Skip to content

Bump @babel/traverse, @redwoodjs/internal, @redwoodjs/prerender and @redwoodjs/structure in /packages/cli #15

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump @babel/traverse, @redwoodjs/internal, @redwoodjs/prerender and @redwoodjs/structure in /packages/cli #15

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 17, 2023
edited
Loading

Bumps @babel/traverse to 7.23.2 and updates ancestor dependencies @babel/traverse, @redwoodjs/internal, @redwoodjs/prerender and @redwoodjs/structure. These dependencies need to be updated together.

Updates @babel/traverse from 7.15.0 to 7.23.2

Release notes

Sourced from @​babel/traverse's releases.

v7.23.2 (2023-10-11)

NOTE: This release also re-publishes @babel/core, even if it does not appear in the linked release commit.

Thanks @​jimmydief for your first PR!

🐛 Bug Fix

  • babel-traverse
  • babel-preset-typescript
  • babel-helpers
    • #16017 Fix: fallback to typeof when toString is applied to incompatible object (@​JLHwung)
  • babel-helpers, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

Committers: 5

v7.23.1 (2023-09-25)

Re-publishing @babel/helpers due to a publishing error in 7.23.0.

v7.23.0 (2023-09-25)

Thanks @​lorenzoferre and @​RajShukla1 for your first PRs!

🚀 New Feature

  • babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-import-source, babel-plugin-transform-dynamic-import
  • babel-helper-module-transforms, babel-helpers, babel-plugin-proposal-import-defer, babel-plugin-syntax-import-defer, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone
  • babel-generator, babel-parser, babel-types
  • babel-generator, babel-helper-module-transforms, babel-parser, babel-plugin-transform-dynamic-import, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-traverse, babel-types
  • babel-standalone
  • babel-helper-function-name, babel-helper-member-expression-to-functions, babel-helpers, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-optional-chaining-assign, babel-plugin-syntax-optional-chaining-assign, babel-plugin-transform-destructuring, babel-plugin-transform-optional-chaining, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone, babel-types
  • babel-helpers, babel-plugin-proposal-decorators
  • babel-traverse, babel-types
  • babel-preset-typescript

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.23.2 (2023-10-11)

🐛 Bug Fix

  • babel-traverse
  • babel-preset-typescript
  • babel-helpers
    • #16017 Fix: fallback to typeof when toString is applied to incompatible object (@​JLHwung)
  • babel-helpers, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

v7.23.0 (2023-09-25)

🚀 New Feature

  • babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-import-source, babel-plugin-transform-dynamic-import
  • babel-helper-module-transforms, babel-helpers, babel-plugin-proposal-import-defer, babel-plugin-syntax-import-defer, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone
  • babel-generator, babel-parser, babel-types
  • babel-generator, babel-helper-module-transforms, babel-parser, babel-plugin-transform-dynamic-import, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-traverse, babel-types
  • babel-standalone
  • babel-helper-function-name, babel-helper-member-expression-to-functions, babel-helpers, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-optional-chaining-assign, babel-plugin-syntax-optional-chaining-assign, babel-plugin-transform-destructuring, babel-plugin-transform-optional-chaining, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone, babel-types
  • babel-helpers, babel-plugin-proposal-decorators
  • babel-traverse, babel-types
  • babel-preset-typescript
  • babel-parser

🐛 Bug Fix

  • babel-plugin-transform-block-scoping

💅 Polish

  • babel-traverse
  • babel-plugin-proposal-explicit-resource-management

🔬 Output optimization

  • babel-core, babel-helper-module-transforms, babel-plugin-transform-async-to-generator, babel-plugin-transform-classes, babel-plugin-transform-dynamic-import, babel-plugin-transform-function-name, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-umd, babel-plugin-transform-parameters, babel-plugin-transform-react-constant-elements, babel-plugin-transform-react-inline-elements, babel-plugin-transform-runtime, babel-plugin-transform-typescript, babel-preset-env

v7.22.20 (2023-09-16)

... (truncated)

Commits

Updates @redwoodjs/internal from 0.36.2 to 6.3.2

Release notes

Sourced from @​redwoodjs/internal's releases.

v6.3.2

Patch Release

This patch release includes a host of fixes, most notably for the api server. On larger projects (we've only come across one instance so far), in dev mode, there was a race condition between prebuilding and building the api side that sometimes caused the api server to loop. For now we've avoided this by ignoring an extraneous event emitted by chokidar, but in the future we'll consider fixing it in a more robust way by introducing api build caching.

What may be more relevant to most users, this patch release ships with a codemod to apply the type fix in #9251 to TS strict-mode projects: npx @redwoodjs/codemods entry-client-null-check.

Lastly, the postcss security release only affects @redwoodjs/studio, which is a dev-time only package, but if you're using tailwind or another CSS library that uses postcss, you'll want to upgrade it in your project accordingly.

v6.3.1

Security Release: Redwood Dependency Vulnerabilities

Two of Redwood's dependencies, systeminformation and graphql, just released a security release; this patch includes the patched versions of both packages. Here are links to the CVEs for systeminformation and graphql respectively: GHSA-gx6r-qc2v-3p3v, https://nvd.nist.gov/vuln/detail/CVE-2023-26144.

  • fix(deps): update dependency systeminformation to v5.21.7 [security] #9218
  • fix(deps): update dependency graphql to v16.8.1 [security] #9228

v6.3.0

Changelog

Features

Docs

Core dependencies

  • fix(deps): update prisma monorepo to v5.3.1 #9187
  • fix(deps): update dependency react-hook-form to v7.46.1 #9162
  • fix(deps): update dependency fastify to v4.23.2 #9184
  • fix(deps): update dependency @​apollo/client to v3.8.4 #9208
  • fix(deps): update storybook monorepo to v7.4.3 #9211

Dependencies

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by desaadi, a new releaser for @​redwoodjs/internal since your current version.


Updates @redwoodjs/prerender from 0.36.4 to 6.3.2

Release notes

Sourced from @​redwoodjs/prerender's releases.

v6.3.2

Patch Release

This patch release includes a host of fixes, most notably for the api server. On larger projects (we've only come across one instance so far), in dev mode, there was a race condition between prebuilding and building the api side that sometimes caused the api server to loop. For now we've avoided this by ignoring an extraneous event emitted by chokidar, but in the future we'll consider fixing it in a more robust way by introducing api build caching.

What may be more relevant to most users, this patch release ships with a codemod to apply the type fix in #9251 to TS strict-mode projects: npx @redwoodjs/codemods entry-client-null-check.

Lastly, the postcss security release only affects @redwoodjs/studio, which is a dev-time only package, but if you're using tailwind or another CSS library that uses postcss, you'll want to upgrade it in your project accordingly.

v6.3.1

Security Release: Redwood Dependency Vulnerabilities

Two of Redwood's dependencies, systeminformation and graphql, just released a security release; this patch includes the patched versions of both packages. Here are links to the CVEs for systeminformation and graphql respectively: GHSA-gx6r-qc2v-3p3v, https://nvd.nist.gov/vuln/detail/CVE-2023-26144.

  • fix(deps): update dependency systeminformation to v5.21.7 [security] #9218
  • fix(deps): update dependency graphql to v16.8.1 [security] #9228

v6.3.0

Changelog

Features

Docs

Core dependencies

  • fix(deps): update prisma monorepo to v5.3.1 #9187
  • fix(deps): update dependency react-hook-form to v7.46.1 #9162
  • fix(deps): update dependency fastify to v4.23.2 #9184
  • fix(deps): update dependency @​apollo/client to v3.8.4 #9208
  • fix(deps): update storybook monorepo to v7.4.3 #9211

Dependencies

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by desaadi, a new releaser for @​redwoodjs/prerender since your current version.


Updates @redwoodjs/structure from 0.36.2 to 6.3.2

Release notes

Sourced from @​redwoodjs/structure's releases.

v6.3.2

Patch Release

This patch release includes a host of fixes, most notably for the api server. On larger projects (we've only come across one instance so far), in dev mode, there was a race condition between prebuilding and building the api side that sometimes caused the api server to loop. For now we've avoided this by ignoring an extraneous event emitted by chokidar, but in the future we'll consider fixing it in a more robust way by introducing api build caching.

What may be more relevant to most users, this patch release ships with a codemod to apply the type fix in #9251 to TS strict-mode projects: npx @redwoodjs/codemods entry-client-null-check.

Lastly, the postcss security release only affects @redwoodjs/studio, which is a dev-time only package, but if you're using tailwind or another CSS library that uses postcss, you'll want to upgrade it in your project accordingly.

v6.3.1

Security Release: Redwood Dependency Vulnerabilities

Two of Redwood's dependencies, systeminformation and graphql, just released a security release; this patch includes the patched versions of both packages. Here are links to the CVEs for systeminformation and graphql respectively: GHSA-gx6r-qc2v-3p3v, https://nvd.nist.gov/vuln/detail/CVE-2023-26144.

  • fix(deps): update dependency systeminformation to v5.21.7 [security] #9218
  • fix(deps): update dependency graphql to v16.8.1 [security] #9228

v6.3.0

Changelog

Features

Docs

Core dependencies

  • fix(deps): update prisma monorepo to v5.3.1 #9187
  • fix(deps): update dependency react-hook-form to v7.46.1 #9162
  • fix(deps): update dependency fastify to v4.23.2 #9184
  • fix(deps): update dependency @​apollo/client to v3.8.4 #9208
  • fix(deps): update storybook monorepo to v7.4.3 #9211

Dependencies

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by desaadi, a new releaser for @​redwoodjs/structure since your current version.


You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
Bump @babel/traverse, @redwoodjs/internal, @redwoodjs/prerender and @…
1e613c8 
…redwoodjs/structure

Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) to 7.23.2 and updates ancestor dependencies [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse), [@redwoodjs/internal](https://github.com/redwoodjs/redwood/tree/HEAD/packages/internal), [@redwoodjs/prerender](https://github.com/redwoodjs/redwood/tree/HEAD/packages/prerender) and [@redwoodjs/structure](https://github.com/redwoodjs/redwood/tree/HEAD/packages/structure). These dependencies need to be updated together.


Updates `@babel/traverse` from 7.15.0 to 7.23.2
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse)

Updates `@redwoodjs/internal` from 0.36.2 to 6.3.2
- [Release notes](https://github.com/redwoodjs/redwood/releases)
- [Changelog](https://github.com/redwoodjs/redwood/blob/main/CHANGELOG.md)
- [Commits](https://github.com/redwoodjs/redwood/commits/v6.3.2/packages/internal)

Updates `@redwoodjs/prerender` from 0.36.4 to 6.3.2
- [Release notes](https://github.com/redwoodjs/redwood/releases)
- [Changelog](https://github.com/redwoodjs/redwood/blob/main/CHANGELOG.md)
- [Commits](https://github.com/redwoodjs/redwood/commits/v6.3.2/packages/prerender)

Updates `@redwoodjs/structure` from 0.36.2 to 6.3.2
- [Release notes](https://github.com/redwoodjs/redwood/releases)
- [Changelog](https://github.com/redwoodjs/redwood/blob/main/CHANGELOG.md)
- [Commits](https://github.com/redwoodjs/redwood/commits/v6.3.2/packages/structure)

---
updated-dependencies:
- dependency-name: "@babel/traverse"
  dependency-type: indirect
- dependency-name: "@redwoodjs/internal"
  dependency-type: direct:production
- dependency-name: "@redwoodjs/prerender"
  dependency-type: direct:production
- dependency-name: "@redwoodjs/structure"
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 17, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants