Bump the npm_and_yarn group across 1 directories with 20 updates #154

dependabot · 2024-02-21T11:14:29Z

Bumps the npm_and_yarn group with 16 updates in the /. directory:

Package	From	To
@nestjs/core	`7.5.5`	`9.0.5`
axios	`0.28.0`	`1.6.0`
class-validator	`0.12.2`	`0.14.0`
json5	`1.0.1`	`1.0.2`
@babel/traverse	`7.12.5`	`7.23.9`
browserify-sign	`4.2.1`	`4.2.2`
decode-uri-component	`0.2.0`	`0.2.2`
jsdom	`16.4.0`	`16.7.0`
loader-utils	`1.4.0`	`1.4.2`
minimatch	`3.0.4`	`3.1.2`
minimist	`1.2.5`	`1.2.8`
@nestjs/cli	`7.5.1`	`10.3.2`
moment	`2.29.0`	`2.30.1`
moment-timezone	`0.5.31`	`0.5.45`
swagger-ui-dist	`3.33.0`	`5.11.7`
swagger-ui-express	`4.1.4`	`4.6.3`

Updates @nestjs/core from 7.5.5 to 9.0.5

Release notes

Sourced from @nestjs/core's releases.

v9.0.5 (2022-07-20)

Bug fixes

common, platform-express

#9819 fix: use pipeline over stream.pipe (@jmcdo29)

Enhancements

microservices

#9798 feat(microservices): add noAssert option for RMQ connection (@frankmangone)

#9954 feat(microservices): add Kafka heartbeat callback to KafkaContext (@kosh-b)

platform-express, platform-fastify

#9926 fix(express,fastify): raw body for urlencoded requests (@tolgap)

Dependencies

Other

#9959 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/30-event-emitter (@dependabot[bot])

#9960 chore(deps): bump terser from 5.14.1 to 5.14.2 in /sample/32-graphql-federation-schema-first/users-application (@dependabot[bot])

#9961 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/31-graphql-federation-code-first/gateway (@dependabot[bot])

#9962 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/31-graphql-federation-code-first/users-application (@dependabot[bot])

#9963 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/32-graphql-federation-schema-first/posts-application (@dependabot[bot])

#9964 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/32-graphql-federation-schema-first/gateway (@dependabot[bot])

#9965 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/29-file-upload (@dependabot[bot])

#9966 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/28-sse (@dependabot[bot])

#9967 chore(deps): bump terser from 5.10.0 to 5.14.2 in /sample/31-graphql-federation-code-first/posts-application (@dependabot[bot])

#9951 chore(deps-dev): bump mongoose from 6.4.4 to 6.4.5 (@dependabot[bot])

#9952 chore(deps-dev): bump concurrently from 7.2.2 to 7.3.0 (@dependabot[bot])

platform-fastify

#9950 chore(deps): bump light-my-request from 5.1.0 to 5.2.0 (@dependabot[bot])

Committers: 4

Franco Mangone (@frankmangone)

Jay McDoniel (@jmcdo29)

Tolga Paksoy (@tolgap)

@kosh-b

v9.0.2

Bug fixes

common

#9904 fix(common): Fix CacheModule registerAsync (@tugascript)

Enhancements

core

#9902 refactor(core): replace our own 1-level flatten by the native one (@micalevisk)

Dependencies

#9906 chore(deps-dev): bump mongoose from 6.4.3 to 6.4.4 (@dependabot[bot])

#9908 chore(deps-dev): bump cache-manager from 4.0.1 to 4.1.0 (@dependabot[bot])

#9910 chore(deps-dev): bump @nestjs/graphql from 10.0.16 to 10.0.18 (@dependabot[bot])

#9911 chore(deps-dev): bump core-js from 3.23.3 to 3.23.4 (@dependabot[bot])

... (truncated)

Commits

ad08626 chore(@nestjs) publish v9.0.5 release
df4d99d chore(@nestjs) publish v9.0.4 release
8cd150d Merge pull request #9915 from thiagomini/refactor/instance-wrapper
4c16d20 refactor(core): remove providers type assertions
f4b3c7f chore(@nestjs) publish v9.0.3 release
1ff1389 fix(core): scoped factories should not fail with optional deps
a2f4b34 test(core): add instance wrapper test
b0d735d test(core): add instance wrapper test
7696f43 test(core): add instance wrapper test
2a7fc84 test(core): add instance wrapper test
Additional commits viewable in compare view

Updates axios from 0.28.0 to 1.6.0

Release notes

Sourced from axios's releases.

Release v1.6.0

Release notes:

Bug Fixes

CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)

dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)

types: fix AxiosHeaders types; (#5931) (a1c8ad0)

PRs

CVE 2023 45857 ( #6028 )
⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
Contributors to this release

Dmitriy Mozgovoy

Valentin Panov

Rinku Chaudhari

Release v1.5.1

Release notes:

Bug Fixes

adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)

formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)

headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)

types: removed duplicated code (9e62056)

Contributors to this release

Dmitriy Mozgovoy

David Dallas

Sean Sattler

Mustafa Ateş Uzun

Przemyslaw Motacki

Michael Di Prisco

Release v1.5.0

Release notes:

Bug Fixes

adapter: make adapter loading error more clear by using platform-specific adapters explicitly (#5837) (9a414bb)

dns: fixed cacheable-lookup integration; (#5836) (b3e327d)

headers: added support for setting header names that overlap with class methods; (#5831) (d8b4ca0)

headers: fixed common Content-Type header merging; (#5832) (8fda276)

Features

... (truncated)

Changelog

Sourced from axios's changelog.

1.6.0 (2023-10-26)

Bug Fixes

CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)

dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)

types: fix AxiosHeaders types; (#5931) (a1c8ad0)

PRs

CVE 2023 45857 ( #6028 )
⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
Contributors to this release

Dmitriy Mozgovoy

Valentin Panov

Rinku Chaudhari

1.5.1 (2023-09-26)

Bug Fixes

adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)

formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)

headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)

types: removed duplicated code (9e62056)

Contributors to this release

Dmitriy Mozgovoy

David Dallas

Sean Sattler

Mustafa Ateş Uzun

Przemyslaw Motacki

Michael Di Prisco

PRs

CVE 2023 45857 ( #6028 )
⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
1.5.0 (2023-08-26)

... (truncated)

Commits

f7adacd chore(release): v1.6.0 (#6031)
9917e67 chore(ci): fix release-it arg; (#6032)
96ee232 fix(CSRF): fixed CSRF vulnerability CVE-2023-45857 (#6028)
7d45ab2 chore(tests): fixed tests to pass in node v19 and v20 with keep-alive enabl...
5aaff53 fix(dns): fixed lookup function decorator to work properly in node v20; (#6011)
a48a63a chore(docs): added AxiosHeaders docs; (#5932)
a1c8ad0 fix(types): fix AxiosHeaders types; (#5931)
2ac731d chore(docs): update readme.md (#5889)
88fb52b chore(release): v1.5.1 (#5920)
e410779 fix(adapters): improved adapters loading logic to have clear error messages; ...
Additional commits viewable in compare view

Updates class-validator from 0.12.2 to 0.14.0

Changelog

Sourced from class-validator's changelog.

0.14.0 (2022-12-09)

Added

add @IsTimeZone decorator to check if given string is valid IANA time zone

add @IsISO4217CurrencyCode decorator to check if the string is an ISO 4217 currency code

add @IsStrongPassword decorator to check if given password matches specific complexity criteria

add @IsBase58 decorator to check if a string is base58 encoded

add @IsTaxId decorator to check if a given string is a valid tax ID in a given locale

add support for passing function as date generator in @MinDate and @MaxDate decorators

add option to print constraint error message instead of constraint type in validation error

improve decorator metadata lookup performance

return possible values in error message for @IsEnum decorator

Fixed

re-added @types/validator as dependency

fix error generation when using @NestedValidation

pass validation options correctly to validator in @IsDateString decorator

support passing Symbol as parameter in error message generation

specify supported locales for @IsAlphanumeric decorator

correctly assign decorator name in metadata instead of loosing it

fix various spelling errors in documentation

fix various spelling errors and inconsistencies in JSDoc for decorators

Changed

enable forbidUnknownValues option by default

remove documentation about deprecated schema based validation and added warning

update warning message logged about missing decorator metadata

update libphonenumber-js to ^1.10.14 from ^1.9.43

update various dev-dependencies

BREAKING CHANGES

forbidUnknownValues option is enabled by default

From this release the forbidUnknownValues is enabled by default. This is the desired behavior for majority of use-cases, but this change may break validation for some. The two scenarios that results in failed validation:

when attempting to validate a class instance without metadata for it

when using group validation and the specified validation group results in zero validation applied

The old behavior can be restored via specifying forbidUnknownValues: false option when calling the validate functions.

For more details see [PR #1798](typestack/class-validator#1798) and #1422 (comment).

@NestedValidation decorator correctly assigns validation errors

Until now the errors from a nested validation in some cases were incorrectly assigned

... (truncated)

Commits

5f0d424 merge: release 0.14.0 (#1841)
e3d0708 build: bump version to 0.14.0
ad76890 docs: add changelog for 0.14.0
9a775c5 build(deps-dev): bump @types/node from 18.11.11 to 18.11.12 (#1840)
53bc9f6 build(deps-dev): bump @typescript-eslint/eslint-plugin (#1837)
d9b4072 build(deps-dev): bump @typescript-eslint/parser from 5.45.1 to 5.46.0 (#1838)
f993e9e build(deps-dev): bump typescript from 4.9.3 to 4.9.4 (#1835)
ad1a41d build(deps-dev): bump @rollup/plugin-commonjs from 23.0.3 to 23.0.4 (#1836)
42b4f7f build(deps-dev): bump prettier from 2.8.0 to 2.8.1 (#1834)
0c986d4 build(deps-dev): bump @types/node from 18.11.10 to 18.11.11 (#1833)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by typestack-release-bot, a new releaser for class-validator since your current version.

Updates json5 from 1.0.1 to 1.0.2

Release notes

Sourced from json5's releases.

v1.0.2

Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295). This has been backported to v1. (#298)

Changelog

Sourced from json5's changelog.

Unreleased [code, diff]

v2.2.3 [code, diff]

Fix: [email protected] is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2 [code, diff]

... (truncated)

Commits

a62db1e 1.0.2
e0c23fe docs: update CHANGELOG for v1.0.2
62a6540 fix: add proto to objects and arrays
See full diff in compare view

Updates @babel/traverse from 7.12.5 to 7.23.9

Release notes

Sourced from @babel/traverse's releases.

v7.23.9 (2024-01-25)

🐛 Bug Fix

babel-helper-transform-fixture-test-runner, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-preset-env

#16225 fix: systemjs re-traverses helpers (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16226 Improve decorated private method check (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-runtime, babel-preset-env

#16224 Properly sort core-js@3 imports (@nicolo-ribaudo)

babel-traverse

#15383 fix: Don't throw in getTypeAnnotation when using TS+inference (@liuxingbaoyu)

Other

#16210 [eslint] Fix no-use-before-define for class ref in fields (@nicolo-ribaudo)

🏠 Internal

babel-core, babel-parser, babel-template

#16222 Migrate eslint-parser to cts (@liuxingbaoyu)

babel-types

#16213 Remove @babel/types props that are not produced by the parser (@liuxingbaoyu)

🏃‍♀️ Performance

babel-parser

#16072 perf: Improve parser performance for typescript (@liuxingbaoyu)

🔬 Output optimization

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-new-target, babel-plugin-transform-parameters, babel-plugin-transform-private-methods, babel-preset-env

#16218 Improve temporary variables for decorators (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#15959 Improve output of using (@liuxingbaoyu)

Committers: 4

Babel Bot (@babel-bot)

Huáng Jùnliàng (@JLHwung)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

v7.23.8 (2024-01-08)

🐛 Bug Fix

babel-preset-env

#16181 fix: preset-env throws exception for export * as x (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-decorators

#16201 fix: decorator binds getter/setter to ctx.access for public fields (@liuxingbaoyu)

#16199 fix: Class decorator correctly passes return value (@liuxingbaoyu)

↩️ Revert

#16202 Revert "chore: Update artifact tools (#16184)" (@JLHwung)

🔬 Output optimization

babel-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-function-name, babel-plugin-transform-parameters, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

... (truncated)

Changelog

Sourced from @babel/traverse's changelog.

v7.23.9 (2024-01-25)

🐛 Bug Fix

babel-helper-transform-fixture-test-runner, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-preset-env

#16225 fix: systemjs re-traverses helpers (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16226 Improve decorated private method check (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-runtime, babel-preset-env

#16224 Properly sort core-js@3 imports (@nicolo-ribaudo)

babel-traverse

#15383 fix: Don't throw in getTypeAnnotation when using TS+inference (@liuxingbaoyu)

Other

#16210 [eslint] Fix no-use-before-define for class ref in fields (@nicolo-ribaudo)

🏠 Internal

babel-core, babel-parser, babel-template

#16222 Migrate eslint-parser to cts (@liuxingbaoyu)

babel-types

#16213 Remove @babel/types props that are not produced by the parser (@liuxingbaoyu)

🏃‍♀️ Performance

babel-parser

#16072 perf: Improve parser performance for typescript (@liuxingbaoyu)

🔬 Output optimization

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-new-target, babel-plugin-transform-parameters, babel-plugin-transform-private-methods, babel-preset-env

#16218 Improve temporary variables for decorators (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#15959 Improve output of using (@liuxingbaoyu)

v7.23.8 (2024-01-08)

🐛 Bug Fix

babel-preset-env

#16181 fix: preset-env throws exception for export * as x (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-decorators

#16201 fix: decorator binds getter/setter to ctx.access for public fields (@liuxingbaoyu)

#16199 fix: Class decorator correctly passes return value (@liuxingbaoyu)

↩️ Revert

#16202 Revert "chore: Update artifact tools (#16184)" (@JLHwung)

🔬 Output optimization

babel-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-function-name, babel-plugin-transform-parameters, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#16194 Improve output of super() (@liuxingbaoyu)

v7.23.7 (2023-12-29)

🐛 Bug Fix

babel-traverse

#16191 fix: Crash when removing without Program (@liuxingbaoyu)

babel-helpers, babel-plugin-proposal-decorators

... (truncated)

Commits

a0dd614 v7.23.9
1200542 fix: Don't throw in getTypeAnnotation when using TS+inference (#15383)
e428a6d v7.23.7
d292822 fix: Crash when removing without Program (#16191)
d02c1f7 v7.23.6
cce807f Bump debug to ^4.3.1 (#16164)
8479012 v7.23.5
da7dc40 Do not remove bindings when removing assignment expression path (#16131)
fadc081 fix: Unexpected duplication of comments (#16110)
13a5c83 v7.23.4
Additional commits viewable in compare view

Updates browserify-sign from 4.2.1 to 4.2.2

Changelog

Sourced from browserify-sign's changelog.

v4.2.2 - 2023-10-25

Fixed

[Tests] log when openssl doesn't support cipher [#37](https://github.com/crypto-browserify/browserify-sign/issues/37)

Commits

Only apps should have lockfiles 09a8995

[eslint] switch to eslint 83fe463

[meta] add npmignore and auto-changelog 4418183

[meta] fix package.json indentation 9ac5a5e

[Tests] migrate from travis to github actions d845d85

[Fix] sign: throw on unsupported padding scheme 8767739

[Fix] properly check the upper bound for DSA signatures 85994cd

[Tests] handle openSSL not supporting a scheme f5f17c2

[Deps] update bn.js, browserify-rsa, elliptic, parse-asn1, readable-stream, safe-buffer a67d0eb

[Dev Deps] update nyc, standard, tape cc5350b

[Tests] always run coverage; downgrade nyc 75ce1d5

[meta] add safe-publish-latest dcf49ce

[Tests] add npm run posttest 75dd8fd

[Dev Deps] update tape 3aec038

[Tests] skip unsupported schemes 703c83e

[Tests] node < 6 lacks array includes 3aa43cf

[Dev Deps] fix eslint range 98d4e0d

Commits

4af5a90 v4.2.2
3aec038 [Dev Deps] update tape
85994cd [Fix] properly check the upper bound for DSA signatures
9ac5a5e [meta] fix package.json indentation
dcf49ce [meta] add safe-publish-latest
4418183 [meta] add npmignore and auto-changelog
8767739 [Fix] sign: throw on unsupported padding scheme
5f6fb17 [Tests] log when openssl doesn't support cipher
f5f17c2 [Tests] handle openSSL not supporting a scheme
d845d85 [Tests] migrate from travis to github actions
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.

Updates decode-uri-component from 0.2.0 to 0.2.2

Release notes

Sourced from decode-uri-component's releases.

v0.2.2

Prevent overwriting previously decoded tokens 980e0bf

SamVerschueren/decode-uri-component@v0.2.1...v0.2.2

v0.2.1

Switch to GitHub workflows 76abc93

Fix issue where decode throws - fixes #6 746ca5d

Update license (#1) 486d7e2

Tidelift tasks a650457

Meta tweaks 66e1c28

SamVerschueren/decode-uri-component@v0.2.0...v0.2.1

Commits

a0eea46 0.2.2
980e0bf Prevent overwriting previously decoded tokens
3c8a373 0.2.1
76abc93 Switch to GitHub workflows
746ca5d Fix issue where decode throws - fixes #6
486d7e2 Update license (#1)
a650457 Tidelift tasks
66e1c28 Meta tweaks
See full diff in compare view

Updates jsdom from 16.4.0 to 16.7.0

Release notes

Sourced from jsdom's releases.

Version 16.7.0

Added AbortSignal.abort(). (ninevra)

Added dummy x and y properties to the return value of getBoundingClientRect(). (eiko)

Implemented wrapping for textareaEl.value if the wrap="" attribute is specified. (ninevra)

Changed newline normalization in <textarea>s according to recent HTML Standard updates. (ninevra)

Fixed some bad cascade computation in getComputedStyle(). (romain-trotard)

Version 16.6.0

Added parentNode.replaceChildren(). (@ninevra)

Fixed jsdom's handling of when code running inside the jsdom throws null or undefined as an exception. (@mbest)

Removed the dependency on the deprecated request package, in the process fixing several issues with the XMLHttpRequest implementation around header processing. Thanks go to @tobyhinloopen, @andrewaylett, and especially @vegardbb, for completing this months-long effort!

Version 16.5.3

Fixed infinite recursion when using MutationObservers to observe elements inside a MutationObserver callback.

Version 16.5.2

Fixed Access-Control-Allow-Headers: * to work with XMLHttpRequest. (silviot)

Fixed xhr.response to strip any leading BOM when xhr.responseType is "json".

Fixed new Text() and new Comment() constructors to properly set the resulting node's ownerDocument.

Fixed customElements.whenDefined() to resolve its returned promise with the custom element constructor, per recent spec updates. (ExE-Boss)

Fixed parsing to ensure that <svg>\<template></template></svg> does not throw an exception, but instead correctly produces a SVG-namespace \<template> element.

Fixed domParser.parseFromString() to treat <noscript> elements appropriately.

Fixed form control validity checking when the control was outside the <form> element and instead associated using the form="" attribute.

Fixed legendEl.form to return the correct result based on its parent <fieldset>.

Fixed optionEl.text to exclude <script> descendants.

Fixed radio buttons and checkboxes to not fire input and change events when disconnected.

Fixed inputEl.indeterminate to reset to its previous value when canceling a click event on a checkbox or radio button.

Fixed the behavior of event handler attributes (e.g. onclick="...code...") when there were global variables named element or formOwner. (ExE-Boss)

On Node.js v14.6.0+ where WeakRefs are available, fixed NodeIterator to no longer stop working when more than ten NodeIterator instances are created, and to use less memory due to inactive NodeIterators sticking around. (ExE-Boss)

Version 16.5.1

Fixed a regression that broke customElements.get() in v16.5.0. (fdesforges)

Fixed window.event to have a setter which overwrites the window.event property with the given value, per the specification. This fixes an issue where after upgrading to jsdom v16.5.0 you would no longer be able to set a global variable named event in the jsdom context.

Version 16.5.0

Added window.queueMicrotask().

Added window.event.

Added inputEvent.inputType. (diegohaz)

Removed ondragexit from Window and friends, per a spec update.

Fixed the URL of about:blank iframes. Previously it was getting set to the parent's URL. (SimonMueller)

Fixed the loading of subresources from the filesystem when they had non-ASCII filenames.

Fixed the hidden="" attribute to cause display: none per the user-agent stylesheet. (ph-fritsche)

Fixed the new File() constructor to no longer convert / to :, per a pending spec update.

Fixed mutation observer callbacks to be called with the MutationObserver instance as their this value.

Fixed <input type=checkbox> and <input type=radio> to be mutable even when disabled, per a spec update.

Fixed XMLHttpRequest to not fire a redundant final progress event if a progress event was previously fired with the same loaded value. This would usually occur with small files.

Fixed XMLHttpRequest to expose the Content-Length header on cross-origin responses.

Fixed xhr.response to return null for failures that occur during the middle of the download.

Fixed edge cases around passing callback functions or event handlers. (ExE-Boss)

Fixed edge cases around the properties of proxy-like objects such as localStorage or dataset. (ExE-Boss)

... (truncated)

Changelog

Sourced from jsdom's changelog.

16.7.0

Added AbortSignal.abort(). (ninevra)

Added dummy x and y properties to the return value of getBoundingClientRect(). (eiko)

Implemented wrapping for textareaEl.value if the wrap="" attribute is specified. (ninevra)

Changed newline normalization in <textarea>s according to recent HTML Standard updates. (ninevra)

Fixed some bad cascade computation in getComputedStyle(). (romain-trotard)

16.6.0

Added parentNode.replaceChildren(). (ninevra)

Fixed jsdom's handling of when code running inside the jsdom throws null or undefined as an exception. (mbest)

Removed the dependency on the deprecated request package, in the process fixing several issues with the XMLHttpRequest implementation around header processing. Special thanks to vegardbb for completing this months-long effort!

16.5.3

Fixed infinite recursion when using MutationObservers to observe elements inside a MutationObserver callback.

16.5.2

Fixed Access-Control-Allow-Headers: * to work with XMLHttpRequest. (silviot)

Fixed xhr.response to strip any leading BOM when xhr.responseType is "json".

Fixed new Text() and new Commen... Description has been truncated

Bumps the npm_and_yarn group with 16 updates in the /. directory: | Package | From | To | | --- | --- | --- | | [@nestjs/core](https://github.com/nestjs/nest/tree/HEAD/packages/core) | `7.5.5` | `9.0.5` | | [axios](https://github.com/axios/axios) | `0.28.0` | `1.6.0` | | [class-validator](https://github.com/typestack/class-validator) | `0.12.2` | `0.14.0` | | [json5](https://github.com/json5/json5) | `1.0.1` | `1.0.2` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.12.5` | `7.23.9` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.2.1` | `4.2.2` | | [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` | | [jsdom](https://github.com/jsdom/jsdom) | `16.4.0` | `16.7.0` | | [loader-utils](https://github.com/webpack/loader-utils) | `1.4.0` | `1.4.2` | | [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.2` | | [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` | | [@nestjs/cli](https://github.com/nestjs/nest-cli) | `7.5.1` | `10.3.2` | | [moment](https://github.com/moment/moment) | `2.29.0` | `2.30.1` | | [moment-timezone](https://github.com/moment/moment-timezone) | `0.5.31` | `0.5.45` | | [swagger-ui-dist](https://github.com/swagger-api/swagger-ui) | `3.33.0` | `5.11.7` | | [swagger-ui-express](https://github.com/scottie1984/swagger-ui-express) | `4.1.4` | `4.6.3` | Updates `@nestjs/core` from 7.5.5 to 9.0.5 - [Release notes](https://github.com/nestjs/nest/releases) - [Commits](https://github.com/nestjs/nest/commits/v9.0.5/packages/core) Updates `axios` from 0.28.0 to 1.6.0 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v0.28.0...v1.6.0) Updates `class-validator` from 0.12.2 to 0.14.0 - [Release notes](https://github.com/typestack/class-validator/releases) - [Changelog](https://github.com/typestack/class-validator/blob/develop/CHANGELOG.md) - [Commits](typestack/class-validator@v0.12.2...v0.14.0) Updates `json5` from 1.0.1 to 1.0.2 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) Updates `@babel/traverse` from 7.12.5 to 7.23.9 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.9/packages/babel-traverse) Updates `browserify-sign` from 4.2.1 to 4.2.2 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.2.1...v4.2.2) Updates `decode-uri-component` from 0.2.0 to 0.2.2 - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) Updates `jsdom` from 16.4.0 to 16.7.0 - [Release notes](https://github.com/jsdom/jsdom/releases) - [Changelog](https://github.com/jsdom/jsdom/blob/main/Changelog.md) - [Commits](jsdom/jsdom@16.4.0...16.7.0) Updates `loader-utils` from 1.4.0 to 1.4.2 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md) - [Commits](webpack/loader-utils@v1.4.0...v1.4.2) Updates `minimatch` from 3.0.4 to 3.1.2 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.0.4...v3.1.2) Updates `minimist` from 1.2.5 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.8) Updates `@nestjs/cli` from 7.5.1 to 10.3.2 - [Release notes](https://github.com/nestjs/nest-cli/releases) - [Changelog](https://github.com/nestjs/nest-cli/blob/master/.release-it.json) - [Commits](nestjs/nest-cli@7.5.1...10.3.2) Updates `moment` from 2.29.0 to 2.30.1 - [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md) - [Commits](moment/moment@2.29.0...2.30.1) Updates `moment-timezone` from 0.5.31 to 0.5.45 - [Release notes](https://github.com/moment/moment-timezone/releases) - [Changelog](https://github.com/moment/moment-timezone/blob/develop/changelog.md) - [Commits](moment/moment-timezone@0.5.31...0.5.45) Updates `node-fetch` from 2.6.1 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.1...v2.7.0) Updates `qs` from 6.5.2 to 6.7.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.5.2...v6.7.0) Updates `tough-cookie` from 2.5.0 to 4.1.3 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v2.5.0...v4.1.3) Updates `shelljs` from 0.8.4 to 0.8.5 - [Release notes](https://github.com/shelljs/shelljs/releases) - [Changelog](https://github.com/shelljs/shelljs/blob/master/CHANGELOG.md) - [Commits](shelljs/shelljs@v0.8.4...v0.8.5) Updates `swagger-ui-dist` from 3.33.0 to 5.11.7 - [Release notes](https://github.com/swagger-api/swagger-ui/releases) - [Changelog](https://github.com/swagger-api/swagger-ui/blob/master/.releaserc) - [Commits](swagger-api/swagger-ui@v3.33.0...v5.11.7) Updates `swagger-ui-express` from 4.1.4 to 4.6.3 - [Release notes](https://github.com/scottie1984/swagger-ui-express/releases) - [Commits](scottie1984/swagger-ui-express@4.1.4...4.6.3) --- updated-dependencies: - dependency-name: "@nestjs/core" dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: class-validator dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: decode-uri-component dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: jsdom dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: loader-utils dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: minimatch dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: minimist dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: "@nestjs/cli" dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: moment dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: moment-timezone dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: node-fetch dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: qs dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: tough-cookie dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: shelljs dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: swagger-ui-dist dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: swagger-ui-express dependency-type: direct:production dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Feb 21, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 1 directories with 20 updates #154

Bump the npm_and_yarn group across 1 directories with 20 updates #154

dependabot bot commented on behalf of github Feb 21, 2024

Bump the npm_and_yarn group across 1 directories with 20 updates #154

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directories with 20 updates #154

Conversation

dependabot bot commented on behalf of github Feb 21, 2024

v9.0.5 (2022-07-20)

Bug fixes

Enhancements

Dependencies

Committers: 4

v9.0.2

Bug fixes

Enhancements

Dependencies

Release v1.6.0

Release notes:

Bug Fixes

PRs

Contributors to this release

Release v1.5.1

Release notes:

Bug Fixes

Contributors to this release

Release v1.5.0

Release notes:

Bug Fixes

Features

1.6.0 (2023-10-26)

Bug Fixes

PRs

Contributors to this release

1.5.1 (2023-09-26)

Bug Fixes

Contributors to this release

PRs

1.5.0 (2023-08-26)

0.14.0 (2022-12-09)

Added

Fixed

Changed

BREAKING CHANGES

v1.0.2

Unreleased [code, diff]

v2.2.3 [code, diff]

v2.2.2 [code, diff]

v2.2.1 [code, diff]

v2.2.0 [code, diff]

v2.1.3 [code, diff]

v2.1.2 [code, diff]

v7.23.9 (2024-01-25)

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

🔬 Output optimization

Committers: 4

v7.23.8 (2024-01-08)

🐛 Bug Fix

↩️ Revert

🔬 Output optimization

v7.23.9 (2024-01-25)

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

🔬 Output optimization

v7.23.8 (2024-01-08)

🐛 Bug Fix

↩️ Revert

🔬 Output optimization

v7.23.7 (2023-12-29)

🐛 Bug Fix

v4.2.2 - 2023-10-25

Fixed

Commits

v0.2.2

v0.2.1

Version 16.7.0

Version 16.6.0

Version 16.5.3

Version 16.5.2

Version 16.5.1