[Snyk] Upgrade: , , , , configcat-js-ssr, cookie, emoji-regex, google-spreadsheet, nanoid, node-fetch, validator #37
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯♂ The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
@lottiefiles/lottie-player
⚠️ This is a major version upgrade, and may be a breaking change | 6 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 3 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 22 days ago
⚠️ This is a major version upgrade, and may be a breaking change | 4 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 months ago
from 1.7.1 to 2.0.4 | 5 versions ahead of your current version
on 2024-03-04
@sendgrid/mail
from 7.7.0 to 8.1.3 | 5 versions ahead of your current version
on 2024-04-02
@types/rss
from 0.0.30 to 0.0.32 | 2 versions ahead of your current version | 10 months ago
on 2023-11-07
@types/uuid
from 9.0.2 to 10.0.0 | 7 versions ahead of your current version
on 2024-06-20
configcat-js-ssr
from 6.0.1 to 8.4.2 | 13 versions ahead of your current version
on 2024-08-22
cookie
from 0.5.0 to 0.6.0 | 1 version ahead of your current version | 10 months ago
on 2023-11-07
emoji-regex
from 10.2.1 to 10.3.0 | 1 version ahead of your current version | a year ago
on 2023-10-17
google-spreadsheet
from 3.3.0 to 4.1.2 | 7 versions ahead of your current version
on 2024-05-12
nanoid
from 4.0.2 to 5.0.7 | 8 versions ahead of your current version
on 2024-04-07
node-fetch
from 3.3.1 to 3.3.2 | 1 version ahead of your current version | a year ago
on 2023-07-25
validator
from 13.9.0 to 13.12.0 | 2 versions ahead of your current version | 4 months ago
on 2024-05-09
Issues fixed by the recommended upgrade:
SNYK-JS-AXIOS-6032459
SNYK-JS-AXIOS-6032459
SNYK-JS-AXIOS-6032459
SNYK-JS-FOLLOWREDIRECTS-6141137
SNYK-JS-AXIOS-6124857
SNYK-JS-AXIOS-6124857
SNYK-JS-AXIOS-6124857
SNYK-JS-FOLLOWREDIRECTS-6444610
Release notes
Package name: @lottiefiles/lottie-player
Patch Changes
Major Changes
documented in this file. The format is based on Keep a Changelog and this
project adheres to Semantic Versioning, enforced with
semantic-release.
1.6.0 (2022-12-01)
Features
(860771f)
Package name: @sendgrid/mail
Release Notes
Library - Fix
Library - Chore
Release Notes
Library - Chore
Release Notes
Library - Chore
Release Notes
Library - Feature
Release Notes
Note: This release contains breaking changes, check our upgrade guide for detailed migration notes.
Library - Feature
Library - Docs
Library - Test
Release Notes
Library - Docs
Library - Feature
Library - Fix
Package name: @types/rss
Package name: @types/uuid
Package name: configcat-js-ssr
Security fixes:
axios
dependency to v1.7.4 as earlier versions contain a security vulnerability.Security fixes:
axios
dependency to v1.6.8 as earlier versions use a vulnerable version of thefollow-redirects
package. (#81)Improvements:
UserComparator
members consistent. (configcat/common-js#102)Bug fixes:
Breaking changes:
UserComparator
members:Is(Not)OneOf
->TextIs(Not)OneOf
,SensitiveIs(Not)OneOf
->SensitiveTextIs(Not)OneOf
,(Not)ContainsAnyOf
->Text(Not)ContainsAnyOf
. (Low impact expected.)New features/improvements:
watchChanges
tocreateFlagOverridesFromMap
which controls whether the client should detect changes to the flag override map after client initialization. (configcat/common-js#101)Bug fixes:
configcat-common
to avoid issues in case the "pubternal" API ofconfigcat-common
changes. (#79)Improvements:
LocalStorageCache
only if it's available. Otherwise, use the default (in-memory) cache implementation.LocalStorageCache.get
/set
methods so the outer exception handlers can catch and log them.Fixed a cache issue with non Latin 1 characters in the config.json.
New features and improvements:
Bug fixes:
IConfigCatClient.waitForReady
. Also, make observable if the initial cache sync-up fails.Breaking changes (listed in the order of expected impact):
matchedEvaluationRule
property tomatchedTargetingRule
and thematchedEvaluationPercentageRule
property tomatchedPercentageOption
inIEvaluationDetails
.Error
when the SDK key passed toConfigCatClient.get
is in invalid format (unless the client is set up to use local-only flag override behavior).ClientReadyState
enum (it was renamed toClientCacheState
).IConfig
and related interfaces/enums).ClientReady
hook in Auto Poll mode to fire after the completion of the first fetch operation - regardless of success or failure - to make the behavior consistent with other SDKs. (configcat/common-js#94)Improvements:
4.8.4
Security:
axios
library to1.6.2
Improvements:
New features and improvements:
IConfigCatClient.snapshot()
, which captures the client's state (including the latest config fetched), then, using the returned object, they can execute synchronous evaluation operations.clientReady
hook, by means of which consumers can get information about the initialization state of the client.Bug fixes:
getValueAsync
/getValueDetailsAsync
calls.Comparator.Contains/NotContains
.Package name: cookie
partitioned
optionpriority
optionexpires
option to reject invalid datesPackage name: emoji-regex
Release v10.3.0
Release v10.2.1
Package name: google-spreadsheet
doc.useServiceAccountAuth()
(a60104b)903e923
@ types/google-spreadsheet
)GoogleSpreadsheetRow
to be more TS friendlyGoogleSpreadsheetCell
(stringValue
,boolValue
,numberValue
)cell.formulaError
->cell.errorValue
GoogleSpreadsheetFormulaError
withGoogleSpreadsheetCellErrorValue
and now handles all possible cell error typessheet.getInfo
,dc831e3
3.3.0
Package name: nanoid
5.0.5
5.0.4
5.0.3
5.0.2
5.0.1
5.0
4.0.2
Package name: node-fetch
3.3.2 (2023-07-25)
Bug Fixes
3.3.1 (2023-03-11)
Bug Fixes
Package name: validator
What's Changed
New Features / Validators
isAbaRouting
@ songyuewFixes, New Locales and Enhancements
isLicensePlate
add Pakistanien-PK
locale @ anasshakilisPort
fix invalid leading zeros @ anasshakilisTaxID
added Argentinaes-AR
locale @ estefrareisDate
timezone offset fix @ tomaspanekisPassportNumber
addedZA
locale @ GMorris-professionalisMobilePhone
:en-MW
locale @ SimranSiddiquiam-AM
locale @ AlexKrupkoisPostalAddress
fixNL
locale @ RobinvanderVlietisISO4217
addSLE
currency @ urgisStrongPassword
fix symbolRegex to include\
@ nandavikasisVAT
fixedKZ
locale @ MatthieuLemoineisAlpha
,isAlphanumeric
addedeo
locale @ RobinvanderVlietisIBAN
add AlgeriaDZ
locale @ thibault-lrisVAT
improveAU
locale @ matthewberrymanisUUID
add support for v7 @ rusconisTaxID
add Ukraineuk-UA
locale @ arttigerisDate
disallow hiphen before year @ Sumit-tech-joshiNew Contributors
Full Changelog: 13.11.0...13.12.0
New Features / Validators
...