  • [meta] Clean up license text so it’s properly detected as BSD-3-Clause
  • [meta] add FUNDING.yml
  • [actions] backport actions from main
  • [Tests] use safer-buffer instead of Buffer constructor
  • [Tests] remove nonexistent tape option
  • [Dev Deps] backport from main
Commits
  • 90d9f2b v6.2.4
  • ba24e74 [Fix] parse: ignore __proto__ keys (#428)
  • f047c9d [Dev Deps] backport from main
  • 5f8e28b [actions] backport actions from main
  • 2c38654 [Robustness] stringify: avoid relying on a global undefined (#427)
  • 37e176d [meta] fix README.md (#399)
  • 081a3ab [Tests] use safer-buffer instead of Buffer constructor
  • 943e411 [meta] Clean up license text so it’s properly detected as BSD-3-Clause
  • 0d82916 [Fix] utils.merge: avoid a crash with a null target and an array source
  • c103b90 [Fix] utils.merge`: avoid a crash with a null target and a truthy non-array...
  • Additional commits viewable in compare view

Updates browserify-sign from 4.2.1 to 4.2.3

Changelog

Sourced from browserify-sign's changelog.

v4.2.3 - 2024-03-05

Commits

v4.2.2 - 2023-10-25

Fixed

Commits

  • Only apps should have lockfiles 09a8995
  • [eslint] switch to eslint 83fe463
  • [meta] add npmignore and auto-changelog 4418183
  • [meta] fix package.json indentation 9ac5a5e
  • [Tests] migrate from travis to github actions d845d85
  • [Fix] sign: throw on unsupported padding scheme 8767739
  • [Fix] properly check the upper bound for DSA signatures 85994cd
  • [Tests] handle openSSL not supporting a scheme f5f17c2
  • [Deps] update bn.js, browserify-rsa, elliptic, parse-asn1, readable-stream, safe-buffer a67d0eb
  • [Dev Deps] update nyc, standard, tape cc5350b
  • [Tests] always run coverage; downgrade nyc 75ce1d5
  • [meta] add safe-publish-latest dcf49ce
  • [Tests] add npm run posttest 75dd8fd
  • [Dev Deps] update tape 3aec038
  • [Tests] skip unsupported schemes 703c83e
  • [Tests] node < 6 lacks array includes 3aa43cf
  • [Dev Deps] fix eslint range 98d4e0d
Commits
  • bf2c3ec v4.2.3
  • 9247adf [patch] widen support to 0.12
  • f427270 [Deps] update `parse-asn1
  • 87f3a35 [Dev Deps] update aud, npmignore, tape
  • fb261ce [Deps] update elliptic
  • 4d0ee49 [patch] drop minimum node support to v1
  • 9e2bf12 [Deps] pin hash-base to ~3.0, due to a breaking change
  • 168e16f [Deps] pin elliptic due to a breaking change
  • 37a4758 [actions] remove redundant finisher
  • 4af5a90 v4.2.2
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.


Updates decode-uri-component from 0.2.0 to 0.2.2

Release notes

Sourced from decode-uri-component's releases.

v0.2.2

  • Prevent overwriting previously decoded tokens 980e0bf

SamVerschueren/decode-uri-component@v0.2.1...v0.2.2

v0.2.1

  • Switch to GitHub workflows 76abc93
  • Fix issue where decode throws - fixes #6 746ca5d
  • Update license (#1) 486d7e2
  • Tidelift tasks a650457
  • Meta tweaks 66e1c28

SamVerschueren/decode-uri-component@v0.2.0...v0.2.1

Commits

Updates eventsource from 1.0.7 to 1.1.2

Changelog

Sourced from eventsource's changelog.

1.1.2

  • Inline origin resolution, drops original dependency (#281 Espen Hovlandsdal)

1.1.1

  • Do not include authorization and cookie headers on redirect to different origin (#273 Espen Hovlandsdal)

1.1.0

  • Improve performance for large messages across many chunks (#130 Trent Willis)
  • Add createConnection option for http or https requests (#120 Vasily Lavrov)
  • Support HTTP 302 redirects (#116 Ryan Bonte)
  • Prevent sequential errors from attempting multiple reconnections (#125 David Patty)
  • Add new to correct test (#111 Stéphane Alnet)
  • Fix reconnections attempts now happen more than once (#136 Icy Fish)
Commits

Updates express from 4.17.1 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

New Contributors

Full Changelog: expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

Other Changes

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

  • Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

  • Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

4.18.3 / 2024-02-29

4.18.2 / 2022-10-08

4.18.1 / 2022-04-29

  • Fix hanging on large stack of sync routes

4.18.0 / 2022-04-25

  • Add "root" option to res.download
  • Allow options without filename in res.download
  • Deprecate string and non-integer arguments to res.status
  • Fix behavior of null/undefined as maxAge in res.cookie
  • Fix handling very large stacks of sync middleware
  • Ignore Object.prototype values in settings through app.set/app.get

... (truncated)

Commits
  • 04bc627 4.19.2
  • da4d763 Improved fix for open redirect allow list bypass
  • 4f0f6cc 4.19.1
  • a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
  • a1fa90f fixed un-edited version in history.md for 4.19.0
  • 11f2b1d build: fix build due to inconsistent supertest behavior in older versions
  • 084e365 4.19.0
  • 0867302 Prevent open redirect allow list bypass due to encodeurl
  • 567c9c6 Add note on how to update docs for new release (#5541)
  • 69a4cf2 deps: [email protected]
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.


Updates follow-redirects from 1.13.2 to 1.15.6

Commits
  • 35a517c Release version 1.15.6 of the npm package.
  • c4f847f Drop Proxy-Authorization across hosts.
  • 8526b4a Use GitHub for disclosure.
  • b1677ce Release version 1.15.5 of the npm package.
  • d8914f7 Preserve fragment in responseUrl.
  • 6585820 Release version 1.15.4 of the npm package.
  • 7a6567e Disallow bracketed hostnames.
  • 05629af Prefer native URL instead of deprecated url.parse.
  • 1cba8e8 Prefer native URL instead of legacy url.resolve.
  • 72bc2a4 Simplify _processResponse error handling.
  • Additional commits viewable in compare view

Updates semantic-release from 6.3.6 to 6.3.6

Commits

Removes hoek

Updates karma-coveralls from 1.1.2 to 1.2.1

Commits

Updates phantomjs-prebuilt from 2.1.13 to 2.1.16

Release notes

Sourced from phantomjs-prebuilt's releases.

PhantomJS installer v2.1.14

Upgrades request and fs-extra deps

Commits

Removes loader-utils

Updates babel-loader from 6.2.7 to 9.1.3

Release notes

Sourced from babel-loader's releases.

v9.1.3

Security dependency updates

New Contributors

Full Changelog: babel/babel-loader@v9.1.2...v9.1.3

v9.1.2

9.1.1 was a broken release, it didn't include all the commits.

Dependencies updates

Misc

New Contributors

Full Changelog: babel/babel-loader@v9.1.0...v9.1.2

v9.1.0

New features

Full Changelog: babel/babel-loader@v9.0.1...v9.1.0

v9.0.1

Bug Fixes

Full Changelog: babel/babel-loader@v9.0.0...v9.0.1

v9.0.0

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from babel-loader's changelog.

Changelog

For changes in version v7.0.0 and up please go to release

Old Changelog

v6.4.1

🐛 Bug Fix

v6.4.0

🚀 New Feature

  • added metadata passing from babel to webpack, which is currently used by react-intl (#398) @​Ognian

v6.3.2

😢 Regression

  • forceEnv was interfering with regular environment handling

v6.3.1

🐛 Bug Fix

v6.3.0

🚀 New Feature

Allow to override BABEL_ENV/NODE_ENV at loader-level. Useful for isomorphic applications which have separate babel config for client and server.

🐛 Bug Fix

  • Update loader-utils dependency to ^0.2.16 to fix compatibility with webpack 2 (#371) @​leonaves

💅 Polish

  • Improve FS caching to do less sync calls which improves performance slightly (#375) @​akx

v6.2.10

Support for webpack 2.2-rc has been added in this release

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by nicolo-ribaudo, a new releaser for babel-loader since your current version.


Updates karma-webpack from 1.8.0 to 5.0.1

Release notes

Sourced from karma-webpack's releases.

v5.0.1

5.0.1 (2024-02-01)

Fixes

  • security fixes

v5.0.0

No release notes provided.

v5.0.0-alpha.6

Bug Fixes

  • automatically fix missing webpack framework and report a warning (ea5dc8e)
  • fix an issue where multiple karma-webpack processes could not run in parallel (ea3dabe)
  • bump hotfix dependencies (98b3ec9)

v5.0.0-alpha.5

Bug Fixes

  • change the webpack peer dependency to webpack v5 (2e0ca74)

v5.0.0-alpha.4

Bug Fixes

  • fix compatibility issues for webpack v5 (8d7366f), closes #452
  • remove deprecation warning for .watch() (4fe1f60)

v4.0.2

4.0.2 (2019-06-08)

Bug Fixes

  • don't error when webpackMiddleware config not provided' (#418) (7570912)

v4.0.1

4.0.1 (2019-06-07)

Bug Fixes

  • package: point to dist instead of lib (#417) (c0a0d47)

v4.0.0

4.0.0 (2019-06-07)

Bug Fixes

... (truncated)

Changelog

Sourced from karma-webpack's changelog.

5.0.1 (2024-02-01)

Fixes

  • security fixes

5.0.0 (2021-02-02)

No changes, just a new stable release.

5.0.0-alpha.6 (2021-01-30)

Bug Fixes

  • automatically fix missing webpack framework and report a warning (ea5dc8e)
  • fix an issue where multiple karma-webpack processes could not run in parallel (ea3dabe)
  • bump hotfix dependencies (98b3ec9)

5.0.0-alpha.5 (2020-12-06)

Bug Fixes

  • change the webpack peer dependency to webpack v5 (2e0ca74)

5.0.0-alpha.4 (2020-12-06)

Bug Fixes

  • fix compatibility issues for webpack v5 (8d7366f), closes #452
  • remove deprecation warning for .watch() (4fe1f60)

5.0.0-alpha.3.0 (2019-03-07)

Bug Fixes

5.0.0-alpha.2 (2019-02-13)

Bug Fixes

  • karma-webpack: normalize paths to be compatible with windows (b783e1c)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for karma-webpack since your current version.


Updates webpack from 1.13.3 to 5.91.0

Release notes

Sourced from webpack's releases.

v5.91.0

Bug Fixes

  • Deserializer for ignored modules doesn't crash
  • Allow the unsafeCache option to be a proxy object
  • Normalize the snapshot.unmanagedPaths option
  • Fixed fs types
  • Fixed resolve's plugins types
  • Fixed wrongly calculate postOrderIndex
  • Fixed watching types
  • Output import attrbiutes/import assertions for external JS imports
  • Throw an error when DllPlugin needs to generate multiple manifest files, but the path is the same
  • [CSS] Output layer/supports/media for external CSS imports

New Features

  • Allow to customize the stage of BannerPlugin
  • [CSS] Support CSS exports convention
  • [CSS] support CSS local ident name
  • [CSS] Support __webpack_nonce__ for CSS chunks
  • [CSS] Support fetchPriority for CSS chunks
  • [CSS] Allow to use LZW to compress css head meta (enabled in the production mode by default)
  • [CSS] Support prefetch/preload for CSS chunks

v5.90.3

Bug Fixes

  • don't mangle when destructuring a reexport
  • types for Stats.toJson() and Stats.toString()
  • many internal types
  • [CSS] clean up export css local vars

Perf

  • simplify and optimize chunk graph creation

v5.90.2

Bug Fixes

  • use Math.imul in fnv1a32 to avoid loss of precision, directly hash UTF16 values
  • the setStatus() of the HMR module should not return an array, which may cause infinite recursion
  • __webpack_exports_info__.xxx.canMangle shouldn't always same as default
  • mangle export with destructuring
  • use new runtime to reconsider skipped connections activeState
  • make dynamic import optional in try/catch
  • improve auto publicPath detection

Dependencies & Maintenance

  • improve CI setup and include Node.js@21

... (truncated)

Commits
  • 60daca5 chore(release): 5.91.0
  • 8dad9ce chore(deps-dev): bump @​babel/preset-react from 7.23.3 to 7.24.1
  • a3229f9 chore(deps-dev): bump @​babel/core from 7.24.0 to 7.24.1
  • 40c2e44 chore(deps-dev): bump @​types/node from 20.11.29 to 20.11.30
  • a04faba chore(deps-dev): bump memfs from 4.7.7 to 4.8.0
  • 8f22221 chore(deps): bump es-module-lexer from 1.4.1 to 1.4.2
  • 8df6912 chore(deps): bump es-module-lexer from 1.4.1 to 1.4.2
  • 711c618 chore(deps-dev): bump memfs from 4.7.7 to 4.8.0
  • c462bb3 chore(deps-dev): bump @​types/node from 20.11.29 to 20.11.30
  • f0d3e3e chore(deps-dev): bump @​babel/preset-react from 7.23.3 to 7.24.1
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for webpack since your current version.


Updates webpack-stream from 3.2.0 to 7.0.0

Commits
  • 30a6da0 v7.0.0
  • c2d19fd semistandard fixes
  • 7805d59 Remove config.watch setting re-introduced from my bad merging
  • 6395f19 Merge branch 'master' of github.com:shama/webpack-stream

@dependabot
chore(deps): bump the npm_and_yarn group across 1 directory with 21 u…
6744a90 
…pdates

Bumps the npm_and_yarn group with 20 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [karma](https://github.com/karma-runner/karma) | `1.3.0` | `6.3.16` |
| [qs](https://github.com/ljharb/qs) | `6.2.3` | `6.2.4` |
| [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.2.1` | `4.2.3` |
| [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` |
| [eventsource](https://github.com/EventSource/eventsource) | `1.0.7` | `1.1.2` |
| [express](https://github.com/expressjs/express) | `4.17.1` | `4.19.2` |
| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.13.2` | `1.15.6` |
| [semantic-release](https://github.com/semantic-release/semantic-release) | `6.3.6` | `6.3.6` |
| [hoek](https://github.com/hapijs/hoek) | `2.16.3` | `` |
| [karma-coveralls](https://github.com/caitp/karma-coveralls) | `1.1.2` | `1.2.1` |
| [phantomjs-prebuilt](https://github.com/Medium/phantomjs) | `2.1.13` | `2.1.16` |
| [loader-utils](https://github.com/webpack/loader-utils) | `0.2.17` | `` |
| [babel-loader](https://github.com/babel/babel-loader) | `6.2.7` | `9.1.3` |
| [karma-webpack](https://github.com/webpack-contrib/karma-webpack) | `1.8.0` | `5.0.1` |
| [webpack](https://github.com/webpack/webpack) | `1.13.3` | `5.91.0` |
| [webpack-stream](https://github.com/shama/webpack-stream) | `3.2.0` | `7.0.0` |
| [shell-quote](https://github.com/ljharb/shell-quote) | `1.7.2` | `1.8.1` |
| [url-parse](https://github.com/unshiftio/url-parse) | `1.4.7` | `1.5.10` |
| [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `1.12.2` | `7.1.1` |
| [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `1.16.2` | `5.0.4` |


Updates `karma` from 1.3.0 to 6.3.16
- [Release notes](https://github.com/karma-runner/karma/releases)
- [Changelog](https://github.com/karma-runner/karma/blob/master/CHANGELOG.md)
- [Commits](karma-runner/karma@v1.3.0...v6.3.16)

Updates `qs` from 6.2.3 to 6.2.4
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v6.2.3...v6.2.4)

Updates `browserify-sign` from 4.2.1 to 4.2.3
- [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md)
- [Commits](browserify/browserify-sign@v4.2.1...v4.2.3)

Updates `decode-uri-component` from 0.2.0 to 0.2.2
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2)

Updates `eventsource` from 1.0.7 to 1.1.2
- [Changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md)
- [Commits](EventSource/eventsource@v1.0.7...v1.1.2)

Updates `express` from 4.17.1 to 4.19.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@4.17.1...4.19.2)

Updates `follow-redirects` from 1.13.2 to 1.15.6
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](follow-redirects/follow-redirects@v1.13.2...v1.15.6)

Updates `semantic-release` from 6.3.6 to 6.3.6
- [Release notes](https://github.com/semantic-release/semantic-release/releases)
- [Commits](semantic-release/semantic-release@v6.3.6...v6.3.6)

Removes `hoek`

Updates `karma-coveralls` from 1.1.2 to 1.2.1
- [Release notes](https://github.com/caitp/karma-coveralls/releases)
- [Commits](https://github.com/caitp/karma-coveralls/commits)

Updates `phantomjs-prebuilt` from 2.1.13 to 2.1.16
- [Release notes](https://github.com/Medium/phantomjs/releases)
- [Commits](https://github.com/Medium/phantomjs/commits)

Removes `loader-utils`

Updates `babel-loader` from 6.2.7 to 9.1.3
- [Release notes](https://github.com/babel/babel-loader/releases)
- [Changelog](https://github.com/babel/babel-loader/blob/main/CHANGELOG.md)
- [Commits](babel/babel-loader@v6.2.7...v9.1.3)

Updates `karma-webpack` from 1.8.0 to 5.0.1
- [Release notes](https://github.com/webpack-contrib/karma-webpack/releases)
- [Changelog](https://github.com/codymikol/karma-webpack/blob/master/CHANGELOG.md)
- [Commits](codymikol/karma-webpack@1.8.0...v5.0.1)

Updates `webpack` from 1.13.3 to 5.91.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v1.13.3...v5.91.0)

Updates `webpack-stream` from 3.2.0 to 7.0.0
- [Commits](shama/webpack-stream@v3.2.0...v7.0.0)

Updates `shell-quote` from 1.7.2 to 1.8.1
- [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md)
- [Commits](ljharb/shell-quote@v1.7.2...v1.8.1)

Updates `socket.io-parser` from 2.2.2 to 4.2.4
- [Release notes](https://github.com/socketio/socket.io-parser/releases)
- [Changelog](https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md)
- [Commits](socketio/socket.io-parser@2.2.2...4.2.4)

Updates `url-parse` from 1.4.7 to 1.5.10
- [Commits](unshiftio/url-parse@1.4.7...1.5.10)

Updates `webpack-dev-middleware` from 1.12.2 to 7.1.1
- [Release notes](https://github.com/webpack/webpack-dev-middleware/releases)
- [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/master/CHANGELOG.md)
- [Commits](webpack/webpack-dev-middleware@v1.12.2...v7.1.1)

Updates `webpack-dev-server` from 1.16.2 to 5.0.4
- [Release notes](https://github.com/webpack/webpack-dev-server/releases)
- [Changelog](https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md)
- [Commits](webpack/webpack-dev-server@v1.16.2...v5.0.4)

---
updated-dependencies:
- dependency-name: karma
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: qs
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: browserify-sign
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: decode-uri-component
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: eventsource
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: express
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: follow-redirects
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: semantic-release
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: hoek
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: karma-coveralls
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: phantomjs-prebuilt
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: loader-utils
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: babel-loader
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: karma-webpack
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: webpack
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: webpack-stream
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: shell-quote
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: socket.io-parser
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: url-parse
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: webpack-dev-middleware
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: webpack-dev-server
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 27, 2024
@dependabot dependabot bot mentioned this pull request Mar 27, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant