Bump the npm_and_yarn group across 2 directories with 16 updates #2

dependabot · 2024-04-28T23:08:46Z

Bumps the npm_and_yarn group with 14 updates in the / directory:

Package	From	To
follow-redirects	`1.9.0`	`1.15.6`
async	`3.1.0`	`3.2.2`
mocha	`3.5.3`	`10.4.0`
socket.io	`2.2.0`	`2.4.0`
ws	`3.3.3`	`8.17.0`
@babel/traverse	`7.6.0`	`7.24.1`
ansi-regex	`4.1.0`	`4.1.1`
handlebars	`4.2.0`	`4.7.8`
minimist	`0.0.8`	`1.2.8`
mkdirp	`0.5.1`	`0.5.6`
node-fetch	`2.6.0`	`2.7.0`
socket.io-parser	`3.3.0`	`3.3.3`
y18n	`4.0.0`	`4.0.3`
yargs-parser	`13.1.1`	`13.1.2`

Bumps the npm_and_yarn group with 1 update in the /examples directory: socket.io.

Updates follow-redirects from 1.9.0 to 1.15.6

Commits

35a517c Release version 1.15.6 of the npm package.
c4f847f Drop Proxy-Authorization across hosts.
8526b4a Use GitHub for disclosure.
b1677ce Release version 1.15.5 of the npm package.
d8914f7 Preserve fragment in responseUrl.
6585820 Release version 1.15.4 of the npm package.
7a6567e Disallow bracketed hostnames.
05629af Prefer native URL instead of deprecated url.parse.
1cba8e8 Prefer native URL instead of legacy url.resolve.
72bc2a4 Simplify _processResponse error handling.
Additional commits viewable in compare view

Updates async from 3.1.0 to 3.2.2

Changelog

Sourced from async's changelog.

v3.2.2

Fix potential prototype pollution exploit

v3.2.1

Use queueMicrotask if available to the environment (#1761)

Minor perf improvement in priorityQueue (#1727)

More examples in documentation (#1726)

Various doc fixes (#1708, #1712, #1717, #1740, #1739, #1749, #1756)

Improved test coverage (#1754)

v3.2.0

Fix a bug in Safari related to overwriting func.name

Remove built-in browserify configuration (#1653)

Varios doc fixes (#1688, #1703, #1704)

v3.1.1

Allow redefining name property on wrapped functions.

Commits

acc084e Version 3.2.2
acd7316 Update built files
b50d648 update changelog for 3.2.2
e1ecdbf Fix prototype pollution vulnerability
fc9ba65 Fix(docs): use plural callbacks word in lib/map.js (#1765)
b1b69b0 regen docs
cac52e3 update changelog
d1af045 Version 3.2.1
b31840e Update built files
159a119 Enhance examples for Collections methods. (#1726)
Additional commits viewable in compare view

Updates mocha from 3.5.3 to 10.4.0

Release notes

Sourced from mocha's releases.

v10.4.0

10.4.0 / 2024-03-26

🎉 Enhancements

#4829 feat: include .cause stacks in the error stack traces (@voxpelli)

#4985 feat: add file path to xunit reporter (@bmish)

🐛 Fixes

#5074 fix: harden error handling in lib/cli/run.js (@stalet)

🔩 Other

#5077 chore: add mtfoley/pr-compliance-action (@JoshuaKGoldberg)

#5060 chore: migrate ESLint config to flat config (@JoshuaKGoldberg)

#5095 chore: revert #5069 to restore Netlify builds (@voxpelli)

#5097 docs: add sponsored to sponsorship link rels (@JoshuaKGoldberg)

#5093 chore: add 'status: in triage' label to issue templates and docs (@JoshuaKGoldberg)

#5083 docs: fix CHANGELOG.md headings to start with a root-level h1 (@JoshuaKGoldberg)

#5100 chore: fix header generation and production build crashes (@JoshuaKGoldberg)

#5104 chore: bump ESLint ecmaVersion to 2020 (@JoshuaKGoldberg)

#5116 fix: eleventy template builds crash with 'unexpected token at ": string, msg..."' (@LcsK)

#4869 docs: fix documentation concerning glob expansion on UNIX (@binki)

#5122 test: fix xunit integration test (@voxpelli)

#5123 chore: activate dependabot for workflows (@voxpelli)

#5125 build(deps): bump the github-actions group with 2 updates (@dependabot)

v10.3.0

This is a stable release equivalent to v10.3.0-preminor.0.

What's Changed

Fix deprecated warn gh actions by @outsideris in mochajs/mocha#4962

fix #4837 Update glob due to vulnerability in dep by @jb2311 in mochajs/mocha#4970

Add Node v19 to test matrix by @juergba in mochajs/mocha#4974

chore: fix the ci by @Uzlopak in mochajs/mocha#5020

update can-i-use by @Uzlopak in mochajs/mocha#5021

chore: remove uuid dev dependency by @Uzlopak in mochajs/mocha#5022

chore: remove nanoid as dependency by @Uzlopak in mochajs/mocha#5024

chore: remove touch as dev dependency by @Uzlopak in mochajs/mocha#5023

chore: remove stale workflow by @JoshuaKGoldberg in mochajs/mocha#5029

docs: fix fragment ID for yargs' "extends" documentation by @Spencer-Doak in mochajs/mocha#4918

docs: use mocha.js instead of mocha in the example run by @nikolas in mochajs/mocha#4927

docs: fix jsdoc return type of titlePath method by @F3n67u in mochajs/mocha#4886

docs: overhaul contributing and maintenance docs for end-of-year 2023 by @JoshuaKGoldberg in mochajs/mocha#5038

docs: touchups to labels and a template title post-revamp by @JoshuaKGoldberg in mochajs/mocha#5050

fix: add alt text to Built with Netlify badge by @JoshuaKGoldberg in mochajs/mocha#5068

chore: inline nyan reporter's write function by @JoshuaKGoldberg in mochajs/mocha#5056

chore: remove unnecessary canvas dependency by @JoshuaKGoldberg in mochajs/mocha#5069

... (truncated)

Changelog

Sourced from mocha's changelog.

10.4.0 / 2024-03-26

🎉 Enhancements

#4829 feat: include .cause stacks in the error stack traces (@voxpelli)

#4985 feat: add file path to xunit reporter (@bmish)

🐛 Fixes

#5074 fix: harden error handling in lib/cli/run.js (@stalet)

🔩 Other

#5077 chore: add mtfoley/pr-compliance-action (@JoshuaKGoldberg)

#5060 chore: migrate ESLint config to flat config (@JoshuaKGoldberg)

#5095 chore: revert #5069 to restore Netlify builds (@voxpelli)

#5097 docs: add sponsored to sponsorship link rels (@JoshuaKGoldberg)

#5093 chore: add 'status: in triage' label to issue templates and docs (@JoshuaKGoldberg)

#5083 docs: fix CHANGELOG.md headings to start with a root-level h1 (@JoshuaKGoldberg)

#5100 chore: fix header generation and production build crashes (@JoshuaKGoldberg)

#5104 chore: bump ESLint ecmaVersion to 2020 (@JoshuaKGoldberg)

#5116 fix: eleventy template builds crash with 'unexpected token at ": string, msg..."' (@LcsK)

#4869 docs: fix documentation concerning glob expansion on UNIX (@binki)

#5122 test: fix xunit integration test (@voxpelli)

#5123 chore: activate dependabot for workflows (@voxpelli)

#5125 build(deps): bump the github-actions group with 2 updates (@dependabot)

10.3.0 / 2024-02-08

This is a stable release equivalent to 10.30.0-prerelease.

10.3.0-prerelease / 2024-01-18

This is a prerelease version to test our ability to release. Other than removing or updating dependencies, it contains no intended user-facing changes.

🔩 Other

#5069: chore: remove unnecessary canvas dependency (@JoshuaKGoldberg)

#5068: fix: add alt text to Built with Netlify badge (@JoshuaKGoldberg)

#5056: chore: inline nyan reporter's write function (@JoshuaKGoldberg)

#5050: docs: touchups to labels and a template title post-revamp (@JoshuaKGoldberg)

#5038: docs: overhaul contributing and maintenance docs for end-of-year 2023 (@JoshuaKGoldberg)

#5029: chore: remove stale workflow (@JoshuaKGoldberg)

#5024: chore: remove nanoid as dependency (@Uzlopak)

#5023: chore: remove touch as dev dependency (@Uzlopak)

#5022: chore: remove uuid dev dependency (@Uzlopak)

#5021: update can-i-use (@Uzlopak)

#5020: chore: fix the ci (@Uzlopak)

#4974: Add Node v19 to test matrix (@juergba)

... (truncated)

Commits

ffd9557 Release v10.4.0
7ac67f3 build(deps): bump the github-actions group with 2 updates (#5125)
7a2781c chore: activate dependabot for workflows (#5123)
97dcbb2 fix: harden error handling in lib/cli/run.js (#5074)
6f3f45e fix: xunit integration test (#5122)
a5b5652 docs: fix documentation concerning glob expansion on UNIX (#4869)
efbb147 feat: add file path to xunit reporter (#4985)
a2e600d fix: closes #5115 (#5116)
3735873 feat: include .cause stacks in the error stack traces (#4829)
b88978d chore: bump ESLint ecmaVersion to 2020 (#5104)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by voxpelli, a new releaser for mocha since your current version.

Updates socket.io from 2.2.0 to 2.4.0

Release notes

Sourced from socket.io's releases.

2.4.0

Related blog post: https://socket.io/blog/socket-io-2-4-0/

Features (from Engine.IO)

add support for all cookie options (19cc582)

disable perMessageDeflate by default (5ad2736)

Bug Fixes

security: do not allow all origins by default (f78a575)

properly overwrite the query sent in the handshake (d33a619)

⚠️ BREAKING CHANGE ⚠️

Previously, CORS was enabled by default, which meant that a Socket.IO server sent the necessary CORS headers (Access-Control-Allow-xxx) to any domain. This will not be the case anymore, and you now have to explicitly enable it.

Please note that you are not impacted if:

you are using Socket.IO v2 and the origins option to restrict the list of allowed domains

you are using Socket.IO v3 (disabled by default)

This commit also removes the support for '*' matchers and protocol-less URL:
io.origins('https://example.com:443'); => io.origins(['https://example.com']);
io.origins('localhost:3000');          => io.origins(['http://localhost:3000']);
io.origins('http://localhost:*');      => io.origins(['http://localhost:3000']);
io.origins('*:3000');                  => io.origins(['http://localhost:3000']);
To restore the previous behavior (please use with caution):
io.origins((_, callback) => {
  callback(null, true);
});
See also:

https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS

https://socket.io/docs/v3/handling-cors/

https://socket.io/docs/v3/migrating-from-2-x-to-3-0/#CORS-handling

Thanks a lot to @ni8walk3r for the security report.

Links:

... (truncated)

Changelog

Sourced from socket.io's changelog.

2.4.0 (2021-01-04)

Bug Fixes

security: do not allow all origins by default (f78a575)

properly overwrite the query sent in the handshake (d33a619)

3.0.4 (2020-12-07)

3.0.3 (2020-11-19)

3.0.2 (2020-11-17)

Bug Fixes

merge Engine.IO options (43705d7)

3.0.1 (2020-11-09)

Bug Fixes

export ServerOptions and Namespace types (#3684) (f62f180)

typings: update the signature of the emit method (50671d9)

3.0.0 (2020-11-05)

Bug Fixes

close clients with no namespace (91cd255)

Features

emit an Error object upon middleware error (54bf4a4)

serve msgpack bundle (aa7574f)

add support for catch-all listeners (5c73733)

make Socket#join() and Socket#leave() synchronous (129c641)

remove prod dependency to socket.io-client (7603da7)

move binary detection back to the parser (669592d)

add ES6 module export (8b6b100)

do not reuse the Engine.IO id (2875d2c)

remove Server#set() method (029f478)

... (truncated)

Commits

873fdc5 chore(release): 2.4.0
f78a575 fix(security): do not allow all origins by default
d33a619 fix: properly overwrite the query sent in the handshake
3951a79 chore: bump engine.io version
6fa026f ci: migrate to GitHub Actions
47161a6 [chore] Release 2.3.0
cf39362 [chore] Bump socket.io-parser to version 3.4.0
4d01b2c test: remove deprecated Buffer usage (#3481)
8227192 [docs] Fix the default value of the 'origins' parameter (#3464)
1150eb5 [chore] Bump engine.io to version 3.4.0
Additional commits viewable in compare view

Updates ws from 3.3.3 to 8.17.0

Release notes

Sourced from ws's releases.

8.17.0

Features

The WebSocket constructor now accepts the createConnection option (#2219).

Other notable changes

The default value of the allowSynchronousEvents option has been changed to true (#2221).

This is a breaking change in a patch release. The assumption is that the option is not widely used.

8.16.0

Features

Added the autoPong option (01ba54ed).

8.15.1

Notable changes

The allowMultipleEventsPerMicrotask option has been renamed to allowSynchronousEvents (4ed7fe58).

This is a breaking change in a patch release that could have been avoided with an alias, but the renamed option was added only 3 days ago, so hopefully it hasn't already been widely used.

8.15.0

Features

Added the allowMultipleEventsPerMicrotask option (93e3552e).

8.14.2

Bug fixes

Fixed an issue that allowed errors thrown by failed assertions to be swallowed when running tests (7f4e1a75).

8.14.1

Bug fixes

Improved the reliability of two tests for CITGM (fd3c64cb).

8.14.0

Features

The WebSocket constructor now accepts HTTP(S) URLs (#2162).

... (truncated)

Commits

b73b118 [dist] 8.17.0
29694a5 [test] Use the highWaterMark variable
934c9d6 [ci] Test on node 22
1817bac [ci] Do not test on node 21
96c9b3d [major] Flip the default value of allowSynchronousEvents (#2221)
e5f32c7 [fix] Emit at most one event per event loop iteration (#2218)
2aa0405 [minor] Fix nits
53a8888 [feature] Allow the createConnection option (#2219)
b119b41 [pkg] Update eslint to version 9.0.0
2405c17 [doc] Add punctuation for readability (#2213)
Additional commits viewable in compare view

Updates @babel/traverse from 7.6.0 to 7.24.1

Release notes

Sourced from @babel/traverse's releases.

v7.24.1 (2024-03-19)

🐛 Bug Fix

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16350 Fix decorated class computed keys ordering (@JLHwung)

#16344 Fix decorated class static field private access (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-proposal-json-modules, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env

#16329 Respect moduleName for @babel/runtime/regenerator imports (@nicolo-ribaudo)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties

#16331 Fix decorator memoiser binding kind (@JLHwung)

babel-helper-create-class-features-plugin, babel-helper-replace-supers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties

#16325 Fix decorator evaluation private environment (@JLHwung)

📝 Documentation

#16319 Update SECURITY.md (@nicolo-ribaudo)

🏠 Internal

babel-code-frame, babel-highlight

#16359 Replace chalk with picocolors (@nicolo-ribaudo)

babel-helper-fixtures, babel-helpers, babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-unicode-sets-regex, babel-preset-env, babel-preset-flow

#16352 Run Babel transform tests on old node if possible (@JLHwung)

babel-helper-module-imports, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-plugin-proposal-record-and-tuple, babel-plugin-transform-react-jsx-development, babel-plugin-transform-react-jsx

#16349 Support merging imports in import injector (@nicolo-ribaudo)

Other

#16332 Test Babel 7 plugins compatibility with Babel 8 core (@nicolo-ribaudo)

🔬 Output optimization

babel-helper-replace-supers, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-parameters, babel-plugin-transform-runtime

#16345 Optimize the use of assertThisInitialized after super() (@liuxingbaoyu)

babel-plugin-transform-class-properties, babel-plugin-transform-classes

#16343 Use simpler assertThisInitialized more often (@liuxingbaoyu)

babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-object-rest-spread, babel-traverse

#16342 Consider well-known and registered symbols as literals (@nicolo-ribaudo)

babel-core, babel-plugin-external-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-function-bind, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-flow-comments, babel-plugin-transform-flow-strip-types, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-plugin-transform-parameters, babel-plugin-transform-private-property-in-object, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env

#16326 Reduce the use of class names (@liuxingbaoyu)

Committers: 4

Babel Bot (@babel-bot)

Huáng Jùnliàng (@JLHwung)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

v7.24.0 (2024-02-28)

Thanks @ajihyf for your first PR!

Release post with summary and highlights: https://babeljs.io/7.24.0

🚀 New Feature

babel-standalone

... (truncated)

Changelog

Sourced from @babel/traverse's changelog.

v7.24.1 (2024-03-19)

🐛 Bug Fix

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators

#16350 Fix decorated class computed keys ordering (@JLHwung)

#16344 Fix decorated class static field private access (@JLHwung)

babel-plugin-proposal-decorators, babel-plugin-proposal-json-modules, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env

#16329 Respect moduleName for @babel/runtime/regenerator imports (@nicolo-ribaudo)

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties

#16331 Fix decorator memoiser binding kind (@JLHwung)

babel-helper-create-class-features-plugin, babel-helper-replace-supers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties

#16325 Fix decorator evaluation private environment (@JLHwung)

📝 Documentation

#16319 Update SECURITY.md (@nicolo-ribaudo)

🏠 Internal

babel-code-frame, babel-highlight

#16359 Replace chalk with picocolors (@nicolo-ribaudo)

babel-helper-fixtures, babel-helpers, babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-unicode-sets-regex, babel-preset-env, babel-preset-flow

#16352 Run Babel transform tests on old node if possible (@JLHwung)

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs3, babel-runtime, babel-standalone

#16323 Allow separate helpers to be excluded in Babel 8 (@liuxingbaoyu)

babel-helper-module-imports, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-plugin-proposal-record-and-tuple, babel-plugin-transform-react-jsx-development, babel-plugin-transform-react-jsx

#16349 Support merging imports in import injector (@nicolo-ribaudo)

babel-helper-create-class-features-plugin, babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression, babel-plugin-bugfix-v8-spread-parameters-in-optional-chaining, babel-plugin-bugfix-v8-static-class-fields-redefine-readonly, babel-plugin-external-helpers, babel-plugin-proposal-async-do-expressions, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-plugin-proposal-duplicate-named-capturing-groups-regex, babel-plugin-proposal-explicit-resource-management, babel-plugin-proposal-export-default-from, babel-plugin-proposal-function-bind, babel-plugin-proposal-function-sent, babel-plugin-proposal-import-attributes-to-assertions, babel-plugin-proposal-import-defer, babel-plugin-proposal-import-wasm-source, babel-plugin-proposal-json-modules, babel-plugin-proposal-optional-chaining-assign, babel-plugin-proposal-partial-application, babel-plugin-proposal-pipeline-operator, babel-plugin-proposal-record-and-tuple, babel-plugin-proposal-regexp-modifiers, babel-plugin-proposal-throw-expressions, babel-plugin-syntax-async-do-expressions, babel-plugin-syntax-decimal, babel-plugin-syntax-decorators, babel-plugin-syntax-destructuring-private, babel-plugin-syntax-do-expressions, babel-plugin-syntax-explicit-resource-management, babel-plugin-syntax-export-default-from, babel-plugin-syntax-flow, babel-plugin-syntax-function-bind, babel-plugin-syntax-function-sent, babel-plugin-syntax-import-assertions, babel-plugin-syntax-import-attributes, babel-plugin-syntax-import-defer, babel-plugin-syntax-import-reflection, babel-plugin-syntax-import-source, babel-plugin-syntax-jsx, babel-plugin-syntax-module-blocks, babel-plugin-syntax-optional-chaining-assign, babel-plugin-syntax-partial-application, babel-plugin-syntax-pipeline-operator, babel-plugin-syntax-record-and-tuple, babel-plugin-syntax-throw-expressions, babel-plugin-syntax-typescript, babel-plugin-transform-arrow-functions, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoped-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-classes, babel-plugin-transform-computed-properties, babel-plugin-transform-destructuring, babel-plugin-transform-dotall-regex, babel-plugin-transform-duplicate-keys, babel-plugin-transform-dynamic-import, babel-plugin-transform-exponentiation-operator, babel-plugin-transform-export-namespace-from, babel-plugin-transform-flow-comments, babel-plugin-transform-flow-strip-types, babel-plugin-transform-for-of, babel-plugin-transform-function-name, babel-plugin-transform-instanceof, babel-plugin-transform-jscript, babel-plugin-transform-json-strings, babel-plugin-transform-literals, babel-plugin-transform-logical-assignment-operators, babel-plugin-transform-member-expression-literals, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-modules-umd, babel-plugin-transform-new-target, babel-plugin-transform-nullish-coalescing-operator, babel-plugin-transform-numeric-separator, babel-plugin-transform-object-assign, babel-plugin-transform-object-rest-spread, babel-plugin-transform-object-set-prototype-of-to-assign, babel-plugin-transform-object-super, babel-plugin-transform-optional-catch-binding, babel-plugin-transform-optional-chaining, babel-plugin-transform-parameters, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-property-literals, babel-plugin-transform-property-mutators, babel-plugin-transform-proto-to-assign, babel-plugin-transform-react-constant-elements, babel-plugin-transform-react-display-name, babel-plugin-transform-react-inline-elements, babel-plugin-transform-react-jsx-compat, babel-plugin-transform-react-jsx-self, babel-plugin-transform-react-jsx-source, babel-plugin-transform-react-pure-annotations, babel-plugin-transform-regenerator, babel-plugin-transform-reserved-words, babel-plugin-transform-runtime, babel-plugin-transform-shorthand-properties, babel-plugin-transform-spread, babel-plugin-transform-sticky-regex, babel-plugin-transform-strict-mode, babel-plugin-transform-template-literals, babel-plugin-transform-typeof-symbol, babel-plugin-transform-typescript, babel-plugin-transform-unicode-escapes, babel-plugin-transform-unicode-property-regex, babel-plugin-transform-unicode-regex, babel-plugin-transform-unicode-sets-regex, babel-preset-env, babel-preset-flow, babel-preset-react, babel-preset-typescript

#16332 Test Babel 7 plugins compatibility with Babel 8 core (@nicolo-ribaudo)

babel-compat-data, babel-plugin-transform-object-rest-spread, babel-preset-env

#16318 [babel 8] Fix @babel/compat-data package.json (@nicolo-ribaudo)

🔬 Output optimization

babel-helper-replace-supers, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-parameters, babel-plugin-transform-runtime

#16345 Optimize the use of assertThisInitialized after super() (@liuxingbaoyu)

babel-plugin-transform-class-properties, babel-plugin-transform-classes

#16343 Use simpler assertThisInitialized more often (@liuxingbaoyu)

babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-object-rest-spread, babel-traverse

#16342 Consider well-known and registered symbols as literals (@nicolo-ribaudo)

babel-core, babel-plugin-external-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-function-bind, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-flow-comments, babel-plugin-transform-flow-strip-types, babel-plugin-transform-function-name, babel-plugin-transform-modules-systemjs, babel-plugin-transform-parameters, babel-plugin-transform-private-property-in-object, babel-plugin-transform-react-jsx, babel-plugin-transform-runtime, babel-plugin-transform-spread, babel-plugin-transform-typescript, babel-preset-env

#16326 Reduce the use of class names (@liuxingbaoyu)

v7.24.0 (2024-02-28)

🚀 New Feature

babel-standalone

#11696 Export babel tooling packages in @babel/standalone (@ajihyf)

babel-core, babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-transform-class-properties

#16267 Implement noUninitializedPrivateFieldAccess assumption (@nicolo-ribaudo)

babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-pipeline-operator, babel-plugin-syntax-decorators, babel-plugin-transform-class-properties, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#16242 Support decorator 2023-11 normative updates (@JLHwung)

babel-preset-flow

#16309 [babel 7] Allow setting ignoreExtensions in Flow preset (@nicolo-ribaudo)

... (truncated)

Commits

822b025 v7.24.1
fc0d5ad Update typescript and lint tools (#16351)
69e7928 Consider well-known and registered symbols as literals (#16342)
40110e9 Update source map deps (#16327)
ce59160 v7.24.0
bd5abd5 fix: avoid popContext on unvisited node paths (#16305)
08a057c Use Object.hasOwn when available (#16248)
a0dd614 v7.23.9
1200542 fix: Don't throw in getTypeAnnotation when using TS+inference (#15383)
e428a6d v7.23.7
Additional commits viewable in compare view

Updates ansi-regex from 4.1.0 to 4.1.1

Commits

64735d2 v4.1.1
75a657d Fix potential ReDoS (#37)
See full diff in compare view

Updates engine.io-client from 3.3.2 to 3.5.3

Release notes

Sourced from engine.io-client's releases.

3.5.3

Bug Fixes

fix usage with vite (280de36)

Links

Diff: socketio/engine.io-client@3.5.2...3.5.3

Server release: -

ws version: ~7.4.2

3.5.2

This release only contains a bump of xmlhttprequest-ssl, in order to fix the following vulnerability: https://www.npmjs.com/advisories/1665.

Please note that engine.io-client was not directly impacted by this vulnerability, since we are always using async: true.

Links

Diff: socketio/engine.io-client@3.5.1...3.5.2

Server release: -

ws version: ~7.4.2

3.5.1

Bug Fixes

replace default nulls in SSL options with undefineds (d0c551c)

Links

Diff: socketio/engine.io-client@3.5.0...3.5.1

Server release: -

ws version: ~7.4.2

3.5.0

Bug Fixes

check the type of the initial packet (8750356)

Links

Diff: socketio/engine.io-client@3.4.4...3.5.0

Server release: 3.5.0

ws version: ~7.4.2

3.4.4
Description has been truncated

Bumps the npm_and_yarn group with 14 updates in the / directory: | Package | From | To | | --- | --- | --- | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.9.0` | `1.15.6` | | [async](https://github.com/caolan/async) | `3.1.0` | `3.2.2` | | [mocha](https://github.com/mochajs/mocha) | `3.5.3` | `10.4.0` | | [socket.io](https://github.com/socketio/socket.io) | `2.2.0` | `2.4.0` | | [ws](https://github.com/websockets/ws) | `3.3.3` | `8.17.0` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.6.0` | `7.24.1` | | [ansi-regex](https://github.com/chalk/ansi-regex) | `4.1.0` | `4.1.1` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.2.0` | `4.7.8` | | [minimist](https://github.com/minimistjs/minimist) | `0.0.8` | `1.2.8` | | [mkdirp](https://github.com/isaacs/node-mkdirp) | `0.5.1` | `0.5.6` | | [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.0` | `2.7.0` | | [socket.io-parser](https://github.com/socketio/socket.io-parser) | `3.3.0` | `3.3.3` | | [y18n](https://github.com/yargs/y18n) | `4.0.0` | `4.0.3` | | [yargs-parser](https://github.com/yargs/yargs-parser) | `13.1.1` | `13.1.2` | Bumps the npm_and_yarn group with 1 update in the /examples directory: [socket.io](https://github.com/socketio/socket.io). Updates `follow-redirects` from 1.9.0 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.9.0...v1.15.6) Updates `async` from 3.1.0 to 3.2.2 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/master/CHANGELOG.md) - [Commits](caolan/async@v3.1.0...v3.2.2) Updates `mocha` from 3.5.3 to 10.4.0 - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](mochajs/mocha@v3.5.3...v10.4.0) Updates `socket.io` from 2.2.0 to 2.4.0 - [Release notes](https://github.com/socketio/socket.io/releases) - [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md) - [Commits](socketio/socket.io@2.2.0...2.4.0) Updates `ws` from 3.3.3 to 8.17.0 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@3.3.3...8.17.0) Updates `@babel/traverse` from 7.6.0 to 7.24.1 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.1/packages/babel-traverse) Updates `ansi-regex` from 4.1.0 to 4.1.1 - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v4.1.0...v4.1.1) Updates `engine.io-client` from 3.3.2 to 3.5.3 - [Release notes](https://github.com/socketio/engine.io-client/releases) - [Changelog](https://github.com/socketio/engine.io-client/blob/3.5.3/CHANGELOG.md) - [Commits](socketio/engine.io-client@3.3.2...3.5.3) Updates `handlebars` from 4.2.0 to 4.7.8 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.8/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.2.0...v4.7.8) Updates `minimist` from 0.0.8 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v0.0.8...v1.2.8) Updates `mkdirp` from 0.5.1 to 0.5.6 - [Changelog](https://github.com/isaacs/node-mkdirp/blob/main/CHANGELOG.md) - [Commits](isaacs/node-mkdirp@0.5.1...v0.5.6) Updates `mkdirp` from 0.5.1 to 0.5.6 - [Changelog](https://github.com/isaacs/node-mkdirp/blob/main/CHANGELOG.md) - [Commits](isaacs/node-mkdirp@0.5.1...v0.5.6) Updates `node-fetch` from 2.6.0 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.0...v2.7.0) Updates `socket.io-parser` from 3.3.0 to 3.3.3 - [Release notes](https://github.com/socketio/socket.io-parser/releases) - [Changelog](https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md) - [Commits](socketio/socket.io-parser@3.3.0...3.3.3) Updates `xmlhttprequest-ssl` from 1.5.5 to 1.6.3 - [Commits](mjwwit/node-XMLHttpRequest@1.5.5...1.6.3) Updates `y18n` from 4.0.0 to 4.0.3 - [Release notes](https://github.com/yargs/y18n/releases) - [Changelog](https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md) - [Commits](yargs/y18n@v4.0.0...y18n-v4.0.3) Updates `yargs-parser` from 13.1.1 to 13.1.2 - [Release notes](https://github.com/yargs/yargs-parser/releases) - [Changelog](https://github.com/yargs/yargs-parser/blob/main/docs/CHANGELOG-full.md) - [Commits](https://github.com/yargs/yargs-parser/commits) Updates `socket.io` from 0.9.19 to 4.7.5 - [Release notes](https://github.com/socketio/socket.io/releases) - [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md) - [Commits](socketio/socket.io@2.2.0...2.4.0) --- updated-dependencies: - dependency-name: follow-redirects dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: async dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: mocha dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: socket.io dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: ws dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ansi-regex dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: engine.io-client dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: handlebars dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mkdirp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mkdirp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: socket.io-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: xmlhttprequest-ssl dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: y18n dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: yargs-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: socket.io dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Apr 28, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 2 directories with 16 updates #2

Bump the npm_and_yarn group across 2 directories with 16 updates #2

dependabot bot commented on behalf of github Apr 28, 2024

Bump the npm_and_yarn group across 2 directories with 16 updates #2

Are you sure you want to change the base?

Bump the npm_and_yarn group across 2 directories with 16 updates #2

Conversation

dependabot bot commented on behalf of github Apr 28, 2024

v3.2.2

v3.2.1

v3.2.0

v3.1.1

v10.4.0

10.4.0 / 2024-03-26

🎉 Enhancements

🐛 Fixes

🔩 Other

v10.3.0

What's Changed

10.4.0 / 2024-03-26

🎉 Enhancements

🐛 Fixes

🔩 Other

10.3.0 / 2024-02-08

10.3.0-prerelease / 2024-01-18

🔩 Other

2.4.0

Features (from Engine.IO)

Bug Fixes

Links:

2.4.0 (2021-01-04)

Bug Fixes

3.0.4 (2020-12-07)

3.0.3 (2020-11-19)

3.0.2 (2020-11-17)

Bug Fixes

3.0.1 (2020-11-09)

Bug Fixes

3.0.0 (2020-11-05)

Bug Fixes

Features

8.17.0

Features

Other notable changes

8.16.0

Features

8.15.1

Notable changes

8.15.0

Features

8.14.2

Bug fixes

8.14.1

Bug fixes

8.14.0

Features

v7.24.1 (2024-03-19)

🐛 Bug Fix

📝 Documentation

🏠 Internal

🔬 Output optimization

Committers: 4

v7.24.0 (2024-02-28)

🚀 New Feature

v7.24.1 (2024-03-19)

🐛 Bug Fix

📝 Documentation

🏠 Internal

🔬 Output optimization

v7.24.0 (2024-02-28)

🚀 New Feature

3.5.3

Bug Fixes

Links

3.5.2

Links

3.5.1

Bug Fixes

Links

3.5.0

Bug Fixes

Links

3.4.4