From 8808f6f3c1b212134b496842eaa2680672c9df71 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 7 Jul 2024 13:55:04 +0100 Subject: [PATCH 1/3] Upgrade: [dependabot] - bump certifi from 2023.7.22 to 2024.7.4 (#1057) Bumps [certifi](https://github.com/certifi/python-certifi) from 2023.7.22 to 2024.7.4.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=certifi&package-manager=pip&previous-version=2023.7.22&new-version=2024.7.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/NHSDigital/prescriptionsforpatients/network/alerts).
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- poetry.lock | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/poetry.lock b/poetry.lock index b9f0583c5..709c38001 100644 --- a/poetry.lock +++ b/poetry.lock @@ -1,4 +1,4 @@ -# This file is automatically @generated by Poetry 1.8.2 and should not be changed by hand. +# This file is automatically @generated by Poetry 1.8.3 and should not be changed by hand. [[package]] name = "annotated-types" @@ -152,13 +152,13 @@ crt = ["awscrt (==0.20.11)"] [[package]] name = "certifi" -version = "2023.7.22" +version = "2024.7.4" description = "Python package for providing Mozilla's CA Bundle." optional = false python-versions = ">=3.6" files = [ - {file = "certifi-2023.7.22-py3-none-any.whl", hash = "sha256:92d6037539857d8206b8f6ae472e8b77db8058fec5937a1ef3f54304089edbb9"}, - {file = "certifi-2023.7.22.tar.gz", hash = "sha256:539cc1d13202e33ca466e88b2807e29f4c13049d6d87031a3c110744495cb082"}, + {file = "certifi-2024.7.4-py3-none-any.whl", hash = "sha256:c198e21b1289c2ab85ee4e67bb4b4ef3ead0892059901a8d5b622f24a1101e90"}, + {file = "certifi-2024.7.4.tar.gz", hash = "sha256:5a1e7645bc0ec61a09e26c36f6106dd4cf40c6db3a1fb6352b0244e7fb057c7b"}, ] [[package]] From a44727752d92889afec6a435f3d998f1c122b98f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Jul 2024 03:52:33 +0000 Subject: [PATCH 2/3] Upgrade: [dependabot] - bump @types/node from 20.14.9 to 20.14.10 (#1058) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.14.9 to 20.14.10.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=20.14.9&new-version=20.14.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 477c9e16e..2e9656d08 100644 --- a/package-lock.json +++ b/package-lock.json @@ -24,7 +24,7 @@ "devDependencies": { "@types/aws-lambda": "^8.10.140", "@types/jest": "^29.5.12", - "@types/node": "^20.14.9", + "@types/node": "^20.14.10", "@typescript-eslint/eslint-plugin": "^7.15.0", "@typescript-eslint/parser": "^7.15.0", "aws-lambda": "^1.0.7", @@ -3111,9 +3111,9 @@ } }, "node_modules/@types/node": { - "version": "20.14.9", - "resolved": "https://registry.npmjs.org/@types/node/-/node-20.14.9.tgz", - "integrity": "sha512-06OCtnTXtWOZBJlRApleWndH4JsRVs1pDCc8dLSQp+7PpUpX3ePdHyeNSFTeSe7FtKyQkrlPvHwJOW3SLd8Oyg==", + "version": "20.14.10", + "resolved": "https://registry.npmjs.org/@types/node/-/node-20.14.10.tgz", + "integrity": "sha512-MdiXf+nDuMvY0gJKxyfZ7/6UFsETO7mGKF54MVD/ekJS6HdFtpZFBgrh6Pseu64XTb2MLyFPlbW6hj8HYRQNOQ==", "dev": true, "dependencies": { "undici-types": "~5.26.4" diff --git a/package.json b/package.json index 9192d299b..fc0b0ab94 100644 --- a/package.json +++ b/package.json @@ -26,7 +26,7 @@ "devDependencies": { "@types/aws-lambda": "^8.10.140", "@types/jest": "^29.5.12", - "@types/node": "^20.14.9", + "@types/node": "^20.14.10", "@typescript-eslint/eslint-plugin": "^7.15.0", "@typescript-eslint/parser": "^7.15.0", "aws-lambda": "^1.0.7", From e55b09449ede3a27741f79e7ce6f7afd4cb7f78a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Jul 2024 04:06:42 +0000 Subject: [PATCH 3/3] Upgrade: [dependabot] - bump @nhs/fhir-middy-error-handler from 2.0.9 to 2.0.10 (#1056) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [@nhs/fhir-middy-error-handler](https://github.com/NHSDigital/nhs-fhir-middy-error-handler) from 2.0.9 to 2.0.10.
Release notes

Sourced from @​nhs/fhir-middy-error-handler's releases.

v2.0.10

2.0.10 (2024-07-04)

Upgrade

  • [dependabot] - bump @​aws-lambda-powertools/logger from 2.2.0 to 2.3.0 (#141) (02c9c07), closes #141
  • [dependabot] - bump @​middy/core from 5.4.2 to 5.4.3 (#145) (ee407dc), closes #145
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 7.14.1 to 7.15.0 (#144) (91f1587), closes #144
  • [dependabot] - bump @​typescript-eslint/parser from 7.14.1 to 7.15.0 (#142) (e215684), closes #142
  • [dependabot] - bump typescript from 5.5.2 to 5.5.3 (#143) (8025c93), closes #143
Commits
  • ee407dc Upgrade: [dependabot] - bump @​middy/core from 5.4.2 to 5.4.3 (#145)
  • 91f1587 Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 7.14.1 to ...
  • 8025c93 Upgrade: [dependabot] - bump typescript from 5.5.2 to 5.5.3 (#143)
  • e215684 Upgrade: [dependabot] - bump @​typescript-eslint/parser from 7.14.1 to 7.15.0 ...
  • 02c9c07 Upgrade: [dependabot] - bump @​aws-lambda-powertools/logger from 2.2.0 to 2.3....
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@nhs/fhir-middy-error-handler&package-manager=npm_and_yarn&previous-version=2.0.9&new-version=2.0.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 18 +++++++++--------- packages/capabilityStatement/package.json | 2 +- packages/getMyPrescriptions/package.json | 2 +- packages/sandbox/package.json | 2 +- packages/statusLambda/package.json | 2 +- 5 files changed, 13 insertions(+), 13 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2e9656d08..c336e82e2 100644 --- a/package-lock.json +++ b/package-lock.json @@ -2331,12 +2331,12 @@ } }, "node_modules/@nhs/fhir-middy-error-handler": { - "version": "2.0.9", - "resolved": "https://registry.npmjs.org/@nhs/fhir-middy-error-handler/-/fhir-middy-error-handler-2.0.9.tgz", - "integrity": "sha512-gmusEbvzTtKvX03twsBBZIVM7rLZ5RxzOm17AcoZzI65b9fxEwEzlsTM7YY4p+RS76fAizh6faHfNDwXi2gV/g==", + "version": "2.0.10", + "resolved": "https://registry.npmjs.org/@nhs/fhir-middy-error-handler/-/fhir-middy-error-handler-2.0.10.tgz", + "integrity": "sha512-4ctlRCzPlYkOBiHyayiGM1MAqYSQSa4mCDFsCzr/MbXE24oJ5Tm+iHRs1e/NADl/QkIxnUzhpWMp9Ps4gHrujw==", "dependencies": { - "@aws-lambda-powertools/logger": "^2.2.0", - "@middy/core": "^5.4.2", + "@aws-lambda-powertools/logger": "^2.3.0", + "@middy/core": "^5.4.3", "conventional-changelog-eslint": "^6.0.0" } }, @@ -8377,7 +8377,7 @@ "@aws-lambda-powertools/logger": "^2.3.0", "@middy/core": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9" + "@nhs/fhir-middy-error-handler": "^2.0.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" @@ -8430,7 +8430,7 @@ "@middy/core": "^5.4.3", "@middy/http-header-normalizer": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9", + "@nhs/fhir-middy-error-handler": "^2.0.10", "@nhsdigital/eps-spine-client": "npm:@NHSDigital/eps-spine-client@^2.0.10", "@prescriptionsforpatients/distanceSelling": "^1.0.0", "@types/fhir": "^0.0.41" @@ -8450,7 +8450,7 @@ "@aws-lambda-powertools/logger": "^2.3.0", "@middy/core": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9" + "@nhs/fhir-middy-error-handler": "^2.0.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" @@ -8479,7 +8479,7 @@ "@aws-lambda-powertools/parameters": "^2.3.0", "@middy/core": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9", + "@nhs/fhir-middy-error-handler": "^2.0.10", "@nhsdigital/eps-spine-client": "npm:@NHSDigital/eps-spine-client@^2.0.10" } } diff --git a/packages/capabilityStatement/package.json b/packages/capabilityStatement/package.json index 38a38696a..4d95e61e6 100644 --- a/packages/capabilityStatement/package.json +++ b/packages/capabilityStatement/package.json @@ -18,7 +18,7 @@ "@aws-lambda-powertools/logger": "^2.3.0", "@middy/core": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9" + "@nhs/fhir-middy-error-handler": "^2.0.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" diff --git a/packages/getMyPrescriptions/package.json b/packages/getMyPrescriptions/package.json index 8bf116ced..f7753ebc1 100644 --- a/packages/getMyPrescriptions/package.json +++ b/packages/getMyPrescriptions/package.json @@ -21,7 +21,7 @@ "@middy/core": "^5.4.3", "@middy/http-header-normalizer": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9", + "@nhs/fhir-middy-error-handler": "^2.0.10", "@nhsdigital/eps-spine-client": "npm:@NHSDigital/eps-spine-client@^2.0.10", "@prescriptionsforpatients/distanceSelling": "^1.0.0", "@types/fhir": "^0.0.41" diff --git a/packages/sandbox/package.json b/packages/sandbox/package.json index 4e7a63107..be8b7b6c9 100644 --- a/packages/sandbox/package.json +++ b/packages/sandbox/package.json @@ -17,7 +17,7 @@ "@aws-lambda-powertools/logger": "^2.3.0", "@middy/core": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9" + "@nhs/fhir-middy-error-handler": "^2.0.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" diff --git a/packages/statusLambda/package.json b/packages/statusLambda/package.json index 08748ee71..72e476bb8 100644 --- a/packages/statusLambda/package.json +++ b/packages/statusLambda/package.json @@ -18,7 +18,7 @@ "@aws-lambda-powertools/parameters": "^2.3.0", "@middy/core": "^5.4.3", "@middy/input-output-logger": "^5.4.3", - "@nhs/fhir-middy-error-handler": "^2.0.9", + "@nhs/fhir-middy-error-handler": "^2.0.10", "@nhsdigital/eps-spine-client": "npm:@NHSDigital/eps-spine-client@^2.0.10" } }