Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump fast-json-patch and swagger-client #17

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Mar 7, 2023

Bumps fast-json-patch and swagger-client. These dependencies needed to be updated together.
Updates fast-json-patch from 2.1.0 to 3.1.1

Release notes

Sourced from fast-json-patch's releases.

3.1.1

Security Fix for Prototype Pollution - huntr.dev #262

Bug fixes and ES6 modules

Use ES6 Modules

  • package now exports non-bundled ES module Starcounter-Jack/JSON-Patch#232
  • main still points to CommonJS module for backward compatibility
  • README recommends use of named ES imports

List of changes Starcounter-Jack/JSON-Patch@v2.2.1...3.0.0-0

Use ES6 Modules

  • package now exports non-bundled ES module Starcounter-Jack/JSON-Patch#232
  • main still points to CommonJS module for backward compatibility
  • README recommends use of named ES imports

Full list of changes Starcounter-Jack/JSON-Patch@v2.2.1...3.0.0-0

Fix default import

This patch release fixes a regression introduced in 2.2.0, namely: the default import using ES6 with Webpack/Babel stopped working (Starcounter-Jack/JSON-Patch#233).

This version fixes the problem by adding an explicit default import.

Generate invertible test operations

New feature:

  • Ability to generate test operations for original values in the first object, also known as "invertible" operations. Search fro the word invertible in README.md for details about usage (PR #228, PR #226).

Code quality:

  • Replace deep-equal with fast-deep-equal (PR #227)
  • Remove traces for support for legacy browsers which were broken since v2.0.7 (PR #229)
  • Fix testing framework
Commits
Maintainer changes

This version was pushed to npm by mountain-jack, a new releaser for fast-json-patch since your current version.


Updates swagger-client from 3.10.6 to 3.19.0

Release notes

Sourced from swagger-client's releases.

v3.19.0

3.19.0 (2023-03-06)

Bug Fixes

  • build: allow bundlers to process code properly (#2852) (4eb131e)
  • build: fix bundling of overridden ApiDOM deps (#2853) (604cf87)
  • build: fix failing UMD build (d8948ae)
  • build: remove @​types/ramda from bundled dependencies (783f1b1)
  • install: fix local dev setup for npm >= 8.19.3 (6eee23d)
  • resolver: fix useCircularStructure option support in OpenAPI 3.1 (f89a60f), closes #2755
  • resolver: remove LinkElement hook main dereference (ef9d20d), closes #2793
  • resolver: use native error cause syntax with ApiDOM errors (#2842) (ae0e7e8)

Features

  • add OpenAPI 3.1.0 dereference strategy (#2740) (62b4745), closes #2717
  • add support for Node.js >= 12.20.0 (a79b7f6)
  • build: limit the size of UMD build fragment as much as possible (#2843) (982a858), closes #2837
  • build: limit the size on npm package as much as possible (#2841) (a6c9f4f), closes #2837
  • bundle ApiDOM dependencies (85d234f)
  • deps: use ApiDOM npmjs.com npm packages (#2861) (1360993), closes #2860
  • expose ApiDOM components as public API (#2828) (b7ddc50), closes #2827
  • normalization: introduce normalization for OpenAPI 3.1.0 (35e53d5), closes #2743
  • resolve: add ApiDOM JSON parser (#2739) (0ce91cc), closes #2717 #2718
  • resolve: add ApiDOM OpenAPI 3.1.0 JSON parser (f231a61), closes #2717
  • resolve: add ApiDOM OpenAPI 3.1.0 YAML 1.2 parser (48340c6), closes #2717
  • resolve: add ApiDOM resolver based on SwaggerClient HTTP client (551c101), closes #2717
  • resolve: add ApiDOM YAML 1.2 parser (f9f9222), closes #2717
  • resolver: add support for mode resolver option (5dfaca4), closes #2750
  • resolver: add support for modelPropertyMacro option (5b76f37), closes #2749
  • resolver: add support for OpenAPI 3.1.0 resolution (19ecbe4), closes #2744
  • resolver: add support for parameterMacro option (965ca7a), closes #2748
  • resolver: add support for pathDiscriminator option (bf6c109), closes #2753
  • resolver: collect errors in AllOfVisitor hooks (#2809) (627ee8d), closes #2808
  • resolver: collect errors in ExampleElement visitor hook (09872a5), closes #2798
  • resolver: collect errors in ModelPropertyMacro visitor hooks (#2811) (6cef9ff), closes #2810
  • resolver: collect errors in ParameterMacroVisitor visitor hooks (#2813) (29ea34d), closes #2812
  • resolver: collect errors in PathItemElement visitor hook (#2805) (fba4bbc), closes #2804
  • resolver: collect errors in ReferenceElement visitor hook (#2803) (3983953), closes #2802
  • resolver: collect errors in SchemaElement visitor hook (#2807) (a098d85), closes #2806
  • resolver: create ApiDOM path -> SwaggerClient path translator (280f301), closes #2794
  • resolver: expose resolve makers (#2855) (5b88577)
  • resolver: expose resolve strategies (#2854) (2a39fb4)
  • resolver: limit depth of dereference to max 100 (e1aaf54)
  • subtree-resolver: adapt to support OpenAPI 3.1.0 (c20b526), closes #2738

v3.19.0-beta.8

... (truncated)

Commits
  • 0e231ee chore(release): cut the 3.19.0 release [skip ci]
  • 3efe95f ci(release): re-enable automatic CICD pipeline (#2869)
  • 1adf82d Merge pull request #2836 from the beta branch
  • 8155586 Merge branch 'master' into beta
  • c500759 chore(deps-dev): bump glob from 8.1.0 to 9.2.1 (#2868)
  • f141b40 chore(deps-dev): bump rimraf from 4.1.3 to 4.2.0 (#2866)
  • 3275b06 chore(deps-dev): bump rimraf from 4.1.2 to 4.1.3 (#2863)
  • 5b884ef chore(release): cut the 3.19.0-beta.8 release [skip ci]
  • 1360993 feat(deps): use ApiDOM npmjs.com npm packages (#2861)
  • f9c582a chore(deps): regenerate package-lock.json
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [fast-json-patch](https://github.com/Starcounter-Jack/JSON-Patch) and [swagger-client](https://github.com/swagger-api/swagger-js). These dependencies needed to be updated together.

Updates `fast-json-patch` from 2.1.0 to 3.1.1
- [Release notes](https://github.com/Starcounter-Jack/JSON-Patch/releases)
- [Commits](Starcounter-Jack/JSON-Patch@v2.1.0...3.1.1)

Updates `swagger-client` from 3.10.6 to 3.19.0
- [Release notes](https://github.com/swagger-api/swagger-js/releases)
- [Changelog](https://github.com/swagger-api/swagger-js/blob/master/.releaserc)
- [Commits](swagger-api/swagger-js@v3.10.6...v3.19.0)

---
updated-dependencies:
- dependency-name: fast-json-patch
  dependency-type: indirect
- dependency-name: swagger-client
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants