Skip to content

Bump the npm_and_yarn group across 1 directory with 13 updates #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the npm_and_yarn group across 1 directory with 13 updates #2

wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Nov 10, 2025

Bumps the npm_and_yarn group with 6 updates in the /samples/csharp/end-to-end-apps/Forecasting-Sales/src/eShopDashboard directory:

Package From To
jquery 3.4.0 3.7.1
lodash 4.17.13 4.17.21
plotly.js 1.36.1 2.25.2
brace-expansion 1.1.11 1.1.12
decode-uri-component 0.2.0 0.2.2
minimatch 3.0.4 3.1.2

Updates jquery from 3.4.0 to 3.7.1

Release notes

Sourced from jquery's releases.

jQuery 3.7.1 Released: Reliable Table Row Dimensions

https://blog.jquery.com/2023/08/28/jquery-3-7-1-released-reliable-table-row-dimensions/

jQuery 3.7.0: Staying in Order

https://blog.jquery.com/2023/05/11/jquery-3-7-0-released-staying-in-order/

jQuery 3.6.4 Released: Selector Forgiveness

https://blog.jquery.com/2023/03/08/jquery-3-6-4-released-selector-forgiveness/

jQuery supports CSS.supports in jQuery 3.6.3

https://blog.jquery.com/2022/12/20/jquery-3-6-3-released-a-quick-selector-fix/

jQuery 3.6.2 :has arrived!

https://blog.jquery.com/2022/12/13/jquery-3-6-2-released/

jQuery 3.6.1 Maintenance Release

https://blog.jquery.com/2022/08/26/jquery-3-6-1-maintenance-release/

jQuery 3.6.0 Released!

https://blog.jquery.com/2021/03/02/jquery-3-6-0-released/

jQuery 3.5.0 Released!

See the blog post: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/ and the upgrade guide: https://jquery.com/upgrade-guide/3.5/

NOTE: Despite being a minor release, this update includes a breaking change that we had to make to fix a security issue ( CVE-2020-11022). Please follow the blog post & the upgrade guide for more details.

Commits
  • f79d5f1 3.7.1
  • 399b201 Release: revert change that broke release
  • f85d521 Release: update authors
  • 763ade6 Build: Generate the slim build on grunt & run compare_size on it
  • a288838 CSS: Make the reliableTrDimensions support test work with Bootstrap CSS (3.x ...
  • 87467a6 Selector: Only attach the unload handler in IE & Edge Legacy
  • 3c18c1f Build: Make sure *.cjs & *.mjs files use UNIX line endings as well
  • 72ae577 Build: switch preferred email for timmywil
  • a370d7d Build: Build: Bump actions/checkout from 3.5.2 to 3.5.3
  • 4a29888 Docs: Fix typos found by codespell
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by timmywil, a new releaser for jquery since your current version.


Updates lodash from 4.17.13 to 4.17.21

Commits
  • f299b52 Bump to v4.17.21
  • c4847eb Improve performance of toNumber, trim and trimEnd on large input strings
  • 3469357 Prevent command injection through _.template's variable option
  • ded9bc6 Bump to v4.17.20.
  • 63150ef Documentation fixes.
  • 00f0f62 test.js: Remove trailing comma.
  • 846e434 Temporarily use a custom fork of lodash-cli.
  • 5d046f3 Re-enable Travis tests on 4.17 branch.
  • aa816b3 Remove /npm-package.
  • d7fbc52 Bump to v4.17.19
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by bnjmnt4n, a new releaser for lodash since your current version.


Updates plotly.js from 1.36.1 to 2.25.2

Release notes

Sourced from plotly.js's releases.

v2.25.2

Changed

  • Update Croatian translations in hr locale [#6690], with thanks to @​Mkranj for the contribution!

Fixed

  • Fix potential prototype pollution in plot API calls [#6703, 6704]

v2.25.1

Fixed

  • Fix clearing legend using react (regression introduced in 2.25.0) [#6695]

v2.25.0

Added

  • Add "Equal Earth" projection to geo subplots [#6670], with thanks to @​apparebit for the contribution!
  • Add options to include legends for shapes and newshape [#6653]
  • Add Plotly.deleteActiveShape command [#6679]

Fixed

  • Fix contour plot colorscale domain (take account of zmin, zmax, cmin and cmax) [#6625], with thanks to @​lvlte for the contribution!
  • Fix text markers on non-mapbox styled maps [#6652], with thanks to @​baurt for the contribution!
  • Fix unhide isolated traces in multi legend cases (regression introduced in 2.24.3) [#6684]

v2.24.3

Fixed

  • Fix double clicking one item in a legend hides traces in other legends [#6655]
  • Fix double click pie slices when having multiple legends [#6657]
  • Fix per legend group and traceorder defaults when having multiple legends [#6664]

v2.24.2

Fixed

  • Fix legend groups toggle (regression introduced in 2.22.0) #6639
  • Fix waterfall hovertemplate not showing delta on totals similar #6635

v2.24.1

Fixed

  • Fix minimal copying of arrays in minExtend function (regression introduced in 2.24.0) #6632

v2.24.0

Added

Fixed

  • Fix to prevent accessing undefined (hoverText.hoverLabels) in case all currently shown markers have hoverinfo: "none" (regression introduced in 2.6.0) #6614,

... (truncated)

Changelog

Sourced from plotly.js's changelog.

[2.25.2] -- 2023-08-11

Changed

  • Update Croatian translations in hr locale [#6690], with thanks to @​Mkranj for the contribution!

Fixed

  • Fix potential prototype pollution in plot API calls [#6703, 6704]

[2.25.1] -- 2023-08-02

Fixed

  • Fix clearing legend using react (regression introduced in 2.25.0) [#6695]

[2.25.0] -- 2023-07-25

Added

  • Add "Equal Earth" projection to geo subplots [#6670], with thanks to @​apparebit for the contribution!
  • Add options to include legends for shapes and newshape [#6653]
  • Add Plotly.deleteActiveShape command [#6679]

Fixed

  • Fix contour plot colorscale domain (take account of zmin, zmax, cmin and cmax) [#6625], with thanks to @​lvlte for the contribution!
  • Fix text markers on non-mapbox styled maps [#6652], with thanks to @​baurt for the contribution!
  • Fix unhide isolated traces in multi legend cases (regression introduced in 2.24.3) [#6684]

[2.24.3] -- 2023-07-05

Fixed

  • Fix double clicking one item in a legend hides traces in other legends [#6655]
  • Fix double click pie slices when having multiple legends [#6657]
  • Fix per legend group and traceorder defaults when having multiple legends [#6664]

[2.24.2] -- 2023-06-09

Fixed

  • Fix legend groups toggle (regression introduced in 2.22.0) #6639
  • Fix waterfall hovertemplate not showing delta on totals similar #6635

[2.24.1] -- 2023-06-07

Fixed

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by archmoj, a new releaser for plotly.js since your current version.


Updates bl from 1.2.2 to 2.2.1

Release notes

Sourced from bl's releases.

v2.2.1

Fix unintialized memory access

v2.2.0

  • Add indexOf docs #60
  • fix empty shallowSlice return #65

v2.1.2

  • use ES3 only #62

v2.1.1

  • Use native indexOf whenever possible #61

v2.1.0

  • Added indexOf #59

v2.0.1

  • Use require('readable-stream').Duplex #56

v2.0.0

  • Added support for readUIntLE and companions #55
Commits
  • 8cb93f4 Bumped v2.2.1
  • dacc4ac Fix unintialized memory access
  • b6284a8 Bumped v2.2.0.
  • 538a988 Merge pull request #60 from reconbot/reconbot/indexof-readme
  • 635b6ce Merge pull request #65 from reconbot/reconbot/empty-slice
  • 9b80b00 fix: empty shallowSlice return
  • 055a3ff Merge pull request #63 from nwoltman/patch-1
  • c768eb8 Use Buffer.from() in the documentation
  • 270e5f5 Bumped v2.1.2
  • 91cbaf9 Merge pull request #62 from jhaenchen/DontUseES2015Const
  • Additional commits viewable in compare view

Updates brace-expansion from 1.1.11 to 1.1.12

Release notes

Sourced from brace-expansion's releases.

v1.1.12

  • pkg: publish on tag 1.x c460dbd
  • fmt ccb8ac6
  • Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65) c3c73c8

juliangruber/brace-expansion@v1.1.11...v1.1.12

Commits

Updates d3-color from 1.2.3 to 3.1.0

Release notes

Sourced from d3-color's releases.

v3.1.0

v3.0.1

  • Make build reproducible.

v3.0.0

  • Adopt type: module.

This package now requires Node.js 12 or higher. For more, please read Sindre Sorhus’s FAQ.

v2.0.0

This release adopts ES2015 language features such as for-of and drops support for older browsers, including IE. If you need to support pre-ES2015 environments, you should stick with d3-color 1.x or use a transpiler.

v1.4.1

  • Fix parsing of 4- and 8-digit hexadecimal transparent colors. #52

v1.4.0

  • Add support for parsing 4- and 8-digit hexadecimal colors. #60 Thanks, @​zerovox!
  • Add sideEffects: false to the package.json.

v1.3.0

v1.2.8

  • Revert chroma clamping in hcl.toString. (#33)

v1.2.7

  • Account for rounding when determining whether a color is displayable.

v1.2.6

  • Implement chroma clamping in hcl.toString. (#33)
  • Fix achromatic representation of white in HCL colorspace (again).

v1.2.5

  • Fix achromatic representation of white in HCL colorspace.

v1.2.4

  • Fix achromatic representation of black and white in HCL colorspace.
Commits

Updates decode-uri-component from 0.2.0 to 0.2.2

Release notes

Sourced from decode-uri-component's releases.

v0.2.2

  • Prevent overwriting previously decoded tokens 980e0bf

SamVerschueren/decode-uri-component@v0.2.1...v0.2.2

v0.2.1

  • Switch to GitHub workflows 76abc93
  • Fix issue where decode throws - fixes #6 746ca5d
  • Update license (#1) 486d7e2
  • Tidelift tasks a650457
  • Meta tweaks 66e1c28

SamVerschueren/decode-uri-component@v0.2.0...v0.2.1

Commits

Updates es5-ext from 0.10.46 to 0.10.64

Release notes

Sourced from es5-ext's releases.

0.10.64 (2024-02-27)

Bug Fixes

  • Revert update to postinstall script meant to fix Powershell issue, as it's a regression for some Linux terminals (c2e2bb9)

Comparison since last release

0.10.63 (2024-02-23)

Bug Fixes

  • Do not rely on problematic regex (3551cdd), addresses #201
  • Support ES2015+ function definitions in function#toStringTokens() (a52e957), addresses #021
  • Ensure postinstall script does not crash on Windows, fixes #181 (bf8ed79)

Maintenance Improvements

  • Simplify the manifest message (7855319)

Comparison since last release

0.10.62 (2022-08-02)

Maintenance Improvements

Comparison since last release

0.10.61 (2022-04-20)

Bug Fixes

  • Ensure postinstall script does not error (a0be4fd)

Maintenance Improvements

Comparison since last release

0.10.60 (2022-04-07)

Maintenance Improvements

  • Improve postinstall script configuration (ab6b121)

... (truncated)

Changelog

Sourced from es5-ext's changelog.

0.10.64 (2024-02-27)

Bug Fixes

  • Revert update to postinstall script meant to fix Powershell issue, as it's a regression for some Linux terminals (c2e2bb9)

0.10.63 (2024-02-23)

Bug Fixes

  • Do not rely on problematic regex (3551cdd), addresses #201
  • Support ES2015+ function definitions in function#toStringTokens() (a52e957), addresses #021
  • Ensure postinstall script does not crash on Windows, fixes #181 (bf8ed79)

Maintenance Improvements

  • Simplify the manifest message (7855319)

0.10.62 (2022-08-02)

Maintenance Improvements

0.10.61 (2022-04-20)

Bug Fixes

  • Ensure postinstall script does not error (a0be4fd)

Maintenance Improvements

0.10.60 (2022-04-07)

Maintenance Improvements

  • Improve postinstall script configuration (ab6b121)

0.10.59 (2022-03-17)

Maintenance Improvements

0.10.58 (2022-03-11)

... (truncated)

Commits
  • f76b03d chore: Release v0.10.64
  • 2881acd chore: Bump dependencies
  • c2e2bb9 fix: Revert update meant to fix Powershell issue, as it's a regression
  • 16f2b72 docs: Fix date in the changelog
  • de4e03c chore: Release v0.10.63
  • 3fd53b7 chore: Upgrade lint-staged to v13
  • bf8ed79 chore: Ensure postinstall script does not crash on Windows
  • 2cbbb07 chore: Bump dependencies
  • 22d0416 chore: Bump LICENSE year
  • a52e957 fix: Support ES2015+ function definitions in function#toStringTokens()
  • Additional commits viewable in compare view

Updates minimatch from 3.0.4 to 3.1.2

Commits

Updates minimist from 0.0.5 to 0.2.0

Changelog

Sourced from minimist's changelog.

v0.2.0 - 2014-06-19

Commits

v0.1.0 - 2014-05-12

Commits

  • Provide a mechanism to segregate -- arguments ce4a1e6
  • documented argv['--'] 14db0e6
  • Adding a test-case for notFlags segregation 715c1e3

v0.0.10 - 2014-05-11

Commits

  • dedicated boolean test 46e448f
  • dedicated num test 9bf2d36
  • aliased values treated as strings 1ab743b
  • cover the case of already numbers, at 100% coverage b2bb044
  • another test for higher coverage 3662624

v0.0.9 - 2014-05-08

Commits

v0.0.8 - 2014-02-20

Commits

  • return '' if flag is string and empty fa63ed4
  • handle joined single letters 66c248f

v0.0.7 - 2014-02-08

Commits

  • another swap of .test for .match d1da408

v0.0.6 - 2014-02-08

Commits

  • use .test() instead of .match() to not crash on non-string values in the arguments array 7e0d1ad
Commits

Updates ini from 1.3.5 to 1.3.8

Commits
  • a2c5da8 1.3.8
  • af5c6bb Do not use Object.create(null)
  • 8b648a1 don't test where our devdeps don't even work
  • c74c8af 1.3.7
  • 024b8b5 update deps, add linting
  • 032fbaf Use Object.create(null) to avoid default object property hazards
  • 2da9039 1.3.6
  • cfea636 better git push script, before publish instead of after
  • 56d2805 do not allow invalid hazardous string as section name
  • See full diff in compare view
Maintainer changes

This version was pushed to npm by isaacs, a new releaser for ini since your current version.


Updates path-parse from 1.0.6 to 1.0.7

Commits

Updates static-eval from 0.2.4 to 2.1.1

Release notes

Sourced from static-eval's releases.

v2.1.1

  • Update escodegen. @​FabianWarnecke in #43

    escodegen doesn't officially support all the Node.js versions that static-eval supports, but so far it still works on them. This has been the case for both v1.x and v2.1.0 of escodegen, so the upgrade doesn't change that situation.

v2.1.0

  • Add allowAccessToMethodsOnFunctions option to restore 1.x behaviour so that cwise can upgrade. (@​archmoj in #31)

    Do not use this option if you are not sure that you need it, as it had previously been removed for security reasons. There is a known exploit to execute arbitrary code. Only use it on trusted inputs, like the developer's JS files in a build system.

v2.0.5

v2.0.4

  • Short-circuit evaluation in && and || expressions. (@​RoboPhred in #28)
  • Start tracking changes.

v2.0.3

Disallows accessing .constructor and .__proto__ properties, which could be used to access the Function() constructor. (browserify/static-eval#27) Thanks to an anonymous reporter!

Changelog

Sourced from static-eval's changelog.

2.1.1

  • Update escodegen. @​FabianWarnecke in #43

    escodegen doesn't officially support all the Node.js versions that static-eval supports, but so far it still works on them. This has been the case for both v1.x and v2.1.0 of escodegen, so the upgrade doesn't change that situation.

2.1.0

  • Add allowAccessToMethodsOnFunctions option to restore 1.x behaviour so that cwise can upgrade. (@​archmoj in #31)

    Do not use this option if you are not sure that you need it, as it had previously been removed for security reasons. There is a known exploit to execute arbitrary code. Only use it on trusted inputs, like the developer's JS files in a build system.

2.0.5

2.0.4

  • Short-circuit evaluation in && and || expressions. (@​RoboPhred in #28)
  • Start tracking changes.
Commits
  • c682147 2.1.1
  • 22fc478 Merge pull request #43 from FabianWarnecke/patch-1
  • cdf877d Update dependency "escodegen".
  • aff732b maybe they will email me about "security" issues if i put this in there
  • 1a4d734 2.1.0
  • 054adac ci: add node 14
  • 09c4b83 Merge pull request #31 from archmoj/allow-cwise-transform
  • e619afc make option to enable allowAccessToMethodsOnFunctions namely to be used by cw...
  • 36587c2 remove trailing spaces
  • 798b0d5 ci: add node 12 and 13
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by goto-bus-stop, a new releaser for static-eval since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump the npm_and_yarn group across 1 directory with 13 updates
ffa36b9 
Bumps the npm_and_yarn group with 6 updates in the /samples/csharp/end-to-end-apps/Forecasting-Sales/src/eShopDashboard directory:

| Package | From | To |
| --- | --- | --- |
| [jquery](https://github.com/jquery/jquery) | `3.4.0` | `3.7.1` |
| [lodash](https://github.com/lodash/lodash) | `4.17.13` | `4.17.21` |
| [plotly.js](https://github.com/plotly/plotly.js) | `1.36.1` | `2.25.2` |
| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |
| [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` |
| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.2` |



Updates `jquery` from 3.4.0 to 3.7.1
- [Release notes](https://github.com/jquery/jquery/releases)
- [Changelog](https://github.com/jquery/jquery/blob/main/changelog.md)
- [Commits](jquery/jquery@3.4.0...3.7.1)

Updates `lodash` from 4.17.13 to 4.17.21
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.13...4.17.21)

Updates `plotly.js` from 1.36.1 to 2.25.2
- [Release notes](https://github.com/plotly/plotly.js/releases)
- [Changelog](https://github.com/plotly/plotly.js/blob/master/CHANGELOG.md)
- [Commits](plotly/plotly.js@v1.36.1...v2.25.2)

Updates `bl` from 1.2.2 to 2.2.1
- [Release notes](https://github.com/rvagg/bl/releases)
- [Changelog](https://github.com/rvagg/bl/blob/master/CHANGELOG.md)
- [Commits](rvagg/bl@v1.2.2...v2.2.1)

Updates `brace-expansion` from 1.1.11 to 1.1.12
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](juliangruber/brace-expansion@1.1.11...v1.1.12)

Updates `d3-color` from 1.2.3 to 3.1.0
- [Release notes](https://github.com/d3/d3-color/releases)
- [Commits](d3/d3-color@v1.2.3...v3.1.0)

Updates `decode-uri-component` from 0.2.0 to 0.2.2
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2)

Updates `es5-ext` from 0.10.46 to 0.10.64
- [Release notes](https://github.com/medikoo/es5-ext/releases)
- [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md)
- [Commits](medikoo/es5-ext@v0.10.46...v0.10.64)

Updates `minimatch` from 3.0.4 to 3.1.2
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v3.0.4...v3.1.2)

Updates `minimist` from 0.0.5 to 0.2.0
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](minimistjs/minimist@v0.0.5...v0.2.0)

Updates `ini` from 1.3.5 to 1.3.8
- [Release notes](https://github.com/npm/ini/releases)
- [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md)
- [Commits](npm/ini@v1.3.5...v1.3.8)

Updates `path-parse` from 1.0.6 to 1.0.7
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7)

Updates `static-eval` from 0.2.4 to 2.1.1
- [Release notes](https://github.com/browserify/static-eval/releases)
- [Changelog](https://github.com/browserify/static-eval/blob/master/CHANGELOG.md)
- [Commits](browserify/static-eval@0.2.4...v2.1.1)

---
updated-dependencies:
- dependency-name: jquery
  dependency-version: 3.7.1
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: lodash
  dependency-version: 4.17.21
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: plotly.js
  dependency-version: 2.25.2
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: bl
  dependency-version: 2.2.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: brace-expansion
  dependency-version: 1.1.12
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: d3-color
  dependency-version: 3.1.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: decode-uri-component
  dependency-version: 0.2.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: es5-ext
  dependency-version: 0.10.64
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimist
  dependency-version: 0.2.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ini
  dependency-version: 1.3.8
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: path-parse
  dependency-version: 1.0.7
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: static-eval
  dependency-version: 2.1.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 10, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant