-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
JSON #83
base: master
Are you sure you want to change the base?
JSON #83
Conversation
Snyk has created this PR to upgrade graphql from 0.13.2 to 16.9.0. See this package in npm: graphql See this project in Snyk: https://app.snyk.io/org/okeamah/project/055b2443-aa22-4405-bc08-68a3b010d951?utm_source=github&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade node-fetch from 2.7.0 to 3.3.2. See this package in npm: node-fetch See this project in Snyk: https://app.snyk.io/org/okeamah/project/1d243090-92fb-4492-a729-580d768eb6b9?utm_source=github&utm_medium=referral&page=upgrade-pr
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
Snyk has created this PR to upgrade apollo-server from 2.26.2 to 3.13.0. See this package in npm: apollo-server See this project in Snyk: https://app.snyk.io/org/okeamah/project/3e477c27-92e5-49bb-9893-c3ef98770d89?utm_source=github&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade node-fetch from 2.7.0 to 3.3.2. See this package in npm: node-fetch See this project in Snyk: https://app.snyk.io/org/okeamah/project/3e477c27-92e5-49bb-9893-c3ef98770d89?utm_source=github&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade knex from 0.15.2 to 3.1.0. See this package in npm: knex See this project in Snyk: https://app.snyk.io/org/okeamah/project/ec433d3a-7447-4663-81df-5844d2f51e48?utm_source=github&utm_medium=referral&page=upgrade-pr
…abilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-UBUNTU2204-OPENSSL-5538123 - https://snyk.io/vuln/SNYK-UBUNTU2204-GLIBC-2801292 - https://snyk.io/vuln/SNYK-UBUNTU2204-GLIBC-2801292 - https://snyk.io/vuln/SNYK-UBUNTU2204-KRB5-2797765 - https://snyk.io/vuln/SNYK-UBUNTU2204-KRB5-2797765
--- updated-dependencies: - dependency-name: idna dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
--- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps the npm_and_yarn group with 17 updates in the /docs directory: | Package | From | To | | --- | --- | --- | | [graphiql](https://github.com/graphql/graphiql/tree/HEAD/packages/graphiql) | `1.11.5` | `3.7.1` | | [graphql](https://github.com/graphql/graphql-js) | `15.8.0` | `16.9.0` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.20.5` | `7.25.4` | | [@sideway/formula](https://github.com/sideway/formula) | `3.0.0` | `3.0.1` | | [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` | | [codemirror](https://github.com/codemirror/basic-setup) | `5.65.10` | `5.65.17` | | [express](https://github.com/expressjs/express) | `4.18.2` | `4.19.2` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.2` | `1.15.6` | | [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) | `4.1.0` | `4.1.1` | | [json5](https://github.com/json5/json5) | `2.2.1` | `2.2.3` | | [micromatch](https://github.com/micromatch/micromatch) | `4.0.5` | `4.0.8` | | [postcss](https://github.com/postcss/postcss) | `8.4.20` | `8.4.41` | | [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` | | [tar](https://github.com/isaacs/node-tar) | `6.1.13` | `6.2.1` | | [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `5.3.3` | `5.3.4` | | [webpack](https://github.com/webpack/webpack) | `5.75.0` | `5.94.0` | | [ws](https://github.com/websockets/ws) | `7.5.9` | `7.5.10` | Bumps the npm_and_yarn group with 24 updates in the /frontend directory: | Package | From | To | | --- | --- | --- | | [graphiql](https://github.com/graphql/graphiql/tree/HEAD/packages/graphiql) | `1.0.0-alpha.0` | `1.4.7` | | [graphql](https://github.com/graphql/graphql-js) | `14.5.8` | `14.6.0` | | [axios](https://github.com/axios/axios) | `1.7.4` | `1.7.5` | | [codemirror](https://github.com/codemirror/basic-setup) | `5.51.0` | `5.58.2` | | [express](https://github.com/expressjs/express) | `4.18.2` | `4.19.2` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.2` | `1.15.6` | | [postcss](https://github.com/postcss/postcss) | `8.4.19` | `8.4.31` | | [semver](https://github.com/npm/node-semver) | `5.5.1` | `5.7.2` | | [ua-parser-js](https://github.com/faisalman/ua-parser-js) | `0.7.35` | `0.7.38` | | [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `5.3.3` | `5.3.4` | | [webpack](https://github.com/webpack/webpack) | `5.87.0` | `5.94.0` | | [@types/webpack](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/webpack) | `4.41.7` | `5.28.5` | | [ws](https://github.com/websockets/ws) | `5.2.3` | `5.2.4` | | [highlight.js](https://github.com/highlightjs/highlight.js) | `9.15.8` | `10.4.1` | | [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) | `8.5.1` | `9.0.0` | | [@adobe/css-tools](https://github.com/adobe/css-tools) | `4.2.0` | `4.4.0` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.2.1` | `4.2.3` | | [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` | | [elliptic](https://github.com/indutny/elliptic) | `6.5.4` | `6.5.7` | | [es5-ext](https://github.com/medikoo/es5-ext) | `0.10.62` | `0.10.64` | | [jose](https://github.com/panva/jose) | `4.14.4` | `4.15.9` | | [socket.io-parser](https://github.com/Automattic/socket.io-parser) | `3.3.3` | `3.3.4` | | [undici](https://github.com/nodejs/undici) | `5.22.1` | `5.28.4` | | [word-wrap](https://github.com/jonschlinkert/word-wrap) | `1.2.3` | `1.2.5` | Bumps the npm_and_yarn group with 1 update in the /server/tests-py directory: [node-fetch](https://github.com/node-fetch/node-fetch). Bumps the npm_and_yarn group with 2 updates in the /server/tests-py/remote_schemas/nodejs directory: [graphql](https://github.com/graphql/graphql-js) and [@apollo/gateway](https://github.com/apollographql/federation/tree/HEAD/gateway-js). Updates `graphiql` from 1.11.5 to 3.7.1 - [Release notes](https://github.com/graphql/graphiql/releases) - [Changelog](https://github.com/graphql/graphiql/blob/main/packages/graphiql/CHANGELOG.md) - [Commits](https://github.com/graphql/graphiql/commits/graphiql@3.7.1/packages/graphiql) Updates `graphql` from 15.8.0 to 16.9.0 - [Release notes](https://github.com/graphql/graphql-js/releases) - [Commits](graphql/graphql-js@v15.8.0...v16.9.0) Updates `@babel/traverse` from 7.20.5 to 7.25.4 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.4/packages/babel-traverse) Updates `@sideway/formula` from 3.0.0 to 3.0.1 - [Commits](hapijs/formula@v3.0.0...v3.0.1) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) Updates `codemirror` from 5.65.10 to 5.65.17 - [Changelog](https://github.com/codemirror/basic-setup/blob/main/CHANGELOG.md) - [Commits](https://github.com/codemirror/basic-setup/commits) Updates `express` from 4.18.2 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.18.2...4.19.2) Updates `follow-redirects` from 1.15.2 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.2...v1.15.6) Updates `http-cache-semantics` from 4.1.0 to 4.1.1 - [Commits](kornelski/http-cache-semantics@v4.1.0...v4.1.1) Updates `json5` from 2.2.1 to 2.2.3 - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v2.2.1...v2.2.3) Updates `markdown-it` from 12.3.2 to 14.1.0 - [Changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md) - [Commits](markdown-it/markdown-it@12.3.2...14.1.0) Updates `micromatch` from 4.0.5 to 4.0.8 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@4.0.5...4.0.8) Updates `postcss` from 8.4.20 to 8.4.41 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.20...8.4.41) Updates `semver` from 5.7.1 to 5.7.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v5.7.2) Updates `tar` from 6.1.13 to 6.2.1 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v6.1.13...v6.2.1) Updates `webpack-dev-middleware` from 5.3.3 to 5.3.4 - [Release notes](https://github.com/webpack/webpack-dev-middleware/releases) - [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md) - [Commits](webpack/webpack-dev-middleware@v5.3.3...v5.3.4) Updates `webpack` from 5.75.0 to 5.94.0 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v5.75.0...v5.94.0) Updates `ws` from 7.5.9 to 7.5.10 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@7.5.9...7.5.10) Updates `graphiql` from 1.0.0-alpha.0 to 1.4.7 - [Release notes](https://github.com/graphql/graphiql/releases) - [Changelog](https://github.com/graphql/graphiql/blob/main/packages/graphiql/CHANGELOG.md) - [Commits](https://github.com/graphql/graphiql/commits/graphiql@3.7.1/packages/graphiql) Updates `graphql` from 14.5.8 to 14.6.0 - [Release notes](https://github.com/graphql/graphql-js/releases) - [Commits](graphql/graphql-js@v15.8.0...v16.9.0) Updates `axios` from 1.7.4 to 1.7.5 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.7.4...v1.7.5) Updates `codemirror` from 5.51.0 to 5.58.2 - [Changelog](https://github.com/codemirror/basic-setup/blob/main/CHANGELOG.md) - [Commits](https://github.com/codemirror/basic-setup/commits) Updates `express` from 4.18.2 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.18.2...4.19.2) Updates `follow-redirects` from 1.15.2 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.2...v1.15.6) Updates `markdown-it` from 10.0.0 to 12.3.2 - [Changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md) - [Commits](markdown-it/markdown-it@12.3.2...14.1.0) Updates `postcss` from 8.4.19 to 8.4.31 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.20...8.4.41) Updates `semver` from 5.5.1 to 5.7.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v5.7.2) Updates `ua-parser-js` from 0.7.35 to 0.7.38 - [Release notes](https://github.com/faisalman/ua-parser-js/releases) - [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/CHANGELOG.md) - [Commits](faisalman/ua-parser-js@0.7.35...0.7.38) Updates `webpack-dev-middleware` from 5.3.3 to 5.3.4 - [Release notes](https://github.com/webpack/webpack-dev-middleware/releases) - [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md) - [Commits](webpack/webpack-dev-middleware@v5.3.3...v5.3.4) Updates `webpack` from 5.87.0 to 5.94.0 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v5.75.0...v5.94.0) Updates `@types/webpack` from 4.41.7 to 5.28.5 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webpack) Updates `ws` from 5.2.3 to 5.2.4 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@7.5.9...7.5.10) Updates `highlight.js` from 9.15.8 to 10.4.1 - [Release notes](https://github.com/highlightjs/highlight.js/releases) - [Changelog](https://github.com/highlightjs/highlight.js/blob/main/CHANGES.md) - [Commits](highlightjs/highlight.js@9.15.8...10.4.1) Updates `jsonwebtoken` from 8.5.1 to 9.0.0 - [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](auth0/node-jsonwebtoken@v8.5.1...v9.0.0) Updates `@adobe/css-tools` from 4.2.0 to 4.4.0 - [Changelog](https://github.com/adobe/css-tools/blob/main/History.md) - [Commits](https://github.com/adobe/css-tools/commits) Updates `browserify-sign` from 4.2.1 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.2.1...v4.2.3) Updates `ejs` from 3.1.9 to 3.1.10 - [Release notes](https://github.com/mde/ejs/releases) - [Commits](mde/ejs@v3.1.9...v3.1.10) Updates `elliptic` from 6.5.4 to 6.5.7 - [Commits](indutny/elliptic@v6.5.4...v6.5.7) Updates `es5-ext` from 0.10.62 to 0.10.64 - [Release notes](https://github.com/medikoo/es5-ext/releases) - [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md) - [Commits](medikoo/es5-ext@v0.10.62...v0.10.64) Updates `jose` from 4.14.4 to 4.15.9 - [Release notes](https://github.com/panva/jose/releases) - [Changelog](https://github.com/panva/jose/blob/v4.15.9/CHANGELOG.md) - [Commits](panva/jose@v4.14.4...v4.15.9) Updates `socket.io-parser` from 3.3.3 to 3.3.4 - [Release notes](https://github.com/Automattic/socket.io-parser/releases) - [Changelog](https://github.com/socketio/socket.io-parser/blob/3.3.4/CHANGELOG.md) - [Commits](socketio/socket.io-parser@3.3.3...3.3.4) Updates `undici` from 5.22.1 to 5.28.4 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.22.1...v5.28.4) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) Updates `node-fetch` from 2.6.7 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.7...v2.7.0) Updates `graphql` from 16.5.0 to 16.8.1 - [Release notes](https://github.com/graphql/graphql-js/releases) - [Commits](graphql/graphql-js@v15.8.0...v16.9.0) Updates `@apollo/gateway` from 2.0.3 to 2.8.5 - [Release notes](https://github.com/apollographql/federation/releases) - [Changelog](https://github.com/apollographql/federation/blob/main/gateway-js/CHANGELOG.md) - [Commits](https://github.com/apollographql/federation/commits/@apollo/gateway@2.8.5/gateway-js) --- updated-dependencies: - dependency-name: graphiql dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: graphql dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@sideway/formula" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: codemirror dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: http-cache-semantics dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json5 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: markdown-it dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: micromatch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-middleware dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: graphiql dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: graphql dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: codemirror dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: markdown-it dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: postcss dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: semver dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: ua-parser-js dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack-dev-middleware dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: webpack dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@types/webpack" dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: highlight.js dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: jsonwebtoken dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@adobe/css-tools" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ejs dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: es5-ext dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jose dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: socket.io-parser dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: undici dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: graphql dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@apollo/gateway" dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>
[pull] master from hasura:master
…hene-sqlalchemy/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-7856105
…d10584c3 [Snyk] Security upgrade gunicorn from 19.9.0 to 21.2.0
…xt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-7856105
…adb79905 [Snyk] Security upgrade gunicorn from 19.9.0 to 21.2.0
Bumps the go_modules group with 5 updates in the /cli directory: | Package | From | To | | --- | --- | --- | | [github.com/gin-contrib/cors](https://github.com/gin-contrib/cors) | `1.3.0` | `1.6.0` | | [github.com/vektah/gqlparser/v2](https://github.com/vektah/gqlparser) | `2.4.3` | `2.5.15` | | [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.3` | `1.3.7` | | [github.com/docker/docker](https://github.com/docker/docker) | `20.10.7+incompatible` | `25.0.6+incompatible` | | [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.1.2` | `1.1.14` | Updates `github.com/gin-contrib/cors` from 1.3.0 to 1.6.0 - [Release notes](https://github.com/gin-contrib/cors/releases) - [Changelog](https://github.com/gin-contrib/cors/blob/master/.goreleaser.yaml) - [Commits](gin-contrib/cors@v1.3.0...v1.6.0) Updates `github.com/gin-gonic/gin` from 1.5.0 to 1.9.1 - [Release notes](https://github.com/gin-gonic/gin/releases) - [Changelog](https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md) - [Commits](gin-gonic/gin@v1.5.0...v1.9.1) Updates `github.com/vektah/gqlparser/v2` from 2.4.3 to 2.5.15 - [Release notes](https://github.com/vektah/gqlparser/releases) - [Commits](vektah/gqlparser@v2.4.3...v2.5.15) Updates `github.com/cloudflare/circl` from 1.3.3 to 1.3.7 - [Release notes](https://github.com/cloudflare/circl/releases) - [Commits](cloudflare/circl@v1.3.3...v1.3.7) Updates `github.com/docker/docker` from 20.10.7+incompatible to 25.0.6+incompatible - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.7...v25.0.6) Updates `github.com/opencontainers/runc` from 1.1.2 to 1.1.14 - [Release notes](https://github.com/opencontainers/runc/releases) - [Changelog](https://github.com/opencontainers/runc/blob/main/CHANGELOG.md) - [Commits](opencontainers/runc@v1.1.2...v1.1.14) Updates `golang.org/x/crypto` from 0.16.0 to 0.22.0 - [Commits](golang/crypto@v0.16.0...v0.22.0) Updates `golang.org/x/net` from 0.19.0 to 0.24.0 - [Commits](golang/net@v0.19.0...v0.24.0) Updates `google.golang.org/protobuf` from 1.28.0 to 1.33.0 --- updated-dependencies: - dependency-name: github.com/gin-contrib/cors dependency-type: direct:production dependency-group: go_modules - dependency-name: github.com/gin-gonic/gin dependency-type: direct:production dependency-group: go_modules - dependency-name: github.com/vektah/gqlparser/v2 dependency-type: direct:production dependency-group: go_modules - dependency-name: github.com/cloudflare/circl dependency-type: indirect dependency-group: go_modules - dependency-name: github.com/docker/docker dependency-type: indirect dependency-group: go_modules - dependency-name: github.com/opencontainers/runc dependency-type: indirect dependency-group: go_modules - dependency-name: golang.org/x/crypto dependency-type: indirect dependency-group: go_modules - dependency-name: golang.org/x/net dependency-type: indirect dependency-group: go_modules - dependency-name: google.golang.org/protobuf dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <support@github.com>
…rabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 - https://snyk.io/vuln/SNYK-JS-BABELTRAVERSE-5962462 - https://snyk.io/vuln/SNYK-JS-LODASH-567746 - https://snyk.io/vuln/SNYK-JS-Y18N-1021887 - https://snyk.io/vuln/SNYK-JS-JSON5-3182856 - https://snyk.io/vuln/SNYK-JS-LODASH-6139239 - https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908 - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://snyk.io/vuln/SNYK-JS-UAPARSERJS-1023599 - https://snyk.io/vuln/SNYK-JS-UAPARSERJS-610226 - https://snyk.io/vuln/SNYK-JS-LODASH-608086 - https://snyk.io/vuln/SNYK-JS-UAPARSERJS-1072471 - https://snyk.io/vuln/SNYK-JS-MINIMIST-559764 - https://snyk.io/vuln/SNYK-JS-HOSTEDGITINFO-1088355 - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/SNYK-JS-PATHPARSE-1077067 - https://snyk.io/vuln/SNYK-JS-MINIMIST-2429795 - https://snyk.io/vuln/npm:debug:20170905 - https://snyk.io/vuln/SNYK-JS-KINDOF-537849
…on to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-IP-6240864 - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://snyk.io/vuln/SNYK-JS-TAR-6476909 - https://snyk.io/vuln/SNYK-JS-IP-7148531
…bce260ec [Snyk] Fix for 4 vulnerabilities
[pull] master from hasura:master
…na-3.7 bump idna from 3.4 to 3.7 in /server/tests-py
…les-7c61c6d076 Bump the go_modules group across 1 directory with 9 updates
…and_yarn-89f4401176 Bump the npm_and_yarn group across 4 directories with 34 updates
…1cca353d30d [Snyk] Upgrade graphql from 0.13.2 to 16.9.0
…yptography-42.0.4 bump cryptography from 3.4.8 to 42.0.4 in /server/tests-py
…80337169770 [Snyk] Upgrade node-fetch from 2.7.0 to 3.3.2
…b68e87dc [Snyk] Security upgrade ubuntu from jammy-20240530 to jammy-20240808
…ae210173 [Snyk] Security upgrade golang from 1.18-bullseye to 1.21.12-bullseye
…on to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-IP-6240864 - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://snyk.io/vuln/SNYK-JS-TAR-6476909 - https://snyk.io/vuln/SNYK-JS-IP-7148531
…1f9646c1e783ac2c5bce260ec [Snyk] Fix for 4 vulnerabilities
…90837be6b895a19bc091ffb2b [Snyk] Security upgrade @graphql-codegen/typescript from 1.9.0 to 1.12.0
…f1cb4daca1256e72b3f4ca24142e [Snyk] Upgrade apollo-server from 2.26.2 to 3.13.0
…a58115bab590730870b72525308e [Snyk] Upgrade node-fetch from 2.7.0 to 3.3.2
…6ea84954058a90ae54e267df48d5 [Snyk] Upgrade knex from 0.15.2 to 3.1.0
|
Reviewer's Guide by SourceryThis pull request updates several dependencies in the Hasura GraphQL Engine CLI, including upgrading the Go version used in the build process. The changes primarily affect the No diagrams generated as the changes look simple and do not need a visual representation. File-Level Changes
Tips and commandsInteracting with Sourcery
Customizing Your ExperienceAccess your dashboard to:
Getting Help
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hey @OKEAMAH - I've reviewed your changes - here's some feedback:
Overall Comments:
- The dependency updates and Go version upgrade are good for maintenance and security. However, please provide information on the testing process and any code changes required to accommodate these updates, especially considering the significant jump from Go 1.18 to 1.21.12.
Here's what I looked at during the review
- 🟢 General issues: all looks good
- 🟢 Security: all looks good
- 🟢 Testing: all looks good
- 🟢 Complexity: all looks good
- 🟢 Documentation: all looks good
Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.
Description
Changelog
Component : server / cli / console / build
Type: bugfix / feature / enhancement
Product: community-edition
Short Changelog
Long Changelog
Related Issues
Solution and Design
Steps to test and verify
Limitations, known bugs & workarounds
Server checklist
Catalog upgrade
Does this PR change Hasura Catalog version?
Metadata
Does this PR add a new Metadata feature?
run_sql
auto manages the new metadata through schema diffing?run_sql
auto manages the definitions of metadata on renaming?export_metadata
/replace_metadata
supports the new metadata added?GraphQL
Breaking changes
No Breaking changes
There are breaking changes:
Metadata API
Existing
query
types:args
payload which is not backward compatibleJSON
schemaGraphQL API
Schema Generation:
NamedType
Schema Resolve:-
null
value for any input fieldsLogging
JSON
schema has changedtype
names have changedSummary by Sourcery
Upgrade Go module dependencies and Docker base image to enhance performance, security, and compatibility.
Enhancements: