New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the npm_and_yarn group across 3 directories with 11 updates #59

Open

dependabot wants to merge 1 commit into main from dependabot/npm_and_yarn/atm-locator/npm_and_yarn-security-group-a72d6b5848

Commits on Apr 3, 2024

Bump the npm_and_yarn group across 3 directories with 11 updates

Bumps the npm_and_yarn group with 4 updates in the /atm-locator directory: [express](https://github.com/expressjs/express), [ip](https://github.com/indutny/node-ip), [semver](https://github.com/npm/node-semver) and [nodemon](https://github.com/remy/nodemon).
Bumps the npm_and_yarn group with 7 updates in the /customer-auth directory:

| Package | From | To |
| --- | --- | --- |
| [express](https://github.com/expressjs/express) | `4.18.2` | `4.19.2` |
| [ip](https://github.com/indutny/node-ip) | `2.0.0` | `2.0.1` |
| [semver](https://github.com/npm/node-semver) | `5.7.2` | `7.5.4` |
| [nodemon](https://github.com/remy/nodemon) | `2.0.22` | `3.1.0` |
| [validator](https://github.com/validatorjs/validator.js) | `0.4.28` | `` |
| [auth](https://github.com/crcn/node-auth) | `0.0.9` | `1.0.2` |
| [es5-ext](https://github.com/medikoo/es5-ext) | `0.10.62` | `0.10.64` |

Bumps the npm_and_yarn group with 4 updates in the /ui directory: [axios](https://github.com/axios/axios), [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) and [follow-redirects](https://github.com/follow-redirects/follow-redirects).


Updates `express` from 4.18.2 to 4.19.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@4.18.2...4.19.2)

Updates `ip` from 2.0.0 to 2.0.1
- [Commits](indutny/node-ip@v2.0.0...v2.0.1)

Updates `semver` from 5.7.2 to 7.5.4
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.2...v7.5.4)

Updates `nodemon` from 2.0.22 to 3.1.0
- [Release notes](https://github.com/remy/nodemon/releases)
- [Commits](remy/nodemon@v2.0.22...v3.1.0)

Updates `express` from 4.18.2 to 4.19.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@4.18.2...4.19.2)

Updates `ip` from 2.0.0 to 2.0.1
- [Commits](indutny/node-ip@v2.0.0...v2.0.1)

Updates `semver` from 5.7.2 to 7.5.4
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.2...v7.5.4)

Updates `nodemon` from 2.0.22 to 3.1.0
- [Release notes](https://github.com/remy/nodemon/releases)
- [Commits](remy/nodemon@v2.0.22...v3.1.0)

Removes `validator`

Updates `auth` from 0.0.9 to 1.0.2
- [Commits](https://github.com/crcn/node-auth/commits)

Updates `es5-ext` from 0.10.62 to 0.10.64
- [Release notes](https://github.com/medikoo/es5-ext/releases)
- [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md)
- [Commits](medikoo/es5-ext@v0.10.62...v0.10.64)

Updates `axios` from 1.5.1 to 1.6.0
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.5.1...v1.6.0)

Updates `vite` from 4.4.11 to 4.5.3
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/v4.5.3/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v4.5.3/packages/vite)

Updates `@babel/traverse` from 7.23.0 to 7.24.1
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.24.1/packages/babel-traverse)

Updates `follow-redirects` from 1.15.3 to 1.15.6
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](follow-redirects/follow-redirects@v1.15.3...v1.15.6)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
  dependency-group: npm_and_yarn-security-group
- dependency-name: ip
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: semver
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: nodemon
  dependency-type: direct:production
  dependency-group: npm_and_yarn-security-group
- dependency-name: express
  dependency-type: direct:production
  dependency-group: npm_and_yarn-security-group
- dependency-name: ip
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: semver
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: nodemon
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: validator
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: auth
  dependency-type: direct:production
  dependency-group: npm_and_yarn-security-group
- dependency-name: es5-ext
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: axios
  dependency-type: direct:production
  dependency-group: npm_and_yarn-security-group
- dependency-name: vite
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: "@babel/traverse"
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: follow-redirects
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
...

Signed-off-by: dependabot[bot] <[email protected]>

dependabot[bot] committed Apr 3, 2024