Skip to content

chore(deps): bump json5, next and loader-utils in /packages/next-optimized-images/example #198

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump json5, next and loader-utils in /packages/next-optimized-images/example #198

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 6, 2023
edited
Loading

Bumps json5 to 1.0.2 and updates ancestor dependencies json5, next and loader-utils. These dependencies need to be updated together.

Updates json5 from 0.5.1 to 1.0.2

Release notes

Sourced from json5's releases.

v1.0.2

  • Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295). This has been backported to v1. (#298)

v1.0.1

This release includes a bug fix and minor change.

  • Fix: parse throws on unclosed objects and arrays.

  • New: package.json5 has been removed until an easier way to keep it in sync with package.json is found.

v1.0.0

This release includes major internal changes and public API enhancements.

  • Major JSON5 officially supports Node.js v4 and later. Support for Node.js v0.10 and v0.12 have been dropped.

  • New: Unicode property names and Unicode escapes in property names are supported. (#1)

  • New: stringify outputs trailing commas in objects and arrays when a space option is provided. (#66)

  • New: JSON5 allows line and paragraph separator characters (U+2028 and U+2029) in strings in order to be compatible with JSON. However, ES5 does not allow these characters in strings, so JSON5 gives a warning when they are parsed and escapes them when they are stringified. (#70)

  • New: stringify accepts an options object as its second argument. The supported options are replacer, space, and a new quote option that specifies the quote character used in strings. (#71)

  • New: The CLI supports STDIN and STDOUT and adds --out-file, --space, and --validate options. See json5 --help for more information. (#72, #84, and #108)

  • New: In addition to the white space characters space \t, \v, \f, \n, \r, and \xA0, the additional white space characters \u2028, \u2029, and all other characters in the Space Separator Unicode category are allowed.

  • New: In addition to the character escapes \', \", \\, \b, \f, \n, \r, and \t, the additional character escapes \v and \0, hexadecimal escapes like \x0F, and unnecessary escapes like \a are allowed in string values and string property names.

  • New: stringify outputs strings with single quotes by default but intelligently uses double quotes if there are more single quotes than double quotes inside the string. (i.e. stringify('Stay here.') outputs 'Stay here.' while stringify('Let\'s go.') outputs "Let's go.")

... (truncated)

Changelog

Sourced from json5's changelog.

Unreleased [code, diff]

v2.2.3 [code, diff]

v2.2.2 [code, diff]

  • Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

v2.2.0 [code, diff]

  • New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

  • Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2 [code, diff]

... (truncated)

Commits

Updates next from 8.1.0 to 13.2.4

Release notes

Sourced from next's releases.

v13.2.4

Core Changes

  • Check if server error already had its message updated: #46367
  • [next/jest] Support path aliases from tsconfig/jsconfig: #45815
  • List unsupported Turbopack config keys: #46582
  • Support named exports for server references: #46558
  • Fix(typedRoutes): fixed StaticRoutes and DynamicRoutes being empty causing invalid syntax: #46620
  • Fix IntelliSense for generateMetadata: #46624
  • Update vendored React packages to next-41110021f: #46636
  • Add request callback in Flight client: #46650
  • fix: distDir in verifyTypeScriptSetup for nextLint: #46630
  • Updates next/image eslint message to denote that costs may be incurred.: #46640
  • Ensure default config passes schema checks: #46656
  • Use separate workers for webpackBuildWorker: #46666
  • Fix static to dynamic on revalidate: #46668
  • Fix the Next.js router in Turbopack when there are no middlewares: #46681
  • build(cargo): update turbopack: #46685
  • Add build worker exit tracking and enable tests: #46698
  • Support force-static on App Routes: #46693
  • Add viewport field userScalable: #46696
  • Update static build workers: #46705
  • Refactor build context for better plugin state sharing: #46706
  • Support multi title for alternates: #46700
  • Ensure test-unit includes package unit tests: #46707
  • Disallow wildcard export in server entries: #46710
  • Add test for router.refresh preserving unaffected segments: #46687
  • Failing test for SWC shakeExports and JSX: #35735
  • Fix originalRequest not available for edge requests: #46741
  • Fix require cache conflict between app and pages: #46736
  • Fix Web app manifests docs: #46617
  • Update client router filter to separate redirects handling: #46752
  • Add support for output: export config: #46744
  • Pass through original matcher source in manifest: #46753
  • Use browser navigation when RSC payload fails to fetch: #46674
  • Use set to track CSS imports: #46772
  • Fix middleware notFound: true handling: #46759
  • Only check app/ for no-head-element-rule: #46773
  • Fix redundant TS plugin warning: #46769
  • Correct server reference manifest in prod build: #46683
  • add argon2 to serverComponentsExternalPackages auto-optOut list: #46779
  • Refactor SWC transform to support named default export: #46778
  • Remove experimental.runtime and emit warning when used: #46631
  • Fix(typedRoutes): fixed type Route resolving to type any: #46679
  • Improve the readability of full page refresh error in dev mode: #46634
  • Port error overlay hydration error to pages directory: #46677
  • eslint rule for script strategy should work properly in app/: #46609
  • fix: Add NODE_OPTIONS for debugging in next-dev: #46757

Documentation Changes

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by vercel-release-bot, a new releaser for next since your current version.


Updates loader-utils from 1.1.0 to 1.4.2

Release notes

Sourced from loader-utils's releases.

v1.4.2

1.4.2 (2022-11-11)

Bug Fixes

v1.4.1

1.4.1 (2022-11-07)

Bug Fixes

v1.4.0

1.4.0 (2020-02-19)

Features

  • the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

v1.3.0

1.3.0 (2020-02-19)

Features

  • support the [query] template for the interpolatedName method (#162) (469eeba)

v1.2.3

1.2.3 (2018-12-27)

Bug Fixes

  • interpolateName: don't interpolated hashType without hash or contenthash (#140) (3528fd9)

v1.2.2

1.2.2 (2018-12-27)

Bug Fixes

... (truncated)

Changelog

Sourced from loader-utils's changelog.

1.4.2 (2022-11-11)

Bug Fixes

1.4.1 (2022-11-07)

Bug Fixes

1.4.0 (2020-02-19)

Features

  • the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

1.3.0 (2020-02-19)

Features

  • support the [query] template for the interpolatedName method (#162) (469eeba)

1.2.3 (2018-12-27)

Bug Fixes

  • interpolateName: don't interpolated hashType without hash or contenthash (#140) (3528fd9)

1.2.2 (2018-12-27)

Bug Fixes

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for loader-utils since your current version.


You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.
> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/next-optimized-images/example/json5-and-next-and-loader-utils-1.0.2 branch from 4e31739 to 423a24a Compare April 6, 2023 17:35
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 6, 2023
@changeset-bot
Copy link

changeset-bot bot commented Apr 6, 2023
edited
Loading

⚠️ No Changeset found

Latest commit: 834f2f5

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/next-optimized-images/example/json5-and-next-and-loader-utils-1.0.2 branch from 423a24a to 383297a Compare April 6, 2023 19:26
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/next-optimized-images/example/json5-and-next-and-loader-utils-1.0.2 branch 5 times, most recently from 5a665fc to 381997b Compare April 26, 2023 14:25
@dependabot
chore(deps): bump json5, next and loader-utils
834f2f5 
Bumps [json5](https://github.com/json5/json5) to 1.0.2 and updates ancestor dependencies [json5](https://github.com/json5/json5), [next](https://github.com/vercel/next.js) and [loader-utils](https://github.com/webpack/loader-utils). These dependencies need to be updated together.


Updates `json5` from 0.5.1 to 1.0.2
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](json5/json5@v0.5.1...v1.0.2)

Updates `next` from 8.1.0 to 13.2.4
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v8.1.0...v13.2.4)

Updates `loader-utils` from 1.1.0 to 1.4.2
- [Release notes](https://github.com/webpack/loader-utils/releases)
- [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md)
- [Commits](webpack/loader-utils@v1.1.0...v1.4.2)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
- dependency-name: next
  dependency-type: direct:production
- dependency-name: loader-utils
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/next-optimized-images/example/json5-and-next-and-loader-utils-1.0.2 branch from 381997b to 834f2f5 Compare April 26, 2023 16:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants