chore(deps): update all non-major dependencies #93
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
^3.5.0
->^3.6.0
^20.10.6
->^20.10.7
^0.9.14
->^0.9.15
^1.0.20
->^1.0.21
^5.1.0
->^5.1.1
^3.11.11
->^3.12.0
^17.10.2
->^17.11.1
^5.0.10
->^5.0.11
^1.1.0
->^1.1.3
^3.22.1
->^3.22.3
Release Notes
cyco130/eslint-config (@cyco130/eslint-config)
v3.6.0
Compare Source
ardatan/whatwg-node (@whatwg-node/fetch)
v0.9.15
Compare Source
Patch Changes
772552c
Thanks @ardatan! - Skip ponyfilling if NextJSoven-sh/bun (bun-types)
v1.0.21
Compare Source
dotansimha/graphql-yoga (graphql-yoga)
v5.1.1
Compare Source
Patch Changes
3ef877a7
Thanks @ardatan! - Support errors with extensions set undefined
honojs/hono (hono)
v3.12.0
Compare Source
Hono v3.12.0 is now available! Let's take a look at the new features.
CSRF Protection Middleware
This release introduces CSRF Protection Middleware. It is easy to use and can prevent CSRF attacks by simply writing like the following:
CSRF Protection Middleware compares the
Origin
header value with the request URL. This is the same method used by SvelteKit and is valid in many situations except when using older browsers.Thanks to @usualoma! And, the original idea for CSRF Protection was suggested by @htunnicliff. Thanks!
css Helper
We created a built-in CSS in JS(X). It's "hono/css".
The css helper can be used with JSX. You can write the CSS in a css template literal tag and specify the returned value as the
class
value and it will be applied to that element.If you use VS Code, you can use vscode-styled-components for Syntax highlighting and IntelliSense for css tagged literals.
By combining
keyframes
and JSX rendering, you can create a like button without JavaScript!Also, you can use a CSS-generating design tool such as Figma to create components even if you are not a CSS guru.
You can use other CSS in JS libraries in Hono, such as Panda CSS. However, hono/css can be used by simply importing the
hono
package, and Async components and Suspense are also supported.Thanks to @usualoma!
stream.onAbort()
c.stream()
is now deprecated and you should usestream()
in Streaming Helper. And,stream.abort()
has been added.Thanks to @sor4chi!
onNotFound
option for serveStaticCloudflare Workers, Deno, and Bun
serveStatic
now have anonNotFound
option. You can write a handle when a file is not found.Thanks to @Th1nkK1D!
colorize
option forshowRoutes()
The
colorize
option has been added to theshowRoutes
function inhono/dev
. If you set this value tofalse
, the output will not be colored, which can be used when you want to log output, etc.Other new features
getRouterName()
$url()
All Updates
c.stream*
to helper by @sor4chi in https://github.com/honojs/hono/pull/1846getRouterName()
by @yusukebe in https://github.com/honojs/hono/pull/1841onNotFound
handler in adapters'serveStatic
by @Th1nkK1D in https://github.com/honojs/hono/pull/1825colorize
option forshowRoutes()
by @yusukebe in https://github.com/honojs/hono/pull/1886param
option to$url()
by @yusukebe in https://github.com/honojs/hono/pull/1885New Contributors
Full Changelog: honojs/hono@v3.11.12...v3.12.0
v3.11.12
Compare Source
What's Changed
JSONParsed
supports interface andDate
etc. by @yusukebe in https://github.com/honojs/hono/pull/1853Full Changelog: honojs/hono@v3.11.11...v3.11.12
netlify/cli (netlify-cli)
v17.11.1
Compare Source
Bug Fixes
v17.11.0
Compare Source
Features
Bug Fixes
vitejs/vite (vite)
v5.0.11
Compare Source
__vite__mapDeps
code before sourcemap file comment (#15483) (d2aa096), closes #15483,
inside base64 value ofsrcset
attribute (#15422) (8de7bd2), closes #15422vitest-dev/vitest (vitest)
v1.1.3
Compare Source
🐞 Bug Fixes
slowTestThreshold
to all reporters - by @hi-ogawa in https://github.com/vitest-dev/vitest/issues/4876 (1769c)View changes on GitHub
v1.1.2
Compare Source
🐞 Bug Fixes
expect(...).toMatchFileSnapshot()
matcher. - by @zmullett, Zac Mullett and @sheremet-va in https://github.com/vitest-dev/vitest/issues/4839 (b8140)memoryLimit
- by @inottn and @AriPerkkio in https://github.com/vitest-dev/vitest/issues/4802 (70e8a)View changes on GitHub
v1.1.1
Compare Source
🐞 Bug Fixes
inline: true
is set - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/4815 (8f622)--no-parallelism
- by @bonyuta0204 in https://github.com/vitest-dev/vitest/issues/4831 (5053a)skip
- by @hi-ogawa in https://github.com/vitest-dev/vitest/issues/4814 (19faf)beforeAll/afterAll
errors in junit reporter - by @hi-ogawa in https://github.com/vitest-dev/vitest/issues/4819 (2baea)View changes on GitHub
cloudflare/workers-sdk (wrangler)
v3.22.3
Compare Source
Patch Changes
#4693
93e88c43
Thanks @mrbbot! - fix: ensurewrangler dev
exits with code0
on clean exitPreviously,
wrangler dev
would exit with a non-zero exit code when pressing CTRL+C or x. This change ensureswrangler
exits with code0
in these cases.#4630
037de5ec
Thanks @petebacondarwin! - fix: ensure User Worker gets the correct Host header in wrangler dev local modeSome full-stack frameworks, such as Next.js, check that the Host header for a server
side action request matches the host where the application is expected to run.
In
wrangler dev
we have a Proxy Worker in between the browser and the actual User Worker.This Proxy Worker is forwarding on the request from the browser, but then the actual User
Worker is running on a different host:port combination than that which the browser thinks
it should be on. This was causing the framework to think the request is malicious and blocking
it.
Now we update the request's Host header to that passed from the Proxy Worker in a custom
MF-Original-Url
header, but only do this if the request also contains a shared secret between the Proxy Worker
and User Worker, which is passed via the
MF-Proxy-Shared-Secret
header. This last feature is toprevent a malicious website from faking the Host header in a request directly to the User Worker.
Fixes https://github.com/cloudflare/next-on-pages/issues/588
0f8a03c0
Thanks @mrbbot! - fix: ensure API failures without additional messages logged correctly#4693
93e88c43
Thanks @mrbbot! - fix: ensurewrangler pages dev
exits cleanlyPreviously, pressing CTRL+C or x when running
wrangler pages dev
wouldn't actually exitwrangler
. You'd need to press CTRL+C a second time to exit the process. This change ensureswrangler
exits the first time.#4696
624084c4
Thanks @mrbbot! - fix: include additional modules inlargest dependencies
warningIf your Worker fails to deploy because it's too large, Wrangler will display of list of your Worker's largest dependencies. Previously, this just included JavaScript dependencies. This change ensures additional module dependencies (e.g. WebAssembly, text blobs, etc.) are included when computing this list.
Updated dependencies [
037de5ec
]:v3.22.2
Compare Source
Patch Changes
#4600
4233e514
Thanks @mrbbot! - fix: apply source mapping to deployment validation errorsPreviously if a Worker failed validation during
wrangler deploy
, the displayed error would reference locations in built JavaScript files. This made it more difficult to debug validation errors. This change ensures these errors are now source mapped, referencing locations in source files instead.#4440
15717333
Thanks @mrbbot! - fix: automatically create required directories forwrangler r2 object get
Previously, if you tried to use
wrangler r2 object get
with an object name containing a/
or used the--file
flag with a path containing a/
, and the specified directory didn't exist, Wrangler would throw anENOENT
error. This change ensures Wrangler automatically creates required parent directories if they don't exist.#4592
20da658e
Thanks @mrbbot! - fix: throw helpful error if email validation requiredPreviously, Wrangler would display the raw API error message and code if email validation was required during
wrangler deploy
. This change ensures a helpful error message is displayed instead, prompting users to check their emails or visit the dashboard for a verification link.e1d50407
Thanks @mrbbot! - fix: suggest checking permissions on authentication error with API token setc370026d
Thanks @mrbbot! - fix: include messages from API in errors#4588
4e5ed0b2
Thanks @mrbbot! - fix: require worker name for rollbackPreviously, Wrangler would fail with a cryptic error if you tried to run
wrangler rollback
outside of a directory containing a Wrangler configuration file with aname
defined. This change validates that a worker name is defined, and allows you to set it from the command line using the--name
flag.Updated dependencies [
c410ea14
]:Configuration
📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.