-
-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Dependabot updates for week of 14 August 2023 #2481
Conversation
Bumps [eslint-plugin-unused-imports](https://github.com/sweepline/eslint-plugin-unused-imports) from 2.0.0 to 3.0.0. - [Commits](https://github.com/sweepline/eslint-plugin-unused-imports/commits) --- updated-dependencies: - dependency-name: eslint-plugin-unused-imports dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps dotnet/aspnet from 6.0.20-focal-amd64 to 6.0.21-focal-amd64. --- updated-dependencies: - dependency-name: dotnet/aspnet dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps dotnet/sdk from 6.0.412-focal-amd64 to 6.0.413-focal-amd64. --- updated-dependencies: - dependency-name: dotnet/sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [mui-language-picker](https://github.com/sillsdev/mui-language-picker) from 1.2.7 to 1.2.8. - [Commits](https://github.com/sillsdev/mui-language-picker/commits) --- updated-dependencies: - dependency-name: mui-language-picker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [validator](https://github.com/validatorjs/validator.js) and [@types/validator](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/validator). These dependencies needed to be updated together. Updates `validator` from 13.9.0 to 13.11.0 - [Release notes](https://github.com/validatorjs/validator.js/releases) - [Changelog](https://github.com/validatorjs/validator.js/blob/master/CHANGELOG.md) - [Commits](validatorjs/validator.js@13.9.0...13.11.0) Updates `@types/validator` from 13.7.17 to 13.11.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/validator) --- updated-dependencies: - dependency-name: validator dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: "@types/validator" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.4.2 to 20.4.10. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@types/node" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [make-dir](https://github.com/sindresorhus/make-dir) from 3.1.0 to 4.0.0. - [Release notes](https://github.com/sindresorhus/make-dir/releases) - [Commits](sindresorhus/make-dir@v3.1.0...v4.0.0) --- updated-dependencies: - dependency-name: make-dir dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [Microsoft.AspNetCore.Authentication.JwtBearer](https://github.com/dotnet/aspnetcore) from 6.0.20 to 6.0.21. - [Release notes](https://github.com/dotnet/aspnetcore/releases) - [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md) - [Commits](dotnet/aspnetcore@v6.0.20...v6.0.21) --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [MongoDB.Driver](https://github.com/mongodb/mongo-csharp-driver) from 2.20.0 to 2.21.0. - [Release notes](https://github.com/mongodb/mongo-csharp-driver/releases) - [Commits](mongodb/mongo-csharp-driver@v2.20.0...v2.21.0) --- updated-dependencies: - dependency-name: MongoDB.Driver dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.5.0 to 2.5.1. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@cba0d00...8ca2b8b) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.2 to 2.21.3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@0ba4244...5b6282e) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…lugin-unused-imports-3.0.0' into dependabot-2023-08-14
…/aspnet-6.0.21-focal-amd64' into dependabot-2023-08-14
…/sdk-6.0.413-focal-amd64' into dependabot-2023-08-14
…ft.AspNetCore.Authentication.JwtBearer-6.0.21' into dependabot-2023-08-14
….Driver-2.21.0' into dependabot-2023-08-14
…/codeql-action-2.21.3' into dependabot-2023-08-14
…ecurity/harden-runner-2.5.1' into dependabot-2023-08-14
…de-20.4.10' into dependabot-2023-08-14
…r-and-types/validator-13.11.0' into dependabot-2023-08-14 # Conflicts: # package-lock.json # package.json
…uage-picker-1.2.8' into dependabot-2023-08-14
…-4.0.0' into dependabot-2023-08-14
Codecov ReportPatch coverage has no change and project coverage change:
Additional details and impacted files@@ Coverage Diff @@
## master #2481 +/- ##
===========================================
+ Coverage 67.95% 79.63% +11.67%
===========================================
Files 240 45 -195
Lines 8273 4458 -3815
Branches 504 0 -504
===========================================
- Hits 5622 3550 -2072
+ Misses 2295 908 -1387
+ Partials 356 0 -356
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 18 of 18 files at r2, all commit messages.
Reviewable status: complete! all files reviewed, all discussions resolved (waiting on @jmgrady)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 2 of 2 files at r3, all commit messages.
Reviewable status: complete! all files reviewed, all discussions resolved (waiting on @jmgrady)
* Bump eslint-plugin-unused-imports from 2.0.0 to 3.0.0 * Bump dotnet/aspnet in /Backend * Bump dotnet/sdk in /Backend * Bump mui-language-picker from 1.2.7 to 1.2.8 * Bump validator and @types/validator * Bump @types/node from 20.4.2 to 20.4.10 * Bump make-dir from 3.1.0 to 4.0.0 * Bump Microsoft.AspNetCore.Authentication.JwtBearer in /Backend * Bump MongoDB.Driver from 2.20.0 to 2.21.0 in /Backend * Bump step-security/harden-runner from 2.5.0 to 2.5.1 * Bump github/codeql-action from 2.21.2 to 2.21.3 * Bump cert-manager version to v1.12.3 * Update typescript-eslint due to eslint-plugin-unused-imports requirement * Update license reports --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This change is