Bump the npm_and_yarn group across 1 directory with 12 updates #15

dependabot · 2024-10-19T11:21:46Z

Bumps the npm_and_yarn group with 9 updates in the / directory:

Package	From	To
next	`14.2.3`	`14.2.15`
postcss	`8.4.38`	`8.4.39`
body-parser	`1.20.2`	`1.20.3`
express	`4.19.2`	`4.21.1`
markdown-to-jsx	`7.3.2`	`7.5.0`
@storybook/addon-essentials	`8.0.10`	`8.3.6`
@storybook/blocks	`8.0.10`	`8.3.6`
micromatch	`4.0.5`	`4.0.8`
webpack	`5.91.0`	`5.95.0`

Updates next from 14.2.3 to 14.2.15

Release notes

Sourced from next's releases.

v14.2.15

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

support breadcrumb style catch-all parallel routes #65063

Provide non-dynamic segments to catch-all parallel routes #65233

Fix client reference access causing metadata missing #70732

feat(next/image): add support for decoding prop #70298

feat(next/image): add images.localPatterns config #70529

fix(next/image): handle undefined images.localPatterns config in images-manifest.json

fix: Do not omit alt on getImgProps return type, ImgProps #70608

[i18n] Routing fix #70761

Credits

Huge thanks to @ztanner, @agadzik, @huozhi, @styfle, @icyJoseph and @wyattjoh for helping!

v14.2.14

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Fix: clone response in first handler to prevent race (#70082) (#70649)

Respect reexports from metadata API routes (#70508) (#70647)

Externalize node binary modules for app router (#70646)

Fix revalidateTag() behaviour when invoked in server components (#70446) (#70642)

Fix prefetch bailout detection for nested loading segments (#70618)

Add missing node modules to externals (#70382)

Feature: next/image: add support for images.remotePatterns.search (#70302)

Credits

Huge thanks to @styfle, @ztanner, @ijjk, @huozhi and @wyattjoh for helping!

v14.2.13

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Fix missing cache-control on SSR app route (#70265)

feat: add polyfill of URL.canParse for browser compatibility (#70228)

Fix vercel og package memory leak (#70214)

Fix startTime error on Android 9 with Chrome 74 (#67391)

Credits

Huge thanks to @raeyoung-kim, @huozhi, @devjiwonchoi, and @ijjk for helping!

v14.2.12

[!NOTE]

... (truncated)

Commits

737c29e v14.2.15
1c8234e backport: [i18n] Routing fix #70761 (#70976)
bb3f580 fix: Do not omit alt on getImgProps return type, ImgProps (#70818)
cb8113b fix(next/image): handle undefined images.localPatterns config in `images-ma...
9c1191a fix missing helpers in next-test-utils.ts
0de4183 fix lint
e03c4ff feat(next/image): add images.localPatterns config (#70802)
540ea2d backport: support breadcrumb style catch-all parallel routes (#65063) (#70794)
0d0448b Fix client reference access causing metadata missing (#70732) (#70788)
381d1f9 feat(next/image): add support for decoding prop (#70678)
Additional commits viewable in compare view

Updates postcss from 8.4.38 to 8.4.39

Release notes

Sourced from postcss's releases.

8.4.39

Fixed CssSyntaxError types (by @romainmenke).

Changelog

Sourced from postcss's changelog.

8.4.39

Fixed CssSyntaxError types (by @romainmenke).

Commits

e0efb16 Release 8.4.39 version
48304c5 Update dependencies
155ac57 Merge pull request #1947 from romainmenke/fix-css-syntax-error-type--reliable...
1b9b466 fix CssSyntaxError type declaration
3f4d96e Update dependencies
b952be7 Update CI actions
b512b29 Typo
f9a9868 Move to pnpm 9 and Node.js 22
79052c2 Merge pull request #1940 from Xvezda/patch-1
0eedad4 Update changed urls
Additional commits viewable in compare view

Updates body-parser from 1.20.2 to 1.20.3

Release notes

Sourced from body-parser's releases.

1.20.3

What's Changed

Important

deps: [email protected]

add depth option to customize the depth level in the parser

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity). Documentation

Other changes

chore: add support for OSSF scorecard reporting by @inigomarquinez in expressjs/body-parser#522

ci: fix errors in ci github action for node 8 and 9 by @inigomarquinez in expressjs/body-parser#523

fix: pin to [email protected] by @wesleytodd in expressjs/body-parser#527

deps: [email protected] by @melikhov-dev in expressjs/body-parser#521

Add OSSF Scorecard badge by @bjohansebas in expressjs/body-parser#531

Linter by @UlisesGascon in expressjs/body-parser#534

Release: 1.20.3 by @UlisesGascon in expressjs/body-parser#535

New Contributors

@inigomarquinez made their first contribution in expressjs/body-parser#522

@melikhov-dev made their first contribution in expressjs/body-parser#521

@bjohansebas made their first contribution in expressjs/body-parser#531

@UlisesGascon made their first contribution in expressjs/body-parser#534

Full Changelog: expressjs/body-parser@1.20.2...1.20.3

Changelog

Sourced from body-parser's changelog.

1.20.3 / 2024-09-10

deps: [email protected]

add depth option to customize the depth level in the parser

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Commits

1752951 1.20.3
39744cf chore: linter (#534)
b2695c4 Merge commit from fork
ade0f3f add scorecard to readme (#531)
99a1bd6 deps: [email protected] (#521)
9478591 fix: pin to [email protected]
83db46a ci: fix errors in ci github action for node 8 and 9 (#523)
9d4e212 chore: add support for OSSF scorecard reporting (#522)
See full diff in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.

Updates express from 4.19.2 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1

What's Changed

Backport a fix for CVE-2024-47764 to the 4.x branch by @joshbuker in expressjs/express#6029

Release: 4.21.1 by @UlisesGascon in expressjs/express#6031

Full Changelog: expressjs/express@4.21.0...4.21.1

4.21.0

What's Changed

Deprecate "back" magic string in redirects by @blakeembrey in expressjs/express#5935

[email protected] by @wesleytodd in expressjs/express#5954

fix(deps): [email protected] by @wesleytodd in expressjs/express#5951

Upgraded dependency qs to 6.13.0 to match qs in body-parser by @agadzinski93 in expressjs/express#5946

New Contributors

@agadzinski93 made their first contribution in expressjs/express#5946

Full Changelog: expressjs/express@4.20.0...4.21.0

4.20.0

What's Changed

Important

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

Other Changes

4.19.2 Staging by @wesleytodd in expressjs/express#5561

remove duplicate location test for data uri by @wesleytodd in expressjs/express#5562

feat: document beta releases expectations by @marco-ippolito in expressjs/express#5565

Cut down on duplicated CI runs by @jonchurch in expressjs/express#5564

Add a Threat Model by @UlisesGascon in expressjs/express#5526

Assign captain of encodeurl by @blakeembrey in expressjs/express#5579

Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by @jonchurch in expressjs/express#5587

docs: update Security.md by @inigomarquinez in expressjs/express#5590

docs: update triage nomination policy by @UlisesGascon in expressjs/express#5600

Add CodeQL (SAST) by @UlisesGascon in expressjs/express#5433

docs: add UlisesGascon as triage initiative captain by @UlisesGascon in expressjs/express#5605

deps: encodeurl@~2.0.0 by @blakeembrey in expressjs/express#5569

skip QUERY method test by @jonchurch in expressjs/express#5628

ignore ETAG query test on 21 and 22, reuse skip util by @jonchurch in expressjs/express#5639

add support Node.js@22 in the CI by @mertcanaltin in expressjs/express#5627

doc: add table of contents, tc/triager lists to readme by @mertcanaltin in expressjs/express#5619

List and sort all projects, add captains by @blakeembrey in expressjs/express#5653

docs: add @UlisesGascon as captain for cookie-parser by @UlisesGascon in expressjs/express#5666

✨ bring back query tests for node 21 by @ctcpip in expressjs/express#5690

[v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by @jonchurch in expressjs/express#5672

skip QUERY tests for Node 21 only, still not supported by @jonchurch in expressjs/express#5695

... (truncated)

Changelog

Sourced from express's changelog.

4.21.1 / 2024-10-08

Backported a fix for CVE-2024-47764

4.21.0 / 2024-09-11

Deprecate res.location("back") and res.redirect("back") magic string

deps: [email protected]

includes [email protected]

deps: [email protected]

deps: [email protected]

4.20.0 / 2024-09-10

deps: [email protected]

Remove link renderization in html while redirecting

deps: [email protected]

Remove link renderization in html while redirecting

deps: [email protected]

add depth option to customize the depth level in the parser

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

deps: [email protected]

Adds support for named matching groups in the routes using a regex

Adds backtracking protection to parameters without regexes defined

deps: encodeurl@~2.0.0

Removes encoding of \, |, and ^ to align better with URL spec

Deprecate passing options.maxAge and options.expires to res.clearCookie

Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie

Commits

8e229f9 4.21.1
a024c8a fix(deps): [email protected]
7e562c6 4.21.0
1bcde96 fix(deps): [email protected] (#5946)
7d36477 fix(deps): [email protected] (#5951)
40d2d8f fix(deps): [email protected]
77ada90 Deprecate "back" magic string in redirects (#5935)
21df421 4.20.0
4c9ddc1 feat: upgrade to [email protected]
9ebe5d5 feat: upgrade to [email protected] (#5928)
Additional commits viewable in compare view

Updates express from 4.19.2 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1

What's Changed

Backport a fix for CVE-2024-47764 to the 4.x branch by @joshbuker in expressjs/express#6029

Release: 4.21.1 by @UlisesGascon in expressjs/express#6031

Full Changelog: expressjs/express@4.21.0...4.21.1

4.21.0

What's Changed

Deprecate "back" magic string in redirects by @blakeembrey in expressjs/express#5935

[email protected] by @wesleytodd in expressjs/express#5954

fix(deps): [email protected] by @wesleytodd in expressjs/express#5951

Upgraded dependency qs to 6.13.0 to match qs in body-parser by @agadzinski93 in expressjs/express#5946

New Contributors

@agadzinski93 made their first contribution in expressjs/express#5946

Full Changelog: expressjs/express@4.20.0...4.21.0

4.20.0

What's Changed

Important

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

Other Changes

4.19.2 Staging by @wesleytodd in expressjs/express#5561

remove duplicate location test for data uri by @wesleytodd in expressjs/express#5562

feat: document beta releases expectations by @marco-ippolito in expressjs/express#5565

Cut down on duplicated CI runs by @jonchurch in expressjs/express#5564

Add a Threat Model by @UlisesGascon in expressjs/express#5526

Assign captain of encodeurl by @blakeembrey in expressjs/express#5579

Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by @jonchurch in expressjs/express#5587

docs: update Security.md by @inigomarquinez in expressjs/express#5590

docs: update triage nomination policy by @UlisesGascon in expressjs/express#5600

Add CodeQL (SAST) by @UlisesGascon in expressjs/express#5433

docs: add UlisesGascon as triage initiative captain by @UlisesGascon in expressjs/express#5605

deps: encodeurl@~2.0.0 by @blakeembrey in expressjs/express#5569

skip QUERY method test by @jonchurch in expressjs/express#5628

ignore ETAG query test on 21 and 22, reuse skip util by @jonchurch in expressjs/express#5639

add support Node.js@22 in the CI by @mertcanaltin in expressjs/express#5627

doc: add table of contents, tc/triager lists to readme by @mertcanaltin in expressjs/express#5619

List and sort all projects, add captains by @blakeembrey in expressjs/express#5653

docs: add @UlisesGascon as captain for cookie-parser by @UlisesGascon in expressjs/express#5666

✨ bring back query tests for node 21 by @ctcpip in expressjs/express#5690

[v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by @jonchurch in expressjs/express#5672

skip QUERY tests for Node 21 only, still not supported by @jonchurch in expressjs/express#5695

... (truncated)

Changelog

Sourced from express's changelog.

4.21.1 / 2024-10-08

Backported a fix for CVE-2024-47764

4.21.0 / 2024-09-11

Deprecate res.location("back") and res.redirect("back") magic string

deps: [email protected]

includes [email protected]

deps: [email protected]

deps: [email protected]

4.20.0 / 2024-09-10

deps: [email protected]

Remove link renderization in html while redirecting

deps: [email protected]

Remove link renderization in html while redirecting

deps: [email protected]

add depth option to customize the depth level in the parser

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

deps: [email protected]

Adds support for named matching groups in the routes using a regex

Adds backtracking protection to parameters without regexes defined

deps: encodeurl@~2.0.0

Removes encoding of \, |, and ^ to align better with URL spec

Deprecate passing options.maxAge and options.expires to res.clearCookie

Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie

Commits

8e229f9 4.21.1
a024c8a fix(deps): [email protected]
7e562c6 4.21.0
1bcde96 fix(deps): [email protected] (#5946)
7d36477 fix(deps): [email protected] (#5951)
40d2d8f fix(deps): [email protected]
77ada90 Deprecate "back" magic string in redirects (#5935)
21df421 4.20.0
4c9ddc1 feat: upgrade to [email protected]
9ebe5d5 feat: upgrade to [email protected] (#5928)
Additional commits viewable in compare view

Updates markdown-to-jsx from 7.3.2 to 7.5.0

Release notes

Sourced from markdown-to-jsx's releases.

v7.5.0

Minor Changes
62a16f3: Allow modifying HTML attribute sanitization when options.sanitizer is passed by the composer.

By default a lightweight URL sanitizer function is provided to avoid common attack vectors that might be placed into the href of an anchor tag, for example. The sanitizer receives the input, the HTML tag being targeted, and the attribute name. The original function is available as a library export called sanitizer.

This can be overridden and replaced with a custom sanitizer if desired via options.sanitizer:
// sanitizer in this situation would receive:
// ('javascript:alert("foo")', 'a', 'href')
<Markdown options={{ sanitizer: (value, tag, attribute) => value }}>
{[foo](https://github.com/quantizor/markdown-to-jsx/blob/HEAD/javascript:alert(&quot;foo&quot;))}
</Markdown>
// or
compiler('foo', {
sanitizer: (value, tag, attribute) => value,
})
Patch Changes

553a175: Replace RuleType enum with an object

v7.4.7

Patch Changes

7603248: Fix parsing isolation of individual table cells.

f9328cc: Improved block html detection regex to handle certain edge cases that cause extreme slowness. Thank you @devbrains-com for the basis for this fix 🤝

v7.4.6

Patch Changes
a9e5276: Browsers assign element with id to the global scope using the value as the variable name. E.g.: <h1 id="analytics"> can be referenced via window.analytics. This can be a problem when a name conflict happens. For instance, pages that expect analytics.push() to be a function will stop working if the an element with an id of analytics exists in the page.

In this change, we export the slugify function so that users can easily augment it. This can be used to avoid variable name conflicts by giving the element a different id.
import { slugify } from 'markdown-to-jsx';
options={{
slugify: str => {
let result = slugify(str)

... (truncated)

Changelog

Sourced from markdown-to-jsx's changelog.

7.5.0

Minor Changes
62a16f3: Allow modifying HTML attribute sanitization when options.sanitizer is passed by the composer.

By default a lightweight URL sanitizer function is provided to avoid common attack vectors that might be placed into the href of an anchor tag, for example. The sanitizer receives the input, the HTML tag being targeted, and the attribute name. The original function is available as a library export called sanitizer.

This can be overridden and replaced with a custom sanitizer if desired via options.sanitizer:
// sanitizer in this situation would receive:
// ('javascript:alert("foo")', 'a', 'href')
;<Markdown options={{ sanitizer: (value, tag, attribute) => value }}>
{[foo](https://github.com/quantizor/markdown-to-jsx/blob/main/javascript:alert(&quot;foo&quot;))}
</Markdown>
// or
compiler('foo', {
sanitizer: (value, tag, attribute) => value,
})
Patch Changes

553a175: Replace RuleType enum with an object

7.4.7

Patch Changes

7603248: Fix parsing isolation of individual table cells.

f9328cc: Improved block html detection regex to handle certain edge cases that cause extreme slowness. Thank you @devbrains-com for the basis for this fix 🤝

7.4.6

Patch Changes
a9e5276: Browsers assign element with id to the global scope using the value as the variable name. E.g.: <h1 id="analytics"> can be referenced via window.analytics. This can be a problem when a name conflict happens. For instance, pages that expect analytics.push() to be a function will stop working if the an element with an id of analytics exists in the page.

In this change, we export the slugify function so that users can easily augment it. This can be used to avoid variable name conflicts by giving the element a different id.
import { slugify } from 'markdown-to-jsx';
options={{

... (truncated)

Commits

3a04b9e Version Packages (#600)
62a16f3 feat: allow composer to adjust sanitization (#564) (#579)
553a175 refactor: replace RuleType enum with a const (#539) (#594)
acd970d Version Packages (#571)
a502174 fix: handle incomplete table-like syntax better
7603248 fix: table cell parsing isolation
f9328cc fix: adjusted block html regex to avoid perf issues
dcc457e chore: revert prettier
ede3cd8 Version Packages (#567)
a9e5276 Export slugify function (#566)
Additional commits viewable in compare view

Updates @storybook/addon-essentials from 8.0.10 to 8.3.6

Release notes

Sourced from @storybook/addon-essentials's releases.

v8.3.6

8.3.6

CLI: Install Svelte CSF v5 in Svelte5 projects - #29323, thanks @shilman!

Svelte: Add v5 stories to CLI templates - #29382, thanks @JReinhold!

v8.3.5

8.3.5

CLI: Update the React Native init to include v8 dependencies - #29273, thanks @dannyhw!

Vitest plugin: Fix renamed export stories - #29250, thanks @shilman!

v8.3.4

8.3.4

Addon Test: Support story name as test description - #29147, thanks @InfiniteXyy!

Addon-Interactions: Use ansi-to-html for colored test errors - #29110, thanks @kasperpeulen!

v8.3.3

8.3.3

CLI: Show constraints in error when getting depndencies - #29187, thanks @andrasczeh!

React-Vite: Downgrade react-docgen-typescript plugin - #29184, thanks @shilman!

UI: Fix composed storybook TooltipLinkList bug where href isn't passed forward - #29175, thanks @JSMike!

v8.3.2

8.3.2

CLI: Fix skip-install for stable latest releases - #29133, thanks @valentinpalkovic!

Core: Do not add packageManager field to package.json during storybook dev - #29152, thanks @valentinpalkovic!

v8.3.1

8.3.1

Angular: Fix sourceDecorator to apply excludeDecorators flag - #29069, thanks @JSMike!

Core: Do not prebundle better-opn - #29137, thanks @valentinpalkovic!

Core: Do not prebundle jsdoc-type-pratt-parser - #29134, thanks @valentinpalkovic!

Next.js: Upgrade sass-loader from ^12 to ^13 - #29040, thanks @HoncharenkoZhenya!

v8.3.0

8.3.0

Fresh out of the oven! Storybook 8.3 brings you:

⚡️ First-class Vitest integration to run stories as component tests

🔼 Next.js-Vite framework for Vitest compatibility and better DX

🗜️ Further reduced bundle size for a smaller install footprint

🌐 Experimental Story globals to standardize stories for themes, viewports, and locales

💯 Hundreds more improvements

... (truncated)

Changelog

Sourced from @storybook/addon-essentials's changelog.

8.3.6

CLI: Install Svelte CSF v5 in Svelte5 projects - #29323, thanks @shilman!

Svelte: Add v5 stories to CLI templates - #29382, thanks @JReinhold!

8.3.5

CLI: Update the React Native init to include v8 dependencies - #29273, thanks @dannyhw!

Vitest plugin: Fix renamed export stories - #29250, thanks @shilman!

8.3.4

Addon Test: Support story name as test description - #29147, thanks @InfiniteXyy!

Addon-Interactions: Use ansi-to-html for colored test errors - #29110, thanks @kasperpeulen!

8.3.3

CLI: Show constraints in error when getting depndencies - #29187, thanks @andrasczeh!

React-Vite: Downgrade react-docgen-typescript plugin - #29184, thanks @shilman!

UI: Fix composed storybook TooltipLinkList bug where href isn't passed forward - #29175, thanks @JSMike!

8.3.2

CLI: Fix skip-install for stable latest releases - #29133, thanks @valentinpalkovic!

Core: Do not add packageManager field to package.json during storybook dev - #29152, thanks @valentinpalkovic!

8.3.1

Angular: Fix sourceDecorator to apply excludeDecorators flag - #29069, thanks @JSMike!

Core: Do not prebundle better-opn - #29137, thanks @valentinpalkovic!

Core: Do not prebundle jsdoc-type-pratt-parser - #29134, thanks @valentinpalkovic!

Next.js: Upgrade sass-loader from ^12 to ^13 - #29040, thanks @HoncharenkoZhenya!

8.3.0

Fresh out of the oven! Storybook 8.3 brings you:

⚡️ First-class Vitest integration to run stories as component tests

🔼 Next.js-Vite framework for Vitest compatibility and better DX

🗜️ Further reduced bundle size for a smaller install footprint

🌐 Experimental Story globals to standardize stories for themes, viewports, and locales

💯 Hundreds more improvements

Addon Test: Improve messages and post install script handling - #29036, thanks @yannbf!

Addon Viewport: Add default options via parameters - #28944, thanks @ndelangen!

Addon Test: Add experimental vitest integration - #28768, thanks @kasperpeulen!

Addon Test: Fix error message logic in set up file - #28906, thanks @yannbf!

... (truncated)

Commits

a2ee504 Bump version from "8.3.5" to "8.3.6" [skip ci]
b9c7f90 Bump version from "8.3.4" to "8.3.5" [skip ci]
20ab887 Bump version from "8.3.3" to "8.3.4" [skip ci]
e159e49 Bump version from "8.3.2" to "8.3.3" [skip ci]
ee03ab0 Bump version from "8.3.1" to "8.3.2" [skip ci]
43accbc Bump version from "8.3.0" to "8.3.1" [skip ci]
7e94ba6 Bump version from "8.3.0-beta.5" to "8.3.0" [skip ci]
bce7d70 Bump version from "8.3.0-beta.4" to "8.3.0-beta.5" [skip ci]
cce24a0 Bump version from "8.3.0-beta.3" to "8.3.0-beta.4" [skip ci]
daf6159 Bump version from "8.3.0-beta.2" to "8.3.0-beta.3" [skip ci]
Additional commits viewable in compare view

Updates @storybook/blocks from 8.0.10 to 8.3.6

Release notes

Sourced from @storybook/blocks's releases.

v8.3.6

8.3.6

CLI: Install Svelte CSF v5 in Svelte5 projects - #29323, thanks @shilman!

Svelte: Add v5 stories to CLI templates - #29382, thanks @JReinhold!

v8.3.5

8.3.5

CLI: Update the React Native init to include v8 dependencies - #29273, thanks @dannyhw!

Vitest plugin: Fix renamed export stories - #29250, thanks @shilman!

v8.3.4

8.3.4

Addon Test: Support story name as test description - #29147, thanks @InfiniteXyy!

Addon-Interactions: Use ansi-to-html for colored test errors - #29110, thanks @kasperpeulen!

v8.3.3

8.3.3

CLI: Show constraints in error when getting depndencies - #29187, thanks @andrasczeh!

React-Vite: Downgrade react-docgen-typescript plugin - #29184, thanks @shilman!

UI: Fix composed storybook TooltipLinkList bug where href isn't passed forward - #29175, thanks @JSMike!

v8.3.2

8.3.2

CLI: Fix skip-install for stable latest releases - #29133, thanks @valentinpalkovic!

Core: Do not add packageManager field to package.json during storybook dev - #29152, thanks @valentinpalkovic!

v8.3.1

8.3.1

Angular: Fix sourceDecorator to apply excludeDecorators flag - #29069, thanks @JSMike!

Core: Do not prebundle better-opn - #29137, thanks @valentinpalkovic!

Core: Do not prebundle jsdoc-type-pratt-parser - #29134, thanks @valentinpalkovic!

Next.js: Upgrade sass-loader from ^12 to ^13 - #29040, thanks @HoncharenkoZhenya!

v8.3.0

8.3.0

Fresh out of the oven! Storybook 8.3 brings you:

⚡️ First-class Vitest integration to run stories as component tests

🔼 Next.js-Vite framework for Vitest compatibility and better DX

🗜️ Further reduced bundle size for a smaller install footprint

🌐 Experimental Story globals to standardize stories for themes, viewports, and locales

💯 Hundreds more improvements

... (truncated)

Changelog

Sourced from @storybook/blocks's changelog.

8.3.6

CLI: Install Svelte CSF v5 in Svelte5 projects - #29323, thanks @shilman!

Svelte: Add v5 stories to CLI templates - #29382, thanks @JReinhold!

8.3.5

CLI: Update the React Native init to include v8 dependencies - #29273, thanks @dannyhw!

Vitest plugin: Fix renamed export stories -

Bumps the npm_and_yarn group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | [next](https://github.com/vercel/next.js) | `14.2.3` | `14.2.15` | | [postcss](https://github.com/postcss/postcss) | `8.4.38` | `8.4.39` | | [body-parser](https://github.com/expressjs/body-parser) | `1.20.2` | `1.20.3` | | [express](https://github.com/expressjs/express) | `4.19.2` | `4.21.1` | | [markdown-to-jsx](https://github.com/quantizor/markdown-to-jsx) | `7.3.2` | `7.5.0` | | [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) | `8.0.10` | `8.3.6` | | [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/blocks) | `8.0.10` | `8.3.6` | | [micromatch](https://github.com/micromatch/micromatch) | `4.0.5` | `4.0.8` | | [webpack](https://github.com/webpack/webpack) | `5.91.0` | `5.95.0` | Updates `next` from 14.2.3 to 14.2.15 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v14.2.3...v14.2.15) Updates `postcss` from 8.4.38 to 8.4.39 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.38...8.4.39) Updates `body-parser` from 1.20.2 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.20.2...1.20.3) Updates `express` from 4.19.2 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](expressjs/express@4.19.2...4.21.1) Updates `express` from 4.19.2 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](expressjs/express@4.19.2...4.21.1) Updates `markdown-to-jsx` from 7.3.2 to 7.5.0 - [Release notes](https://github.com/quantizor/markdown-to-jsx/releases) - [Changelog](https://github.com/quantizor/markdown-to-jsx/blob/main/CHANGELOG.md) - [Commits](quantizor/markdown-to-jsx@v7.3.2...v7.5.0) Updates `@storybook/addon-essentials` from 8.0.10 to 8.3.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.3.6/code/addons/essentials) Updates `@storybook/blocks` from 8.0.10 to 8.3.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.3.6/code/lib/blocks) Updates `micromatch` from 4.0.5 to 4.0.8 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@4.0.5...4.0.8) Updates `path-to-regexp` from 0.1.7 to 0.1.10 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v0.1.7...v0.1.10) Updates `send` from 0.18.0 to 0.19.0 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.18.0...0.19.0) Updates `serve-static` from 1.15.0 to 1.16.2 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md) - [Commits](expressjs/serve-static@v1.15.0...v1.16.2) Updates `webpack` from 5.91.0 to 5.95.0 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v5.91.0...v5.95.0) --- updated-dependencies: - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: body-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: markdown-to-jsx dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@storybook/blocks" dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: micromatch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Oct 19, 2024

dependabot bot mentioned this pull request Oct 19, 2024

Bump path-to-regexp and express #14

Closed

Divide-By-0 deployed to dependabot/npm_and_yarn/npm_and_yarn-57146343c2 - website (prove.email) PR #15 October 19, 2024 11:21 — with Render View deployment

Divide-By-0 deployed to dependabot/npm_and_yarn/npm_and_yarn-57146343c2 - website (prove.email) PR #15 October 22, 2024 21:50 — with Render View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 1 directory with 12 updates #15

Bump the npm_and_yarn group across 1 directory with 12 updates #15

dependabot bot commented on behalf of github Oct 19, 2024

Bump the npm_and_yarn group across 1 directory with 12 updates #15

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directory with 12 updates #15

Conversation

dependabot bot commented on behalf of github Oct 19, 2024

v14.2.15

Core Changes

Credits

v14.2.14

Core Changes

Credits

v14.2.13

Core Changes

Credits

v14.2.12

8.4.39

8.4.39

1.20.3

What's Changed

Important

Other changes

New Contributors

1.20.3 / 2024-09-10

4.21.1

What's Changed

4.21.0

What's Changed

New Contributors

4.20.0

What's Changed

Important

Other Changes

4.21.1 / 2024-10-08

4.21.0 / 2024-09-11

4.20.0 / 2024-09-10

4.21.1

What's Changed

4.21.0

What's Changed

New Contributors

4.20.0

What's Changed

Important

Other Changes

4.21.1 / 2024-10-08

4.21.0 / 2024-09-11

4.20.0 / 2024-09-10

v7.5.0

Minor Changes

Patch Changes

v7.4.7

Patch Changes

v7.4.6

Patch Changes

7.5.0

Minor Changes

Patch Changes

7.4.7

Patch Changes

7.4.6

Patch Changes

v8.3.6

8.3.6

v8.3.5

8.3.5

v8.3.4

8.3.4

v8.3.3

8.3.3

v8.3.2

8.3.2

v8.3.1

8.3.1

v8.3.0

8.3.0

8.3.6

8.3.5

8.3.4

8.3.3

8.3.2