[Snyk] Upgrade: , d3, rollup-plugin-node-resolve, rollup-plugin-typescript2 #484
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯 The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
@types/d3
from 5.7.2 to 5.16.7 | 16 versions ahead of your current version | 10 months ago
on 2023-11-07
d3
from 5.7.0 to 5.16.0 | 23 versions ahead of your current version | 4 years ago
on 2020-04-20
rollup-plugin-node-resolve
from 4.0.0 to 4.2.4 | 7 versions ahead of your current version | 5 years ago
on 2019-05-11
rollup-plugin-typescript2
from 0.20.1 to 0.36.0 | 30 versions ahead of your current version | a year ago
on 2023-09-27
Issues fixed by the recommended upgrade:
SNYK-JS-BRACES-6838727
SNYK-JS-DECODEURICOMPONENT-3149970
SNYK-JS-MICROMATCH-6838728
SNYK-JS-UNSETVALUE-2400660
SNYK-JS-PATHPARSE-1077067
SNYK-JS-PATHPARSE-1077067
SNYK-JS-KINDOF-537849
Release notes
Package name: @types/d3
Package name: d3
Package name: rollup-plugin-node-resolve
4.2.4
4.2.3
4.2.2
4.2.1
4.2.0
4.1.0
4.0.1
4.0.0
Package name: rollup-plugin-typescript2
Features/bugfixes
moduleResolution
kinds, update build to TS 5.x by @ ezolenko in #453Internal (testing, refactors)
dist/*
as generated code by @ agilgur5 in #457semver
vianpm audit fix
by @ agilgur5 in #459Full Changelog: 0.35.0...0.36.0
Features
module: "ES2022"
by @ ezolenko in #450Bugfixes
Full Changelog: 0.34.1...0.35.0
Bugfixes
buildStart
error by @ agilgur5 in #4220.34.0
where users sawTypeError: Cannot read property 'done' of undefined
instead of their actual initialization error, such as atsconfig
issue (such as with #421)semver
by @ agilgur5 in #4240.34.0
introduced a type-only fix that relied on Rollup 2.60.0+ and would (accidentally) error out on older versions of Rollup. This fix handles it gracefully with a clear warning message instead and skips that check when using an older version of Rollup (i.e. partly backward-compatible).peerDependencies
minimum versions have not been metfilter
ed files by @ agilgur5 in #4280.33.0
that could cause rpt2 to (accidentally) resolve files that should have been filtered out by the plugininclude
/exclude
(such as with #427)Internal (testing, refactors)
@ types/resolve
by @ agilgur5 in #423no-errors
integration timeout to 20s by @ agilgur5 in #425Full Changelog: 0.34.0...0.34.1
Bugfixes
type
s andinterface
s that would produce no JS.2.60.0
+ as it requires the use ofthis.load
0.34.0
will (accidentally) error out on older versions of Rollup.0.34.1
patched this to instead give a warning and skip this check on older versions of Rollup.More Fixes ...
emitDeclarationOnly
log statement by @ agilgur5 in #412Docs
CHANGELOG.md
that references GH releases by @ agilgur5 in #419Internal (testing, refactors)
declarationMap
sources are correct by @ agilgur5 in #403print-diagnostics
spec by @ agilgur5 in #405More Internal ...
context
helper by @ agilgur5 in #404check-tsconfig
withparse-tsconfig
by @ agilgur5 in #413ConsoleContext
entirely by usingbuildStart
by @ agilgur5 in #414cache
var by @ agilgur5 in #415diagnostics
funcs into single file by @ agilgur5 in #415Full Changelog: 0.33.0.1...0.34.0
clean
, this won't be hit during normal usageBugfixes
@ rollup/plugin-commonjs
to v22 to fix try/catch requires by @ agilgur5 in #3400.32.0
that caused users with certain environments to experienceReferenceError: window is not defined
when importing rpt2. See #339Full Changelog: 0.32.0...0.32.1
Features
rpt2:
prefix on more errors by @ ezolenko in ff88951Bugfixes
get-options-overrides
by @ agilgur5 in #331realpath
to host to properly resolve monorepos / symlinks by @ agilgur5 in #332.d.ts
instead of.vue.d.ts
for Vue declarations by @ agilgur5 in #336.vue.d.ts
. As such, this has been reverted in0.33.0
sources
when no output by @ agilgur5 in #334noEmitOnError: false
by @ agilgur5 in #338Dependencies
ReferenceError: window is not defined
, please upgrade to0.32.1
, which should fix this issue.@ types/colors
package by @ agilgur5 in #319normalizePath
from@ rollup/pluginutils
by @ agilgur5 in #320tslib
to^2.4.0
, remove@ yarn-tool/resolve-package
by @ agilgur5 in #326Docs
_.merge
doesn't concat arrays by @ agilgur5 in #314More Docs ...
GitHub
Internal (testing, refactors)
get-options-overrides
(createFilter
) by @ agilgur5 in #329More Internal ...
partial.ts
as this is built into TS by @ agilgur5 in #322npm ci
for install and cachenpm
by @ agilgur5 in #323Full Changelog: 0.31.2...0.32.0
What's Changed
trace
method to theLanguageServiceHost
to enable usage withtraceResolution
by @ Andarist in #296Full Changelog: 0.31.1...0.31.2
Fix for #291
Full Changelog: 0.31.0...0.31.1
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: