Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade @segment/analytics-next from 1.53.0 to 1.69.0 #18

Open
wants to merge 12 commits into
base: Canary
Choose a base branch
from
Open

[Snyk] Upgrade @segment/analytics-next from 1.53.0 to 1.69.0 #18

wants to merge 12 commits into from

Conversation

OKEAMAH
Copy link
Owner

@OKEAMAH OKEAMAH commented May 26, 2024

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade @segment/analytics-next from 1.53.0 to 1.69.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 20 versions ahead of your current version.

  • The recommended version was released on a month ago.

Release notes
Package name: @segment/analytics-next
  • 1.69.0 - 2024-04-29

    Minor Changes

    • #1080 e884b61 Thanks @ silesky! - Addresses an issue where, if one of the non-destination actions fails to load/is blocked, the entire SDK fails to load. This is most notable in GA4, where, if GA was blocked, Segment initialization would fail.

    Patch Changes

    • Updated dependencies [e884b61, e884b61]:
      • @ segment/analytics-core@1.6.0
  • 1.68.0 - 2024-04-24

    Minor Changes

    • #1045 3c37def Thanks @ silesky! - - Remove validation plugin
      • Remove spark-md5 dependency
      • Update messageId algorithm to be consistent with node (analytics-next-[epoch time]-[uuid])
      • Browser Validation:
        • Throws errors in the EventFactory (not just in a plugin) if the event is invalid

    Patch Changes

    • Updated dependencies [3c37def, 1635e42]:
      • @ segment/analytics-core@1.5.1
  • 1.67.0 - 2024-04-12
  • 1.66.0 - 2024-03-06
  • 1.64.0 - 2024-02-05
  • 1.63.0 - 2024-01-10
  • 1.62.1 - 2024-01-08
  • 1.62.0 - 2023-11-29
  • 1.61.0 - 2023-11-15
  • 1.60.0 - 2023-11-13
  • 1.59.0 - 2023-10-24
  • 1.58.0 - 2023-10-09
  • 1.57.0 - 2023-10-02
  • 1.56.0 - 2023-09-21
  • 1.55.0 - 2023-09-08
  • 1.54.0 - 2023-08-28
  • 1.53.4 - 2023-08-22
  • 1.53.3 - 2023-08-03
  • 1.53.2 - 2023-07-27
  • 1.53.1 - 2023-07-17
  • 1.53.0 - 2023-06-07
from @segment/analytics-next GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

dependabot bot and others added 12 commits February 12, 2024 03:38
@dependabot
Bump lodash from 4.17.20 to 4.17.21 in /examples/with-apollo
67e5b55 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.20 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.20...4.17.21)

---
updated-dependencies:
- dependency-name: lodash
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump next from 13.4.2 to 13.5.1 in /examples/with-clerk
335e861 
Bumps [next](https://github.com/vercel/next.js) from 13.4.2 to 13.5.1.
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v13.4.2...v13.5.1)

---
updated-dependencies:
- dependency-name: next
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump lodash from 4.17.20 to 4.17.21
5c5dc9d 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.20 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.20...4.17.21)

---
updated-dependencies:
- dependency-name: lodash
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump nanoid from 3.1.30 to 3.1.31
ac68c8b 
Bumps [nanoid](https://github.com/ai/nanoid) from 3.1.30 to 3.1.31.
- [Release notes](https://github.com/ai/nanoid/releases)
- [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md)
- [Commits](ai/nanoid@3.1.30...3.1.31)

---
updated-dependencies:
- dependency-name: nanoid
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@timneutkens
Add project.entrypoints()
3aa360b
@timneutkens
Try again
ef78b57
@OKEAMAH
Merge pull request #1 from OKEAMAH/dependabot/npm_and_yarn/examples/w…
da83c63 
…ith-apollo/lodash-4.17.21
@OKEAMAH
Merge pull request #2 from OKEAMAH/dependabot/npm_and_yarn/examples/w…
ead2826 
…ith-clerk/next-13.5.1
@OKEAMAH
Merge pull request #3 from OKEAMAH/dependabot/npm_and_yarn/lodash-4.1…
285d58c 
…7.21
@OKEAMAH
Merge pull request #4 from OKEAMAH/dependabot/npm_and_yarn/nanoid-3.1.31
1fc83ec
@OKEAMAH
Merge branch '02-13-Add_project.entrypoints_' into canary
dba104c
@snyk-bot
fix: upgrade @segment/analytics-next from 1.53.0 to 1.69.0
97b798d 
Snyk has created this PR to upgrade @segment/analytics-next from 1.53.0 to 1.69.0.

See this package in npm:
@segment/analytics-next

See this project in Snyk:
https://app.snyk.io/org/okeamah/project/d40a80ec-89d5-4662-a7c7-e7ef3ee6d710?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@OKEAMAH @timneutkens @snyk-bot