compare merge automatically merged.#31
Conversation
* Add .circleci/config.yml * Delete azure-pipelines.yml
# Security Policy ## Supported Versions Use this section to tell people about which versions of your project are currently being supported with security updates. | Version | Supported | | ------- | ------------------ | | 5.1.x | ✅ | | 5.0.x | ❌ | | 4.0.x | ✅ | | < 4.0 | ❌ | ## Reporting a Vulnerability Use this section to tell people how to report a vulnerability. Tell them where to go, how often they can expect to get an update on a reported vulnerability, what to expect if the vulnerability is accepted or declined, etc.
…dates (#16) Bumps the npm_and_yarn group with 2 updates in the / directory: [webdriverio](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/webdriverio) and [micromatch](https://github.com/micromatch/micromatch). Updates `webdriverio` from 8.13.12 to 9.0.9 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.9/packages/webdriverio) Updates `micromatch` from 4.0.5 to 4.0.8 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@4.0.5...4.0.8) --- updated-dependencies: - dependency-name: webdriverio dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: micromatch dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…dates (#18) Bumps the npm_and_yarn group with 2 updates in the / directory: [body-parser](https://github.com/expressjs/body-parser) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `body-parser` from 1.20.2 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.20.2...1.20.3) Updates `vite` from 4.5.3 to 4.5.5 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.5/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.5/packages/vite) --- updated-dependencies: - dependency-name: body-parser dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: vite dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…dates (#19) Bumps the npm_and_yarn group with 2 updates in the / directory: [rollup](https://github.com/rollup/rollup) and [@vitest/browser](https://github.com/vitest-dev/vitest/tree/HEAD/packages/browser). Updates `rollup` from 3.29.4 to 4.22.4 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v3.29.4...v4.22.4) Updates `rollup` from 4.21.3 to 4.22.4 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v3.29.4...v4.22.4) Updates `@vitest/browser` from 0.32.2 to 2.1.1 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v2.1.1/packages/browser) --- updated-dependencies: - dependency-name: rollup dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: rollup dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@vitest/browser" dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com>
…dates (#28) Bumps the npm_and_yarn group with 3 updates in the / directory: [cross-spawn](https://github.com/moxystudio/node-cross-spawn), [nanoid](https://github.com/ai/nanoid) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `cross-spawn` from 7.0.3 to 7.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6) Updates `nanoid` from 3.3.7 to 3.3.8 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.3.7...3.3.8) Updates `vite` from 4.5.5 to 4.5.9 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.9/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.9/packages/vite) --- updated-dependencies: - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nanoid dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: vite dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Review or Edit in CodeSandboxOpen the branch in Web Editor • VS Code • Insiders |
|
|
There was a problem hiding this comment.
Remark-lint (reported by Codacy) found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
Reviewer's Guide by SourceryThis pull request includes several updates: It modifies issue templates by removing the Updated class diagram for Issue TemplatesclassDiagram
class BugReport {
**Describe the bug**
**To Reproduce**
**Expected behavior**
**Screenshots**
**Desktop (OS, Browser, Version)**
**Smartphone (Device, OS, Browser, Version)**
**Additional context**
}
class FeatureRequest {
**Problem Description**
**Proposed Solution**
**Alternatives Considered**
**Additional context**
}
class CustomIssueTemplate {
**Description**
}
note for BugReport "New issue template for reporting bugs"
note for FeatureRequest "New issue template for requesting features"
note for CustomIssueTemplate "New custom issue template"
File-Level Changes
Tips and commandsInteracting with Sourcery
Customizing Your ExperienceAccess your dashboard to:
Getting Help
|
|
New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎
🚮 Removed packages: npm/rustbn-wasm@0.4.0 |
|
👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎ This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored. |
There was a problem hiding this comment.
Hey @Dargon789 - I've reviewed your changes - here's some feedback:
Overall Comments:
- This PR introduces several new files; consider adding a description of their purpose in the PR description.
- It looks like the labels were removed from the issue templates, is this intentional?
Here's what I looked at during the review
- 🟡 General issues: 2 issues found
- 🟢 Security: all looks good
- 🟢 Testing: all looks good
- 🟢 Complexity: all looks good
- 🟢 Documentation: all looks good
Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.
This reverts commit 3a68385.
* compare merge automatically merged. (#31) * Circleci project setup (#15) * Add .circleci/config.yml * Delete azure-pipelines.yml * Create SECURITY.md # Security Policy ## Supported Versions Use this section to tell people about which versions of your project are currently being supported with security updates. | Version | Supported | | ------- | ------------------ | | 5.1.x | ✅ | | 5.0.x | ❌ | | 4.0.x | ✅ | | < 4.0 | ❌ | ## Reporting a Vulnerability Use this section to tell people how to report a vulnerability. Tell them where to go, how often they can expect to get an update on a reported vulnerability, what to expect if the vulnerability is accepted or declined, etc. * build(deps): bump the npm_and_yarn group across 1 directory with 2 updates (#16) Bumps the npm_and_yarn group with 2 updates in the / directory: [webdriverio](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/webdriverio) and [micromatch](https://github.com/micromatch/micromatch). Updates `webdriverio` from 8.13.12 to 9.0.9 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.9/packages/webdriverio) Updates `micromatch` from 4.0.5 to 4.0.8 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@4.0.5...4.0.8) --- updated-dependencies: - dependency-name: webdriverio dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: micromatch dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Create codacy.yml * build(deps): bump the npm_and_yarn group across 1 directory with 2 updates (#18) Bumps the npm_and_yarn group with 2 updates in the / directory: [body-parser](https://github.com/expressjs/body-parser) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `body-parser` from 1.20.2 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.20.2...1.20.3) Updates `vite` from 4.5.3 to 4.5.5 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.5/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.5/packages/vite) --- updated-dependencies: - dependency-name: body-parser dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: vite dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump the npm_and_yarn group across 1 directory with 2 updates (#19) Bumps the npm_and_yarn group with 2 updates in the / directory: [rollup](https://github.com/rollup/rollup) and [@vitest/browser](https://github.com/vitest-dev/vitest/tree/HEAD/packages/browser). Updates `rollup` from 3.29.4 to 4.22.4 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v3.29.4...v4.22.4) Updates `rollup` from 4.21.3 to 4.22.4 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v3.29.4...v4.22.4) Updates `@vitest/browser` from 0.32.2 to 2.1.1 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v2.1.1/packages/browser) --- updated-dependencies: - dependency-name: rollup dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: rollup dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@vitest/browser" dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Create eslint.yml Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com> * Update issue templates * build(deps): bump the npm_and_yarn group across 1 directory with 3 updates (#28) Bumps the npm_and_yarn group with 3 updates in the / directory: [cross-spawn](https://github.com/moxystudio/node-cross-spawn), [nanoid](https://github.com/ai/nanoid) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `cross-spawn` from 7.0.3 to 7.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6) Updates `nanoid` from 3.3.7 to 3.3.8 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.3.7...3.3.8) Updates `vite` from 4.5.5 to 4.5.9 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.9/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.9/packages/vite) --- updated-dependencies: - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nanoid dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: vite dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Create CNAME * Update CNAME * Revert "build(deps): bump the npm_and_yarn group across 1 directory with 2 up…" (#30) This reverts commit 5f22892. --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Revert "compare merge automatically merged. (#31)" (#39) This reverts commit 3a68385. * Revert "Revert "compare merge automatically merged. (#31)" (#39)" (#46) This reverts commit bce0b73. --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Summary by Sourcery
This pull request introduces several improvements to the project, including new CI workflows for security scanning and linting, a CircleCI configuration file, updated issue templates, and a security policy document.
Build:
CI:
Documentation:
Chores: