Dependabot updates for week of 22 May 2023

[jmgrady]

This change is 

[codecov-commenter]

Codecov Report

Patch coverage has no change and project coverage change: -15.95 ⚠️

Comparison is base (a2c4aa3) 57.45% compared to head (f19f553) 41.51%.

❗ Current head f19f553 differs from pull request most recent head f270c61. Consider uploading reports for the commit f270c61 to get more accurate results

Additional details and impacted files

@@             Coverage Diff             @@
##           master    #2186       +/-   ##
===========================================
- Coverage   57.45%   41.51%   -15.95%     
===========================================
  Files         241      199       -42     
  Lines        7716     3811     -3905     
  Branches      497      497               
===========================================
- Hits         4433     1582     -2851     
+ Misses       2906     1852     -1054     
  Partials      377      377               

Flag	Coverage Δ
backend	?
frontend	41.51% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
src/components/TreeView/TreeViewActions.ts	64.70% <ø> (ø)

... and 42 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

[imnasnainaec]

Reviewed 1 of 2 files at r1, 3 of 8 files at r2, 2 of 3 files at r4, all commit messages.
Reviewable status: 6 of 10 files reviewed, 1 unresolved discussion (waiting on @jmgrady)

---

.github/workflows/backend.yml line 26 at r4 (raw file):

          allowed-endpoints: >
            aka.ms:443
            api.githug.com:443

This has got to be a typo.

[imnasnainaec]

Reviewed 1 of 8 files at r2, 2 of 2 files at r3.
Reviewable status: 9 of 10 files reviewed, 1 unresolved discussion (waiting on @jmgrady)

[imnasnainaec]

Reviewable status: 9 of 10 files reviewed, 2 unresolved discussions (waiting on @jmgrady)

---

.github/workflows/backend.yml line 28 at r4 (raw file):

            api.githug.com:443
            api.nuget.org:443
            *.codecov.io:443

If *.codecov.io:443 is only covering codecov.io:443 and uploader.codecov.io:443 wouldn't it be better to explicitly list those two?

[jmgrady]

Reviewable status: 5 of 20 files reviewed, 1 unresolved discussion (waiting on @imnasnainaec and @jmgrady)

---

.github/workflows/backend.yml line 26 at r4 (raw file):

Previously, imnasnainaec (D. Ror.) wrote…

This has got to be a typo.

Done.

---

.github/workflows/backend.yml line 28 at r4 (raw file):

Previously, imnasnainaec (D. Ror.) wrote…

If *.codecov.io:443 is only covering codecov.io:443 and uploader.codecov.io:443 wouldn't it be better to explicitly list those two?

Done.

[imnasnainaec]

Reviewed 14 of 15 files at r5, all commit messages.
Reviewable status: 19 of 20 files reviewed, all discussions resolved (waiting on @jmgrady)

---

.github/workflows/backend.yml line 31 at r5 (raw file):

            api.nuget.org:443
            codecov.io:443
            uploader.codecov.io:443

Now uploader.codec... isn't in alphabetical order like the rest.

[jmgrady]

Reviewable status: 19 of 20 files reviewed, all discussions resolved (waiting on @jmgrady)

---

.github/workflows/backend.yml line 31 at r5 (raw file):

Previously, imnasnainaec (D. Ror.) wrote…

Now uploader.codec... isn't in alphabetical order like the rest.

This is not something I have really been working for. If there are multiple endpoints for a top-level domain, I prefer to have them together, e.g.

            deb.debian.org:80
            github.com:443
            mcr.microsoft.com:443
            *.data.mcr.microsoft.com:443
            api.nuget.org:443
            archive.ubuntu.com:80
            security.ubuntu.com:80
            dc.services.visualstudio.com:443

instead of

            *.data.mcr.microsoft.com:443
            archive.ubuntu.com:80
            api.nuget.org:443
            dc.services.visualstudio.com:443
            deb.debian.org:80
            github.com:443
            mcr.microsoft.com:443
            security.ubuntu.com:80

(although that first list is not what is actually in backend.yml).

Thoughts?

[jmgrady]

Reviewable status: 19 of 20 files reviewed, all discussions resolved (waiting on @jmgrady)

---

.github/workflows/backend.yml line 31 at r5 (raw file):

Previously, jmgrady (Jim Grady) wrote…

This is not something I have really been working for. If there are multiple endpoints for a top-level domain, I prefer to have them together, e.g.

            deb.debian.org:80
            github.com:443
            mcr.microsoft.com:443
            *.data.mcr.microsoft.com:443
            api.nuget.org:443
            archive.ubuntu.com:80
            security.ubuntu.com:80
            dc.services.visualstudio.com:443

instead of

            *.data.mcr.microsoft.com:443
            archive.ubuntu.com:80
            api.nuget.org:443
            dc.services.visualstudio.com:443
            deb.debian.org:80
            github.com:443
            mcr.microsoft.com:443
            security.ubuntu.com:80

(although that first list is not what is actually in backend.yml).

Thoughts?

That said, it is a lot less work to have VS code sort them for me.

[jmgrady]

Reviewable status: 16 of 20 files reviewed, all discussions resolved (waiting on @imnasnainaec and @jmgrady)

---

.github/workflows/backend.yml line 31 at r5 (raw file):

Previously, jmgrady (Jim Grady) wrote…

That said, it is a lot less work to have VS code sort them for me.

Done. All endpoints should now be in alphabetical order.

[imnasnainaec]

Reviewed 1 of 15 files at r5.
Reviewable status: 16 of 20 files reviewed, all discussions resolved (waiting on @jmgrady)

[imnasnainaec]

Reviewed 4 of 4 files at r6, all commit messages.
Reviewable status: complete! all files reviewed, all discussions resolved (waiting on @jmgrady)

[imnasnainaec]

Reviewed 2 of 2 files at r7, all commit messages.
Reviewable status: complete! all files reviewed, all discussions resolved (waiting on @jmgrady)