Commit Graph

33 Commits

Author SHA1 Message Date
dependabot[bot] 6371c3c346
Bump browserify-sign in /samples/react-events-aggregator
Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign) from 4.2.1 to 4.2.2.
- [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md)
- [Commits](https://github.com/crypto-browserify/browserify-sign/compare/v4.2.1...v4.2.2)

---
updated-dependencies:
- dependency-name: browserify-sign
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-10-28 00:43:29 +00:00
dependabot[bot] af5a0a10ca
Bump @babel/traverse in /samples/react-events-aggregator
Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.20.10 to 7.23.2.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse)

---
updated-dependencies:
- dependency-name: "@babel/traverse"
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-10-25 22:08:29 +00:00
dependabot[bot] 83b9bedd30
Bump word-wrap from 1.2.3 to 1.2.4 in /samples/react-events-aggregator
Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap) from 1.2.3 to 1.2.4.
- [Release notes](https://github.com/jonschlinkert/word-wrap/releases)
- [Commits](https://github.com/jonschlinkert/word-wrap/compare/1.2.3...1.2.4)

---
updated-dependencies:
- dependency-name: word-wrap
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-07-20 21:19:02 +00:00
dependabot[bot] 164a6a1c9d Bump ua-parser-js in /samples/react-events-aggregator
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.28 to 0.7.33.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/changelog.md)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.28...0.7.33)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-31 10:07:32 -05:00
dependabot[bot] 6d4eb642e9 Bump json5, @microsoft/sp-build-web and @microsoft/sp-webpart-workbench
Bumps [json5](https://github.com/json5/json5) to 2.2.2 and updates ancestor dependencies [json5](https://github.com/json5/json5), [@microsoft/sp-build-web](http://aka.ms/spfx) and [@microsoft/sp-webpart-workbench](http://aka.ms/spfx). These dependencies need to be updated together.


Updates `json5` from 0.5.1 to 2.2.2
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v0.5.1...v2.2.2)

Updates `@microsoft/sp-build-web` from 1.4.1 to 1.16.1

Updates `@microsoft/sp-webpart-workbench` from 1.4.1 to 1.12.1

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
- dependency-name: "@microsoft/sp-build-web"
  dependency-type: direct:development
- dependency-name: "@microsoft/sp-webpart-workbench"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-01 02:42:56 -05:00
dependabot[bot] 245c5111ae Bump decode-uri-component in /samples/react-events-aggregator
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2)

---
updated-dependencies:
- dependency-name: decode-uri-component
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-30 23:23:32 -05:00
dependabot[bot] ad8eafc289
Bump css-what from 2.1.0 to 2.1.3 in /samples/react-events-aggregator
Bumps [css-what](https://github.com/fb55/css-what) from 2.1.0 to 2.1.3.
- [Release notes](https://github.com/fb55/css-what/releases)
- [Commits](https://github.com/fb55/css-what/compare/v2.1.0...v2.1.3)

---
updated-dependencies:
- dependency-name: css-what
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-06 02:33:48 +00:00
dependabot[bot] 8707f461ed
Bump jszip, @microsoft/sp-build-web and @microsoft/sp-webpart-workbench
Bumps [jszip](https://github.com/Stuk/jszip), [@microsoft/sp-build-web](http://aka.ms/spfx) and [@microsoft/sp-webpart-workbench](http://aka.ms/spfx). These dependencies needed to be updated together.

Updates `jszip` from 2.5.0 to 3.7.1
- [Release notes](https://github.com/Stuk/jszip/releases)
- [Changelog](https://github.com/Stuk/jszip/blob/main/CHANGES.md)
- [Commits](https://github.com/Stuk/jszip/compare/v2.5.0...v3.7.1)

Updates `@microsoft/sp-build-web` from 1.4.1 to 1.15.2

Updates `@microsoft/sp-webpart-workbench` from 1.4.1 to 1.12.1

---
updated-dependencies:
- dependency-name: jszip
  dependency-type: indirect
- dependency-name: "@microsoft/sp-build-web"
  dependency-type: direct:development
- dependency-name: "@microsoft/sp-webpart-workbench"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-08 03:29:47 +00:00
dependabot[bot] 26c90baa5f
Bump minimist from 1.2.5 to 1.2.6 in /samples/react-events-aggregator
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6.
- [Release notes](https://github.com/substack/minimist/releases)
- [Commits](https://github.com/substack/minimist/compare/1.2.5...1.2.6)

---
updated-dependencies:
- dependency-name: minimist
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-26 12:17:14 +00:00
dependabot[bot] e66bdf5118
Bump follow-redirects in /samples/react-events-aggregator
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.13.0 to 1.14.8.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.13.0...v1.14.8)

---
updated-dependencies:
- dependency-name: follow-redirects
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-02-15 13:43:45 +00:00
dependabot[bot] 344c94e707
Bump ajv from 5.2.5 to 6.12.3 in /samples/react-events-aggregator
Bumps [ajv](https://github.com/ajv-validator/ajv) from 5.2.5 to 6.12.3.
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](https://github.com/ajv-validator/ajv/compare/v5.2.5...v6.12.3)

---
updated-dependencies:
- dependency-name: ajv
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-02-13 07:30:57 +00:00
dependabot[bot] 4d3d456623
Bump tmpl from 1.0.4 to 1.0.5 in /samples/react-events-aggregator
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/daaku/nodejs-tmpl/releases)
- [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5)

---
updated-dependencies:
- dependency-name: tmpl
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-09-21 20:07:34 +00:00
dependabot[bot] ca198ebb13
Bump set-value from 3.0.2 to 4.0.1 in /samples/react-events-aggregator
Bumps [set-value](https://github.com/jonschlinkert/set-value) from 3.0.2 to 4.0.1.
- [Release notes](https://github.com/jonschlinkert/set-value/releases)
- [Commits](https://github.com/jonschlinkert/set-value/compare/3.0.2...4.0.1)

---
updated-dependencies:
- dependency-name: set-value
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-09-16 08:06:02 +00:00
dependabot[bot] d6d75da985
Bump tar from 6.1.2 to 6.1.9 in /samples/react-events-aggregator
Bumps [tar](https://github.com/npm/node-tar) from 6.1.2 to 6.1.9.
- [Release notes](https://github.com/npm/node-tar/releases)
- [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/npm/node-tar/compare/v6.1.2...v6.1.9)

---
updated-dependencies:
- dependency-name: tar
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-08-31 19:06:06 +00:00
dependabot[bot] 384bf902af
Bump path-parse from 1.0.5 to 1.0.7 in /samples/react-events-aggregator
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.5 to 1.0.7.
- [Release notes](https://github.com/jbgutierrez/path-parse/releases)
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7)

---
updated-dependencies:
- dependency-name: path-parse
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-08-12 06:54:36 +00:00
dependabot[bot] 854b36834e
Bump tar from 6.0.1 to 6.1.2 in /samples/react-events-aggregator
Bumps [tar](https://github.com/npm/node-tar) from 6.0.1 to 6.1.2.
- [Release notes](https://github.com/npm/node-tar/releases)
- [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/npm/node-tar/compare/v6.0.1...v6.1.2)

---
updated-dependencies:
- dependency-name: tar
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-08-03 22:37:39 +00:00
dependabot[bot] 7b664052ce
Bump lodash from 4.17.19 to 4.17.21 in /samples/react-events-aggregator
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21)

Signed-off-by: dependabot[bot] <support@github.com>
2021-05-12 02:59:41 +00:00
dependabot[bot] e8e9cf4b45
Bump merge from 1.2.1 to 2.1.1 in /samples/react-events-aggregator
Bumps [merge](https://github.com/yeikos/js.merge) from 1.2.1 to 2.1.1.
- [Release notes](https://github.com/yeikos/js.merge/releases)
- [Commits](https://github.com/yeikos/js.merge/compare/v1.2.1...v2.1.1)

Signed-off-by: dependabot[bot] <support@github.com>
2021-05-12 02:50:21 +00:00
dependabot[bot] 9a89518a8a
Bump hosted-git-info in /samples/react-events-aggregator
Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.6.0 to 2.8.9.
- [Release notes](https://github.com/npm/hosted-git-info/releases)
- [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md)
- [Commits](https://github.com/npm/hosted-git-info/compare/v2.6.0...v2.8.9)

Signed-off-by: dependabot[bot] <support@github.com>
2021-05-11 16:11:59 +00:00
dependabot[bot] 3649f3a2e0
Bump handlebars from 4.7.6 to 4.7.7 in /samples/react-events-aggregator
Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.7.6 to 4.7.7.
- [Release notes](https://github.com/wycats/handlebars.js/releases)
- [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md)
- [Commits](https://github.com/wycats/handlebars.js/compare/v4.7.6...v4.7.7)

Signed-off-by: dependabot[bot] <support@github.com>
2021-05-08 21:34:35 +00:00
dependabot[bot] 9d5d8982c2
Bump ua-parser-js in /samples/react-events-aggregator
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.17 to 0.7.28.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.17...0.7.28)

Signed-off-by: dependabot[bot] <support@github.com>
2021-05-07 21:59:33 +00:00
dependabot[bot] f64f313349
Bump y18n from 3.2.1 to 3.2.2 in /samples/react-events-aggregator
Bumps [y18n](https://github.com/yargs/y18n) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md)
- [Commits](https://github.com/yargs/y18n/commits)

Signed-off-by: dependabot[bot] <support@github.com>
2021-03-31 09:36:56 +00:00
dependabot[bot] 4ece5569d8
Bump elliptic from 6.5.3 to 6.5.4 in /samples/react-events-aggregator
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.3 to 6.5.4.
- [Release notes](https://github.com/indutny/elliptic/releases)
- [Commits](https://github.com/indutny/elliptic/compare/v6.5.3...v6.5.4)

Signed-off-by: dependabot[bot] <support@github.com>
2021-03-10 14:33:07 +00:00
dependabot[bot] 5a1d19ccae
Bump ini from 1.3.5 to 1.3.8 in /samples/react-events-aggregator
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8.
- [Release notes](https://github.com/isaacs/ini/releases)
- [Commits](https://github.com/isaacs/ini/compare/v1.3.5...v1.3.8)

Signed-off-by: dependabot[bot] <support@github.com>
2020-12-12 13:48:55 +00:00
dependabot[bot] 90c55fa78f
Bump http-proxy in /samples/react-events-aggregator
Bumps [http-proxy](https://github.com/http-party/node-http-proxy) from 1.16.2 to 1.18.1.
- [Release notes](https://github.com/http-party/node-http-proxy/releases)
- [Changelog](https://github.com/http-party/node-http-proxy/blob/master/CHANGELOG.md)
- [Commits](https://github.com/http-party/node-http-proxy/compare/1.16.2...1.18.1)

Signed-off-by: dependabot[bot] <support@github.com>
2020-09-11 17:17:24 +00:00
dependabot[bot] 10249f0099
Bump node-sass from 4.7.2 to 4.14.1 in /samples/react-events-aggregator
Bumps [node-sass](https://github.com/sass/node-sass) from 4.7.2 to 4.14.1.
- [Release notes](https://github.com/sass/node-sass/releases)
- [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sass/node-sass/compare/v4.7.2...v4.14.1)

Signed-off-by: dependabot[bot] <support@github.com>
2020-09-04 23:59:07 +00:00
dependabot[bot] 448d825a9b
Bump elliptic from 6.4.0 to 6.5.3 in /samples/react-events-aggregator
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.4.0 to 6.5.3.
- [Release notes](https://github.com/indutny/elliptic/releases)
- [Commits](https://github.com/indutny/elliptic/compare/v6.4.0...v6.5.3)

Signed-off-by: dependabot[bot] <support@github.com>
2020-08-01 20:33:24 +00:00
dependabot[bot] eb79fb92bf
Bump lodash from 4.17.15 to 4.17.19 in /samples/react-events-aggregator
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot[bot] <support@github.com>
2020-07-20 06:31:15 +00:00
dependabot[bot] c51986da13
Bump websocket-extensions in /samples/react-events-aggregator
Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4.
- [Release notes](https://github.com/faye/websocket-extensions-node/releases)
- [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md)
- [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4)

Signed-off-by: dependabot[bot] <support@github.com>
2020-06-08 03:20:02 +00:00
Hugo Bernier 3636f967ab Fixed additional exploit 2020-04-12 00:33:55 -04:00
Hugo Bernier 6dc1c30927 Fixed exploits in react-events-aggregator 2020-04-11 23:39:39 -04:00
Hugo Bernier 5a27258ac3 Fixed security issues with react-events-aggregator 2020-04-11 22:36:03 -04:00
Velin Georgiev 4acdd442bd react events aggregator updated to version 1.4.1 of the SPFx (#455)
Readme updated
2018-04-04 16:52:02 +02:00