Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump serialize-javascript, webpack, nuxt and vue-server-renderer #130

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

build(deps): bump serialize-javascript, webpack, nuxt and vue-server-renderer #130

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 11, 2025

Bumps serialize-javascript to 6.0.2 and updates ancestor dependencies serialize-javascript, webpack, nuxt and vue-server-renderer. These dependencies need to be updated together.

Updates serialize-javascript from 5.0.1 to 6.0.2

Release notes

Sourced from serialize-javascript's releases.

v6.0.2

  • fix: serialize URL string contents to prevent XSS (#173) f27d65d
  • Bump @​babel/traverse from 7.10.1 to 7.23.7 (#171) 02499c0
  • docs: update readme with URL support (#146) 0d88527
  • chore: update node version and lock file e2a3a91
  • fix typo (#164) 5a1fa64

yahoo/serialize-javascript@v6.0.1...v6.0.2

v6.0.1

What's Changed

New Contributors

Full Changelog: yahoo/serialize-javascript@v6.0.0...v6.0.1

v6.0.0

Changelog

  • Add support for URL's (#123)
  • Bump mocha from 9.0.0 to 9.0.1 (#124)
  • Bump mocha from 8.4.0 to 9.0.0 (#121)
  • Update Node.js CI matrix (#122)
  • Bump mocha from 8.3.2 to 8.4.0 (#120)
  • Bump lodash from 4.17.19 to 4.17.21 (#119)
  • Bump y18n from 4.0.0 to 4.0.1 (#116)
  • Bump chai from 4.3.3 to 4.3.4 (#115)

... (truncated)

Commits

Updates webpack from 4.46.0 to 4.47.0

Release notes

Sourced from webpack's releases.

v4.47.0

New Features

New Contributors

Full Changelog: webpack/webpack@v4.46.0...v4.47.0

Commits
  • dfffd6a 4.47.0
  • 7395af8 Merge pull request #17628 from iclanton/webpack4-md4-hash
  • 9b50972 Update SplitChunksPlugin to use the updated createHash function.
  • 6f6ae98 Add support for md4 in Node >=18.
  • 3956274 Merge pull request #13778 from StyleT/feature/custom_externals_for_systemjs_t...
  • 1f11600 fix: fixed work of the non-system type externals for "system" library target
  • See full diff in compare view
Maintainer changes

This version was pushed to npm by thelarkinn, a new releaser for webpack since your current version.


Updates nuxt from 2.15.8 to 2.18.1

Release notes

Sourced from nuxt's releases.

v2.18.1

👉 Changelog

compare changes

🩹 Fixes

  • webpack: Depend on earlier version of mkdirp (f67056b9e)

❤️ Contributors

v2.18.0

👉 Changelog

compare changes

🚀 Enhancements

  • webpack: Migrate to memfs (#27652)

🩹 Fixes

  • vue-app: Don't throw if we can't read sessionStorage (#27662)
  • config: Add back md4 monkey-patch for wider ecosystem (#27865)

🏡 Chore

❤️ Contributors

v2.17.4

👉 Changelog

compare changes

🩹 Fixes

  • types: Bump serve-static types to v1.15.7 (1c44c376d)
  • generator: Use maintained html-minifier-terser (#26914)
  • vue-app: Prevent double page mount (#10874)
  • core: Don't skip loading runtime modules if one is improperly resolved (#10193)
  • vue-app: Prevent error page mounting twice (#27484)

... (truncated)

Commits

Updates vue-server-renderer from 2.6.14 to 2.7.16

Release notes

Sourced from vue-server-renderer's releases.

v2.7.16 "Swan Song"

This is the final release for Vue 2.

Vue 2 will reach End of Life on December 31st, 2023. For more details, please read this blog post.

Please refer to CHANGELOG.md for details.

v2.7.16-beta.2

Please refer to CHANGELOG.md for details.

v2.7.16-beta.1

Please refer to CHANGELOG.md for details.

v2.7.15

Please refer to CHANGELOG.md for details.

v2.7.14

Please refer to CHANGELOG.md for details.

v2.7.13

Please refer to CHANGELOG.md for details.

v2.7.12

Please refer to CHANGELOG.md for details.

v2.7.11

Please refer to CHANGELOG.md for details.

v2.7.10

Please refer to CHANGELOG.md for details.

v2.7.9

Please refer to CHANGELOG.md for details.

v2.7.8

Please refer to CHANGELOG.md for details.

v2.7.7

Please refer to CHANGELOG.md for details.

v2.7.6

Please refer to CHANGELOG.md for details.

v2.7.5

Please refer to CHANGELOG.md for details.

v2.7.4

Please refer to CHANGELOG.md for details.

v2.7.3

... (truncated)

Changelog

Sourced from vue-server-renderer's changelog.

2.7.16 Swan Song (2023-12-24)

Bug Fixes

  • lifecycle: ensure component effect scopes are disconnected (56ce7f8), closes #13134

2.7.16-beta.2 (2023-12-14)

Bug Fixes

2.7.16-beta.1 (2023-12-08)

Bug Fixes

2.7.15 (2023-10-23)

Bug Fixes

  • compiler-sfc: add semicolon after defineProps statement (#12879) (51fef2c)
  • compiler-sfc: fix macro usage in multi-variable declaration (#12873) (d27c128)
  • compiler-sfc: Optimize the value of emitIdentifier (#12851) (bb59751)
  • compiler-sfc: Resolve object expression parsing errors in v-on (#12862) (b8c8b3f)
  • lifecycle: scope might changed when call hook (#13070) (74ca5a1)

... (truncated)

Commits
  • 13f4e7d release: v2.7.16
  • 56ce7f8 fix(lifecycle): esnure component effect scopes are disconnected
  • 305e4ae release: v2.7.16-beta.2
  • 3e1037e chore: bump vitest to 1.0.4
  • db9c566 fix: account for nested render calls
  • 895669f fix(types): export more types for v3 alignment (jsx / component options)
  • 73bdf14 release: v2.7.16-beta.1
  • e0747f4 fix(keep-alive): fix memory leak without breaking transition tests
  • 2632249 fix(keep-alive): fix keep-alive memory leak
  • 3650c12 fix(types): provide types for built-in components
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps): bump serialize-javascript, webpack, nuxt and vue-server-…
7ed820a 
…renderer

Bumps [serialize-javascript](https://github.com/yahoo/serialize-javascript) to 6.0.2 and updates ancestor dependencies [serialize-javascript](https://github.com/yahoo/serialize-javascript), [webpack](https://github.com/webpack/webpack), [nuxt](https://github.com/nuxt/nuxt/tree/HEAD/packages/nuxt) and [vue-server-renderer](https://github.com/vuejs/vue). These dependencies need to be updated together.


Updates `serialize-javascript` from 5.0.1 to 6.0.2
- [Release notes](https://github.com/yahoo/serialize-javascript/releases)
- [Commits](yahoo/serialize-javascript@v5.0.1...v6.0.2)

Updates `webpack` from 4.46.0 to 4.47.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v4.46.0...v4.47.0)

Updates `nuxt` from 2.15.8 to 2.18.1
- [Release notes](https://github.com/nuxt/nuxt/releases)
- [Commits](https://github.com/nuxt/nuxt/commits/v2.18.1/packages/nuxt)

Updates `vue-server-renderer` from 2.6.14 to 2.7.16
- [Release notes](https://github.com/vuejs/vue/releases)
- [Changelog](https://github.com/vuejs/vue/blob/main/CHANGELOG.md)
- [Commits](vuejs/vue@v2.6.14...v2.7.16)

---
updated-dependencies:
- dependency-name: serialize-javascript
  dependency-type: indirect
- dependency-name: webpack
  dependency-type: indirect
- dependency-name: nuxt
  dependency-type: direct:production
- dependency-name: vue-server-renderer
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants