Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): update all non-major dependencies #93

Merged
merged 1 commit into from
Jan 8, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Sep 4, 2023

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
@cyco130/eslint-config ^3.5.0 -> ^3.6.0 age adoption passing confidence
@types/node (source) ^20.10.6 -> ^20.10.7 age adoption passing confidence
@whatwg-node/fetch (source) ^0.9.14 -> ^0.9.15 age adoption passing confidence
bun-types (source) ^1.0.20 -> ^1.0.21 age adoption passing confidence
graphql-yoga (source) ^5.1.0 -> ^5.1.1 age adoption passing confidence
hono (source) ^3.11.11 -> ^3.12.0 age adoption passing confidence
netlify-cli ^17.10.2 -> ^17.11.1 age adoption passing confidence
vite (source) ^5.0.10 -> ^5.0.11 age adoption passing confidence
vitest (source) ^1.1.0 -> ^1.1.3 age adoption passing confidence
wrangler (source) ^3.22.1 -> ^3.22.3 age adoption passing confidence

Release Notes

cyco130/eslint-config (@​cyco130/eslint-config)

v3.6.0

Compare Source

ardatan/whatwg-node (@​whatwg-node/fetch)

v0.9.15

Compare Source

Patch Changes
oven-sh/bun (bun-types)

v1.0.21

Compare Source

dotansimha/graphql-yoga (graphql-yoga)

v5.1.1

Compare Source

Patch Changes
honojs/hono (hono)

v3.12.0

Compare Source

Hono v3.12.0 is now available! Let's take a look at the new features.

CSRF Protection Middleware

This release introduces CSRF Protection Middleware. It is easy to use and can prevent CSRF attacks by simply writing like the following:

import { csrf } from 'hono/csrf'

// ...

app.use('*', csrf())

CSRF Protection Middleware compares the Origin header value with the request URL. This is the same method used by SvelteKit and is valid in many situations except when using older browsers.

Thanks to @​usualoma! And, the original idea for CSRF Protection was suggested by @​htunnicliff. Thanks!

css Helper

We created a built-in CSS in JS(X). It's "hono/css".

The css helper can be used with JSX. You can write the CSS in a css template literal tag and specify the returned value as the class value and it will be applied to that element.

app.get('/', (c) => {
  const headerClass = css`
    background-color: orange;
    color: white;
    padding: 1rem;
  `
  return c.html(
    <html>
      <head>
        <Style />
      </head>
      <body>
        <h1 class={headerClass}>Hello!</h1>
      </body>
    </html>
  )
})

If you use VS Code, you can use vscode-styled-components for Syntax highlighting and IntelliSense for css tagged literals.

SS

By combining keyframes and JSX rendering, you can create a like button without JavaScript!

Like button

Also, you can use a CSS-generating design tool such as Figma to create components even if you are not a CSS guru.

You can use other CSS in JS libraries in Hono, such as Panda CSS. However, hono/css can be used by simply importing the hono package, and Async components and Suspense are also supported.

Thanks to @​usualoma!

stream.onAbort()

c.stream() is now deprecated and you should use stream() in Streaming Helper. And, stream.abort() has been added.

app.get('/stream', (c) => {
  return stream(c, async (stream) => {
    stream.onAbort(() => {
      console.log('Aborted!')
    })
    // ...
  })
})

Thanks to @​sor4chi!

onNotFound option for serveStatic

Cloudflare Workers, Deno, and Bun serveStatic now have an onNotFound option. You can write a handle when a file is not found.

app.get(
  '/static/*',
  serveStatic({
    onNotFound: (path, c) => {
      console.log(`${path} is not found, you access ${c.req.path}`)
    }
  })
)

Thanks to @​Th1nkK1D!

colorize option for showRoutes()

The colorize option has been added to the showRoutes function in hono/dev. If you set this value to false, the output will not be colored, which can be used when you want to log output, etc.

import { showRoutes } from 'hono/dev'

showRoutes(app, {
  colorize: false
})

Other new features

  • feat(dev): add getRouterName()
  • feat(helper): export SSEStreamingApi and SSEMessage. Thanks to @​thanks to @​watany-dev!
  • feat(client): add param option to $url()

All Updates

New Contributors

Full Changelog: honojs/hono@v3.11.12...v3.12.0

v3.11.12

Compare Source

What's Changed

Full Changelog: honojs/hono@v3.11.11...v3.11.12

netlify/cli (netlify-cli)

v17.11.1

Compare Source

Bug Fixes

v17.11.0

Compare Source

Features
  • detect internal functions created after dev server already started (#​6257) (02e1069)
Bug Fixes
vitejs/vite (vite)

v5.0.11

Compare Source

vitest-dev/vitest (vitest)

v1.1.3

Compare Source

   🐞 Bug Fixes
    View changes on GitHub

v1.1.2

Compare Source

   🐞 Bug Fixes
    View changes on GitHub

v1.1.1

Compare Source

   🐞 Bug Fixes
    View changes on GitHub
cloudflare/workers-sdk (wrangler)

v3.22.3

Compare Source

Patch Changes
  • #​4693 93e88c43 Thanks @​mrbbot! - fix: ensure wrangler dev exits with code 0 on clean exit

    Previously, wrangler dev would exit with a non-zero exit code when pressing CTRL+C or x. This change ensures wrangler exits with code 0 in these cases.

  • #​4630 037de5ec Thanks @​petebacondarwin! - fix: ensure User Worker gets the correct Host header in wrangler dev local mode

    Some full-stack frameworks, such as Next.js, check that the Host header for a server
    side action request matches the host where the application is expected to run.

    In wrangler dev we have a Proxy Worker in between the browser and the actual User Worker.
    This Proxy Worker is forwarding on the request from the browser, but then the actual User
    Worker is running on a different host:port combination than that which the browser thinks
    it should be on. This was causing the framework to think the request is malicious and blocking
    it.

    Now we update the request's Host header to that passed from the Proxy Worker in a custom MF-Original-Url
    header, but only do this if the request also contains a shared secret between the Proxy Worker
    and User Worker, which is passed via the MF-Proxy-Shared-Secret header. This last feature is to
    prevent a malicious website from faking the Host header in a request directly to the User Worker.

    Fixes https://github.com/cloudflare/next-on-pages/issues/588

  • #​4693 93e88c43 Thanks @​mrbbot! - fix: ensure wrangler pages dev exits cleanly

    Previously, pressing CTRL+C or x when running wrangler pages dev wouldn't actually exit wrangler. You'd need to press CTRL+C a second time to exit the process. This change ensures wrangler exits the first time.

  • #​4696 624084c4 Thanks @​mrbbot! - fix: include additional modules in largest dependencies warning

    If your Worker fails to deploy because it's too large, Wrangler will display of list of your Worker's largest dependencies. Previously, this just included JavaScript dependencies. This change ensures additional module dependencies (e.g. WebAssembly, text blobs, etc.) are included when computing this list.

  • Updated dependencies [037de5ec]:

v3.22.2

Compare Source

Patch Changes
  • #​4600 4233e514 Thanks @​mrbbot! - fix: apply source mapping to deployment validation errors

    Previously if a Worker failed validation during wrangler deploy, the displayed error would reference locations in built JavaScript files. This made it more difficult to debug validation errors. This change ensures these errors are now source mapped, referencing locations in source files instead.

  • #​4440 15717333 Thanks @​mrbbot! - fix: automatically create required directories for wrangler r2 object get

    Previously, if you tried to use wrangler r2 object get with an object name containing a / or used the --file flag with a path containing a /, and the specified directory didn't exist, Wrangler would throw an ENOENT error. This change ensures Wrangler automatically creates required parent directories if they don't exist.

  • #​4592 20da658e Thanks @​mrbbot! - fix: throw helpful error if email validation required

    Previously, Wrangler would display the raw API error message and code if email validation was required during wrangler deploy. This change ensures a helpful error message is displayed instead, prompting users to check their emails or visit the dashboard for a verification link.

  • #​4588 4e5ed0b2 Thanks @​mrbbot! - fix: require worker name for rollback

    Previously, Wrangler would fail with a cryptic error if you tried to run wrangler rollback outside of a directory containing a Wrangler configuration file with a name defined. This change validates that a worker name is defined, and allows you to set it from the command line using the --name flag.

  • Updated dependencies [c410ea14]:


Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot added the dependencies label Sep 4, 2023
@renovate renovate bot changed the title chore(deps): update all non-major dependencies fix(deps): update all non-major dependencies Sep 4, 2023
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 14 times, most recently from 34f8ffb to b22c171 Compare September 11, 2023 02:29
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 13 times, most recently from 75066e9 to faf7a66 Compare September 15, 2023 17:30
@renovate renovate bot changed the title fix(deps): update all non-major dependencies chore(deps): update all non-major dependencies Dec 30, 2023
@renovate renovate bot changed the title chore(deps): update all non-major dependencies chore(deps): update all non-major dependencies - autoclosed Dec 30, 2023
@renovate renovate bot closed this Dec 30, 2023
@renovate renovate bot deleted the renovate/all-minor-patch branch December 30, 2023 18:39
@renovate renovate bot changed the title chore(deps): update all non-major dependencies - autoclosed chore(deps): update all non-major dependencies Dec 31, 2023
@renovate renovate bot restored the renovate/all-minor-patch branch December 31, 2023 02:11
@renovate renovate bot reopened this Dec 31, 2023
@renovate renovate bot changed the title chore(deps): update all non-major dependencies chore(deps): update dependency @cyco130/eslint-config to ^3.6.0 Dec 31, 2023
@renovate renovate bot changed the title chore(deps): update dependency @cyco130/eslint-config to ^3.6.0 chore(deps): update all non-major dependencies Dec 31, 2023
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 13 times, most recently from 2d48dca to c5227c0 Compare January 8, 2024 10:19
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from c5227c0 to dcd7a1b Compare January 8, 2024 10:21
@cyco130 cyco130 merged commit 2198ea6 into main Jan 8, 2024
0 of 6 checks passed
@renovate renovate bot deleted the renovate/all-minor-patch branch January 8, 2024 10:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant