Hugo Bernier
|
770fbad443
|
Merge pull request #4859 from pnp/dependabot/npm_and_yarn/samples/react-events-aggregator/follow-redirects-1.15.6
|
2024-03-25 22:06:06 -04:00 |
dependabot[bot]
|
8fe138d4e4
|
Bump webpack-dev-middleware in /samples/react-events-aggregator
Bumps [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) from 5.3.3 to 5.3.4.
- [Release notes](https://github.com/webpack/webpack-dev-middleware/releases)
- [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md)
- [Commits](https://github.com/webpack/webpack-dev-middleware/compare/v5.3.3...v5.3.4)
---
updated-dependencies:
- dependency-name: webpack-dev-middleware
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-03-23 12:18:53 +00:00 |
dependabot[bot]
|
150cfe266e
|
Bump follow-redirects in /samples/react-events-aggregator
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.4 to 1.15.6.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.4...v1.15.6)
---
updated-dependencies:
- dependency-name: follow-redirects
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-03-16 23:00:21 +00:00 |
dependabot[bot]
|
44d52d2ef7
|
Bump follow-redirects in /samples/react-events-aggregator
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.2 to 1.15.4.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.2...v1.15.4)
---
updated-dependencies:
- dependency-name: follow-redirects
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-01-10 10:23:03 +00:00 |
dependabot[bot]
|
6371c3c346
|
Bump browserify-sign in /samples/react-events-aggregator
Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign) from 4.2.1 to 4.2.2.
- [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md)
- [Commits](https://github.com/crypto-browserify/browserify-sign/compare/v4.2.1...v4.2.2)
---
updated-dependencies:
- dependency-name: browserify-sign
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-10-28 00:43:29 +00:00 |
dependabot[bot]
|
af5a0a10ca
|
Bump @babel/traverse in /samples/react-events-aggregator
Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.20.10 to 7.23.2.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse)
---
updated-dependencies:
- dependency-name: "@babel/traverse"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-10-25 22:08:29 +00:00 |
dependabot[bot]
|
83b9bedd30
|
Bump word-wrap from 1.2.3 to 1.2.4 in /samples/react-events-aggregator
Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap) from 1.2.3 to 1.2.4.
- [Release notes](https://github.com/jonschlinkert/word-wrap/releases)
- [Commits](https://github.com/jonschlinkert/word-wrap/compare/1.2.3...1.2.4)
---
updated-dependencies:
- dependency-name: word-wrap
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-07-20 21:19:02 +00:00 |
dependabot[bot]
|
164a6a1c9d
|
Bump ua-parser-js in /samples/react-events-aggregator
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.28 to 0.7.33.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/changelog.md)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.28...0.7.33)
---
updated-dependencies:
- dependency-name: ua-parser-js
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-01-31 10:07:32 -05:00 |
dependabot[bot]
|
6d4eb642e9
|
Bump json5, @microsoft/sp-build-web and @microsoft/sp-webpart-workbench
Bumps [json5](https://github.com/json5/json5) to 2.2.2 and updates ancestor dependencies [json5](https://github.com/json5/json5), [@microsoft/sp-build-web](http://aka.ms/spfx) and [@microsoft/sp-webpart-workbench](http://aka.ms/spfx). These dependencies need to be updated together.
Updates `json5` from 0.5.1 to 2.2.2
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v0.5.1...v2.2.2)
Updates `@microsoft/sp-build-web` from 1.4.1 to 1.16.1
Updates `@microsoft/sp-webpart-workbench` from 1.4.1 to 1.12.1
---
updated-dependencies:
- dependency-name: json5
dependency-type: indirect
- dependency-name: "@microsoft/sp-build-web"
dependency-type: direct:development
- dependency-name: "@microsoft/sp-webpart-workbench"
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-01-01 02:42:56 -05:00 |
dependabot[bot]
|
245c5111ae
|
Bump decode-uri-component in /samples/react-events-aggregator
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2)
---
updated-dependencies:
- dependency-name: decode-uri-component
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2022-12-30 23:23:32 -05:00 |
dependabot[bot]
|
ad8eafc289
|
Bump css-what from 2.1.0 to 2.1.3 in /samples/react-events-aggregator
Bumps [css-what](https://github.com/fb55/css-what) from 2.1.0 to 2.1.3.
- [Release notes](https://github.com/fb55/css-what/releases)
- [Commits](https://github.com/fb55/css-what/compare/v2.1.0...v2.1.3)
---
updated-dependencies:
- dependency-name: css-what
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2022-10-06 02:33:48 +00:00 |
dependabot[bot]
|
8707f461ed
|
Bump jszip, @microsoft/sp-build-web and @microsoft/sp-webpart-workbench
Bumps [jszip](https://github.com/Stuk/jszip), [@microsoft/sp-build-web](http://aka.ms/spfx) and [@microsoft/sp-webpart-workbench](http://aka.ms/spfx). These dependencies needed to be updated together.
Updates `jszip` from 2.5.0 to 3.7.1
- [Release notes](https://github.com/Stuk/jszip/releases)
- [Changelog](https://github.com/Stuk/jszip/blob/main/CHANGES.md)
- [Commits](https://github.com/Stuk/jszip/compare/v2.5.0...v3.7.1)
Updates `@microsoft/sp-build-web` from 1.4.1 to 1.15.2
Updates `@microsoft/sp-webpart-workbench` from 1.4.1 to 1.12.1
---
updated-dependencies:
- dependency-name: jszip
dependency-type: indirect
- dependency-name: "@microsoft/sp-build-web"
dependency-type: direct:development
- dependency-name: "@microsoft/sp-webpart-workbench"
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2022-09-08 03:29:47 +00:00 |
dependabot[bot]
|
26c90baa5f
|
Bump minimist from 1.2.5 to 1.2.6 in /samples/react-events-aggregator
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6.
- [Release notes](https://github.com/substack/minimist/releases)
- [Commits](https://github.com/substack/minimist/compare/1.2.5...1.2.6)
---
updated-dependencies:
- dependency-name: minimist
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2022-03-26 12:17:14 +00:00 |
dependabot[bot]
|
e66bdf5118
|
Bump follow-redirects in /samples/react-events-aggregator
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.13.0 to 1.14.8.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.13.0...v1.14.8)
---
updated-dependencies:
- dependency-name: follow-redirects
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2022-02-15 13:43:45 +00:00 |
dependabot[bot]
|
344c94e707
|
Bump ajv from 5.2.5 to 6.12.3 in /samples/react-events-aggregator
Bumps [ajv](https://github.com/ajv-validator/ajv) from 5.2.5 to 6.12.3.
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](https://github.com/ajv-validator/ajv/compare/v5.2.5...v6.12.3)
---
updated-dependencies:
- dependency-name: ajv
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2022-02-13 07:30:57 +00:00 |
dependabot[bot]
|
4d3d456623
|
Bump tmpl from 1.0.4 to 1.0.5 in /samples/react-events-aggregator
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/daaku/nodejs-tmpl/releases)
- [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5)
---
updated-dependencies:
- dependency-name: tmpl
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-09-21 20:07:34 +00:00 |
dependabot[bot]
|
ca198ebb13
|
Bump set-value from 3.0.2 to 4.0.1 in /samples/react-events-aggregator
Bumps [set-value](https://github.com/jonschlinkert/set-value) from 3.0.2 to 4.0.1.
- [Release notes](https://github.com/jonschlinkert/set-value/releases)
- [Commits](https://github.com/jonschlinkert/set-value/compare/3.0.2...4.0.1)
---
updated-dependencies:
- dependency-name: set-value
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-09-16 08:06:02 +00:00 |
dependabot[bot]
|
d6d75da985
|
Bump tar from 6.1.2 to 6.1.9 in /samples/react-events-aggregator
Bumps [tar](https://github.com/npm/node-tar) from 6.1.2 to 6.1.9.
- [Release notes](https://github.com/npm/node-tar/releases)
- [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/npm/node-tar/compare/v6.1.2...v6.1.9)
---
updated-dependencies:
- dependency-name: tar
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-08-31 19:06:06 +00:00 |
dependabot[bot]
|
384bf902af
|
Bump path-parse from 1.0.5 to 1.0.7 in /samples/react-events-aggregator
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.5 to 1.0.7.
- [Release notes](https://github.com/jbgutierrez/path-parse/releases)
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7)
---
updated-dependencies:
- dependency-name: path-parse
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-08-12 06:54:36 +00:00 |
dependabot[bot]
|
854b36834e
|
Bump tar from 6.0.1 to 6.1.2 in /samples/react-events-aggregator
Bumps [tar](https://github.com/npm/node-tar) from 6.0.1 to 6.1.2.
- [Release notes](https://github.com/npm/node-tar/releases)
- [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/npm/node-tar/compare/v6.0.1...v6.1.2)
---
updated-dependencies:
- dependency-name: tar
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-08-03 22:37:39 +00:00 |
dependabot[bot]
|
7b664052ce
|
Bump lodash from 4.17.19 to 4.17.21 in /samples/react-events-aggregator
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21)
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-05-12 02:59:41 +00:00 |
dependabot[bot]
|
e8e9cf4b45
|
Bump merge from 1.2.1 to 2.1.1 in /samples/react-events-aggregator
Bumps [merge](https://github.com/yeikos/js.merge) from 1.2.1 to 2.1.1.
- [Release notes](https://github.com/yeikos/js.merge/releases)
- [Commits](https://github.com/yeikos/js.merge/compare/v1.2.1...v2.1.1)
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-05-12 02:50:21 +00:00 |
dependabot[bot]
|
9a89518a8a
|
Bump hosted-git-info in /samples/react-events-aggregator
Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.6.0 to 2.8.9.
- [Release notes](https://github.com/npm/hosted-git-info/releases)
- [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md)
- [Commits](https://github.com/npm/hosted-git-info/compare/v2.6.0...v2.8.9)
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-05-11 16:11:59 +00:00 |
dependabot[bot]
|
3649f3a2e0
|
Bump handlebars from 4.7.6 to 4.7.7 in /samples/react-events-aggregator
Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.7.6 to 4.7.7.
- [Release notes](https://github.com/wycats/handlebars.js/releases)
- [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md)
- [Commits](https://github.com/wycats/handlebars.js/compare/v4.7.6...v4.7.7)
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-05-08 21:34:35 +00:00 |
dependabot[bot]
|
9d5d8982c2
|
Bump ua-parser-js in /samples/react-events-aggregator
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.17 to 0.7.28.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.17...0.7.28)
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-05-07 21:59:33 +00:00 |
dependabot[bot]
|
f64f313349
|
Bump y18n from 3.2.1 to 3.2.2 in /samples/react-events-aggregator
Bumps [y18n](https://github.com/yargs/y18n) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md)
- [Commits](https://github.com/yargs/y18n/commits)
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-03-31 09:36:56 +00:00 |
dependabot[bot]
|
4ece5569d8
|
Bump elliptic from 6.5.3 to 6.5.4 in /samples/react-events-aggregator
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.3 to 6.5.4.
- [Release notes](https://github.com/indutny/elliptic/releases)
- [Commits](https://github.com/indutny/elliptic/compare/v6.5.3...v6.5.4)
Signed-off-by: dependabot[bot] <support@github.com>
|
2021-03-10 14:33:07 +00:00 |
dependabot[bot]
|
5a1d19ccae
|
Bump ini from 1.3.5 to 1.3.8 in /samples/react-events-aggregator
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8.
- [Release notes](https://github.com/isaacs/ini/releases)
- [Commits](https://github.com/isaacs/ini/compare/v1.3.5...v1.3.8)
Signed-off-by: dependabot[bot] <support@github.com>
|
2020-12-12 13:48:55 +00:00 |
dependabot[bot]
|
90c55fa78f
|
Bump http-proxy in /samples/react-events-aggregator
Bumps [http-proxy](https://github.com/http-party/node-http-proxy) from 1.16.2 to 1.18.1.
- [Release notes](https://github.com/http-party/node-http-proxy/releases)
- [Changelog](https://github.com/http-party/node-http-proxy/blob/master/CHANGELOG.md)
- [Commits](https://github.com/http-party/node-http-proxy/compare/1.16.2...1.18.1)
Signed-off-by: dependabot[bot] <support@github.com>
|
2020-09-11 17:17:24 +00:00 |
dependabot[bot]
|
10249f0099
|
Bump node-sass from 4.7.2 to 4.14.1 in /samples/react-events-aggregator
Bumps [node-sass](https://github.com/sass/node-sass) from 4.7.2 to 4.14.1.
- [Release notes](https://github.com/sass/node-sass/releases)
- [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sass/node-sass/compare/v4.7.2...v4.14.1)
Signed-off-by: dependabot[bot] <support@github.com>
|
2020-09-04 23:59:07 +00:00 |
dependabot[bot]
|
448d825a9b
|
Bump elliptic from 6.4.0 to 6.5.3 in /samples/react-events-aggregator
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.4.0 to 6.5.3.
- [Release notes](https://github.com/indutny/elliptic/releases)
- [Commits](https://github.com/indutny/elliptic/compare/v6.4.0...v6.5.3)
Signed-off-by: dependabot[bot] <support@github.com>
|
2020-08-01 20:33:24 +00:00 |
dependabot[bot]
|
eb79fb92bf
|
Bump lodash from 4.17.15 to 4.17.19 in /samples/react-events-aggregator
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)
Signed-off-by: dependabot[bot] <support@github.com>
|
2020-07-20 06:31:15 +00:00 |
dependabot[bot]
|
c51986da13
|
Bump websocket-extensions in /samples/react-events-aggregator
Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4.
- [Release notes](https://github.com/faye/websocket-extensions-node/releases)
- [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md)
- [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4)
Signed-off-by: dependabot[bot] <support@github.com>
|
2020-06-08 03:20:02 +00:00 |
Hugo Bernier
|
3636f967ab
|
Fixed additional exploit
|
2020-04-12 00:33:55 -04:00 |
Hugo Bernier
|
6dc1c30927
|
Fixed exploits in react-events-aggregator
|
2020-04-11 23:39:39 -04:00 |
Hugo Bernier
|
5a27258ac3
|
Fixed security issues with react-events-aggregator
|
2020-04-11 22:36:03 -04:00 |
Velin Georgiev
|
4acdd442bd
|
react events aggregator updated to version 1.4.1 of the SPFx (#455)
Readme updated
|
2018-04-04 16:52:02 +02:00 |