Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency flowbite-react to ^0.10.0 #116

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): update dependency flowbite-react to ^0.10.0 #116

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Nov 26, 2023
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
flowbite-react (source) ^0.9.0 -> ^0.10.0 age adoption passing confidence

Release Notes

themesberg/flowbite-react (flowbite-react)

v0.10.2

Compare Source

Patch Changes

  • #​1190 25bb353 Thanks @​ddiasfront! - ### Datepicker Component Updates

    The Datepicker has been enhanced with several improvements:

    1. Controlled Inputs: Supports controlled inputs via value and defaultValue props, enabling programmatic date updates without manual clicks.
    2. State Management: Optimized internal state management using useMemo and useEffect.
    3. Documentation: Added sections in documentation for controlled usage and handling null values.
    4. Test Cases: Comprehensive unit tests added for date handling.
    5. Storybook: Improved stories, showcasing different states (controlled/uncontrolled).
Files Updated:

  • apps/web/content/docs/components/datepicker.mdx: Added controlled usage section.

  • Datepicker.spec.tsx: Added unit tests.

  • Datepicker.stories.tsx: Enhanced story variants.

  • Datepicker.tsx: Expanded DatepickerProps.

  • DatepickerContext.tsx: Adjusted selectedDate type.

  • Decades.tsx, Months.tsx, Years.tsx: Updated logic to check for selectedDate.

  • #​1484 38913e5 Thanks @​KRTirtho! - fix: autocomplete for string enums with dynamic value not working

v0.10.1

Compare Source

Patch Changes

v0.10.0

Compare Source

Minor Changes
Patch Changes

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - "after 10pm every weekday,before 5am every weekday,every weekend" in timezone America/New_York.

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch 3 times, most recently from 6f48e49 to 9d79262 Compare December 16, 2023 04:48
@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch 11 times, most recently from f07b1fa to 19ff32d Compare January 12, 2024 06:30
@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch 3 times, most recently from 873ac69 to c37f031 Compare January 25, 2024 04:00
@socket-security Socket Security
Copy link

socket-security bot commented Jan 25, 2024
edited
Loading

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert Package NoteSourceCI
Install scripts npm/[email protected]
  • Install script: install
  • Source: node install/check
 🚫
Telemetry npm/[email protected]
  • Note: Can be disabled by setting the environment variable NEXT_TELEMETRY_DISABLED=1 . See https://nextjs.org/telemetry for more information
 🚫
Telemetry npm/[email protected]
  • Note: Can be disabled by setting the environment variable NEXT_TELEMETRY_DISABLED=1 . See https://nextjs.org/telemetry for more information
 🚫
AI detected potential malware npm/[email protected]
  • Notes: The primary concern in the code is the use of vm.runInNewContext to execute file content, which can lead to arbitrary code execution if the file content is not trusted. This warrants a higher risk score. However, there is no evidence of malware or obfuscation in the code.
  • Confidence: 0.60
  • Severity: 0.90
 🚫
Potential typo squat npm/[email protected] 🚫
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: node index.js --exec install
 🚫

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

What is telemetry?

This package contains telemetry which tracks how it is used.

Most telemetry comes with settings to disable it. Consider disabling telemetry if you do not want to be tracked.

What is AI detected malware?

AI has identified this package as malware. This is a strong signal that the package may be malicious.

Given the AI system's identification of this package as malware, extreme caution is advised. It is recommended to avoid downloading or installing this package until the threat is confirmed or flagged as a false positive.

What is a typosquat?

Package name is similar to other popular packages and may not be the package you want.

Use care when consuming similarly named packages and ensure that you did not intend to consume a different package. Malicious packages often publish using similar names as existing popular packages.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch 9 times, most recently from 63383f4 to 2934d45 Compare January 31, 2024 03:23
@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch 5 times, most recently from dcd7038 to 8b738f4 Compare February 8, 2024 03:44
@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch 6 times, most recently from bdeb7f0 to 3f86ab7 Compare February 15, 2024 07:02
@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch 2 times, most recently from a40d876 to bef7535 Compare February 17, 2024 07:26
@renovate renovate bot changed the title chore(deps): update dependency flowbite-react to ^0.7.0 chore(deps): update dependency flowbite-react to ^0.8.0 Apr 4, 2024
@renovate renovate bot changed the title chore(deps): update dependency flowbite-react to ^0.8.0 chore(deps): update dependency flowbite-react to ^0.9.0 Apr 17, 2024
@renovate renovate bot enabled auto-merge (rebase) June 4, 2024 13:04
@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch from fc57295 to a554778 Compare June 4, 2024 13:04
auto-merge was automatically disabled June 4, 2024 13:04

Base branch requires signed commits

@renovate renovate bot force-pushed the dep/flowbite-react-0.x branch from a554778 to 44d8196 Compare June 4, 2024 13:19
@renovate renovate bot changed the title chore(deps): update dependency flowbite-react to ^0.9.0 chore(deps): update dependency flowbite-react to ^0.10.0 Jun 20, 2024
@socket-security Socket Security
Copy link

socket-security bot commented Jun 20, 2024
edited
Loading

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@babel/[email protected] environment, filesystem, unsafe +39 10.9 MB nicolo-ribaudo
npm/@babel/[email protected] Transitive: environment +28 6.72 MB nicolo-ribaudo
npm/@babel/[email protected] environment Transitive: filesystem +127 16.6 MB nicolo-ribaudo
npm/@commitlint/[email protected] Transitive: environment, eval, filesystem, shell, unsafe +73 3.17 MB escapedcat
npm/@commitlint/[email protected] Transitive: environment, eval, filesystem, unsafe +41 2.29 MB escapedcat
npm/@cypress/[email protected] Transitive: environment, eval, filesystem, network, shell, unsafe +43 11.5 MB cypress-npm-publisher
npm/@happy-dom/[email protected] Transitive: environment, eval, filesystem, network, shell, unsafe +28 9.6 MB davidortner
npm/@headlessui/[email protected] environment +22 9.94 MB malfaitrobin
npm/@heroicons/[email protected] Transitive: environment +2 3.71 MB malfaitrobin
npm/@next/[email protected] Transitive: environment, filesystem, network +6 1.98 MB vercel-release-bot
npm/@percy/[email protected] environment, filesystem, unsafe Transitive: eval, network, shell +66 5.92 MB percy-admin
npm/@sentry/[email protected] environment, filesystem, network Transitive: shell, unsafe +135 1.4 GB sentry-bot
npm/@sentry/[email protected] Transitive: environment, filesystem, network, shell, unsafe +47 20.3 MB benvinegar, billyvg, evanpurkhiser, ...8 more
npm/@swc/[email protected] environment, filesystem, shell +14 445 MB kdy1, kwonoj
npm/@testing-library/[email protected] None +2 319 kB testing-library-bot
npm/@testing-library/[email protected] None +6 2.01 MB testing-library-bot
npm/@types/[email protected] None +1 2.16 MB types
npm/@typescript-eslint/[email protected] None +4 4.15 MB jameshenry
npm/@typescript-eslint/[email protected] None +1 25 kB jameshenry
npm/[email protected] None 0 4.61 MB junedchhipa
npm/[email protected] environment Transitive: filesystem +3 2.37 MB ai
npm/[email protected] eval Transitive: environment, filesystem +16 2.06 MB commitizen-bot
npm/[email protected] None 0 4.07 kB pskfyi
npm/[email protected] environment, filesystem +7 2.01 MB gustavohenke
npm/[email protected] environment Transitive: filesystem, shell +4 75.8 kB kentcdodds
npm/[email protected] environment, filesystem, shell, unsafe Transitive: eval +26 10.5 MB atofstryker
npm/[email protected] Transitive: environment, filesystem +1 86.4 kB mrsteele
npm/[email protected] environment, filesystem +1 141 kB marcocesarato
npm/[email protected] None 0 94 kB ljharb
npm/[email protected] None 0 26.2 kB iamturns
npm/[email protected] unsafe +1 260 kB vercel-release-bot
npm/[email protected] None 0 20.8 kB lydell
npm/[email protected] None +1 193 kB cypress-npm-publisher
npm/[email protected] filesystem, unsafe +5 1.28 MB ljharb
npm/[email protected] None +2 361 kB benmonro
npm/[email protected] None 0 75.6 kB dangreenleipciger
npm/[email protected] filesystem 0 349 kB simenb
npm/[email protected] None +4 814 kB ljharb
npm/[email protected] filesystem Transitive: environment +6 523 kB mysticatea
npm/[email protected] None 0 34.3 kB jounqin
npm/[email protected] environment 0 118 kB react-bot
npm/[email protected] filesystem Transitive: environment +8 1.23 MB ljharb
npm/[email protected] None 0 38.3 kB lydell
npm/[email protected] None 0 227 kB sonartech
npm/[email protected] Transitive: filesystem +5 481 kB francoismassart
npm/[email protected] filesystem 0 261 kB testing-library-bot
npm/[email protected] Transitive: environment, filesystem +5 3.67 MB sindresorhus
npm/[email protected] unsafe 0 14.9 kB antfu
npm/[email protected] Transitive: environment, filesystem, shell, unsafe +29 3.99 MB eslintbot
npm/[email protected] environment Transitive: filesystem, shell +9 435 kB ehmicky
npm/[email protected] Transitive: environment +10 3.95 MB sutusebastian
npm/[email protected] None 0 5.29 MB zoliszogyenyi
npm/[email protected] network 0 232 kB jcrugzz
npm/[email protected] environment, filesystem, shell 0 4.01 kB typicode
npm/[email protected] None 0 8.38 kB keyanzhang
npm/[email protected] filesystem +1 20.2 kB npm-cli-ops
npm/[email protected] Transitive: environment, eval, filesystem +27 1.22 MB simenb
npm/[email protected] network 0 104 kB jefflau
npm/[email protected] None 0 44.9 kB knee-cola
npm/[email protected] None +8 582 kB simenb
npm/[email protected] None 0 529 kB mustafaomar
npm/[email protected] None 0 153 kB sindresorhus
npm/[email protected] Transitive: environment +4 949 kB okonet
npm/[email protected] network 0 468 kB tofumatt
npm/[email protected] None +2 447 kB kentcdodds
npm/[email protected] None 0 29.1 kB arklanq
npm/[email protected] Transitive: environment +2 513 kB garymeehan
npm/[email protected] Transitive: filesystem +6 658 kB iamvishnusankar
npm/[email protected] Transitive: environment +2 37.6 kB apal21
npm/[email protected] environment, network +1 98 kB eugef
npm/[email protected] environment, filesystem Transitive: shell +5 274 kB bret
npm/[email protected] environment, filesystem, unsafe Transitive: shell +24 811 kB coreyfarrell
npm/[email protected] environment, filesystem +3 368 kB ai
npm/[email protected] Transitive: environment, filesystem +16 1.91 MB zimme
npm/[email protected] environment, filesystem, unsafe 0 7.7 MB prettier-bot
npm/[email protected] environment +3 139 kB ljharb
npm/[email protected] Transitive: environment +2 40.7 kB junedchhipa
npm/[email protected] Transitive: environment +2 85.1 MB kamijin_fanta
npm/[email protected] Transitive: environment +2 144 kB ibrahimcesar
npm/[email protected] Transitive: environment +2 95 kB andresin87
npm/[email protected] environment, filesystem +9 1.61 MB isaacs
npm/[email protected] None 0 95.8 kB npm-cli-ops
npm/[email protected] environment Transitive: filesystem, shell +1 521 kB lovell
npm/[email protected] None +1 93.1 kB nfischer
npm/[email protected] None 0 2.37 MB hacksore
npm/[email protected] None 0 11.1 kB kvnneff
npm/[email protected] environment Transitive: eval, unsafe +2 671 kB bahmutov
npm/[email protected] None 0 1.69 MB stephanwagner
npm/[email protected] filesystem, shell +9 372 kB codeshifu
npm/[email protected] environment, filesystem +8 6.18 MB adamwathan
npm/[email protected] None 0 21.9 MB mrdoob
npm/[email protected] environment, filesystem, unsafe +14 1.34 MB kul
npm/[email protected] None 0 21.9 MB typescript-bot
npm/[email protected] Transitive: environment +2 35.8 kB rfoel
npm/[email protected] None 0 667 kB colinmcd94

🚮 Removed packages: npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@commitlint/[email protected], npm/@commitlint/[email protected], npm/@cypress/[email protected], npm/@damirn/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@fastify/[email protected], npm/@happy-dom/[email protected], npm/@headlessui/[email protected], npm/@heroicons/[email protected], npm/@immobiliarelabs/[email protected], npm/@mgcrea/[email protected], npm/@nestjs/[email protected], npm/@nestjs/[email protected], npm/@nestjs/[email protected], npm/@nestjs/[email protected], npm/@nestjs/[email protected], npm/@nestjs/[email protected], npm/@nestjs/[email protected], npm/@next/[email protected], npm/@next/[email protected], npm/@npmcli/[email protected], npm/@ory/[email protected], npm/@percy/[email protected], npm/@prisma/[email protected], npm/@rollup/[email protected], npm/@rollup/[email protected], npm/@rollup/[email protected], npm/@rollup/[email protected], npm/@semantic-release-plus/[email protected], npm/@semantic-release/[email protected], npm/@semantic-release/[email protected], npm/@semantic-release/[email protected], npm/@semantic-release/[email protected], npm/@semantic-release/[email protected], npm/@sentry/[email protected], npm/@sentry/[email protected], npm/@testing-library/[email protected], npm/@testing-library/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

@renovate renovate bot enabled auto-merge (rebase) August 11, 2024 17:44
auto-merge was automatically disabled August 11, 2024 17:44

Base branch requires signed commits

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@renovate-approve renovate-approve[bot] renovate-approve[bot] approved these changes

Assignees
No one assigned
Labels
dependencies
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants