Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps-dev): bump the npm group with 5 updates #261

Closed
wants to merge 1 commit into from
Closed

build(deps-dev): bump the npm group with 5 updates #261

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 18, 2023
edited
Loading

Bumps the npm group with 5 updates:

Package From To
cssnano 6.0.1 6.0.2
markdown-it 13.0.2 14.0.0
postcss 8.4.31 8.4.32
simple-icons 9.19.0 10.3.0
tailwindcss 3.3.5 3.3.6

Updates cssnano from 6.0.1 to 6.0.2

Release notes

Sourced from cssnano's releases.

v6.0.2

  • fix: update cssnano peer dependency to 8.4.31 to avoid security issue
  • fix: update postcss-calc to 9.0.1 to solve disappearing expressions inside two brackets
  • deps(postcss-svgo): update SVGO to 3.0.5 and update doc
  • chore: update css-declaration-sorter
  • fix(postcss-minify-selectors): prevent mangling of timeline range names
  • fix(postcss-convert-values): keep percent unit in @Property
  • chore(cssnano): update lilconfig to 3.0.0
Commits

Updates markdown-it from 13.0.2 to 14.0.0

Changelog

Sourced from markdown-it's changelog.

[14.0.0] - 2023-12-08

Changed

  • Drop ancient browsers support (use .fromCodePoint and other features).
  • Rewrite to ESM (including all plugins/deps). CJS fallback still available. No signatures changed, except markdown-it-emoji plugin.
  • Dropped dist/ folder from repo, build on package publish.
  • Set punicode.js as external dependency.

Fixed

  • Html tokens inside img alt are now rendered as their original text, #896.
  • Hardbreaks inside img alt are now rendered as newlines.
Commits

Updates postcss from 8.4.31 to 8.4.32

Release notes

Sourced from postcss's releases.

8.4.32

Changelog

Sourced from postcss's changelog.

8.4.32

  • Fixed postcss().process() types (by Andrew Ferreira).
Commits

Updates simple-icons from 9.19.0 to 10.3.0

Release notes

Sourced from simple-icons's releases.

Release 43 new icons and 15 updated icons (v10.3.0)

New Icons

Updated Icons

... (truncated)

Commits

Updates tailwindcss from 3.3.5 to 3.3.6

Release notes

Sourced from tailwindcss's releases.

v3.3.6

Fixed

  • Don’t add spaces to negative numbers following a comma (#12324)
  • Don't emit @config in CSS when watching via the CLI (#12327)
  • Improve types for resolveConfig (#12272)
  • Ensure configured font-feature-settings for mono are included in Preflight (#12342)
  • Improve candidate detection in minified JS arrays (without spaces) (#12396)
  • Don't crash when given applying a variant to a negated version of a simple utility (#12514)
  • Fix support for slashes in arbitrary modifiers (#12515)
  • Fix source maps of variant utilities that come from an @layer rule (#12508)
  • Fix loading of built-in plugins when using an ESM or TypeScript config with the Standalone CLI (#12506)
Changelog

Sourced from tailwindcss's changelog.

[3.3.6] - 2023-12-04

Fixed

  • Improve types for resolveConfig (#12272)
  • Don’t add spaces to negative numbers following a comma (#12324)
  • Don't emit @config in CSS when watching via the CLI (#12327)
  • Ensure configured font-feature-settings for mono are included in Preflight (#12342)
  • Improve candidate detection in minified JS arrays (without spaces) (#12396)
  • Don't crash when given applying a variant to a negated version of a simple utility (#12514)
  • Fix support for slashes in arbitrary modifiers (#12515)
  • Fix source maps of variant utilities that come from an @layer rule (#12508)
  • Fix loading of built-in plugins when using an ESM or TypeScript config with the Standalone CLI (#12506)
Commits
  • 3125829 3.3.6
  • 16fd9ff Fix candidate detection regex
  • 89470d2 Improve candidate detection in minified JS arrays (without spaces) (#12396)
  • e26a1ba Fix loading of built-in plugins when using an ESM or TypeScript config with t...
  • 2dcb1fc Fix source maps of variant utilities that come from an @layer rule (#12508)
  • adb6f15 Fix generation of utilities that use slashes in arbitrary modifiers (#12515)
  • bbfb5a3 Don't crash when given applying a variant to a negated version of a simple ut...
  • 3713207 Fix code style
  • da0ee9c Remove unused import
  • 817c466 Ensure configured font-feature-settings for mono are included in Prefligh...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps-dev): bump the npm group with 5 updates
f404daa 
Bumps the npm group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [cssnano](https://github.com/cssnano/cssnano) | `6.0.1` | `6.0.2` |
| [markdown-it](https://github.com/markdown-it/markdown-it) | `13.0.2` | `14.0.0` |
| [postcss](https://github.com/postcss/postcss) | `8.4.31` | `8.4.32` |
| [simple-icons](https://github.com/simple-icons/simple-icons) | `9.19.0` | `10.3.0` |
| [tailwindcss](https://github.com/tailwindlabs/tailwindcss) | `3.3.5` | `3.3.6` |


Updates `cssnano` from 6.0.1 to 6.0.2
- [Release notes](https://github.com/cssnano/cssnano/releases)
- [Commits](https://github.com/cssnano/cssnano/compare/[email protected]@6.0.2)

Updates `markdown-it` from 13.0.2 to 14.0.0
- [Changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md)
- [Commits](markdown-it/markdown-it@13.0.2...14.0.0)

Updates `postcss` from 8.4.31 to 8.4.32
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@8.4.31...8.4.32)

Updates `simple-icons` from 9.19.0 to 10.3.0
- [Release notes](https://github.com/simple-icons/simple-icons/releases)
- [Commits](simple-icons/simple-icons@9.19.0...10.3.0)

Updates `tailwindcss` from 3.3.5 to 3.3.6
- [Release notes](https://github.com/tailwindlabs/tailwindcss/releases)
- [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/master/CHANGELOG.md)
- [Commits](tailwindlabs/tailwindcss@v3.3.5...v3.3.6)

---
updated-dependencies:
- dependency-name: cssnano
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: markdown-it
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm
- dependency-name: postcss
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: simple-icons
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm
- dependency-name: tailwindcss
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Dec 18, 2023
@dependabot dependabot bot requested a review from jakemulley December 18, 2023 06:11
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 25, 2023

Superseded by #263.

@dependabot dependabot bot closed this Dec 25, 2023
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/npm-3c27029482 branch December 25, 2023 06:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jakemulley jakemulley Awaiting requested review from jakemulley

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants