GithubDataScraper/output/chord_issues.csv at 8e96eb74867da138c31ca4f1e5453c14292b8de9

hoernschen bd930fd4b4 initial commit

2020-09-10 23:38:27 +02:00

7.8 MiB

Raw Blame History

1		url	repository_url	labels_url	comments_url	events_url	html_url	id	node_id	number	title	user	labels	state	locked	assignees	comments	created_at	updated_at	closed_at	author_association	pull_request	body
2	0	https://api.github.com/repos/comorebi-notes/rechord/issues/110	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/110/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/110/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/110/events	https://github.com/comorebi-notes/rechord/pull/110	694002571	MDExOlB1bGxSZXF1ZXN0NDgwNDU1MTg0	110	Bump handlebars from 4.0.12 to 4.7.6	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2020-09-05T05:39:45Z	2020-09-05T05:39:46Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/110', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/110', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/110.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/110.patch'}	Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.0.12 to 4.7.6. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md">handlebars's changelog</a>.</em></p> <blockquote> <h2>v4.7.6 - April 3rd, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1672">#1672</a> - Switch cmd parser to latest minimist (<a href="https://api.github.com/users/dougwilson">@dougwilson</a></li> </ul> <p>Compatibility notes:</p> <ul> <li>Restored Node.js compatibility</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.5...v4.7.6">Commits</a></p> <h2>v4.7.5 - April 2nd, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><del>Node.js version support has been changed to v6+</del> Reverted in 4.7.6</li> </ul> <p>Compatibility notes:</p> <ul> <li><del>Node.js < v6 is no longer supported</del> Reverted in 4.7.6</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.4...v4.7.5">Commits</a></p> <h2>v4.7.4 - April 1st, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1666">#1666</a> - Replaced minimist with yargs for handlebars CLI (<a href="https://api.github.com/users/aorinevo">@aorinevo</a>, <a href="https://api.github.com/users/AviVahl">@AviVahl</a> & <a href="https://api.github.com/users/fabb">@fabb</a>)</li> </ul> <p>Compatibility notes:</p> <ul> <li>No incompatibilities are to be expected</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.3...v4.7.4">Commits</a></p> <h2>v4.7.3 - February 5th, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1644">#1644</a> - Download links to aws broken on handlebarsjs.com - access denied (<a href="https://api.github.com/users/Tea56">@Tea56</a>)</li> <li>Fix spelling and punctuation in changelog - d78cc73</li> </ul> <p>Bugfixes:</p> <ul> <li>Add Type Definition for Handlebars.VERSION, Fixes <a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1647">#1647</a> - 4de51fe</li> <li>Include Type Definition for runtime.js in Package - a32d05f</li> </ul> <p>Compatibility notes:</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/e6ad93ea01bcde1f8ddaa4b4ebe572dd616abfaa"><code>e6ad93e</code></a> v4.7.6</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/2bf4fc6fd3ae3d8f076d628653f284d85faebeb4"><code>2bf4fc6</code></a> Update release notes</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/b64202bc9197307bd785a58693e3820eb9bb41a8"><code>b64202b</code></a> Update release-notes.md</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/c2f1e6203178918569f085e12afdb762cae17fb0"><code>c2f1e62</code></a> Switch cmd parser to latest minimist</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/08e9a11a34c3ad8387a0b85b1334f97cab85191a"><code>08e9a11</code></a> Revert "chore: set Node.js compatibility to v6+"</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/1fd2edee2a12fb228061fcde807905c6b14339c4"><code>1fd2ede</code></a> v4.7.5</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/3c9c2f5cf29cf10f54d5fe4daca6b24b65f0adcf"><code>3c9c2f5</code></a> Update release notes</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/16487a088e13f4d52c6fd6610b9ec71c4a51be8a"><code>16487a0</code></a> chore: downgrade yargs to v14</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/309d2b49a11628d2a8f052c5587e7459968cd705"><code>309d2b4</code></a> chore: set Node.js compatibility to v6+</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/645ac73844918668f9a2f41e49b7cb18ce5abf36"><code>645ac73</code></a> test: fix integration tests</li> <li>Additional commits viewable in <a href="https://github.com/wycats/handlebars.js/compare/v4.0.12...v4.7.6">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~erisds">erisds</a>, a new releaser for handlebars since your current version.</p> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=handlebars&package-manager=npm_and_yarn&previous-version=4.0.12&new-version=4.7.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-github-dependabot-security-updates) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
3	1	https://api.github.com/repos/comorebi-notes/rechord/issues/109	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/109/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/109/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/109/events	https://github.com/comorebi-notes/rechord/pull/109	693248209	MDExOlB1bGxSZXF1ZXN0NDc5NzU1Mjc0	109	Bump node-sass from 4.10.0 to 4.14.1	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2020-09-04T14:45:56Z	2020-09-04T14:45:58Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/109', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/109', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/109.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/109.patch'}	Bumps [node-sass](https://github.com/sass/node-sass) from 4.10.0 to 4.14.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sass/node-sass/releases">node-sass's releases</a>.</em></p> <blockquote> <h2>v4.14.1</h2> <h3>Community</h3> <ul> <li>Add GitHub Actions for Alpine CI (<a href="https://github.com/nschonni">@nschonni</a>, <a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2823">#2823</a>)</li> </ul> <h3>Fixes</h3> <ul> <li>Bump sass-graph@2.2.5 (<a href="https://github.com/xzyfer">@xzyfer</a>, <a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2912">#2912</a>)</li> </ul> <h2>Supported Environments</h2> <table> <thead> <tr> <th>OS</th> <th>Architecture</th> <th>Node</th> </tr> </thead> <tbody> <tr> <td>Windows</td> <td>x86 & x64</td> <td>0.10, 0.12, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14</td> </tr> <tr> <td>OSX</td> <td>x64</td> <td>0.10, 0.12, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14</td> </tr> <tr> <td>Linux</td> <td>x86 & x64</td> <td>0.10, 0.12, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10^, 11^, 12^, 13^, 14^</td> </tr> <tr> <td>Alpine Linux</td> <td>x64</td> <td>6, 8, 10, 11, 12, 13, 14</td> </tr> <tr> <td>FreeBSD</td> <td>i386 amd64</td> <td>10, 12, 13</td> </tr> </tbody> </table> <p>Linux support refers to Ubuntu, Debian, and CentOS 5+ ** Not available on CentOS 5 ^ Only available on x64</p> <h2>v4.14.0</h2> <h3>Features</h3> <ul> <li>Add Node 14 support (<a href="https://github.com/nschonni">@nschonni</a>, <a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2895">#2895</a>)</li> </ul> <h3>Fixes</h3> <ul> <li>Reporting wrong LibSass version (<a href="https://github.com/saper">@saper</a>, <a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2621">#2621</a>)</li> </ul> <h2>Supported Environments</h2> <table> <thead> <tr> <th>OS</th> <th>Architecture</th> <th>Node</th> </tr> </thead> <tbody> <tr> <td>Windows</td> <td>x86 & x64</td> <td>0.10, 0.12, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14</td> </tr> <tr> <td>OSX</td> <td>x64</td> <td>0.10, 0.12, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14</td> </tr> <tr> <td>Linux</td> <td>x86 & x64</td> <td>0.10, 0.12, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10^, 11^, 12^, 13^, 14^</td> </tr> <tr> <td>Alpine Linux</td> <td>x64</td> <td>6, 8, 10, 11, 12, 13, 14</td> </tr> <tr> <td>FreeBSD</td> <td>i386 amd64</td> <td>10, 12, 13</td> </tr> </tbody> </table> <p>Linux support refers to Ubuntu, Debian, and CentOS 5+ ** Not available on CentOS 5 ^ Only available on x64</p> <h2>v4.13.1</h2> <h3>Community</h3> <ul> <li>Fix render example syntax (<a href="https://github.com/ZoranPandovski">@ZoranPandovski</a> , <a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2787">#2787</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sass/node-sass/blob/master/CHANGELOG.md">node-sass's changelog</a>.</em></p> <blockquote> <h2>v4.14.0</h2> <p><a href="https://github.com/sass/node-sass/releases/tag/v4.14.0">https://github.com/sass/node-sass/releases/tag/v4.14.0</a></p> <h2>v4.13.1</h2> <p><a href="https://github.com/sass/node-sass/releases/tag/v4.13.1">https://github.com/sass/node-sass/releases/tag/v4.13.1</a></p> <h2>v4.13.0</h2> <p><a href="https://github.com/sass/node-sass/releases/tag/v4.13.0">https://github.com/sass/node-sass/releases/tag/v4.13.0</a></p> <h2>v4.12.0</h2> <p><a href="https://github.com/sass/node-sass/releases/tag/v4.12.0">https://github.com/sass/node-sass/releases/tag/v4.12.0</a></p> <h2>v4.11.0</h2> <p><a href="https://github.com/sass/node-sass/releases/tag/v4.11.0">https://github.com/sass/node-sass/releases/tag/v4.11.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sass/node-sass/commit/0d6c3cc36a5362e83529d901484b0bbf3e96de81"><code>0d6c3cc</code></a> 4.14.1</li> <li><a href="https://github.com/sass/node-sass/commit/1cc626373196500b288f487e1507926066f3e406"><code>1cc6263</code></a> Bump sass-graph@2.2.5 (<a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2915">#2915</a>)</li> <li><a href="https://github.com/sass/node-sass/commit/aa193f6334e45ae065cc64d67498acfad9fad4d9"><code>aa193f6</code></a> chore: Add GitHub Actions for Alpine CI</li> <li><a href="https://github.com/sass/node-sass/commit/eac343c6cc39abff153b2c8e9cc0d6b8351c8a8f"><code>eac343c</code></a> 4.14.0</li> <li><a href="https://github.com/sass/node-sass/commit/bbeb78cab873b12fc4b98358b62090e6fbc9b400"><code>bbeb78c</code></a> Update changelog</li> <li><a href="https://github.com/sass/node-sass/commit/1210aabc65ed445263dac5041ad735e3a35ae600"><code>1210aab</code></a> Fix <a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2621">#2621</a>: Report libsass version 3.5.5 (<a href="https://github-redirect.dependabot.com/sass/node-sass/issues/2769">#2769</a>)</li> <li><a href="https://github.com/sass/node-sass/commit/5a4a48a4a45f41d66d55e2103496e886ec7ee5f1"><code>5a4a48a</code></a> feat: Add Node 14 support</li> <li><a href="https://github.com/sass/node-sass/commit/b54053a1b50fd97e951eb0311a7fb818683a8e99"><code>b54053a</code></a> Update changelog</li> <li><a href="https://github.com/sass/node-sass/commit/01db05182b69dccbd43be777e6808045e71af0b5"><code>01db051</code></a> 4.13.1</li> <li><a href="https://github.com/sass/node-sass/commit/338fd7a14d3b8bd374a382336df16f9c6792b884"><code>338fd7a</code></a> Merge pull request from GHSA-f6rp-gv58-9cw3</li> <li>Additional commits viewable in <a href="https://github.com/sass/node-sass/compare/v4.10.0...v4.14.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-sass&package-manager=npm_and_yarn&previous-version=4.10.0&new-version=4.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-github-dependabot-security-updates) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
4	2	https://api.github.com/repos/comorebi-notes/rechord/issues/108	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/108/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/108/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/108/events	https://github.com/comorebi-notes/rechord/pull/108	693235521	MDExOlB1bGxSZXF1ZXN0NDc5NzQ0MDE1	108	Bump lodash.mergewith from 4.6.1 to 4.6.2	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2020-09-04T14:34:26Z	2020-09-04T14:34:27Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/108', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/108', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/108.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/108.patch'}	Bumps [lodash.mergewith](https://github.com/lodash/lodash) from 4.6.1 to 4.6.2. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/lodash/lodash/commits">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=lodash.mergewith&package-manager=npm_and_yarn&previous-version=4.6.1&new-version=4.6.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-github-dependabot-security-updates) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
5	3	https://api.github.com/repos/comorebi-notes/rechord/issues/107	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/107/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/107/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/107/events	https://github.com/comorebi-notes/rechord/pull/107	669255782	MDExOlB1bGxSZXF1ZXN0NDU5NjUxOTYz	107	Bump elliptic from 6.4.1 to 6.5.3	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2020-07-30T22:41:44Z	2020-07-30T22:41:45Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/107', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/107', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/107.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/107.patch'}	Bumps [elliptic](https://github.com/indutny/elliptic) from 6.4.1 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li><a href="https://github.com/indutny/elliptic/commit/60489415e545efdfd3010ae74b9726facbf08ca8"><code>6048941</code></a> 6.5.2</li> <li><a href="https://github.com/indutny/elliptic/commit/9984964457c9f8a63b91b01ea103260417eca237"><code>9984964</code></a> package: bump dependencies</li> <li><a href="https://github.com/indutny/elliptic/commit/ec735edde187a43693197f6fa3667ceade751a3a"><code>ec735ed</code></a> utils: leak less information in <code>getNAF()</code></li> <li><a href="https://github.com/indutny/elliptic/commit/71e4e8e2f5b8f0bdbfbe106c72cc9fbc746d3d60"><code>71e4e8e</code></a> 6.5.1</li> <li><a href="https://github.com/indutny/elliptic/commit/7ec66ffa255079260126d87b1762a59ea10de5ea"><code>7ec66ff</code></a> short: add infinity check before multiplying</li> <li><a href="https://github.com/indutny/elliptic/commit/ee7970b92f388e981d694be0436c4c8036b5d36c"><code>ee7970b</code></a> travis: really move on</li> <li><a href="https://github.com/indutny/elliptic/commit/637d0216b58de7edee4f3eb5641295ac323acadb"><code>637d021</code></a> travis: move on</li> <li><a href="https://github.com/indutny/elliptic/commit/5ed0babb6467cd8575a9218265473fda926d9d42"><code>5ed0bab</code></a> package: update deps</li> <li>Additional commits viewable in <a href="https://github.com/indutny/elliptic/compare/v6.4.1...v6.5.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=elliptic&package-manager=npm_and_yarn&previous-version=6.4.1&new-version=6.5.3)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
6	4	https://api.github.com/repos/comorebi-notes/rechord/issues/106	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/106/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/106/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/106/events	https://github.com/comorebi-notes/rechord/pull/106	666739456	MDExOlB1bGxSZXF1ZXN0NDU3NTI5NTMy	106	Bump json from 2.2.0 to 2.3.1	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2020-07-28T04:07:47Z	2020-07-28T04:07:48Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/106', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/106', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/106.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/106.patch'}	Bumps [json](https://github.com/flori/json) from 2.2.0 to 2.3.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/flori/json/blob/master/CHANGES.md">json's changelog</a>.</em></p> <blockquote> <h2>2020-06-30 (2.3.1)</h2> <ul> <li>Spelling and grammar fixes for comments. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/191">#191</a> by Josh Kline.</li> <li>Enhance generic JSON and #generate docs. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/347">#347</a> by Victor Shepelev.</li> <li>Add :nodoc: for GeneratorMethods. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/349">#349</a> by Victor Shepelev.</li> <li>Baseline changes to help (JRuby) development. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/371">#371</a> by Karol Bucek.</li> <li>Add metadata for rubygems.org. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/379">#379</a> by Alexandre ZANNI.</li> <li>Remove invalid JSON.generate description from JSON module rdoc. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/384">#384</a> by Jeremy Evans.</li> <li>Test with TruffleRuby in CI. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/402">#402</a> by Benoit Daloze.</li> <li>Rdoc enhancements. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/413">#413</a> by Burdette Lamar.</li> <li>Fixtures/ are not being tested... Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/416">#416</a> by Marc-André Lafortune.</li> <li>Use frozen string for hash key. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/420">#420</a> by Marc-André Lafortune.</li> <li>Added :call-seq: to RDoc for some methods. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/422">#422</a> by Burdette Lamar.</li> <li>Small typo fix. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/423">#423</a> by Marc-André Lafortune.</li> </ul> <h2>2019-12-11 (2.3.0)</h2> <ul> <li>Fix default of <code>create_additions</code> to always be <code>false</code> for <code>JSON(user_input)</code> and <code>JSON.parse(user_input, nil)</code>. Note that <code>JSON.load</code> remains with default <code>true</code> and is meant for internal serialization of trusted data. [CVE-2020-10663]</li> <li>Fix passing args all #to_json in json/add/*.</li> <li>Fix encoding issues</li> <li>Fix issues of keyword vs positional parameter</li> <li>Fix JSON::Parser against bigdecimal updates</li> <li>Bug fixes to JRuby port</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/flori/json/commit/0951d7719c3ee7e35b4e1ae80613ce02fb6f20da"><code>0951d77</code></a> Bump version to 2.3.1</li> <li><a href="https://github.com/flori/json/commit/ddc29e20c1c05bc96ede665ad066cbf0617a6c93"><code>ddc29e2</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/429">#429</a> from flori/remove-generate-task-for-gemspec</li> <li><a href="https://github.com/flori/json/commit/cee8020dc8a3c33936149667ada3f017d396ade7"><code>cee8020</code></a> Removed gemspec task from default task on Rakefile</li> <li><a href="https://github.com/flori/json/commit/9fd637107f1267726acee108e88e21dc773f137e"><code>9fd6371</code></a> Use VERSION file instead of hard-coded value</li> <li><a href="https://github.com/flori/json/commit/dc90bcf240fe8059157e6e37cd52944e64523266"><code>dc90bcf</code></a> Removed explicitly date field in gemspec, it will assign by rubygems.org</li> <li><a href="https://github.com/flori/json/commit/4c11a40c1f0de83b5c39877f40143fe8a5e512cd"><code>4c11a40</code></a> Removed task for json_pure.gemspec</li> <li><a href="https://github.com/flori/json/commit/e794ec959121e868808e333fdeddd8261f1d5844"><code>e794ec9</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/426">#426</a> from marcandre/indent</li> <li><a href="https://github.com/flori/json/commit/7cc9301acae27438b32b0cb21d7ff8c3cb07792c"><code>7cc9301</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/428">#428</a> from marcandre/change_fix</li> <li><a href="https://github.com/flori/json/commit/9e2a1fb7d8193dfae67ed70a6f531dd4e4b5f0d5"><code>9e2a1fb</code></a> Make changes more precise <a href="https://github-redirect.dependabot.com/flori/json/issues/424">#424</a></li> <li><a href="https://github.com/flori/json/commit/f8fa987de568b11cfea27d44486b0377d83d0e4b"><code>f8fa987</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/424">#424</a> from marcandre/update_changes</li> <li>Additional commits viewable in <a href="https://github.com/flori/json/compare/v2.2.0...v2.3.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=json&package-manager=bundler&previous-version=2.2.0&new-version=2.3.1)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
7	5	https://api.github.com/repos/comorebi-notes/rechord/issues/105	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/105/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/105/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/105/events	https://github.com/comorebi-notes/rechord/pull/105	645084987	MDExOlB1bGxSZXF1ZXN0NDM5NjA2NzQ1	105	Bump rack from 2.1.2 to 2.2.3	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2020-06-25T01:50:14Z	2020-06-25T01:50:15Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/105', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/105', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/105.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/105.patch'}	Bumps [rack](https://github.com/rack/rack) from 2.1.2 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Multipart::UploadedFile</code> supports keyword arguments <code>:path</code>, <code>:content_type</code>, and <code>:binary</code> in addition to positional arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/a5e80f01947954af76b14c1d1fdd8e79dd8337f3"><code>a5e80f0</code></a> Bump version.</li> <li><a href="https://github.com/rack/rack/commit/b0de37dc3b67d2fdcaa8b0236ff076a0a4db0b4f"><code>b0de37d</code></a> Remove trailing whitespace.</li> <li><a href="https://github.com/rack/rack/commit/1a784e54c867d42214d9e1f315651b1f2cea8591"><code>1a784e5</code></a> Prepare CHANGELOG for next patch release.</li> <li><a href="https://github.com/rack/rack/commit/a0d57d4a1d917596e03e0aa969aff7e890d2123c"><code>a0d57d4</code></a> Fix to handle same_site option for session pool</li> <li><a href="https://github.com/rack/rack/commit/a9b223b6781201ae8faa5d0a373cd1a24f6d97a3"><code>a9b223b</code></a> Ensure full match. Fixes <a href="https://github-redirect.dependabot.com/rack/rack/issues/1590">#1590</a>.</li> <li><a href="https://github.com/rack/rack/commit/f4c5645642ec99fa82a5a343a6c79d4aff8d6165"><code>f4c5645</code></a> Double assignment is still needed to prevent an "unused variable" warning</li> <li><a href="https://github.com/rack/rack/commit/5c121dd6853fa231d1b1253b6e8e7cfc927791ca"><code>5c121dd</code></a> Revert "Update Thin handler to better handle more options"</li> <li><a href="https://github.com/rack/rack/commit/961d9761bcb2bee17c80bba8b7bc9e285086d6c4"><code>961d976</code></a> Prepare point release.</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.1.2...2.2.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rack&package-manager=bundler&previous-version=2.1.2&new-version=2.2.3)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
8	6	https://api.github.com/repos/comorebi-notes/rechord/issues/104	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/104/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/104/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/104/events	https://github.com/comorebi-notes/rechord/pull/104	632792969	MDExOlB1bGxSZXF1ZXN0NDI5NDk3NDkz	104	Bump websocket-extensions from 0.1.3 to 0.1.4	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2020-06-06T23:01:16Z	2020-06-06T23:01:17Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/104', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/104', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/104.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/104.patch'}	Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=websocket-extensions&package-manager=npm_and_yarn&previous-version=0.1.3&new-version=0.1.4)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
9	7	https://api.github.com/repos/comorebi-notes/rechord/issues/103	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/103/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/103/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/103/events	https://github.com/comorebi-notes/rechord/pull/103	631665156	MDExOlB1bGxSZXF1ZXN0NDI4NTExMTE2	103	Bump websocket-extensions from 0.1.3 to 0.1.5	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2020-06-05T14:58:46Z	2020-06-05T14:58:46Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/103', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/103', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/103.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/103.patch'}	Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-ruby) from 0.1.3 to 0.1.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-ruby/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.5 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7663)</li> </ul> <h3>0.1.4 / 2019-06-10</h3> <ul> <li>Fix a deprecation warning for using the <code>=~</code> operator on <code>true</code></li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/8108e77333026634eda1a6a32f32da3a7a1da8c4"><code>8108e77</code></a> Bump version to 0.1.5</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/c36eb3e010dce9eabc7415dbe05cafaa0ae83cd4"><code>c36eb3e</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/8174a4a0f95b8f35ea42595d9d4d88debf492521"><code>8174a4a</code></a> Test on JRuby 9.{0,1,2} rather than "head"</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/96059802a6649ad3ca63625ffc5b5dbcd9ea91d9"><code>9605980</code></a> Update Ruby versions 2.4 to 2.7 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/bd6d0acc01fa985f014d37183f0c7854b86b60f9"><code>bd6d0ac</code></a> Mention license change in the changelog</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/a8c847876b2242d562e6186b6fd90dd073b9fcd2"><code>a8c8478</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/242f007cb9cf4eddd33a10216a1ae31e86be42fa"><code>242f007</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/249bcc106f8bdbcd571ac598af3b9ee896947680"><code>249bcc1</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/738a0af1dd5bbd45b1a912086469a8981cb329ca"><code>738a0af</code></a> Fix deprecation warning about =~ being called on TrueClass.</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/68c1b21129ec78193b949b96477132a3c795c7a5"><code>68c1b21</code></a> Fix RSpec warnings about raise_error with no arguments.</li> <li>Additional commits viewable in <a href="https://github.com/faye/websocket-extensions-ruby/compare/0.1.3...0.1.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=websocket-extensions&package-manager=bundler&previous-version=0.1.3&new-version=0.1.5)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
10	8	https://api.github.com/repos/comorebi-notes/rechord/issues/102	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/102/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/102/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/102/events	https://github.com/comorebi-notes/rechord/pull/102	626854662	MDExOlB1bGxSZXF1ZXN0NDI0NzY3OTMx	102	Bump kaminari from 1.1.1 to 1.2.1	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2020-05-28T22:24:48Z	2020-05-28T22:24:49Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/102', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/102', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/102.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/102.patch'}	Bumps [kaminari](https://github.com/kaminari/kaminari) from 1.1.1 to 1.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/kaminari/kaminari/releases">kaminari's releases</a>.</em></p> <blockquote> <h2>v1.2.0</h2> <h3>Deprecations:</h3> <ul> <li>Deprecated <code>current_per_page</code> in favor of <code>limit_value</code></li> </ul> <h3>Enhancements:</h3> <ul> <li>Added <code>#url_to_next_page</code> and <code>#url_to_prev_page</code> helper methods: <a href="https://github.com/kaminari/kaminari/commit/38e95a262a210548c4f892aaa69d09ca8ecdce7f">38e95a2</a></li> <li>Extracted url helper methods and packed them in <code>Kaminari::Helpers::UrlHelper</code>: <a href="https://github.com/kaminari/kaminari/commit/ff38bee54b5be1a948f1118c0bfd829a72a1a502">ff38bee</a></li> <li>Improved performance of <code>total_count</code> for grouped queries by explicitly giving SQL <code>select</code> clause <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> [<a href="https://github.com/MmKolodziej">@MmKolodziej</a>]</li> <li>Added <code>LIMIT</code> to <code>total_count</code> query when <code>max_pages</code> presents <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/981">#981</a> [<a href="https://github.com/rymai">@rymai</a>]</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a bug where the <code>kaminari-mongoid</code> gem was not loaded properly: <a href="https://github-redirect.dependabot.com/kaminari/kaminari-mongoid/issues/9">kaminari/kaminari-mongoid#9</a> [<a href="https://github.com/DenniJensen">@DenniJensen</a>]</li> <li>Fixed a bug where the <code>#total_count</code> method incorrectly calculates the total count: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/932">#932</a> [<a href="https://github.com/tumayun">@tumayun</a>]</li> <li>Fixed a bug where <code>empty?</code> breaks subsequent <code>last_page?</code> in without_count mode <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1009">#1009</a> [<a href="https://github.com/montdidier">@montdidier</a>]</li> <li>Fixed kwargs warnings on Ruby 2.7 <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1010">#1010</a> [<a href="https://github.com/connorshea">@connorshea</a>]</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kaminari/kaminari/blob/master/CHANGELOG.md">kaminari's changelog</a>.</em></p> <blockquote> <h2>1.2.1</h2> <h3>Security Fixes:</h3> <ul> <li>Added <code>original_script_name</code> parameter to the ignore list: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1020">#1020</a> [<a href="https://github.com/viseztrance">@viseztrance</a>] See CVE-2020-11082 for full details.</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a couple of grouped <code>total_count</code> regressions by reverting <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a></li> </ul> <h2>1.2.0</h2> <h3>Deprecations:</h3> <ul> <li>Deprecated <code>current_per_page</code> in favor of <code>limit_value</code></li> </ul> <h3>Enhancements:</h3> <ul> <li>Added <code>#url_to_next_page</code> and <code>#url_to_prev_page</code> helper methods: <a href="https://github.com/kaminari/kaminari/commit/38e95a262a210548c4f892aaa69d09ca8ecdce7f">38e95a2</a></li> <li>Extracted url helper methods and packed them in <code>Kaminari::Helpers::UrlHelper</code>: <a href="https://github.com/kaminari/kaminari/commit/ff38bee54b5be1a948f1118c0bfd829a72a1a502">ff38bee</a></li> <li>Improved performance of <code>total_count</code> for grouped queries by explicitly giving SQL <code>select</code> clause <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> [<a href="https://github.com/MmKolodziej">@MmKolodziej</a>]</li> <li>Added <code>LIMIT</code> to <code>total_count</code> query when <code>max_pages</code> presents <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/981">#981</a> [<a href="https://github.com/rymai">@rymai</a>]</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a bug where the <code>kaminari-mongoid</code> gem was not loaded properly: <a href="https://github-redirect.dependabot.com/kaminari/kaminari-mongoid/issues/9">kaminari/kaminari-mongoid#9</a> [<a href="https://github.com/DenniJensen">@DenniJensen</a>]</li> <li>Fixed a bug where the <code>#total_count</code> method incorrectly calculates the total count: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/932">#932</a> [<a href="https://github.com/tumayun">@tumayun</a>]</li> <li>Fixed a bug where <code>empty?</code> breaks subsequent <code>last_page?</code> in without_count mode <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1009">#1009</a> [<a href="https://github.com/montdidier">@montdidier</a>]</li> <li>Fixed kwargs warnings on Ruby 2.7 <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1010">#1010</a> [<a href="https://github.com/connorshea">@connorshea</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kaminari/kaminari/commit/ab8b1118bd721edc520a7cd32e0a72dc6d0d3608"><code>ab8b111</code></a> Version 1.2.1</li> <li><a href="https://github.com/kaminari/kaminari/commit/674aeecbb38612f5914c8b659570ce6a51a85bfe"><code>674aeec</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1020">#1020</a> from viseztrance/fix/add-entry-to-blacklist</li> <li><a href="https://github.com/kaminari/kaminari/commit/8dd52a1aed3d2fa2835d836de23fc0d8c4ff5db8"><code>8dd52a1</code></a> Blacklist "original_script_name" get param</li> <li><a href="https://github.com/kaminari/kaminari/commit/04d86ed3f2537aff620941413e5fca254e87aebe"><code>04d86ed</code></a> Revert "Merge pull request <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> from MmKolodziej/better_total_count_for_group...</li> <li><a href="https://github.com/kaminari/kaminari/commit/73472921a234e687bf25495f8265d0676736c766"><code>7347292</code></a> kaminari supports Ruby 2.8 (or 3.0 or whatever comes next) and Rails 6.1</li> <li><a href="https://github.com/kaminari/kaminari/commit/a2f262ec43d0f5e456831db7e1d31fa0d89e7d1e"><code>a2f262e</code></a> Actually, let's call it 1.2.0</li> <li><a href="https://github.com/kaminari/kaminari/commit/f901ad46d1cea5764ff19244f0b6f8781036ddf5"><code>f901ad4</code></a> Version 1.1.2</li> <li><a href="https://github.com/kaminari/kaminari/commit/c3114fac51d3735f5a901a4c905eaff6a75cc9f5"><code>c3114fa</code></a> Changes for version 1.1.2</li> <li><a href="https://github.com/kaminari/kaminari/commit/b21c1daffb7a99106c9e75ac0ffaef6d7f56416d"><code>b21c1da</code></a> using has to be called from the toplevel in Ruby 2.0</li> <li><a href="https://github.com/kaminari/kaminari/commit/795b2b74526a75bed1d3e286650b9fc04837d12a"><code>795b2b7</code></a> Let this plugin internal method be super private within this file</li> <li>Additional commits viewable in <a href="https://github.com/kaminari/kaminari/compare/v1.1.1...v1.2.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=kaminari&package-manager=bundler&previous-version=1.1.1&new-version=1.2.1)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
11	9	https://api.github.com/repos/comorebi-notes/rechord/issues/101	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/101/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/101/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/101/events	https://github.com/comorebi-notes/rechord/pull/101	575195108	MDExOlB1bGxSZXF1ZXN0MzgzMzg2Mjc1	101	Bump puma from 3.12.0 to 3.12.4	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2020-03-04T07:35:46Z	2020-03-04T07:35:47Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/101', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/101', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/101.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/101.patch'}	Bumps [puma](https://github.com/puma/puma) from 3.12.0 to 3.12.4. <details> <summary>Release notes</summary> Sourced from [puma's releases](https://github.com/puma/puma/releases). > v3.12.1 </details> <details> <summary>Changelog</summary> Sourced from [puma's changelog](https://github.com/puma/puma/blob/master/History.md). > ## 4.3.3 and 3.12.4 / 2020-02-28 > > * Bugfixes > * Fix: Fixes a problem where we weren't splitting headers correctly on newlines ([#2132](https://github-redirect.dependabot.com/puma/puma/issues/2132)) > * Security > * Fix: Prevent HTTP Response splitting via CR in early hints. CVE-2020-5249. > > ## 4.3.2 and 3.12.3 / 2020-02-27 (YANKED) > > * Security > * Fix: Prevent HTTP Response splitting via CR/LF in header values. CVE-2020-5247. > > ## 4.3.1 and 3.12.2 / 2019-12-05 > > * Security > * Fix: a poorly-behaved client could use keepalive requests to monopolize Puma's reactor and create a denial of service attack. CVE-2019-16770. > > ## 4.3.0 / 2019-11-07 > > * Features > * Strip whitespace at end of HTTP headers ([#2010](https://github-redirect.dependabot.com/puma/puma/issues/2010)) > * Optimize HTTP parser for JRuby ([#2012](https://github-redirect.dependabot.com/puma/puma/issues/2012)) > * Add SSL support for the control app and cli ([#2046](https://github-redirect.dependabot.com/puma/puma/issues/2046), [#2052](https://github-redirect.dependabot.com/puma/puma/issues/2052)) > > * Bugfixes > * Fix Errno::EINVAL when SSL is enabled and browser rejects cert ([#1564](https://github-redirect.dependabot.com/puma/puma/issues/1564)) > * Fix pumactl defaulting puma to development if an environment was not specified ([#2035](https://github-redirect.dependabot.com/puma/puma/issues/2035)) > * Fix closing file stream when reading pid from pidfile ([#2048](https://github-redirect.dependabot.com/puma/puma/issues/2048)) > * Fix a typo in configuration option `--extra_runtime_dependencies` ([#2050](https://github-redirect.dependabot.com/puma/puma/issues/2050)) > > ## 4.2.1 / 2019-10-07 > > * 3 bugfixes > * Fix socket activation of systemd (pre-existing) unix binder files ([#1842](https://github-redirect.dependabot.com/puma/puma/issues/1842), [#1988](https://github-redirect.dependabot.com/puma/puma/issues/1988)) > * Deal with multiple calls to bind correctly ([#1986](https://github-redirect.dependabot.com/puma/puma/issues/1986), [#1994](https://github-redirect.dependabot.com/puma/puma/issues/1994), [#2006](https://github-redirect.dependabot.com/puma/puma/issues/2006)) > * Accepts symbols for `verify_mode` ([#1222](https://github-redirect.dependabot.com/puma/puma/issues/1222)) > > ## 4.2.0 / 2019-09-23 > > * 6 features > * Pumactl has a new -e environment option and reads `config/puma/<environment>.rb` config files ([#1885](https://github-redirect.dependabot.com/puma/puma/issues/1885)) > * Semicolons are now allowed in URL paths (MRI only), useful for Angular or Redmine ([#1934](https://github-redirect.dependabot.com/puma/puma/issues/1934)) > * Allow extra dependencies to be defined when using prune_bundler ([#1105](https://github-redirect.dependabot.com/puma/puma/issues/1105)) > * Puma now reports the correct port when binding to port 0, also reports other listeners when binding to localhost ([#1786](https://github-redirect.dependabot.com/puma/puma/issues/1786)) > * Sending SIGINFO to any Puma worker now prints currently active threads and their backtraces ([#1320](https://github-redirect.dependabot.com/puma/puma/issues/1320)) > * Puma threads all now have their name set on Ruby 2.3+ ([#1968](https://github-redirect.dependabot.com/puma/puma/issues/1968)) > * 4 bugfixes > * Fix some misbehavior with phased restart and externally SIGTERMed workers ([#1908](https://github-redirect.dependabot.com/puma/puma/issues/1908), [#1952](https://github-redirect.dependabot.com/puma/puma/issues/1952)) > * Fix socket closing on error ([#1941](https://github-redirect.dependabot.com/puma/puma/issues/1941)) > * Removed unnecessary SIGINT trap for JRuby that caused some race conditions ([#1961](https://github-redirect.dependabot.com/puma/puma/issues/1961)) ></tr></table> ... (truncated) </details> <details> <summary>Commits</summary> - [`f809e6b`](https://github.com/puma/puma/commit/f809e6b7aa3083afb8da5eb54bdd45fc391d1ba1) Add missing server_run - [`87fc7d7`](https://github.com/puma/puma/commit/87fc7d7ab8afb24f8d2079729f237080620211d4) 3.12.4 - [`e79a5b2`](https://github.com/puma/puma/commit/e79a5b28f618fa04b7060c87f0da34d299462416) HTTP Injection - fix bug + 1 more vector ([#2136](https://github-redirect.dependabot.com/puma/puma/issues/2136)) - [`2ff978f`](https://github.com/puma/puma/commit/2ff978fa9f27fd3fcd11ddf774d684fda250c46e) 3.12.3 - [`3a2b918`](https://github.com/puma/puma/commit/3a2b9186b7ca31c9cfda8c88b824618e9c3d842c) Test backport - [`37928cb`](https://github.com/puma/puma/commit/37928cbe5a80a3541d390c60cf131f9c344e77f6) 4.3.2 and 3.12.3 release notes - [`1b17e85`](https://github.com/puma/puma/commit/1b17e85a06183cd169b41ca719928c26d44a6e03) Merge pull request from GHSA-84j7-475p-hp8v - [`bb29fc7`](https://github.com/puma/puma/commit/bb29fc7fe8f822d0f72706a1ae86e49af3476777) 3.12.2 - [`058df12`](https://github.com/puma/puma/commit/058df12b78e7d1ec661c3b8777f26a736c26675b) 4.3.1 and 4.2.1 release notes - [`06053e6`](https://github.com/puma/puma/commit/06053e60908074bb38293d4449ea261cb009b53e) Merge pull request from GHSA-7xx3-m584-x994 - Additional commits viewable in [compare view](https://github.com/puma/puma/compare/v3.12.0...v3.12.4) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=puma&package-manager=bundler&previous-version=3.12.0&new-version=3.12.4)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
12	10	https://api.github.com/repos/comorebi-notes/rechord/issues/100	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/100/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/100/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/100/events	https://github.com/comorebi-notes/rechord/pull/100	573261561	MDExOlB1bGxSZXF1ZXN0MzgxODI1NDkw	100	Bump rake from 12.3.2 to 13.0.1	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2020-02-29T09:30:10Z	2020-02-29T09:30:11Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/100', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/100', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/100.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/100.patch'}	Bumps [rake](https://github.com/ruby/rake) from 12.3.2 to 13.0.1. <details> <summary>Changelog</summary> Sourced from [rake's changelog](https://github.com/ruby/rake/blob/master/History.rdoc). > === 13.0.1 > > ==== Bug fixes > > * Fixed bug: Reenabled task raises previous exception on second invokation > Pull Request [#271](https://github-redirect.dependabot.com/ruby/rake/issues/271) by thorsteneckel > * Fix an incorrectly resolved arg pattern > Pull Request [#327](https://github-redirect.dependabot.com/ruby/rake/issues/327) by mjbellantoni > > === 13.0.0 > > ==== Enhancements > > * Follows recent changes on keyword arguments in ruby 2.7. > Pull Request [#326](https://github-redirect.dependabot.com/ruby/rake/issues/326) by nobu > * Make `PackageTask` be able to omit parent directory while packing files > Pull Request [#310](https://github-redirect.dependabot.com/ruby/rake/issues/310) by tonytonyjan > * Add order only dependency > Pull Request [#269](https://github-redirect.dependabot.com/ruby/rake/issues/269) by take-cheeze > > ==== Compatibility changes > > * Drop old ruby versions(< 2.2) > > === 12.3.3 > > ==== Bug fixes > > * Use the application's name in error message if a task is not found. > Pull Request [#303](https://github-redirect.dependabot.com/ruby/rake/issues/303) by tmatilai > > ==== Enhancements: > > * Use File.open explicitly. </details> <details> <summary>Commits</summary> - [`c8251e2`](https://github.com/ruby/rake/commit/c8251e2299616d8126e4ac7426e0bb87df7e6922) Bump version to 13.0.1 - [`8edd860`](https://github.com/ruby/rake/commit/8edd860cd0fc9035bda472ef45110a40889b9627) Fixed build failure of the latest GitHub Actions - [`b6e2a66`](https://github.com/ruby/rake/commit/b6e2a66689e7ac2f39597283dc2276bd082fa279) Merge pull request [#271](https://github-redirect.dependabot.com/ruby/rake/issues/271) from thorsteneckel/bugfix-reenable_invocation_exception - [`985abff`](https://github.com/ruby/rake/commit/985abffa9954d21790831d9626d9c38b24a94199) Merge pull request [#327](https://github-redirect.dependabot.com/ruby/rake/issues/327) from mjbellantoni/mjb-order-only-arg-fix - [`4a90acb`](https://github.com/ruby/rake/commit/4a90acb8923f0ea1f7acf50b8d529281a56f170d) Merge pull request [#329](https://github-redirect.dependabot.com/ruby/rake/issues/329) from jeremyevans/skip-taint-test-on-2.7 - [`4dc6282`](https://github.com/ruby/rake/commit/4dc6282eb24c0117a012d07744ea1bbcae1b3a79) Skip a taint test on Ruby 2.7 - [`a08b697`](https://github.com/ruby/rake/commit/a08b6975a5568799e1d053b7c56ef40d28528d97) Merge pull request [#328](https://github-redirect.dependabot.com/ruby/rake/issues/328) from orien/gem-metadata - [`c3953d4`](https://github.com/ruby/rake/commit/c3953d4b2935895e1bb4596c435653d3a865711a) Add project metadata to the gemspec - [`46a8f7c`](https://github.com/ruby/rake/commit/46a8f7cbd4072431eb16e8e0858d556797ce677e) Update comments to reflect the current state - [`00aacdc`](https://github.com/ruby/rake/commit/00aacdcf70309a17de2580fb380ed29f2d0fb6f7) Fix an incorrectly resolved arg pattern - Additional commits viewable in [compare view](https://github.com/ruby/rake/compare/v12.3.2...v13.0.1) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rake&package-manager=bundler&previous-version=12.3.2&new-version=13.0.1)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
13	11	https://api.github.com/repos/comorebi-notes/rechord/issues/99	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/99/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/99/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/99/events	https://github.com/comorebi-notes/rechord/pull/99	572989727	MDExOlB1bGxSZXF1ZXN0MzgxNTgyODMx	99	Bump puma from 3.12.0 to 3.12.3	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	closed	False	[]	1	2020-02-28T20:33:03Z	2020-03-04T07:35:51Z	2020-03-04T07:35:49Z	NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/99', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/99', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/99.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/99.patch'}	Bumps [puma](https://github.com/puma/puma) from 3.12.0 to 3.12.3. <details> <summary>Release notes</summary> Sourced from [puma's releases](https://github.com/puma/puma/releases). > v3.12.1 </details> <details> <summary>Changelog</summary> Sourced from [puma's changelog](https://github.com/puma/puma/blob/master/History.md). > ## 4.3.2 and 3.12.3 / 2020-02-27 > > * Security > * Fix: Prevent HTTP Response splitting via CR/LF in header values. CVE-2020-5247. > > ## 4.3.1 and 3.12.2 / 2019-12-05 > > * Security > * Fix: a poorly-behaved client could use keepalive requests to monopolize Puma's reactor and create a denial of service attack. CVE-2019-16770. > > ## 4.3.0 / 2019-11-07 > > * Features > * Strip whitespace at end of HTTP headers ([#2010](https://github-redirect.dependabot.com/puma/puma/issues/2010)) > * Optimize HTTP parser for JRuby ([#2012](https://github-redirect.dependabot.com/puma/puma/issues/2012)) > * Add SSL support for the control app and cli ([#2046](https://github-redirect.dependabot.com/puma/puma/issues/2046), [#2052](https://github-redirect.dependabot.com/puma/puma/issues/2052)) > > * Bugfixes > * Fix Errno::EINVAL when SSL is enabled and browser rejects cert ([#1564](https://github-redirect.dependabot.com/puma/puma/issues/1564)) > * Fix pumactl defaulting puma to development if an environment was not specified ([#2035](https://github-redirect.dependabot.com/puma/puma/issues/2035)) > * Fix closing file stream when reading pid from pidfile ([#2048](https://github-redirect.dependabot.com/puma/puma/issues/2048)) > * Fix a typo in configuration option `--extra_runtime_dependencies` ([#2050](https://github-redirect.dependabot.com/puma/puma/issues/2050)) > > ## 4.2.1 / 2019-10-07 > > * 3 bugfixes > * Fix socket activation of systemd (pre-existing) unix binder files ([#1842](https://github-redirect.dependabot.com/puma/puma/issues/1842), [#1988](https://github-redirect.dependabot.com/puma/puma/issues/1988)) > * Deal with multiple calls to bind correctly ([#1986](https://github-redirect.dependabot.com/puma/puma/issues/1986), [#1994](https://github-redirect.dependabot.com/puma/puma/issues/1994), [#2006](https://github-redirect.dependabot.com/puma/puma/issues/2006)) > * Accepts symbols for `verify_mode` ([#1222](https://github-redirect.dependabot.com/puma/puma/issues/1222)) > > ## 4.2.0 / 2019-09-23 > > * 6 features > * Pumactl has a new -e environment option and reads `config/puma/<environment>.rb` config files ([#1885](https://github-redirect.dependabot.com/puma/puma/issues/1885)) > * Semicolons are now allowed in URL paths (MRI only), useful for Angular or Redmine ([#1934](https://github-redirect.dependabot.com/puma/puma/issues/1934)) > * Allow extra dependencies to be defined when using prune_bundler ([#1105](https://github-redirect.dependabot.com/puma/puma/issues/1105)) > * Puma now reports the correct port when binding to port 0, also reports other listeners when binding to localhost ([#1786](https://github-redirect.dependabot.com/puma/puma/issues/1786)) > * Sending SIGINFO to any Puma worker now prints currently active threads and their backtraces ([#1320](https://github-redirect.dependabot.com/puma/puma/issues/1320)) > * Puma threads all now have their name set on Ruby 2.3+ ([#1968](https://github-redirect.dependabot.com/puma/puma/issues/1968)) > * 4 bugfixes > * Fix some misbehavior with phased restart and externally SIGTERMed workers ([#1908](https://github-redirect.dependabot.com/puma/puma/issues/1908), [#1952](https://github-redirect.dependabot.com/puma/puma/issues/1952)) > * Fix socket closing on error ([#1941](https://github-redirect.dependabot.com/puma/puma/issues/1941)) > * Removed unnecessary SIGINT trap for JRuby that caused some race conditions ([#1961](https://github-redirect.dependabot.com/puma/puma/issues/1961)) > * Fix socket files being left around after process stopped ([#1970](https://github-redirect.dependabot.com/puma/puma/issues/1970)) > * Absolutely thousands of lines of test improvements and fixes thanks to [@MSP-Greg](https://github.com/MSP-Greg) > > ## 4.1.1 / 2019-09-05 > > * 3 bugfixes > * Revert our attempt to not dup STDOUT/STDERR ([#1946](https://github-redirect.dependabot.com/puma/puma/issues/1946)) ></tr></table> ... (truncated) </details> <details> <summary>Commits</summary> - [`2ff978f`](https://github.com/puma/puma/commit/2ff978fa9f27fd3fcd11ddf774d684fda250c46e) 3.12.3 - [`3a2b918`](https://github.com/puma/puma/commit/3a2b9186b7ca31c9cfda8c88b824618e9c3d842c) Test backport - [`37928cb`](https://github.com/puma/puma/commit/37928cbe5a80a3541d390c60cf131f9c344e77f6) 4.3.2 and 3.12.3 release notes - [`1b17e85`](https://github.com/puma/puma/commit/1b17e85a06183cd169b41ca719928c26d44a6e03) Merge pull request from GHSA-84j7-475p-hp8v - [`bb29fc7`](https://github.com/puma/puma/commit/bb29fc7fe8f822d0f72706a1ae86e49af3476777) 3.12.2 - [`058df12`](https://github.com/puma/puma/commit/058df12b78e7d1ec661c3b8777f26a736c26675b) 4.3.1 and 4.2.1 release notes - [`06053e6`](https://github.com/puma/puma/commit/06053e60908074bb38293d4449ea261cb009b53e) Merge pull request from GHSA-7xx3-m584-x994 - [`461c9e9`](https://github.com/puma/puma/commit/461c9e99783e5f69e632acedae83be55017d5fe4) Docs files - [`7e2c88d`](https://github.com/puma/puma/commit/7e2c88d4131a1a70f551287e49b8f527d29d0469) v3.12.1 - [`36964ec`](https://github.com/puma/puma/commit/36964ec42982d7b3205760bc2bf9ccf3fec8af69) Merge pull request [#1700](https://github-redirect.dependabot.com/puma/puma/issues/1700) from schneems/schneems/fix-puma-rack-handler-config - Additional commits viewable in [compare view](https://github.com/puma/puma/compare/v3.12.0...v3.12.3) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=puma&package-manager=bundler&previous-version=3.12.0&new-version=3.12.3)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
14	12	https://api.github.com/repos/comorebi-notes/rechord/issues/98	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/98/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/98/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/98/events	https://github.com/comorebi-notes/rechord/pull/98	570392843	MDExOlB1bGxSZXF1ZXN0Mzc5NDMyNTYw	98	Bump nokogiri from 1.10.7 to 1.10.8	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2020-02-25T08:23:54Z	2020-02-25T08:23:55Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/98', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/98', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/98.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/98.patch'}	Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.7 to 1.10.8. <details> <summary>Release notes</summary> Sourced from [nokogiri's releases](https://github.com/sparklemotion/nokogiri/releases). > ## 1.10.8 / 2020-02-10 > > ### Security > > [MRI] Pulled in upstream patch from libxml that addresses CVE-2020-7595. Full details are available in [#1992](https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1992). Note that this patch is not yet (as of 2020-02-10) in an upstream release of libxml. > > </details> <details> <summary>Changelog</summary> Sourced from [nokogiri's changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md). > # Nokogiri (1.10.7) > --- > warnings: [] > nokogiri: 1.10.7 > ruby: > version: 2.7.0 > platform: x86_64-linux > description: ruby 2.7.0p0 (2019-12-25 revision 647ee6f091) [x86_64-linux] > engine: ruby > libxml: > binding: extension > source: packaged > libxml2_path: "/home/flavorjones/.rvm/gems/ruby-2.7.0/gems/nokogiri-1.10.7/ports/x86_64-pc-linux-gnu/libxml2/2.9.10" > libxslt_path: "/home/flavorjones/.rvm/gems/ruby-2.7.0/gems/nokogiri-1.10.7/ports/x86_64-pc-linux-gnu/libxslt/1.1.34" > libxml2_patches: > - 0001-Revert-Do-not-URI-escape-in-server-side-includes.patch > - 0002-Remove-script-macro-support.patch > - 0003-Update-entities-to-remove-handling-of-ssi.patch > - 0004-libxml2.la-is-in-top_builddir.patch > libxslt_patches: [] > compiled: 2.9.10 > loaded: 2.9.10 > ``` > > but now looks like: > > ``` > # Nokogiri (1.11.0) > --- > warnings: [] > nokogiri: 1.11.0 > ruby: > version: 2.7.0 > platform: x86_64-linux > description: ruby 2.7.0p0 (2019-12-25 revision 647ee6f091) [x86_64-linux] > engine: ruby > libxml: > source: packaged > patches: > - 0001-Revert-Do-not-URI-escape-in-server-side-includes.patch > - 0002-Remove-script-macro-support.patch > - 0003-Update-entities-to-remove-handling-of-ssi.patch > - 0004-libxml2.la-is-in-top_builddir.patch > compiled: 2.9.10 > loaded: 2.9.10 > libxslt: > source: packaged > patches: [] > compiled: 1.1.34 > loaded: 1.1.34 ></tr></table> ... (truncated) </details> <details> <summary>Commits</summary> - [`6ce10d1`](https://github.com/sparklemotion/nokogiri/commit/6ce10d15d7af6ad65813a495eaf168f73eba211c) version bump to v1.10.8 - [`2320f5b`](https://github.com/sparklemotion/nokogiri/commit/2320f5bd6319dca9c68d85bbf41629bbf8052a49) update CHANGELOG for v1.10.8 - [`4a77fdb`](https://github.com/sparklemotion/nokogiri/commit/4a77fdb789aefed7ca65c7c7f57ad4dca0d3b209) remove patches from the hoe Manifest - [`570b6cb`](https://github.com/sparklemotion/nokogiri/commit/570b6cbc5fbc5ee7ef969332c587b951ae35bcd0) update to use rake-compiler ~1.1.0 - [`2cdb68e`](https://github.com/sparklemotion/nokogiri/commit/2cdb68e95aa075ac36a08d4d82d9b410a950a051) backport libxml2 patch for CVE-2020-7595 - See full diff in [compare view](https://github.com/sparklemotion/nokogiri/compare/v1.10.7...v1.10.8) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=nokogiri&package-manager=bundler&previous-version=1.10.7&new-version=1.10.8)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
15	13	https://api.github.com/repos/comorebi-notes/rechord/issues/97	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/97/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/97/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/97/events	https://github.com/comorebi-notes/rechord/pull/97	555942823	MDExOlB1bGxSZXF1ZXN0MzY3NzkzNzc4	97	[リリース]	{'login': 'comorebi-notes', 'id': 16236972, 'node_id': 'MDQ6VXNlcjE2MjM2OTcy', 'avatar_url': 'https://avatars0.githubusercontent.com/u/16236972?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/comorebi-notes', 'html_url': 'https://github.com/comorebi-notes', 'followers_url': 'https://api.github.com/users/comorebi-notes/followers', 'following_url': 'https://api.github.com/users/comorebi-notes/following{/other_user}', 'gists_url': 'https://api.github.com/users/comorebi-notes/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/comorebi-notes/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/comorebi-notes/subscriptions', 'organizations_url': 'https://api.github.com/users/comorebi-notes/orgs', 'repos_url': 'https://api.github.com/users/comorebi-notes/repos', 'events_url': 'https://api.github.com/users/comorebi-notes/events{/privacy}', 'received_events_url': 'https://api.github.com/users/comorebi-notes/received_events', 'type': 'User', 'site_admin': False}	[]	closed	False	[]	0	2020-01-28T02:12:23Z	2020-01-28T02:12:31Z	2020-01-28T02:12:30Z	OWNER	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/97', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/97', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/97.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/97.patch'}	* Facebook の API をバージョンアップ
16	14	https://api.github.com/repos/comorebi-notes/rechord/issues/96	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/96/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/96/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/96/events	https://github.com/comorebi-notes/rechord/pull/96	543284801	MDExOlB1bGxSZXF1ZXN0MzU3NTg1OTM2	96	Bump handlebars from 4.0.12 to 4.5.3	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	closed	False	[]	1	2019-12-28T21:51:51Z	2020-09-05T05:39:49Z	2020-09-05T05:39:48Z	NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/96', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/96', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/96.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/96.patch'}	Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.0.12 to 4.5.3. <details> <summary>Changelog</summary> Sourced from [handlebars's changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md). > ## v4.5.3 - November 18th, 2019 > Bugfixes: > > - fix: add "no-prototype-builtins" eslint-rule and fix all occurences - f7f05d7 > - fix: add more properties required to be enumerable - 1988878 > > Chores / Build: > - fix: use !== 0 instead of != 0 - c02b05f > - add chai and dirty-chai and sinon, for cleaner test-assertions and spies, > deprecate old assertion-methods - 93e284e, 886ba86, 0817dad, 93516a0 > > Security: > > - The properties `__proto__`, `__defineGetter__`, `__defineSetter__` and `__lookupGetter__` > have been added to the list of "properties that must be enumerable". > If a property by that name is found and not enumerable on its parent, > it will silently evaluate to `undefined`. This is done in both the compiled template and the "lookup"-helper. > This will prevent new Remote-Code-Execution exploits that have been > published recently. > > Compatibility notes: > > - Due to the security-fixes. The semantics of the templates using > `__proto__`, `__defineGetter__`, `__defineSetter__` and `__lookupGetter__` in the respect that those expression now return > `undefined` rather than their actual value from the proto. > - The semantics have not changed in cases where the properties are enumerable, as in: > > ```js > { > __proto__: 'some string' > } > ``` > > - The change may be breaking in that respect, but we still only > increase the patch-version, because the incompatible use-cases > are not intended, undocumented and far less important than fixing > Remote-Code-Execution exploits on existing systems. > > > > [Commits](https://github.com/wycats/handlebars.js/compare/v4.5.2...v4.5.3) > > ## v4.5.2 - November 13th, 2019 > # Bugfixes > > - fix: use String(field) in lookup when checking for "constructor" - d541378 > - test: add fluent API for testing Handlebars - c2ac79c > > Compatibility notes: > - no incompatibility are to be expected ></tr></table> ... (truncated) </details> <details> <summary>Commits</summary> - [`c819c8b`](https://github.com/wycats/handlebars.js/commit/c819c8b533934d2ac18001d7eb27a3205b00c2f3) v4.5.3 - [`827c9d0`](https://github.com/wycats/handlebars.js/commit/827c9d0747bef7d7f89829779523b6b2dcf3051d) Update release notes - [`f7f05d7`](https://github.com/wycats/handlebars.js/commit/f7f05d7558e674856686b62a00cde5758f3b7a08) fix: add "no-prototype-builtins" eslint-rule and fix all occurences - [`1988878`](https://github.com/wycats/handlebars.js/commit/198887808780bbef9dba67a8af68ece091d5baa7) fix: add more properties required to be enumerable - [`886ba86`](https://github.com/wycats/handlebars.js/commit/886ba86c2f9cc71b7d99b9018fbe2d72a57085cc) test/chore: add chai/expect and sinon to "runtime"-environment - [`0817dad`](https://github.com/wycats/handlebars.js/commit/0817dad7e72c51d07f7700547d0c69aa79a4976b) test: add sinon as global variable to eslint in the specs - [`93516a0`](https://github.com/wycats/handlebars.js/commit/93516a0b07026ebd23c84fddf270a0c8b570bc59) test: add sinon.js for spies, deprecate current assertions - [`93e284e`](https://github.com/wycats/handlebars.js/commit/93e284ed9be1e38c5e6945f15af1ccd689f2ada6) chore: add chai and dirty-chai for better test assertions - [`c02b05f`](https://github.com/wycats/handlebars.js/commit/c02b05fa819f46bb66c878bebc6e8006408ebd5c) fix: use !== 0 instead of != 0 - [`8de121d`](https://github.com/wycats/handlebars.js/commit/8de121d21c88a6ab877e3a0eec9daaac483f3bf0) v4.5.2 - Additional commits viewable in [compare view](https://github.com/wycats/handlebars.js/compare/v4.0.12...v4.5.3) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=handlebars&package-manager=npm_and_yarn&previous-version=4.0.12&new-version=4.5.3)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
17	15	https://api.github.com/repos/comorebi-notes/rechord/issues/95	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/95/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/95/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/95/events	https://github.com/comorebi-notes/rechord/pull/95	540035772	MDExOlB1bGxSZXF1ZXN0MzU0OTExOTEz	95	Bump rack from 2.0.7 to 2.0.8	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	closed	False	[]	1	2019-12-19T02:27:52Z	2020-06-25T01:50:18Z	2020-06-25T01:50:16Z	NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/95', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/95', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/95.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/95.patch'}	Bumps [rack](https://github.com/rack/rack) from 2.0.7 to 2.0.8. <details> <summary>Changelog</summary> Sourced from [rack's changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md). > # Changelog > > All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference [Keep A Changelog](https://keepachangelog.com/en/1.0.0/). > > ## Unreleased > > _Note: There are many unreleased changes in Rack (`master` is around 300 commits ahead of `2-0-stable`), and below is not an exhaustive list. If you would like to help out and document some of the unreleased changes, PRs are welcome._ > > ### Added > > ### Changed > > - Use `Time#httpdate` format for Expires, as proposed by RFC 7231. ([@nanaya](https://github.com/nanaya)) > - Make `Utils.status_code` raise an error when the status symbol is invalid instead of `500`. > - Rename `Request::SCHEME_WHITELIST` to `Request::ALLOWED_SCHEMES`. > - Make `Multipart::Parser.get_filename` accept files with `+` in their name. > - Add Falcon to the default handler fallbacks. ([@ioquatix](https://github.com/ioquatix)) > - Update codebase to avoid string mutations in preparation for `frozen_string_literals`. ([@pat](https://github.com/pat)) > - Change `MockRequest#env_for` to rely on the input optionally responding to `#size` instead of `#length`. ([@janko](https://github.com/janko)) > - Rename `Rack::File` -> `Rack::Files` and add deprecation notice. ([@postmodern](https://github.com/postmodern)). > > ### Removed > > ### Documentation > > - Update broken example in `Session::Abstract::ID` documentation. ([tonytonyjan](https://github.com/tonytonyjan)) > - Add Padrino to the list of frameworks implmenting Rack. ([@wikimatze](https://github.com/wikimatze)) > - Remove Mongrel from the suggested server options in the help output. ([@tricknotes](https://github.com/tricknotes)) > - Replace `HISTORY.md` and `NEWS.md` with `CHANGELOG.md`. ([@twitnithegirl](https://github.com/twitnithegirl)) > - Backfill `CHANGELOG.md` from 2.0.1 to 2.0.7 releases. ([@drenmi](https://github.com/Drenmi)) </details> <details> <summary>Commits</summary> - [`e7ee459`](https://github.com/rack/rack/commit/e7ee459546d217f32afc83e0b168c5eb9f95d784) Bumping version - [`f1a79b2`](https://github.com/rack/rack/commit/f1a79b208c4ea877420beee62646e0b146402bd0) Introduce a new base class to avoid breaking when upgrading - [`5b1cab6`](https://github.com/rack/rack/commit/5b1cab667270d7ad1a4d2088adf5ff4eb9845496) Add a version prefix to the private id to make easier to migrate old values - [`1e96e0f`](https://github.com/rack/rack/commit/1e96e0f197777458216bb3dfdbcce57a0bbba0c5) Fallback to the public id when reading the session in the pool adapter - [`3ba123d`](https://github.com/rack/rack/commit/3ba123d278f1085ba78fc000df954e507af2d622) Also drop the session with the public id when destroying sessions - [`6a04bbf`](https://github.com/rack/rack/commit/6a04bbf6b742c305d3a56f9bd6242e6c943cc2ad) Fallback to the legacy id when the new id is not found - [`dc45a06`](https://github.com/rack/rack/commit/dc45a06b339c707c1f658c123ec7216151878f7a) Add the private id - [`73a5f79`](https://github.com/rack/rack/commit/73a5f79f6854eed81ecc3e5fb9f8154e967ccc49) revert conditionals to master - [`4e32262`](https://github.com/rack/rack/commit/4e322629e0c6698c75a3fb541a42571f8543c34c) remove NullSession - [`1c7e3b2`](https://github.com/rack/rack/commit/1c7e3b259f0741c869dcfbabeb3e0670c4d3f848) remove \|\| raise and get closer to master - Additional commits viewable in [compare view](https://github.com/rack/rack/compare/2.0.7...2.0.8) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rack&package-manager=bundler&previous-version=2.0.7&new-version=2.0.8)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
18	16	https://api.github.com/repos/comorebi-notes/rechord/issues/94	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/94/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/94/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/94/events	https://github.com/comorebi-notes/rechord/pull/94	538658453	MDExOlB1bGxSZXF1ZXN0MzUzNzY3ODE1	94	Bump excon from 0.62.0 to 0.71.0	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2019-12-16T21:06:06Z	2019-12-16T21:06:07Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/94', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/94', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/94.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/94.patch'}	Bumps [excon](https://github.com/excon/excon) from 0.62.0 to 0.71.0. <details> <summary>Changelog</summary> Sourced from [excon's changelog](https://github.com/excon/excon/blob/master/changelog.txt). > 0.71.0 2019-12-12 > ================= > > fix for leftover data with interrupted persistent connections > > 0.70.0 2019-12-02 > ================= > > Update bundled certificates > > > 0.69.1 2019-11-21 > ================= > > Fix mistake in proxy connection error handling > > 0.69.0 2019-11-21 > ================= > > Raise better proxy connection errors > > 0.68.0 2019-10-25 > ================= > > Updated bundled certs > > 0.67.0 2019-09-24 > ================= > > Properly redact user/pass info from proxy credentials > Update bundled certs > > 0.66.0 2019-08-06 > ================= > > Add remote_ip to datum, enabling usage in middleware > redirect follower now raises after following too many redirects (default 10) > fixed stub clearing in tests to avoid race conditions > > 0.65.0 2019-07-22 > ================= > > fix yardoc formatting > fix creating Proc without a block > reduce/refine gem file contents > update bundled certs > readd bundled certs to gem file contents > > 0.64.0 2019-04-15 > ================= ></tr></table> ... (truncated) </details> <details> <summary>Commits</summary> - [`1149d44`](https://github.com/excon/excon/commit/1149d44d921660bcde5e21671e6a10346d177f33) v0.71.0 - [`ccb57d7`](https://github.com/excon/excon/commit/ccb57d7a422f020dc74f1de4e8fb505ab46d8a29) fix for leftover data with interrupted persistent connections - [`f8de8cf`](https://github.com/excon/excon/commit/f8de8cf63e789ff9329a13756bfb51364abe107a) v0.70.0 - [`93f4a21`](https://github.com/excon/excon/commit/93f4a214271df3b543ac4f4d1444d80ea2d75a01) v0.69.1 - [`e89bbb7`](https://github.com/excon/excon/commit/e89bbb718bb67972e2e08109fb4c1edd09568cd5) Merge pull request [#709](https://github-redirect.dependabot.com/excon/excon/issues/709) from jasquat/fix_response_status_check - [`5647437`](https://github.com/excon/excon/commit/56474377bea9fdda2e07f52c169f4500e8c2be36) fixed response status check when making a request with a valid proxy is set - [`f769176`](https://github.com/excon/excon/commit/f7691760969e74b6facaedd0a80ccef01709d428) v0.69.0 - [`20c0748`](https://github.com/excon/excon/commit/20c0748f2cfdd78a5f5b23057ad538240c372344) define ProxyConnectionError - [`f44106a`](https://github.com/excon/excon/commit/f44106afd686d6eda076c0b92182f3df60e37f34) raise on failed proxy connect - [`d7ed5fe`](https://github.com/excon/excon/commit/d7ed5fe894fb696fddb5f28c454c949d3c1116d9) be thorough in unsubscribing to notifications in instrumentation tests - Additional commits viewable in [compare view](https://github.com/excon/excon/compare/v0.62.0...v0.71.0) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=excon&package-manager=bundler&previous-version=0.62.0&new-version=0.71.0)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
19	17	https://api.github.com/repos/comorebi-notes/rechord/issues/93	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/93/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/93/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/93/events	https://github.com/comorebi-notes/rechord/pull/93	534441224	MDExOlB1bGxSZXF1ZXN0MzUwMzM4ODgz	93	リリース	{'login': 'comorebi-notes', 'id': 16236972, 'node_id': 'MDQ6VXNlcjE2MjM2OTcy', 'avatar_url': 'https://avatars0.githubusercontent.com/u/16236972?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/comorebi-notes', 'html_url': 'https://github.com/comorebi-notes', 'followers_url': 'https://api.github.com/users/comorebi-notes/followers', 'following_url': 'https://api.github.com/users/comorebi-notes/following{/other_user}', 'gists_url': 'https://api.github.com/users/comorebi-notes/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/comorebi-notes/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/comorebi-notes/subscriptions', 'organizations_url': 'https://api.github.com/users/comorebi-notes/orgs', 'repos_url': 'https://api.github.com/users/comorebi-notes/repos', 'events_url': 'https://api.github.com/users/comorebi-notes/events{/privacy}', 'received_events_url': 'https://api.github.com/users/comorebi-notes/received_events', 'type': 'User', 'site_admin': False}	[]	closed	False	[]	0	2019-12-07T19:18:02Z	2019-12-07T19:18:07Z	2019-12-07T19:18:07Z	OWNER	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/93', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/93', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/93.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/93.patch'}	* Herokuに移行 * 日本語のソート順が正しくない不具合を修正
20	18	https://api.github.com/repos/comorebi-notes/rechord/issues/92	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/92/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/92/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/92/events	https://github.com/comorebi-notes/rechord/pull/92	534403234	MDExOlB1bGxSZXF1ZXN0MzUwMzExNzA1	92	Bump rubyzip from 1.2.2 to 1.3.0	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2019-12-07T13:39:55Z	2019-12-07T13:39:56Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/92', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/92', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/92.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/92.patch'}	Bumps [rubyzip](https://github.com/rubyzip/rubyzip) from 1.2.2 to 1.3.0. <details> <summary>Release notes</summary> Sourced from [rubyzip's releases](https://github.com/rubyzip/rubyzip/releases). > ## v1.3.0 > Security > > - Add `validate_entry_sizes` option so that callers can trust an entry's reported size when using `extract` [#403](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/403) > - This option defaults to `false` for backward compatibility in this release, but you are strongly encouraged to set it to `true`. It will default to `true` in rubyzip 2.0. > > New Feature > > - Add `add_stored` method to simplify adding entries without compression [#366](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/366) > > Tooling / Documentation > > - Add more gem metadata links [#402](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/402) > > ## v1.2.4 > - Do not rewrite zip files opened with `open_buffer` that have not changed [#360](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/360) > > Tooling / Documentation > > - Update `example_recursive.rb` in README [#397](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/397) > - Hold CI at `trusty` for now, automatically pick the latest ruby patch version, use rbx-4 and hold jruby at 9.1 [#399](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/399) > > ## v1.2.3 > * Allow tilde in zip entry names [#391](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/391) (fixes regression in 1.2.2 from [#376](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/376)) > * Support frozen string literals in more files [#390](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/390) > * Require `pathname` explicitly [#388](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/388) (fixes regression in 1.2.2 from [#376](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/376)) > > Tooling / Documentation: > > * CI updates [#392](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/392), [#394](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/394) > * Bump supported ruby versions and add 2.6 > * JRuby failures are no longer ignored (reverts [#375](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/375) / part of [#371](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/371)) > * Add changelog entry that was missing for last release [#387](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/387) > * Comment cleanup [#385](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/385) > > Since the GitHub release information for 1.2.2 is missing, I will also include it here: > > ### 1.2.2 > > NB: This release drops support for extracting symlinks, because there was no clear way to support this securely. See https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/376#issue-210954555 for details. > > * Fix CVE-2018-1000544 [#376](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/376) / [#371](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/371) > * Fix NoMethodError: undefined method `glob' [#363](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/363) > * Fix handling of stored files (i.e. files not using compression) with general purpose bit 3 set [#358](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/358) > * Fix `close` on StringIO-backed zip file [#353](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/353) > * Add `Zip.force_entry_names_encoding` option [#340](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/340) > * Update rubocop, apply auto-fixes, and fix regressions caused by said auto-fixes [#332](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/332), [#355](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/355) > * Save temporary files to temporary directory (rather than current directory) [#325](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/325) > > Tooling / Documentation: ></tr></table> ... (truncated) </details> <details> <summary>Changelog</summary> Sourced from [rubyzip's changelog](https://github.com/rubyzip/rubyzip/blob/master/Changelog.md). > # 1.3.0 (2019-09-25) > > Security > > - Add `validate_entry_sizes` option so that callers can trust an entry's reported size when using `extract` [#403](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/403) > - This option defaults to `false` for backward compatibility in this release, but you are strongly encouraged to set it to `true`. It will default to `true` in rubyzip 2.0. > > New Feature > > - Add `add_stored` method to simplify adding entries without compression [#366](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/366) > > Tooling / Documentation > > - Add more gem metadata links [#402](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/402) > > # 1.2.4 (2019-09-06) > > - Do not rewrite zip files opened with `open_buffer` that have not changed [#360](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/360) > > Tooling / Documentation > > - Update `example_recursive.rb` in README [#397](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/397) > - Hold CI at `trusty` for now, automatically pick the latest ruby patch version, use rbx-4 and hold jruby at 9.1 [#399](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/399) > > # 1.2.3 > > - Allow tilde in zip entry names [#391](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/391) (fixes regression in 1.2.2 from [#376](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/376)) > - Support frozen string literals in more files [#390](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/390) > - Require `pathname` explicitly [#388](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/388) (fixes regression in 1.2.2 from [#376](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/376)) > > Tooling / Documentation: > > - CI updates [#392](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/392), [#394](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/394) > - Bump supported ruby versions and add 2.6 > - JRuby failures are no longer ignored (reverts [#375](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/375) / part of [#371](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/371)) > - Add changelog entry that was missing for last release [#387](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/387) > - Comment cleanup [#385](https://github-redirect.dependabot.com/rubyzip/rubyzip/pull/385) </details> <details> <summary>Commits</summary> - [`e79d9ea`](https://github.com/rubyzip/rubyzip/commit/e79d9ea2922be12db121c20f5dc55bba8a35418a) Merge pull request [#407](https://github-redirect.dependabot.com/rubyzip/rubyzip/issues/407) from rubyzip/v1-3-0 - [`7c65e1e`](https://github.com/rubyzip/rubyzip/commit/7c65e1e3595031392f1050b81fb2b95b0f2ee764) Bump version to 1.3.0 - [`d65fe7b`](https://github.com/rubyzip/rubyzip/commit/d65fe7bd283ec94f9d6dc7605f61a6b0dd00f55e) Merge pull request [#403](https://github-redirect.dependabot.com/rubyzip/rubyzip/issues/403) from rubyzip/check-size - [`97cb6ae`](https://github.com/rubyzip/rubyzip/commit/97cb6aefe6d12bd2429d7a2e119ccb26f259d71d) Warn when an entry size is invalid - [`7849f73`](https://github.com/rubyzip/rubyzip/commit/7849f7362ab0cd23d5730ef8b6f2c39252da2285) Default validate_entry_sizes to false for 1.3 release - [`4167f0c`](https://github.com/rubyzip/rubyzip/commit/4167f0ce67e42b082605bca75c7bdfd01eb23804) Validate entry sizes when extracting - [`94b7fa2`](https://github.com/rubyzip/rubyzip/commit/94b7fa276992933592d69eb6bb17fc09105f8395) [ci skip] Update changelog - [`93505ca`](https://github.com/rubyzip/rubyzip/commit/93505ca16f0444bdb04f88f4b8f820ae5d628353) Check expected entry size in add_stored test - [`6619bf3`](https://github.com/rubyzip/rubyzip/commit/6619bf3a1d779f092481d37d84ea280e3c6f764f) Merge pull request [#366](https://github-redirect.dependabot.com/rubyzip/rubyzip/issues/366) from hainesr/add-stored - [`ecb2776`](https://github.com/rubyzip/rubyzip/commit/ecb277621852589ecc1557f228665a5338ac0809) Zip::File.add_stored() to add uncompressed files. - Additional commits viewable in [compare view](https://github.com/rubyzip/rubyzip/compare/v1.2.2...v1.3.0) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rubyzip&package-manager=bundler&previous-version=1.2.2&new-version=1.3.0)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
21	19	https://api.github.com/repos/comorebi-notes/rechord/issues/91	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/91/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/91/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/91/events	https://github.com/comorebi-notes/rechord/pull/91	534403211	MDExOlB1bGxSZXF1ZXN0MzUwMzExNjg3	91	Bump devise from 4.6.1 to 4.7.1	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	open	False	[]	0	2019-12-07T13:39:41Z	2019-12-07T13:39:42Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/91', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/91', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/91.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/91.patch'}	Bumps [devise](https://github.com/plataformatec/devise) from 4.6.1 to 4.7.1. <details> <summary>Changelog</summary> Sourced from [devise's changelog](https://github.com/plataformatec/devise/blob/master/CHANGELOG.md). > ### 4.7.1 - 2019-09-06 > > * bug fixes > * Fix an edge case where records with a blank `confirmation_token` could be confirmed (by [@tegon](https://github.com/tegon)) > * Fix typo inside `update_needs_confirmation` i18n key (by [@lslm](https://github.com/lslm)) > > ### 4.7.0 - 2019-08-19 > > * enhancements > * Support Rails 6.0 > * Update CI to rails 6.0.0.beta3 (by [@tunnes](https://github.com/tunnes)) > * refactor method name to be more consistent (by [@saiqulhaq](https://github.com/saiqulhaq)) > * Fix rails 6.0.rc1 email uniqueness validation deprecation warning (by [@Vasfed](https://github.com/Vasfed)) > > * bug fixes > * Add `autocomplete="new-password"` to `password_confirmation` fields (by [@ferrl](https://github.com/ferrl)) > * Fix rails_51_and_up? method for Rails 6.rc1 (by [@igorkasyanchuk](https://github.com/igorkasyanchuk)) > > ### 4.6.2 - 2019-03-26 > > * bug fixes > * Revert "Set `encrypted_password` to `nil` when `password` is set to `nil`" since it broke backward compatibility with existing applications. See more on https://github-redirect.dependabot.com/plataformatec/devise/issues/5033#issuecomment-476386275 (by [@mracos](https://github.com/mracos)) </details> <details> <summary>Commits</summary> - [`098345a`](https://github.com/plataformatec/devise/commit/098345aace53d4ddf88e04f1eb2680e2676e8c28) Prepare for version `4.7.1` - [`caa1a55`](https://github.com/plataformatec/devise/commit/caa1a55d17f5139347be6808954c492b469d3da4) Update CHANGELOG.md [ci skip] - [`fee43f3`](https://github.com/plataformatec/devise/commit/fee43f3c11e176c53c5c3bfda7fd2e97c4c912be) Always return an error when `confirmation_token` is blank ([#5132](https://github-redirect.dependabot.com/plataformatec/devise/issues/5132)) - [`fad6074`](https://github.com/plataformatec/devise/commit/fad60747d57425c164d958f8359acab1b4c95ccb) Merge pull request [#5125](https://github-redirect.dependabot.com/plataformatec/devise/issues/5125) from olleolleolle/patch-1 - [`5ceef2d`](https://github.com/plataformatec/devise/commit/5ceef2d4de2266ba21f5c2aac5e3246d6e57d86c) Merge pull request [#5131](https://github-redirect.dependabot.com/plataformatec/devise/issues/5131) from lslm/ls-fix-typo - [`6635caf`](https://github.com/plataformatec/devise/commit/6635caf12ed0879cd369a239c20b02e16f90c944) Fix typo - [`e051360`](https://github.com/plataformatec/devise/commit/e051360ea2035af4e033c0722eb51ac83ec13761) CI: Drop unused Travis sudo: false directive - [`6bb74c5`](https://github.com/plataformatec/devise/commit/6bb74c5abff9f75e992560b308b1f8ae926da50e) Update CHANGELOG.md [ci skip] - [`a790570`](https://github.com/plataformatec/devise/commit/a79057070c60a274936b8421cd35846e03aa08bd) Prepare for `4.7.0` release - [`12fc5b7`](https://github.com/plataformatec/devise/commit/12fc5b76d89cf6e9c47289416fb24bf1a85f03da) Update README.md ([#5115](https://github-redirect.dependabot.com/plataformatec/devise/issues/5115)) - Additional commits viewable in [compare view](https://github.com/plataformatec/devise/compare/v4.6.1...v4.7.1) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=devise&package-manager=bundler&previous-version=4.6.1&new-version=4.7.1)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
22	20	https://api.github.com/repos/comorebi-notes/rechord/issues/90	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/90/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/90/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/90/events	https://github.com/comorebi-notes/rechord/pull/90	534403208	MDExOlB1bGxSZXF1ZXN0MzUwMzExNjg0	90	Bump eslint-utils from 1.3.1 to 1.4.3	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2019-12-07T13:39:41Z	2019-12-07T13:39:42Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/90', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/90', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/90.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/90.patch'}	Bumps [eslint-utils](https://github.com/mysticatea/eslint-utils) from 1.3.1 to 1.4.3. <details> <summary>Commits</summary> - [`23f4ddc`](https://github.com/mysticatea/eslint-utils/commit/23f4ddc58eda5e6aec3d6a43c6266acbe19345cd) 🔖 1.4.3 - [`8f9e481`](https://github.com/mysticatea/eslint-utils/commit/8f9e481ecc1204c7a1331b697f97903f90c75154) 🐛 fix reference tracker false positive - [`6633278`](https://github.com/mysticatea/eslint-utils/commit/663327835abfb1f62fc6fc5d69028457e11b5f80) ⚒ fix test scripts - [`7c8e67c`](https://github.com/mysticatea/eslint-utils/commit/7c8e67c22f7222685a6a9154ba5eec2ac4896a3e) ⚒ fix build scripts - [`41ff95e`](https://github.com/mysticatea/eslint-utils/commit/41ff95e728db2c52122ae3dad42997dccd223388) ⚒ update dependencies - [`4942012`](https://github.com/mysticatea/eslint-utils/commit/49420121ff4d2b4758d4016848055c1631389faa) ⚒ fix build scripts - [`f1c8d02`](https://github.com/mysticatea/eslint-utils/commit/f1c8d02b3fd190a97e39603929c0aabe36c9904f) ⚒ update build scripts - [`a88598a`](https://github.com/mysticatea/eslint-utils/commit/a88598a74f0d71376447c4ecb6b56b27272f3992) Create FUNDING.yml - [`4e1bc07`](https://github.com/mysticatea/eslint-utils/commit/4e1bc077c2a6bb00538d66b69a63c24de3463bed) 1.4.2 - [`e4cb014`](https://github.com/mysticatea/eslint-utils/commit/e4cb01498df6096b66edb0c78965ee6f47d3ac77) 🐛 add null test - Additional commits viewable in [compare view](https://github.com/mysticatea/eslint-utils/compare/v1.3.1...v1.4.3) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eslint-utils&package-manager=npm_and_yarn&previous-version=1.3.1&new-version=1.4.3)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
23	21	https://api.github.com/repos/comorebi-notes/rechord/issues/89	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/89/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/89/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/89/events	https://github.com/comorebi-notes/rechord/pull/89	534403202	MDExOlB1bGxSZXF1ZXN0MzUwMzExNjc4	89	Bump mixin-deep from 1.3.1 to 1.3.2	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2019-12-07T13:39:39Z	2019-12-07T13:39:40Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/89', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/89', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/89.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/89.patch'}	Bumps [mixin-deep](https://github.com/jonschlinkert/mixin-deep) from 1.3.1 to 1.3.2. <details> <summary>Commits</summary> - [`754f0c2`](https://github.com/jonschlinkert/mixin-deep/commit/754f0c20e1bc13ea5a21a64fbc7d6ba5f7b359b9) 1.3.2 - [`90ee1fa`](https://github.com/jonschlinkert/mixin-deep/commit/90ee1fab375fccfd9b926df718243339b4976d50) ensure keys are valid when mixing in values - See full diff in [compare view](https://github.com/jonschlinkert/mixin-deep/compare/1.3.1...1.3.2) </details> <details> <summary>Maintainer changes</summary> This version was pushed to npm by [doowb](https://www.npmjs.com/~doowb), a new releaser for mixin-deep since your current version. </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mixin-deep&package-manager=npm_and_yarn&previous-version=1.3.1&new-version=1.3.2)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
24	22	https://api.github.com/repos/comorebi-notes/rechord/issues/88	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/88/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/88/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/88/events	https://github.com/comorebi-notes/rechord/pull/88	534403201	MDExOlB1bGxSZXF1ZXN0MzUwMzExNjc3	88	Bump fstream from 1.0.11 to 1.0.12	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2019-12-07T13:39:38Z	2019-12-07T13:39:39Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/88', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/88', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/88.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/88.patch'}	Bumps [fstream](https://github.com/npm/fstream) from 1.0.11 to 1.0.12. <details> <summary>Commits</summary> - [`4235459`](https://github.com/npm/fstream/commit/42354590e23bb514eb5c869eea64406be2947c6c) 1.0.12 - [`6a77d2f`](https://github.com/npm/fstream/commit/6a77d2fa6e1462693cf8e46f930da96ec1b0bb22) Clobber a Link if it's in the way of a File - See full diff in [compare view](https://github.com/npm/fstream/compare/v1.0.11...v1.0.12) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=fstream&package-manager=npm_and_yarn&previous-version=1.0.11&new-version=1.0.12)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
25	23	https://api.github.com/repos/comorebi-notes/rechord/issues/87	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/87/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/87/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/87/events	https://github.com/comorebi-notes/rechord/pull/87	534403192	MDExOlB1bGxSZXF1ZXN0MzUwMzExNjcx	87	Bump puma from 3.12.0 to 3.12.2	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720386230, 'node_id': 'MDU6TGFiZWwxNzIwMzg2MjMw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/ruby', 'name': 'ruby', 'color': 'ce2d2d', 'default': False, 'description': 'Pull requests that update Ruby code'}]	closed	False	[]	1	2019-12-07T13:39:33Z	2020-02-28T20:33:08Z	2020-02-28T20:33:06Z	NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/87', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/87', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/87.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/87.patch'}	Bumps [puma](https://github.com/puma/puma) from 3.12.0 to 3.12.2. <details> <summary>Release notes</summary> Sourced from [puma's releases](https://github.com/puma/puma/releases). > v3.12.1 </details> <details> <summary>Changelog</summary> Sourced from [puma's changelog](https://github.com/puma/puma/blob/master/History.md). > ## 4.3.1 and 3.12.2 / 2019-12-05 > > * Security > * Fix: a poorly-behaved client could use keepalive requests to monopolize Puma's reactor and create a denial of service attack. CVE-2019-16770. > > ## 4.3.0 / 2019-11-07 > > * Features > * Strip whitespace at end of HTTP headers ([#2010](https://github-redirect.dependabot.com/puma/puma/issues/2010)) > * Optimize HTTP parser for JRuby ([#2012](https://github-redirect.dependabot.com/puma/puma/issues/2012)) > * Add SSL support for the control app and cli ([#2046](https://github-redirect.dependabot.com/puma/puma/issues/2046), [#2052](https://github-redirect.dependabot.com/puma/puma/issues/2052)) > > * Bugfixes > * Fix Errno::EINVAL when SSL is enabled and browser rejects cert ([#1564](https://github-redirect.dependabot.com/puma/puma/issues/1564)) > * Fix pumactl defaulting puma to development if an environment was not specified ([#2035](https://github-redirect.dependabot.com/puma/puma/issues/2035)) > * Fix closing file stream when reading pid from pidfile ([#2048](https://github-redirect.dependabot.com/puma/puma/issues/2048)) > * Fix a typo in configuration option `--extra_runtime_dependencies` ([#2050](https://github-redirect.dependabot.com/puma/puma/issues/2050)) > > ## 4.2.1 / 2019-10-07 > > * 3 bugfixes > * Fix socket activation of systemd (pre-existing) unix binder files ([#1842](https://github-redirect.dependabot.com/puma/puma/issues/1842), [#1988](https://github-redirect.dependabot.com/puma/puma/issues/1988)) > * Deal with multiple calls to bind correctly ([#1986](https://github-redirect.dependabot.com/puma/puma/issues/1986), [#1994](https://github-redirect.dependabot.com/puma/puma/issues/1994), [#2006](https://github-redirect.dependabot.com/puma/puma/issues/2006)) > * Accepts symbols for `verify_mode` ([#1222](https://github-redirect.dependabot.com/puma/puma/issues/1222)) > > ## 4.2.0 / 2019-09-23 > > * 6 features > * Pumactl has a new -e environment option and reads `config/puma/<environment>.rb` config files ([#1885](https://github-redirect.dependabot.com/puma/puma/issues/1885)) > * Semicolons are now allowed in URL paths (MRI only), useful for Angular or Redmine ([#1934](https://github-redirect.dependabot.com/puma/puma/issues/1934)) > * Allow extra dependencies to be defined when using prune_bundler ([#1105](https://github-redirect.dependabot.com/puma/puma/issues/1105)) > * Puma now reports the correct port when binding to port 0, also reports other listeners when binding to localhost ([#1786](https://github-redirect.dependabot.com/puma/puma/issues/1786)) > * Sending SIGINFO to any Puma worker now prints currently active threads and their backtraces ([#1320](https://github-redirect.dependabot.com/puma/puma/issues/1320)) > * Puma threads all now have their name set on Ruby 2.3+ ([#1968](https://github-redirect.dependabot.com/puma/puma/issues/1968)) > * 4 bugfixes > * Fix some misbehavior with phased restart and externally SIGTERMed workers ([#1908](https://github-redirect.dependabot.com/puma/puma/issues/1908), [#1952](https://github-redirect.dependabot.com/puma/puma/issues/1952)) > * Fix socket closing on error ([#1941](https://github-redirect.dependabot.com/puma/puma/issues/1941)) > * Removed unnecessary SIGINT trap for JRuby that caused some race conditions ([#1961](https://github-redirect.dependabot.com/puma/puma/issues/1961)) > * Fix socket files being left around after process stopped ([#1970](https://github-redirect.dependabot.com/puma/puma/issues/1970)) > * Absolutely thousands of lines of test improvements and fixes thanks to [@MSP-Greg](https://github.com/MSP-Greg) > > ## 4.1.1 / 2019-09-05 > > * 3 bugfixes > * Revert our attempt to not dup STDOUT/STDERR ([#1946](https://github-redirect.dependabot.com/puma/puma/issues/1946)) > * Fix socket close on error ([#1941](https://github-redirect.dependabot.com/puma/puma/issues/1941)) > * Fix workers not shutting down correctly ([#1908](https://github-redirect.dependabot.com/puma/puma/issues/1908)) > > ## 4.1.0 / 2019-08-08 > ></tr></table> ... (truncated) </details> <details> <summary>Commits</summary> - [`bb29fc7`](https://github.com/puma/puma/commit/bb29fc7fe8f822d0f72706a1ae86e49af3476777) 3.12.2 - [`058df12`](https://github.com/puma/puma/commit/058df12b78e7d1ec661c3b8777f26a736c26675b) 4.3.1 and 4.2.1 release notes - [`06053e6`](https://github.com/puma/puma/commit/06053e60908074bb38293d4449ea261cb009b53e) Merge pull request from GHSA-7xx3-m584-x994 - [`461c9e9`](https://github.com/puma/puma/commit/461c9e99783e5f69e632acedae83be55017d5fe4) Docs files - [`7e2c88d`](https://github.com/puma/puma/commit/7e2c88d4131a1a70f551287e49b8f527d29d0469) v3.12.1 - [`36964ec`](https://github.com/puma/puma/commit/36964ec42982d7b3205760bc2bf9ccf3fec8af69) Merge pull request [#1700](https://github-redirect.dependabot.com/puma/puma/issues/1700) from schneems/schneems/fix-puma-rack-handler-config - [`c24c0c8`](https://github.com/puma/puma/commit/c24c0c883496f581d9092bbe7f7431129eeb7190) Rack handler should use provided default host - [`e5d566e`](https://github.com/puma/puma/commit/e5d566ed81f3663d70f0318f8bf3d858734cb74b) Merge pull request [#1682](https://github-redirect.dependabot.com/puma/puma/issues/1682) from MSP-Greg/update-travis-ruby - [`cecc44a`](https://github.com/puma/puma/commit/cecc44aa0ae326e46031b48023253d08df706455) Merge pull request [#1701](https://github-redirect.dependabot.com/puma/puma/issues/1701) from schneems/schneems/m - [`ce57cfb`](https://github.com/puma/puma/commit/ce57cfb8c3c8259cda13c322de32dd4ff07ec03a) Allow running individual tests via the `m` gem. - Additional commits viewable in [compare view](https://github.com/puma/puma/compare/v3.12.0...v3.12.2) </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=puma&package-manager=bundler&previous-version=3.12.0&new-version=3.12.2)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
26	24	https://api.github.com/repos/comorebi-notes/rechord/issues/86	https://api.github.com/repos/comorebi-notes/rechord	https://api.github.com/repos/comorebi-notes/rechord/issues/86/labels{/name}	https://api.github.com/repos/comorebi-notes/rechord/issues/86/comments	https://api.github.com/repos/comorebi-notes/rechord/issues/86/events	https://github.com/comorebi-notes/rechord/pull/86	534403171	MDExOlB1bGxSZXF1ZXN0MzUwMzExNjU5	86	Bump axios from 0.17.1 to 0.18.1	{'login': 'dependabot[bot]', 'id': 49699333, 'node_id': 'MDM6Qm90NDk2OTkzMzM=', 'avatar_url': 'https://avatars0.githubusercontent.com/in/29110?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot', 'followers_url': 'https://api.github.com/users/dependabot%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1720385910, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTEw', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/dependencies', 'name': 'dependencies', 'color': '0366d6', 'default': False, 'description': 'Pull requests that update a dependency file'}, {'id': 1720385923, 'node_id': 'MDU6TGFiZWwxNzIwMzg1OTIz', 'url': 'https://api.github.com/repos/comorebi-notes/rechord/labels/javascript', 'name': 'javascript', 'color': '168700', 'default': False, 'description': 'Pull requests that update Javascript code'}]	open	False	[]	0	2019-12-07T13:39:21Z	2019-12-07T13:39:22Z		NONE	{'url': 'https://api.github.com/repos/comorebi-notes/rechord/pulls/86', 'html_url': 'https://github.com/comorebi-notes/rechord/pull/86', 'diff_url': 'https://github.com/comorebi-notes/rechord/pull/86.diff', 'patch_url': 'https://github.com/comorebi-notes/rechord/pull/86.patch'}	Bumps [axios](https://github.com/axios/axios) from 0.17.1 to 0.18.1. <details> <summary>Release notes</summary> Sourced from [axios's releases](https://github.com/axios/axios/releases). > ## v0.18.1 > Security Fix: > > - Destroy stream on exceeding maxContentLength (fixes [#1098](https://github-redirect.dependabot.com/axios/axios/issues/1098)) ([#1485](https://github-redirect.dependabot.com/axios/axios/issues/1485)) - Gadzhi Gadzhiev > > ## v.0.18.0 > - Adding support for UNIX Sockets when running with Node.js ([#1070](https://github-redirect.dependabot.com/axios/axios/pull/1070)) > - Fixing typings ([#1177](https://github-redirect.dependabot.com/axios/axios/pull/1177)): > - AxiosRequestConfig.proxy: allows type false > - AxiosProxyConfig: added auth field > - Adding function signature in AxiosInstance interface so AxiosInstance can be invoked ([#1192](https://github-redirect.dependabot.com/axios/axios/pull/1192), [#1254](https://github-redirect.dependabot.com/axios/axios/pull/1254)) > - Allowing maxContentLength to pass through to redirected calls as maxBodyLength in follow-redirects config ([#1287](https://github-redirect.dependabot.com/axios/axios/pull/1287)) > - Fixing configuration when using an instance - method can now be set ([#1342](https://github-redirect.dependabot.com/axios/axios/pull/1342)) > > ### 0.17.1 (Nov 11, 2017) > > - Fixing issue with web workers ([#1160](https://github-redirect.dependabot.com/axios/axios/pull/1160)) > - Allowing overriding transport ([#1080](https://github-redirect.dependabot.com/axios/axios/pull/1080)) > - Updating TypeScript typings ([#1165](https://github-redirect.dependabot.com/axios/axios/pull/1165), [#1125](https://github-redirect.dependabot.com/axios/axios/pull/1125), [#1131](https://github-redirect.dependabot.com/axios/axios/pull/1131)) </details> <details> <summary>Changelog</summary> Sourced from [axios's changelog](https://github.com/axios/axios/blob/v0.18.1/CHANGELOG.md). > ### 0.18.1 (May 31, 2019) > > Security Fix: > > - Destroy stream on exceeding maxContentLength (fixes [#1098](https://github-redirect.dependabot.com/axios/axios/issues/1098)) ([#1485](https://github-redirect.dependabot.com/axios/axios/pull/1485)) - Gadzhi Gadzhiev > > ### 0.18.0 (Feb 19, 2018) > > - Adding support for UNIX Sockets when running with Node.js ([#1070](https://github-redirect.dependabot.com/axios/axios/pull/1070)) > - Fixing typings ([#1177](https://github-redirect.dependabot.com/axios/axios/pull/1177)): > - AxiosRequestConfig.proxy: allows type false > - AxiosProxyConfig: added auth field > - Adding function signature in AxiosInstance interface so AxiosInstance can be invoked ([#1192](https://github-redirect.dependabot.com/axios/axios/pull/1192), [#1254](https://github-redirect.dependabot.com/axios/axios/pull/1254)) > - Allowing maxContentLength to pass through to redirected calls as maxBodyLength in follow-redirects config ([#1287](https://github-redirect.dependabot.com/axios/axios/pull/1287)) > - Fixing configuration when using an instance - method can now be set ([#1342](https://github-redirect.dependabot.com/axios/axios/pull/1342)) </details> <details> <summary>Commits</summary> - [`face016`](https://github.com/axios/axios/commit/face0165de613696d10b1fd2a0e2f7b3852fa018) Releasing 0.18.1 - [`0628763`](https://github.com/axios/axios/commit/062876378b2e46aa12cb084dce56dddde1f8172c) Update Changelog for release (0.18.1) - [`dc9b29c`](https://github.com/axios/axios/commit/dc9b29c3411f160009570d369013585693deb154) adjust README to match IE support - [`16326d5`](https://github.com/axios/axios/commit/16326d5fe93bb2bf9d793fe04786e3198f298429) Remove usages of isOldIE in tests - [`5a4228b`](https://github.com/axios/axios/commit/5a4228b9f82ef9dfb695e10c95d237f4b7afdc14) Remove IE10 launcher from karma config - [`695b5f7`](https://github.com/axios/axios/commit/695b5f7241d7a3b339a768e3d04cfa5d1efd758e) Remove isOldIE check in tests - [`e314ab0`](https://github.com/axios/axios/commit/e314ab00b48be01283f4c48fc2ecaef73fac7c85) Remove HTTP 1223 handling - [`7efa822`](https://github.com/axios/axios/commit/7efa822b2e8ac47c54f3eafc7fb0c6b52ffaa0c6) Remove btoa polyfill tests - [`f3cdcc7`](https://github.com/axios/axios/commit/f3cdcc7f0125a069998bb3c74337fea99dd98f7b) Delete btoa polyfill - [`efc0b58`](https://github.com/axios/axios/commit/efc0b581c828fe0e5e6d39a40d65d1c73181e05c) Remove ie8/9 special CORS treatment and btoa polyfill - Additional commits viewable in [compare view](https://github.com/axios/axios/compare/v0.17.1...v0.18.1) </details> <details> <summary>Maintainer changes</summary> This version was pushed to npm by [emilyemorehouse](https://www.npmjs.com/~emilyemorehouse), a new releaser for axios since your current version. </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=axios&package-manager=npm_and_yarn&previous-version=0.17.1&new-version=0.18.1)](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch\|minor\|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/comorebi-notes/rechord/network/alerts). </details>
27	25	https://api.github.com/repos/sustained/sforzando/issues/188	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/188/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/188/comments	https://api.github.com/repos/sustained/sforzando/issues/188/events	https://github.com/sustained/sforzando/pull/188	681114871	MDExOlB1bGxSZXF1ZXN0NDY5NTU4MTEx	188	Bump @vue/cli-plugin-babel from 3.8.0 to 4.5.4	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-08-18T15:03:23Z	2020-08-18T15:03:24Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/188', 'html_url': 'https://github.com/sustained/sforzando/pull/188', 'diff_url': 'https://github.com/sustained/sforzando/pull/188.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/188.patch'}	Bumps [@vue/cli-plugin-babel](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel) from 3.8.0 to 4.5.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-babel's releases</a>.</em></p> <blockquote> <h2>v4.5.4</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli # OR npm install -g @vue/cli </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade </code></pre> <hr /> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-babel's changelog</a>.</em></p> <blockquote> <h2>4.5.4 (2020-08-18)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/ff24edb66361a504446a141525f9981bf34e8931"><code>ff24edb</code></a> v4.5.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/c227e1f12e55c218e44b3282fbaf08b8f3fe8d05"><code>c227e1f</code></a> docs: add thread-loader warnings (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel/issues/5777">#5777</a>) [ci skip]</li> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/fe90abdeacc003d7510739b90625edeae47b3798"><code>fe90abd</code></a> chore: dependency maintenance (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel/issues/5742">#5742</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b1772cadd2efca7fdd218f58d788d12e4132d62f"><code>b1772ca</code></a> feat: allow choosing vue version on creation (and in presets) (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel/issues/5637">#5637</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.4/packages/@vue/cli-plugin-babel">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-babel&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.4)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-babel&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.4) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
28	26	https://api.github.com/repos/sustained/sforzando/issues/187	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/187/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/187/comments	https://api.github.com/repos/sustained/sforzando/issues/187/events	https://github.com/sustained/sforzando/pull/187	681114343	MDExOlB1bGxSZXF1ZXN0NDY5NTU3Njgw	187	Bump @vue/cli-plugin-eslint from 3.8.0 to 4.5.4	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-08-18T15:02:42Z	2020-08-18T15:02:43Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/187', 'html_url': 'https://github.com/sustained/sforzando/pull/187', 'diff_url': 'https://github.com/sustained/sforzando/pull/187.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/187.patch'}	Bumps [@vue/cli-plugin-eslint](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint) from 3.8.0 to 4.5.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-eslint's releases</a>.</em></p> <blockquote> <h2>v4.5.4</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli # OR npm install -g @vue/cli </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade </code></pre> <hr /> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-eslint's changelog</a>.</em></p> <blockquote> <h2>4.5.4 (2020-08-18)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/ff24edb66361a504446a141525f9981bf34e8931"><code>ff24edb</code></a> v4.5.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/5baec1fdc5588b22f47b4fdfdaa84305eb64299a"><code>5baec1f</code></a> chore: fix common misspelling errors (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5694">#5694</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b1772cadd2efca7fdd218f58d788d12e4132d62f"><code>b1772ca</code></a> feat: allow choosing vue version on creation (and in presets) (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5637">#5637</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/6592e62770791d5d2c0236a73767975e29305a95"><code>6592e62</code></a> docs: update cli eslint plugin configuration (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5579">#5579</a>) [ci skip]</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.4/packages/@vue/cli-plugin-eslint">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-eslint&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.4)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-eslint&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.4) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
29	27	https://api.github.com/repos/sustained/sforzando/issues/186	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/186/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/186/comments	https://api.github.com/repos/sustained/sforzando/issues/186/events	https://github.com/sustained/sforzando/pull/186	681112556	MDExOlB1bGxSZXF1ZXN0NDY5NTU2MTgy	186	Bump @vue/cli-plugin-pwa from 3.8.0 to 4.5.4	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-08-18T15:00:18Z	2020-08-18T15:00:19Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/186', 'html_url': 'https://github.com/sustained/sforzando/pull/186', 'diff_url': 'https://github.com/sustained/sforzando/pull/186.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/186.patch'}	Bumps [@vue/cli-plugin-pwa](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-pwa) from 3.8.0 to 4.5.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-pwa's releases</a>.</em></p> <blockquote> <h2>v4.5.4</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli # OR npm install -g @vue/cli </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade </code></pre> <hr /> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-pwa's changelog</a>.</em></p> <blockquote> <h2>4.5.4 (2020-08-18)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/ff24edb66361a504446a141525f9981bf34e8931"><code>ff24edb</code></a> v4.5.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/256e136a7544ca2c4d8c03721c0b1659fee80f75"><code>256e136</code></a> docs: corrected typo in pwa readme (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-pwa/issues/5676">#5676</a>) [ci skip]</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/78374b717ee3d7a4f3bc9e40d70cb946baedacab"><code>78374b7</code></a> v4.4.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/d9453e82271547a6f4c359968595cb303250b26c"><code>d9453e8</code></a> v4.4.3</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.4/packages/@vue/cli-plugin-pwa">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-pwa&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.4)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-pwa&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.4) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
30	28	https://api.github.com/repos/sustained/sforzando/issues/185	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/185/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/185/comments	https://api.github.com/repos/sustained/sforzando/issues/185/events	https://github.com/sustained/sforzando/pull/185	681111142	MDExOlB1bGxSZXF1ZXN0NDY5NTU1MDE0	185	Bump @vue/cli-service from 3.8.4 to 4.5.4	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-08-18T14:58:25Z	2020-08-18T14:58:27Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/185', 'html_url': 'https://github.com/sustained/sforzando/pull/185', 'diff_url': 'https://github.com/sustained/sforzando/pull/185.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/185.patch'}	Bumps [@vue/cli-service](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service) from 3.8.4 to 4.5.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-service's releases</a>.</em></p> <blockquote> <h2>v4.5.4</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli # OR npm install -g @vue/cli </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade </code></pre> <hr /> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-service's changelog</a>.</em></p> <blockquote> <h2>4.5.4 (2020-08-18)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5798">#5798</a> fix: fix Vue 3 + TS + Router template (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5788">#5788</a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5693">#5693</a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/Blacate">@Blacate</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5778">#5778</a> fix: missing proxy argument (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Blacate (<a href="https://github.com/Blacate">@Blacate</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Robbin Baauw (<a href="https://github.com/RobbinBaauw">@RobbinBaauw</a>)</li> </ul> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/ff24edb66361a504446a141525f9981bf34e8931"><code>ff24edb</code></a> v4.5.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/745810382209c9abde7d2f0d1666b8f6815e74f5"><code>7458103</code></a> fix: ensure Dev Tool is enabled in Vue 3 runtime (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5788">#5788</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/0146001f7def4e8d3db5aac7074e82108171661e"><code>0146001</code></a> fix: mayProxy.isPublicFileRequest judgment (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5693">#5693</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/8cf3745ef959fe99ecd38dc6d556778d105687f9"><code>8cf3745</code></a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5774">#5774</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/5baec1fdc5588b22f47b4fdfdaa84305eb64299a"><code>5baec1f</code></a> chore: fix common misspelling errors (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5694">#5694</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/1c34f640d624cbd2ad14214b6c961ce2a382a417"><code>1c34f64</code></a> chore: update type definition test (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5759">#5759</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/8dceddb6a6ee39ae4db44522a86b44aa27f8d0b7"><code>8dceddb</code></a> chore: use <code>stdout.columns</code> to determine the stats table width (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5754">#5754</a>)</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.4/packages/@vue/cli-service">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-service&package-manager=npm_and_yarn&previous-version=3.8.4&new-version=4.5.4)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-service&package-manager=npm_and_yarn&previous-version=3.8.4&new-version=4.5.4) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
31	29	https://api.github.com/repos/sustained/sforzando/issues/184	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/184/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/184/comments	https://api.github.com/repos/sustained/sforzando/issues/184/events	https://github.com/sustained/sforzando/pull/184	681108536	MDExOlB1bGxSZXF1ZXN0NDY5NTUyODQ1	184	[Security] Bump dot-prop from 4.2.0 to 4.2.1	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 2113530249, 'node_id': 'MDU6TGFiZWwyMTEzNTMwMjQ5', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/security', 'name': 'security', 'color': 'ee0701', 'default': False, 'description': 'Pull requests that address a security vulnerability'}, {'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-08-18T14:55:00Z	2020-08-18T14:55:01Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/184', 'html_url': 'https://github.com/sustained/sforzando/pull/184', 'diff_url': 'https://github.com/sustained/sforzando/pull/184.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/184.patch'}	Bumps [dot-prop](https://github.com/sindresorhus/dot-prop) from 4.2.0 to 4.2.1. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-ff7x-qrg7-qggm">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in dot-prop</strong> Prototype pollution vulnerability in dot-prop npm package before versions 4.2.1 and 5.1.1 allows an attacker to add arbitrary properties to JavaScript language constructs such as objects.</p> <p>Affected versions: < 4.2.1</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/sindresorhus/dot-prop/commits">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=dot-prop&package-manager=npm_and_yarn&previous-version=4.2.0&new-version=4.2.1)](https://dependabot.com/compatibility-score/?dependency-name=dot-prop&package-manager=npm_and_yarn&previous-version=4.2.0&new-version=4.2.1) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
32	30	https://api.github.com/repos/sustained/sforzando/issues/183	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/183/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/183/comments	https://api.github.com/repos/sustained/sforzando/issues/183/events	https://github.com/sustained/sforzando/pull/183	679043512	MDExOlB1bGxSZXF1ZXN0NDY3ODg5NjQw	183	[Security] Bump lodash from 4.17.15 to 4.17.20	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 2113530249, 'node_id': 'MDU6TGFiZWwyMTEzNTMwMjQ5', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/security', 'name': 'security', 'color': 'ee0701', 'default': False, 'description': 'Pull requests that address a security vulnerability'}, {'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-08-14T09:52:50Z	2020-08-14T09:52:51Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/183', 'html_url': 'https://github.com/sustained/sforzando/pull/183', 'diff_url': 'https://github.com/sustained/sforzando/pull/183.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/183.patch'}	Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.20. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/nodejs/security-wg/blob/master/vuln/npm/516.json">The Node Security Working Group</a>.</em></p> <blockquote> <p><strong>Allocation of Resources Without Limits or Throttling</strong> Prototype pollution attack (lodash)</p> <p>Affected versions: >=4.17.15 <4.17.19</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.20">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=lodash&package-manager=npm_and_yarn&previous-version=4.17.15&new-version=4.17.20)](https://dependabot.com/compatibility-score/?dependency-name=lodash&package-manager=npm_and_yarn&previous-version=4.17.15&new-version=4.17.20) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
33	31	https://api.github.com/repos/sustained/sforzando/issues/182	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/182/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/182/comments	https://api.github.com/repos/sustained/sforzando/issues/182/events	https://github.com/sustained/sforzando/pull/182	677663002	MDExOlB1bGxSZXF1ZXN0NDY2NzQ1ODQ3	182	Bump vue-router from 3.0.6 to 3.4.3	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-08-12T12:41:38Z	2020-08-12T12:41:39Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/182', 'html_url': 'https://github.com/sustained/sforzando/pull/182', 'diff_url': 'https://github.com/sustained/sforzando/pull/182.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/182.patch'}	Bumps [vue-router](https://github.com/vuejs/vue-router) from 3.0.6 to 3.4.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/releases">vue-router's releases</a>.</em></p> <blockquote> <h2>v3.3.4</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2>v3.3.3</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> <li><strong>types:</strong> RouterConfig for multiple components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3217">#3217</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3218">#3218</a>) (<a href="https://github.com/vuejs/vue-router/commit/dab86c5">dab86c5</a>)</li> </ul> <h2>v3.3.2</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> NavigationCanceled with async components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3211">#3211</a>) (<a href="https://github.com/vuejs/vue-router/commit/be39ca3">be39ca3</a>)</li> <li>remove error.stack modification (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3212">#3212</a>) (<a href="https://github.com/vuejs/vue-router/commit/a0075ed">a0075ed</a>)</li> </ul> <h2>v3.3.1</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> avoid unnecessary log of errors (<a href="https://github.com/vuejs/vue-router/commit/2c77247">2c77247</a>)</li> </ul> <h2>v3.3.0</h2> <h3>Features</h3> <ul> <li><strong>errors:</strong> create router errors (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3047">#3047</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c727f9">4c727f9</a>)</li> <li><strong>history:</strong> Remove event listeners when all apps are destroyed. (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3172">#3172</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c81be8">4c81be8</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3152">#3152</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2341">#2341</a></li> <li><strong>url:</strong> call afterEach hooks after url is ensured (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2292">#2292</a>) (<a href="https://github.com/vuejs/vue-router/commit/1575a18">1575a18</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2079">#2079</a></li> </ul> <h2>v3.2.0</h2> <h3>Bug Fixes</h3> <ul> <li><strong>html5:</strong> make base case insensitive (<a href="https://github.com/vuejs/vue-router/commit/04a2143">04a2143</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2154">#2154</a></li> <li>check for pushState being a function (<a href="https://github.com/vuejs/vue-router/commit/bc41f67">bc41f67</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3154">#3154</a></li> </ul> <h3>Features</h3> <ul> <li><strong>link:</strong> add aria-current to active links (close <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2116">#2116</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3073">#3073</a>) (<a href="https://github.com/vuejs/vue-router/commit/6ec0ee5">6ec0ee5</a>)</li> <li><strong>scroll:</strong> use manual scrollRestoration with scrollBehavior (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/1814">#1814</a>) (<a href="https://github.com/vuejs/vue-router/commit/1261363">1261363</a>)</li> <li><strong>types:</strong> NavigationGuardNext (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2497">#2497</a>) (<a href="https://github.com/vuejs/vue-router/commit/d18c497">d18c497</a>)</li> </ul> <h2>v3.1.6</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/blob/dev/CHANGELOG.md">vue-router's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.4.2...v3.4.3">3.4.3</a> (2020-08-11)</h2> <ul> <li>Revert 4fbaa9f7880276e661227442ef5923131a589210: "fix: keep repeated params in query/hash relative locations" Closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3289">#3289</a></li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.4.1...v3.4.2">3.4.2</a> (2020-08-07)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> leave object as is (<a href="https://github.com/vuejs/vue-router/commit/7b3328d">7b3328d</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3282">#3282</a></li> <li>keep repeated params in query/hash relative locations (<a href="https://github.com/vuejs/vue-router/commit/4fbaa9f">4fbaa9f</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.4.0...v3.4.1">3.4.1</a> (2020-08-06)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> remove undefined values (<a href="https://github.com/vuejs/vue-router/commit/b952573">b952573</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3276">#3276</a></li> <li><strong>router:</strong> properly check null and undefined in isSameRoute (<a href="https://github.com/vuejs/vue-router/commit/d6546d9">d6546d9</a>)</li> </ul> <h1><a href="https://github.com/vuejs/vue-router/compare/v3.3.4...v3.4.0">3.4.0</a> (2020-08-05)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> cast query values to strings (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2131">#2131</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3232">#3232</a>) (<a href="https://github.com/vuejs/vue-router/commit/f0d9c2d">f0d9c2d</a>)</li> <li><strong>scroll:</strong> run scrollBehavior on initial load (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3196">#3196</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3199">#3199</a>) (<a href="https://github.com/vuejs/vue-router/commit/84398ae">84398ae</a>)</li> <li><strong>types:</strong> add missing <code>options</code> property type (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3248">#3248</a>) (<a href="https://github.com/vuejs/vue-router/commit/83920c9">83920c9</a>)</li> </ul> <h3>Features</h3> <ul> <li>add vetur tags and attributes (<a href="https://github.com/vuejs/vue-router/commit/bf1e1bd">bf1e1bd</a>)</li> <li><strong>errors:</strong> capture errors thrown in redirect callback in onError (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3251">#3251</a>) (<a href="https://github.com/vuejs/vue-router/commit/40e4df7">40e4df7</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a></li> <li><strong>errors:</strong> expose <code>isNavigationFailure</code> (<a href="https://github.com/vuejs/vue-router/commit/8d92dc0">8d92dc0</a>)</li> <li><strong>errors:</strong> NavigationDuplicated name for backwards compatibility (<a href="https://github.com/vuejs/vue-router/commit/b854a20">b854a20</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.3...v3.3.4">3.3.4</a> (2020-06-13)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.2...v3.3.3">3.3.3</a> (2020-06-12)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-router/commit/dcde7270a3178b79e8344c54cc17ce81ca088d60"><code>dcde727</code></a> chore(release): 3.4.3</li> <li><a href="https://github.com/vuejs/vue-router/commit/ec43c1eebaf5d50856a9c0d5c8c92c0fb56665dc"><code>ec43c1e</code></a> build: bundle 3.4.3</li> <li><a href="https://github.com/vuejs/vue-router/commit/2f576639510bd746e54e86e910faaf8deffbf104"><code>2f57663</code></a> build(deps): bump prismjs from 1.17.1 to 1.21.0 (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3283">#3283</a>)</li> <li><a href="https://github.com/vuejs/vue-router/commit/bcc9ef5d143f02a7e095143410a864127e772830"><code>bcc9ef5</code></a> Revert "fix: keep repeated params in query/hash relative locations"</li> <li><a href="https://github.com/vuejs/vue-router/commit/5c4221adf0d3dae41708f9b70b2d39e711f852b5"><code>5c4221a</code></a> docs: [RU] Translation update (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3285">#3285</a>)</li> <li><a href="https://github.com/vuejs/vue-router/commit/0b073d4caeb6dbd292f89546434fb3b2b34fa168"><code>0b073d4</code></a> docs: race condition in example</li> <li><a href="https://github.com/vuejs/vue-router/commit/51d40a5404e1f5d0820c70c4cd1af3f12bcde04a"><code>51d40a5</code></a> docs(api): add note about push</li> <li><a href="https://github.com/vuejs/vue-router/commit/da28363a1553c5a558220e19b096260462bee3ac"><code>da28363</code></a> docs: note about mixins navigation guards</li> <li><a href="https://github.com/vuejs/vue-router/commit/2396cbab855fbc415dbe7de1bfeb6df2ba5a1cf0"><code>2396cba</code></a> docs: better routeBeforeUpdate</li> <li><a href="https://github.com/vuejs/vue-router/commit/75a18dc7bd7d78cd37d40e202fdfae8ca854d9f0"><code>75a18dc</code></a> docs: add function example to props</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-router/compare/v3.0.6...v3.4.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.3)](https://dependabot.com/compatibility-score/?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.3) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
34	32	https://api.github.com/repos/sustained/sforzando/issues/181	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/181/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/181/comments	https://api.github.com/repos/sustained/sforzando/issues/181/events	https://github.com/sustained/sforzando/pull/181	676821360	MDExOlB1bGxSZXF1ZXN0NDY2MDYxMzk3	181	Bump @vue/cli-service from 3.8.4 to 4.5.3	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-11T12:03:41Z	2020-08-18T14:58:31Z	2020-08-18T14:58:29Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/181', 'html_url': 'https://github.com/sustained/sforzando/pull/181', 'diff_url': 'https://github.com/sustained/sforzando/pull/181.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/181.patch'}	Bumps [@vue/cli-service](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service) from 3.8.4 to 4.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-service's releases</a>.</em></p> <blockquote> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-service's changelog</a>.</em></p> <blockquote> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/8cf3745ef959fe99ecd38dc6d556778d105687f9"><code>8cf3745</code></a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5774">#5774</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/5baec1fdc5588b22f47b4fdfdaa84305eb64299a"><code>5baec1f</code></a> chore: fix common misspelling errors (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5694">#5694</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/1c34f640d624cbd2ad14214b6c961ce2a382a417"><code>1c34f64</code></a> chore: update type definition test (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5759">#5759</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/8dceddb6a6ee39ae4db44522a86b44aa27f8d0b7"><code>8dceddb</code></a> chore: use <code>stdout.columns</code> to determine the stats table width (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5754">#5754</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/8e4090f545d094767d6975e5aa124fb9a9f05eb3"><code>8e4090f</code></a> refactor: output webdriverio logs to <code>tests/e2e/logs</code> (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5753">#5753</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/fe90abdeacc003d7510739b90625edeae47b3798"><code>fe90abd</code></a> chore: dependency maintenance (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5742">#5742</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/de3d0622bb36a9b379fe6c82458914e58d0d4f22"><code>de3d062</code></a> refactor(cli-service): webpack <code>devtool</code> option (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5735">#5735</a>)</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.3/packages/@vue/cli-service">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-service&package-manager=npm_and_yarn&previous-version=3.8.4&new-version=4.5.3)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-service&package-manager=npm_and_yarn&previous-version=3.8.4&new-version=4.5.3) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
35	33	https://api.github.com/repos/sustained/sforzando/issues/180	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/180/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/180/comments	https://api.github.com/repos/sustained/sforzando/issues/180/events	https://github.com/sustained/sforzando/pull/180	676819946	MDExOlB1bGxSZXF1ZXN0NDY2MDYwMzI2	180	Bump @vue/cli-plugin-pwa from 3.8.0 to 4.5.3	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-11T12:01:28Z	2020-08-18T15:00:22Z	2020-08-18T15:00:21Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/180', 'html_url': 'https://github.com/sustained/sforzando/pull/180', 'diff_url': 'https://github.com/sustained/sforzando/pull/180.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/180.patch'}	Bumps [@vue/cli-plugin-pwa](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-pwa) from 3.8.0 to 4.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-pwa's releases</a>.</em></p> <blockquote> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-pwa's changelog</a>.</em></p> <blockquote> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/256e136a7544ca2c4d8c03721c0b1659fee80f75"><code>256e136</code></a> docs: corrected typo in pwa readme (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-pwa/issues/5676">#5676</a>) [ci skip]</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/78374b717ee3d7a4f3bc9e40d70cb946baedacab"><code>78374b7</code></a> v4.4.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/d9453e82271547a6f4c359968595cb303250b26c"><code>d9453e8</code></a> v4.4.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/a4839e921bff841bf8893628282348f7f450a46e"><code>a4839e9</code></a> v4.4.2</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.3/packages/@vue/cli-plugin-pwa">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-pwa&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.3)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-pwa&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.3) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
36	34	https://api.github.com/repos/sustained/sforzando/issues/179	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/179/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/179/comments	https://api.github.com/repos/sustained/sforzando/issues/179/events	https://github.com/sustained/sforzando/pull/179	676819111	MDExOlB1bGxSZXF1ZXN0NDY2MDU5Njkz	179	Bump @vue/cli-plugin-babel from 3.8.0 to 4.5.3	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-11T12:00:05Z	2020-08-18T15:03:27Z	2020-08-18T15:03:25Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/179', 'html_url': 'https://github.com/sustained/sforzando/pull/179', 'diff_url': 'https://github.com/sustained/sforzando/pull/179.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/179.patch'}	Bumps [@vue/cli-plugin-babel](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel) from 3.8.0 to 4.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-babel's releases</a>.</em></p> <blockquote> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-babel's changelog</a>.</em></p> <blockquote> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/fe90abdeacc003d7510739b90625edeae47b3798"><code>fe90abd</code></a> chore: dependency maintenance (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel/issues/5742">#5742</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b1772cadd2efca7fdd218f58d788d12e4132d62f"><code>b1772ca</code></a> feat: allow choosing vue version on creation (and in presets) (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel/issues/5637">#5637</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/78374b717ee3d7a4f3bc9e40d70cb946baedacab"><code>78374b7</code></a> v4.4.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/d9453e82271547a6f4c359968595cb303250b26c"><code>d9453e8</code></a> v4.4.3</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.3/packages/@vue/cli-plugin-babel">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-babel&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.3)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-babel&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.3) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
37	35	https://api.github.com/repos/sustained/sforzando/issues/178	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/178/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/178/comments	https://api.github.com/repos/sustained/sforzando/issues/178/events	https://github.com/sustained/sforzando/pull/178	676816694	MDExOlB1bGxSZXF1ZXN0NDY2MDU3ODE5	178	Bump @vue/cli-plugin-eslint from 3.8.0 to 4.5.3	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-11T11:56:07Z	2020-08-18T15:02:46Z	2020-08-18T15:02:44Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/178', 'html_url': 'https://github.com/sustained/sforzando/pull/178', 'diff_url': 'https://github.com/sustained/sforzando/pull/178.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/178.patch'}	Bumps [@vue/cli-plugin-eslint](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint) from 3.8.0 to 4.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-eslint's releases</a>.</em></p> <blockquote> <h2>v4.5.3</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>v4.5.2</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-eslint's changelog</a>.</em></p> <blockquote> <h2>4.5.3 (2020-08-11)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5774">#5774</a> fix: load vue from <code>@vue/cli-service-global</code> on <code>vue serve</code>/<code>vue build</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5769">#5769</a> fix: add missing mocha type if wdio is not installed along with any unit testing frameworks (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5771">#5771</a> fix: only replace App.vue when there's no router plugin (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 1</h4> <ul> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/a1ee583ede9e9feb85ab2a44927da49422d48e18"><code>a1ee583</code></a> v4.5.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/5baec1fdc5588b22f47b4fdfdaa84305eb64299a"><code>5baec1f</code></a> chore: fix common misspelling errors (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5694">#5694</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b1772cadd2efca7fdd218f58d788d12e4132d62f"><code>b1772ca</code></a> feat: allow choosing vue version on creation (and in presets) (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5637">#5637</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/6592e62770791d5d2c0236a73767975e29305a95"><code>6592e62</code></a> docs: update cli eslint plugin configuration (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5579">#5579</a>) [ci skip]</li> <li><a href="https://github.com/vuejs/vue-cli/commit/78374b717ee3d7a4f3bc9e40d70cb946baedacab"><code>78374b7</code></a> v4.4.4</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.3/packages/@vue/cli-plugin-eslint">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-eslint&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.3)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-eslint&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.3) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
38	36	https://api.github.com/repos/sustained/sforzando/issues/177	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/177/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/177/comments	https://api.github.com/repos/sustained/sforzando/issues/177/events	https://github.com/sustained/sforzando/pull/177	675971023	MDExOlB1bGxSZXF1ZXN0NDY1MzYzNTU5	177	Bump @vue/cli-plugin-eslint from 3.8.0 to 4.5.2	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-10T08:48:19Z	2020-08-11T11:56:11Z	2020-08-11T11:56:09Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/177', 'html_url': 'https://github.com/sustained/sforzando/pull/177', 'diff_url': 'https://github.com/sustained/sforzando/pull/177.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/177.patch'}	Bumps [@vue/cli-plugin-eslint](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint) from 3.8.0 to 4.5.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-eslint's releases</a>.</em></p> <blockquote> <h2>v4.5.2</h2> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <p>Or, in other existing projects, you can run <code>vue add @vue/e2e-webdriverio@next</code> to try it out.</p> <hr /> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-eslint's changelog</a>.</em></p> <blockquote> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5736">#5736</a> fix(e2e): shouldn't install webdrivers for unchecked browsers on creation (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5718">#5718</a> fix: make vue-loader-v16 an optional dependency, avoid crashing npm 5 (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5759">#5759</a> chore: update type definition test (<a href="https://github.com/jamesgeorge007">@jamesgeorge007</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5735">#5735</a> refactor(cli-service): webpack <code>devtool</code> option (<a href="https://github.com/jeneser">@jeneser</a>)</li> </ul> </li> </ul> <h4>:hammer: Underlying Tools</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-babel</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-plugin-unit-jest</code>, <code>@vue/cli-service</code>, <code>@vue/cli-test-utils</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5742">#5742</a> chore: dependency maintenance (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 6</h4> <ul> <li>Booker Zhao (<a href="https://github.com/binggg">@binggg</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/5baec1fdc5588b22f47b4fdfdaa84305eb64299a"><code>5baec1f</code></a> chore: fix common misspelling errors (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5694">#5694</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b1772cadd2efca7fdd218f58d788d12e4132d62f"><code>b1772ca</code></a> feat: allow choosing vue version on creation (and in presets) (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5637">#5637</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/6592e62770791d5d2c0236a73767975e29305a95"><code>6592e62</code></a> docs: update cli eslint plugin configuration (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint/issues/5579">#5579</a>) [ci skip]</li> <li><a href="https://github.com/vuejs/vue-cli/commit/78374b717ee3d7a4f3bc9e40d70cb946baedacab"><code>78374b7</code></a> v4.4.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/d9453e82271547a6f4c359968595cb303250b26c"><code>d9453e8</code></a> v4.4.3</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.2/packages/@vue/cli-plugin-eslint">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-eslint&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.2)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-eslint&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.2) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
39	37	https://api.github.com/repos/sustained/sforzando/issues/176	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/176/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/176/comments	https://api.github.com/repos/sustained/sforzando/issues/176/events	https://github.com/sustained/sforzando/pull/176	675970679	MDExOlB1bGxSZXF1ZXN0NDY1MzYzMjU2	176	Bump @vue/cli-plugin-babel from 3.8.0 to 4.5.2	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-10T08:47:44Z	2020-08-11T12:00:10Z	2020-08-11T12:00:08Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/176', 'html_url': 'https://github.com/sustained/sforzando/pull/176', 'diff_url': 'https://github.com/sustained/sforzando/pull/176.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/176.patch'}	Bumps [@vue/cli-plugin-babel](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel) from 3.8.0 to 4.5.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-babel's releases</a>.</em></p> <blockquote> <h2>v4.5.2</h2> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <p>Or, in other existing projects, you can run <code>vue add @vue/e2e-webdriverio@next</code> to try it out.</p> <hr /> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-babel's changelog</a>.</em></p> <blockquote> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5736">#5736</a> fix(e2e): shouldn't install webdrivers for unchecked browsers on creation (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5718">#5718</a> fix: make vue-loader-v16 an optional dependency, avoid crashing npm 5 (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5759">#5759</a> chore: update type definition test (<a href="https://github.com/jamesgeorge007">@jamesgeorge007</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5735">#5735</a> refactor(cli-service): webpack <code>devtool</code> option (<a href="https://github.com/jeneser">@jeneser</a>)</li> </ul> </li> </ul> <h4>:hammer: Underlying Tools</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-babel</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-plugin-unit-jest</code>, <code>@vue/cli-service</code>, <code>@vue/cli-test-utils</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5742">#5742</a> chore: dependency maintenance (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 6</h4> <ul> <li>Booker Zhao (<a href="https://github.com/binggg">@binggg</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/fe90abdeacc003d7510739b90625edeae47b3798"><code>fe90abd</code></a> chore: dependency maintenance (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel/issues/5742">#5742</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b1772cadd2efca7fdd218f58d788d12e4132d62f"><code>b1772ca</code></a> feat: allow choosing vue version on creation (and in presets) (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel/issues/5637">#5637</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/78374b717ee3d7a4f3bc9e40d70cb946baedacab"><code>78374b7</code></a> v4.4.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/d9453e82271547a6f4c359968595cb303250b26c"><code>d9453e8</code></a> v4.4.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/a4839e921bff841bf8893628282348f7f450a46e"><code>a4839e9</code></a> v4.4.2</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.2/packages/@vue/cli-plugin-babel">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-babel&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.2)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-babel&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.2) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
40	38	https://api.github.com/repos/sustained/sforzando/issues/175	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/175/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/175/comments	https://api.github.com/repos/sustained/sforzando/issues/175/events	https://github.com/sustained/sforzando/pull/175	675969285	MDExOlB1bGxSZXF1ZXN0NDY1MzYyMTE3	175	Bump @vue/cli-service from 3.8.4 to 4.5.2	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-10T08:45:19Z	2020-08-11T12:03:46Z	2020-08-11T12:03:44Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/175', 'html_url': 'https://github.com/sustained/sforzando/pull/175', 'diff_url': 'https://github.com/sustained/sforzando/pull/175.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/175.patch'}	Bumps [@vue/cli-service](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service) from 3.8.4 to 4.5.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-service's releases</a>.</em></p> <blockquote> <h2>v4.5.2</h2> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <p>Or, in other existing projects, you can run <code>vue add @vue/e2e-webdriverio@next</code> to try it out.</p> <hr /> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-service's changelog</a>.</em></p> <blockquote> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5736">#5736</a> fix(e2e): shouldn't install webdrivers for unchecked browsers on creation (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5718">#5718</a> fix: make vue-loader-v16 an optional dependency, avoid crashing npm 5 (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5759">#5759</a> chore: update type definition test (<a href="https://github.com/jamesgeorge007">@jamesgeorge007</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5735">#5735</a> refactor(cli-service): webpack <code>devtool</code> option (<a href="https://github.com/jeneser">@jeneser</a>)</li> </ul> </li> </ul> <h4>:hammer: Underlying Tools</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-babel</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-plugin-unit-jest</code>, <code>@vue/cli-service</code>, <code>@vue/cli-test-utils</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5742">#5742</a> chore: dependency maintenance (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 6</h4> <ul> <li>Booker Zhao (<a href="https://github.com/binggg">@binggg</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/5baec1fdc5588b22f47b4fdfdaa84305eb64299a"><code>5baec1f</code></a> chore: fix common misspelling errors (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5694">#5694</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/1c34f640d624cbd2ad14214b6c961ce2a382a417"><code>1c34f64</code></a> chore: update type definition test (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5759">#5759</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/8dceddb6a6ee39ae4db44522a86b44aa27f8d0b7"><code>8dceddb</code></a> chore: use <code>stdout.columns</code> to determine the stats table width (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5754">#5754</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/8e4090f545d094767d6975e5aa124fb9a9f05eb3"><code>8e4090f</code></a> refactor: output webdriverio logs to <code>tests/e2e/logs</code> (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5753">#5753</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/fe90abdeacc003d7510739b90625edeae47b3798"><code>fe90abd</code></a> chore: dependency maintenance (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5742">#5742</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/de3d0622bb36a9b379fe6c82458914e58d0d4f22"><code>de3d062</code></a> refactor(cli-service): webpack <code>devtool</code> option (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5735">#5735</a>)</li> <li><a href="https://github.com/vuejs/vue-cli/commit/d319007ffa702986e68222f8ca07a59bbfc1dbd8"><code>d319007</code></a> feat: implement a migrator that removes <code>vue-next</code> as it's no longer needed (...</li> <li><a href="https://github.com/vuejs/vue-cli/commit/57f4184e4f9ca39b94ba42cc0ef2712748a242a4"><code>57f4184</code></a> fix: make vue-loader-v16 an optional dependency, avoid crashing npm 5 (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service/issues/5718">#5718</a>)</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.2/packages/@vue/cli-service">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-service&package-manager=npm_and_yarn&previous-version=3.8.4&new-version=4.5.2)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-service&package-manager=npm_and_yarn&previous-version=3.8.4&new-version=4.5.2) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
41	39	https://api.github.com/repos/sustained/sforzando/issues/174	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/174/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/174/comments	https://api.github.com/repos/sustained/sforzando/issues/174/events	https://github.com/sustained/sforzando/pull/174	675968831	MDExOlB1bGxSZXF1ZXN0NDY1MzYxNzM2	174	Bump vue-router from 3.0.6 to 3.4.2	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-10T08:44:30Z	2020-08-12T12:41:43Z	2020-08-12T12:41:41Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/174', 'html_url': 'https://github.com/sustained/sforzando/pull/174', 'diff_url': 'https://github.com/sustained/sforzando/pull/174.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/174.patch'}	Bumps [vue-router](https://github.com/vuejs/vue-router) from 3.0.6 to 3.4.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/releases">vue-router's releases</a>.</em></p> <blockquote> <h2>v3.3.4</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2>v3.3.3</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> <li><strong>types:</strong> RouterConfig for multiple components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3217">#3217</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3218">#3218</a>) (<a href="https://github.com/vuejs/vue-router/commit/dab86c5">dab86c5</a>)</li> </ul> <h2>v3.3.2</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> NavigationCanceled with async components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3211">#3211</a>) (<a href="https://github.com/vuejs/vue-router/commit/be39ca3">be39ca3</a>)</li> <li>remove error.stack modification (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3212">#3212</a>) (<a href="https://github.com/vuejs/vue-router/commit/a0075ed">a0075ed</a>)</li> </ul> <h2>v3.3.1</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> avoid unnecessary log of errors (<a href="https://github.com/vuejs/vue-router/commit/2c77247">2c77247</a>)</li> </ul> <h2>v3.3.0</h2> <h3>Features</h3> <ul> <li><strong>errors:</strong> create router errors (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3047">#3047</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c727f9">4c727f9</a>)</li> <li><strong>history:</strong> Remove event listeners when all apps are destroyed. (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3172">#3172</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c81be8">4c81be8</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3152">#3152</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2341">#2341</a></li> <li><strong>url:</strong> call afterEach hooks after url is ensured (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2292">#2292</a>) (<a href="https://github.com/vuejs/vue-router/commit/1575a18">1575a18</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2079">#2079</a></li> </ul> <h2>v3.2.0</h2> <h3>Bug Fixes</h3> <ul> <li><strong>html5:</strong> make base case insensitive (<a href="https://github.com/vuejs/vue-router/commit/04a2143">04a2143</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2154">#2154</a></li> <li>check for pushState being a function (<a href="https://github.com/vuejs/vue-router/commit/bc41f67">bc41f67</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3154">#3154</a></li> </ul> <h3>Features</h3> <ul> <li><strong>link:</strong> add aria-current to active links (close <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2116">#2116</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3073">#3073</a>) (<a href="https://github.com/vuejs/vue-router/commit/6ec0ee5">6ec0ee5</a>)</li> <li><strong>scroll:</strong> use manual scrollRestoration with scrollBehavior (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/1814">#1814</a>) (<a href="https://github.com/vuejs/vue-router/commit/1261363">1261363</a>)</li> <li><strong>types:</strong> NavigationGuardNext (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2497">#2497</a>) (<a href="https://github.com/vuejs/vue-router/commit/d18c497">d18c497</a>)</li> </ul> <h2>v3.1.6</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/blob/dev/CHANGELOG.md">vue-router's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.4.1...v3.4.2">3.4.2</a> (2020-08-07)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> leave object as is (<a href="https://github.com/vuejs/vue-router/commit/7b3328d">7b3328d</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3282">#3282</a></li> <li>keep repeated params in query/hash relative locations (<a href="https://github.com/vuejs/vue-router/commit/4fbaa9f">4fbaa9f</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.4.0...v3.4.1">3.4.1</a> (2020-08-06)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> remove undefined values (<a href="https://github.com/vuejs/vue-router/commit/b952573">b952573</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3276">#3276</a></li> <li><strong>router:</strong> properly check null and undefined in isSameRoute (<a href="https://github.com/vuejs/vue-router/commit/d6546d9">d6546d9</a>)</li> </ul> <h1><a href="https://github.com/vuejs/vue-router/compare/v3.3.4...v3.4.0">3.4.0</a> (2020-08-05)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> cast query values to strings (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2131">#2131</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3232">#3232</a>) (<a href="https://github.com/vuejs/vue-router/commit/f0d9c2d">f0d9c2d</a>)</li> <li><strong>scroll:</strong> run scrollBehavior on initial load (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3196">#3196</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3199">#3199</a>) (<a href="https://github.com/vuejs/vue-router/commit/84398ae">84398ae</a>)</li> <li><strong>types:</strong> add missing <code>options</code> property type (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3248">#3248</a>) (<a href="https://github.com/vuejs/vue-router/commit/83920c9">83920c9</a>)</li> </ul> <h3>Features</h3> <ul> <li>add vetur tags and attributes (<a href="https://github.com/vuejs/vue-router/commit/bf1e1bd">bf1e1bd</a>)</li> <li><strong>errors:</strong> capture errors thrown in redirect callback in onError (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3251">#3251</a>) (<a href="https://github.com/vuejs/vue-router/commit/40e4df7">40e4df7</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a></li> <li><strong>errors:</strong> expose <code>isNavigationFailure</code> (<a href="https://github.com/vuejs/vue-router/commit/8d92dc0">8d92dc0</a>)</li> <li><strong>errors:</strong> NavigationDuplicated name for backwards compatibility (<a href="https://github.com/vuejs/vue-router/commit/b854a20">b854a20</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.3...v3.3.4">3.3.4</a> (2020-06-13)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.2...v3.3.3">3.3.3</a> (2020-06-12)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> <li><strong>types:</strong> RouterConfig for multiple components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3217">#3217</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3218">#3218</a>) (<a href="https://github.com/vuejs/vue-router/commit/dab86c5">dab86c5</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.1...v3.3.2">3.3.2</a> (2020-05-29)</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-router/commit/a5233b3aac8836406fc7c0d5b111cac2abe7fa02"><code>a5233b3</code></a> chore(release): 3.4.2</li> <li><a href="https://github.com/vuejs/vue-router/commit/b35ae07cdb324ff277f4608a53c85f094a57e373"><code>b35ae07</code></a> build: bundle 3.4.2</li> <li><a href="https://github.com/vuejs/vue-router/commit/7b3328d57ad5511c737d6e8fa6275fab921047b8"><code>7b3328d</code></a> fix(query): leave object as is</li> <li><a href="https://github.com/vuejs/vue-router/commit/4fbaa9f7880276e661227442ef5923131a589210"><code>4fbaa9f</code></a> fix: keep repeated params in query/hash relative locations</li> <li><a href="https://github.com/vuejs/vue-router/commit/7ddcc2da8cd529c8c9578692039aba7cd48e53f2"><code>7ddcc2d</code></a> docs(ja): fix markdown to display sentence as expected (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3278">#3278</a>) [skip ci]</li> <li><a href="https://github.com/vuejs/vue-router/commit/1b52c94efed5ca5780635829195b4f9760a0660e"><code>1b52c94</code></a> docs: fix typo (md file syntax) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3277">#3277</a>) [skip ci]</li> <li><a href="https://github.com/vuejs/vue-router/commit/03fda8fb4e60f517b962e800a03ca85a35e9daaf"><code>03fda8f</code></a> chore(changelog): 3.4.1</li> <li><a href="https://github.com/vuejs/vue-router/commit/51b2559ca4469bf61d1fd76c3312e133522de253"><code>51b2559</code></a> chore(release): 3.4.1</li> <li><a href="https://github.com/vuejs/vue-router/commit/76db87327d8b8a67a9363c9316fe06a3bd3bb83f"><code>76db873</code></a> build: bundle 3.4.1</li> <li><a href="https://github.com/vuejs/vue-router/commit/d6546d9e388a40b8200c77c0394fc8c8ddf60dac"><code>d6546d9</code></a> fix(router): properly check null and undefined in isSameRoute</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-router/compare/v3.0.6...v3.4.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.2)](https://dependabot.com/compatibility-score/?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.2) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
42	40	https://api.github.com/repos/sustained/sforzando/issues/173	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/173/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/173/comments	https://api.github.com/repos/sustained/sforzando/issues/173/events	https://github.com/sustained/sforzando/pull/173	675967822	MDExOlB1bGxSZXF1ZXN0NDY1MzYwOTAz	173	Bump @vue/cli-plugin-pwa from 3.8.0 to 4.5.2	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-10T08:42:39Z	2020-08-11T12:01:32Z	2020-08-11T12:01:30Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/173', 'html_url': 'https://github.com/sustained/sforzando/pull/173', 'diff_url': 'https://github.com/sustained/sforzando/pull/173.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/173.patch'}	Bumps [@vue/cli-plugin-pwa](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-pwa) from 3.8.0 to 4.5.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/releases">@vue/cli-plugin-pwa's releases</a>.</em></p> <blockquote> <h2>v4.5.2</h2> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation, :house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>v4.5.1</h2> <h2>How to Upgrade</h2> <p>First, reinstall the latest version of <code>@vue/cli</code> globally.</p> <pre><code>yarn global add @vue/cli@next # OR npm install -g @vue/cli@next </code></pre> <p>Then in the existing Vue CLI projects, run</p> <pre><code>vue upgrade --next </code></pre> <hr /> <h2>Highlights</h2> <p>This version comes with a new core plugin for E2E testing - <code>@vue/cli-plugin-e2e-webdriverio</code>, thanks to the maintainer of WebdriverIO <a href="https://github.com/christian-bromann">@christian-bromann</a>.</p> <p>Users will see WebDriverIO listed as an option for E2E test when creating a new project with <code>vue create</code>.</p> <p>Or, in other existing projects, you can run <code>vue add @vue/e2e-webdriverio@next</code> to try it out.</p> <hr /> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md">@vue/cli-plugin-pwa's changelog</a>.</em></p> <blockquote> <h2>4.5.2 (2020-08-10)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5768">#5768</a> fix: no longer need a shim for fork-ts-checker vue 3 support (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-eslint</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-service</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5694">#5694</a> [Fix] common misspelling errors (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> </li> </ul> <h4>Committers: 3</h4> <ul> <li>Alexander Sokolov (<a href="https://github.com/Alex-Sokolov">@Alex-Sokolov</a>)</li> <li>Haoqun Jiang (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li>Necmettin Karakaya (<a href="https://github.com/Necmttn">@Necmttn</a>)</li> </ul> <h2>4.5.1 (2020-08-06)</h2> <h4>:rocket: New Features</h4> <ul> <li><code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-shared-utils</code>, <code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5479">#5479</a> feat(e2e-webdriverio): add e2e plugin for WebdriverIO (<a href="https://github.com/christian-bromann">@christian-bromann</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5725">#5725</a> feat: implement a migrator that removes <code>vue-cli-plugin-next</code> as it's no longer needed (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>@vue/cli-plugin-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5731">#5731</a> fix: fix skipLibCheck default value for <code>vue create</code> (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5722">#5722</a> fix: use fork-ts-checker-webpack-plugin v5 for vue 3 type checking (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5744">#5744</a> fix: ignore <code>.svn/**</code> when reading and writing files (<a href="https://github.com/sodatea">@sodatea</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5736">#5736</a> fix(e2e): shouldn't install webdrivers for unchecked browsers on creation (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5718">#5718</a> fix: make vue-loader-v16 an optional dependency, avoid crashing npm 5 (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>@vue/cli-service</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5759">#5759</a> chore: update type definition test (<a href="https://github.com/jamesgeorge007">@jamesgeorge007</a>)</li> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5735">#5735</a> refactor(cli-service): webpack <code>devtool</code> option (<a href="https://github.com/jeneser">@jeneser</a>)</li> </ul> </li> </ul> <h4>:hammer: Underlying Tools</h4> <ul> <li><code>@vue/babel-preset-app</code>, <code>@vue/cli-plugin-babel</code>, <code>@vue/cli-plugin-e2e-nightwatch</code>, <code>@vue/cli-plugin-e2e-webdriverio</code>, <code>@vue/cli-plugin-typescript</code>, <code>@vue/cli-plugin-unit-jest</code>, <code>@vue/cli-service</code>, <code>@vue/cli-test-utils</code> <ul> <li><a href="https://github-redirect.dependabot.com/vuejs/vue-cli/pull/5742">#5742</a> chore: dependency maintenance (<a href="https://github.com/sodatea">@sodatea</a>)</li> </ul> </li> </ul> <h4>Committers: 6</h4> <ul> <li>Booker Zhao (<a href="https://github.com/binggg">@binggg</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-cli/commit/395212598aa243d56159c6048372b358fed812fe"><code>3952125</code></a> v4.5.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/09adc41408f6528554fcf9801b5bae169d5051a9"><code>09adc41</code></a> v4.5.1</li> <li><a href="https://github.com/vuejs/vue-cli/commit/56348259db4412428d9b5ab49e4bc91191c24fff"><code>5634825</code></a> v4.5.0</li> <li><a href="https://github.com/vuejs/vue-cli/commit/256e136a7544ca2c4d8c03721c0b1659fee80f75"><code>256e136</code></a> docs: corrected typo in pwa readme (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-pwa/issues/5676">#5676</a>) [ci skip]</li> <li><a href="https://github.com/vuejs/vue-cli/commit/e311b062cb388f4d6230ea45cdc3bd3512b88b61"><code>e311b06</code></a> v4.4.6</li> <li><a href="https://github.com/vuejs/vue-cli/commit/b66bc8c6e6e628f03cb2545871211c00795b266d"><code>b66bc8c</code></a> v4.4.5</li> <li><a href="https://github.com/vuejs/vue-cli/commit/78374b717ee3d7a4f3bc9e40d70cb946baedacab"><code>78374b7</code></a> v4.4.4</li> <li><a href="https://github.com/vuejs/vue-cli/commit/d9453e82271547a6f4c359968595cb303250b26c"><code>d9453e8</code></a> v4.4.3</li> <li><a href="https://github.com/vuejs/vue-cli/commit/a4839e921bff841bf8893628282348f7f450a46e"><code>a4839e9</code></a> v4.4.2</li> <li><a href="https://github.com/vuejs/vue-cli/commit/2dc0e81c0b24995d5840d10a2e75b46351a0a931"><code>2dc0e81</code></a> docs: add documentation for <code>manifestCrossorigin</code> (<a href="https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-pwa/issues/5571">#5571</a>) [ci skip]</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-cli/commits/v4.5.2/packages/@vue/cli-plugin-pwa">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=@vue/cli-plugin-pwa&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.2)](https://dependabot.com/compatibility-score/?dependency-name=@vue/cli-plugin-pwa&package-manager=npm_and_yarn&previous-version=3.8.0&new-version=4.5.2) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
43	41	https://api.github.com/repos/sustained/sforzando/issues/172	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/172/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/172/comments	https://api.github.com/repos/sustained/sforzando/issues/172/events	https://github.com/sustained/sforzando/pull/172	674177820	MDExOlB1bGxSZXF1ZXN0NDYzOTE0Mzg2	172	Bump vue-router from 3.0.6 to 3.4.1	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-06T09:41:30Z	2020-08-10T08:44:36Z	2020-08-10T08:44:34Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/172', 'html_url': 'https://github.com/sustained/sforzando/pull/172', 'diff_url': 'https://github.com/sustained/sforzando/pull/172.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/172.patch'}	Bumps [vue-router](https://github.com/vuejs/vue-router) from 3.0.6 to 3.4.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/releases">vue-router's releases</a>.</em></p> <blockquote> <h2>v3.3.4</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2>v3.3.3</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> <li><strong>types:</strong> RouterConfig for multiple components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3217">#3217</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3218">#3218</a>) (<a href="https://github.com/vuejs/vue-router/commit/dab86c5">dab86c5</a>)</li> </ul> <h2>v3.3.2</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> NavigationCanceled with async components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3211">#3211</a>) (<a href="https://github.com/vuejs/vue-router/commit/be39ca3">be39ca3</a>)</li> <li>remove error.stack modification (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3212">#3212</a>) (<a href="https://github.com/vuejs/vue-router/commit/a0075ed">a0075ed</a>)</li> </ul> <h2>v3.3.1</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> avoid unnecessary log of errors (<a href="https://github.com/vuejs/vue-router/commit/2c77247">2c77247</a>)</li> </ul> <h2>v3.3.0</h2> <h3>Features</h3> <ul> <li><strong>errors:</strong> create router errors (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3047">#3047</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c727f9">4c727f9</a>)</li> <li><strong>history:</strong> Remove event listeners when all apps are destroyed. (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3172">#3172</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c81be8">4c81be8</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3152">#3152</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2341">#2341</a></li> <li><strong>url:</strong> call afterEach hooks after url is ensured (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2292">#2292</a>) (<a href="https://github.com/vuejs/vue-router/commit/1575a18">1575a18</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2079">#2079</a></li> </ul> <h2>v3.2.0</h2> <h3>Bug Fixes</h3> <ul> <li><strong>html5:</strong> make base case insensitive (<a href="https://github.com/vuejs/vue-router/commit/04a2143">04a2143</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2154">#2154</a></li> <li>check for pushState being a function (<a href="https://github.com/vuejs/vue-router/commit/bc41f67">bc41f67</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3154">#3154</a></li> </ul> <h3>Features</h3> <ul> <li><strong>link:</strong> add aria-current to active links (close <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2116">#2116</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3073">#3073</a>) (<a href="https://github.com/vuejs/vue-router/commit/6ec0ee5">6ec0ee5</a>)</li> <li><strong>scroll:</strong> use manual scrollRestoration with scrollBehavior (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/1814">#1814</a>) (<a href="https://github.com/vuejs/vue-router/commit/1261363">1261363</a>)</li> <li><strong>types:</strong> NavigationGuardNext (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2497">#2497</a>) (<a href="https://github.com/vuejs/vue-router/commit/d18c497">d18c497</a>)</li> </ul> <h2>v3.1.6</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/blob/dev/CHANGELOG.md">vue-router's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.4.0...v3.4.1">3.4.1</a> (2020-08-06)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> remove undefined values (<a href="https://github.com/vuejs/vue-router/commit/b952573">b952573</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3276">#3276</a></li> <li><strong>router:</strong> properly check null and undefined in isSameRoute (<a href="https://github.com/vuejs/vue-router/commit/d6546d9">d6546d9</a>)</li> </ul> <h1><a href="https://github.com/vuejs/vue-router/compare/v3.3.4...v3.4.0">3.4.0</a> (2020-08-05)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> cast query values to strings (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2131">#2131</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3232">#3232</a>) (<a href="https://github.com/vuejs/vue-router/commit/f0d9c2d">f0d9c2d</a>)</li> <li><strong>scroll:</strong> run scrollBehavior on initial load (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3196">#3196</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3199">#3199</a>) (<a href="https://github.com/vuejs/vue-router/commit/84398ae">84398ae</a>)</li> <li><strong>types:</strong> add missing <code>options</code> property type (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3248">#3248</a>) (<a href="https://github.com/vuejs/vue-router/commit/83920c9">83920c9</a>)</li> </ul> <h3>Features</h3> <ul> <li>add vetur tags and attributes (<a href="https://github.com/vuejs/vue-router/commit/bf1e1bd">bf1e1bd</a>)</li> <li><strong>errors:</strong> capture errors thrown in redirect callback in onError (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3251">#3251</a>) (<a href="https://github.com/vuejs/vue-router/commit/40e4df7">40e4df7</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a></li> <li><strong>errors:</strong> expose <code>isNavigationFailure</code> (<a href="https://github.com/vuejs/vue-router/commit/8d92dc0">8d92dc0</a>)</li> <li><strong>errors:</strong> NavigationDuplicated name for backwards compatibility (<a href="https://github.com/vuejs/vue-router/commit/b854a20">b854a20</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.3...v3.3.4">3.3.4</a> (2020-06-13)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.2...v3.3.3">3.3.3</a> (2020-06-12)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> <li><strong>types:</strong> RouterConfig for multiple components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3217">#3217</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3218">#3218</a>) (<a href="https://github.com/vuejs/vue-router/commit/dab86c5">dab86c5</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.1...v3.3.2">3.3.2</a> (2020-05-29)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> NavigationCanceled with async components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3211">#3211</a>) (<a href="https://github.com/vuejs/vue-router/commit/be39ca3">be39ca3</a>)</li> <li>remove error.stack modification (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3212">#3212</a>) (<a href="https://github.com/vuejs/vue-router/commit/a0075ed">a0075ed</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.0...v3.3.1">3.3.1</a> (2020-05-27)</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-router/commit/51b2559ca4469bf61d1fd76c3312e133522de253"><code>51b2559</code></a> chore(release): 3.4.1</li> <li><a href="https://github.com/vuejs/vue-router/commit/76db87327d8b8a67a9363c9316fe06a3bd3bb83f"><code>76db873</code></a> build: bundle 3.4.1</li> <li><a href="https://github.com/vuejs/vue-router/commit/d6546d9e388a40b8200c77c0394fc8c8ddf60dac"><code>d6546d9</code></a> fix(router): properly check null and undefined in isSameRoute</li> <li><a href="https://github.com/vuejs/vue-router/commit/b95257371d0ebb166d3a147a771ad9aecba0fbb8"><code>b952573</code></a> fix(query): remove undefined values</li> <li><a href="https://github.com/vuejs/vue-router/commit/982f334eee929d1d8b230647d75460e609ade519"><code>982f334</code></a> chore: upgrade vuepress (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3274">#3274</a>)</li> <li><a href="https://github.com/vuejs/vue-router/commit/66f6f7be54609a245dee75d0be9425dfeb6133ff"><code>66f6f7b</code></a> chore: refactor changelog [skip ci]</li> <li><a href="https://github.com/vuejs/vue-router/commit/4f752308cd1a220d3b74ca10e91181cfb7e89335"><code>4f75230</code></a> chore(changelog): 3.4.0</li> <li><a href="https://github.com/vuejs/vue-router/commit/4860ad0cb28e351a55026b922afdb96cd0769780"><code>4860ad0</code></a> chore(release): 3.4.0</li> <li><a href="https://github.com/vuejs/vue-router/commit/8d5ddb01e6318fe72332c5655cfb5fc67b264514"><code>8d5ddb0</code></a> build: bundle 3.4.0</li> <li><a href="https://github.com/vuejs/vue-router/commit/ea03de16e18218c55203ba497365ad470ebd8e29"><code>ea03de1</code></a> feat: add vetur tags and attributes</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-router/compare/v3.0.6...v3.4.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.1)](https://dependabot.com/compatibility-score/?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.1) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
44	42	https://api.github.com/repos/sustained/sforzando/issues/171	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/171/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/171/comments	https://api.github.com/repos/sustained/sforzando/issues/171/events	https://github.com/sustained/sforzando/pull/171	673369664	MDExOlB1bGxSZXF1ZXN0NDYzMjQxODA0	171	Bump vue-router from 3.0.6 to 3.4.0	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-08-05T08:48:30Z	2020-08-06T09:41:35Z	2020-08-06T09:41:33Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/171', 'html_url': 'https://github.com/sustained/sforzando/pull/171', 'diff_url': 'https://github.com/sustained/sforzando/pull/171.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/171.patch'}	Bumps [vue-router](https://github.com/vuejs/vue-router) from 3.0.6 to 3.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/releases">vue-router's releases</a>.</em></p> <blockquote> <h2>v3.3.4</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2>v3.3.3</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> <li><strong>types:</strong> RouterConfig for multiple components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3217">#3217</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3218">#3218</a>) (<a href="https://github.com/vuejs/vue-router/commit/dab86c5">dab86c5</a>)</li> </ul> <h2>v3.3.2</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> NavigationCanceled with async components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3211">#3211</a>) (<a href="https://github.com/vuejs/vue-router/commit/be39ca3">be39ca3</a>)</li> <li>remove error.stack modification (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3212">#3212</a>) (<a href="https://github.com/vuejs/vue-router/commit/a0075ed">a0075ed</a>)</li> </ul> <h2>v3.3.1</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> avoid unnecessary log of errors (<a href="https://github.com/vuejs/vue-router/commit/2c77247">2c77247</a>)</li> </ul> <h2>v3.3.0</h2> <h3>Features</h3> <ul> <li><strong>errors:</strong> create router errors (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3047">#3047</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c727f9">4c727f9</a>)</li> <li><strong>history:</strong> Remove event listeners when all apps are destroyed. (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3172">#3172</a>) (<a href="https://github.com/vuejs/vue-router/commit/4c81be8">4c81be8</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3152">#3152</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2341">#2341</a></li> <li><strong>url:</strong> call afterEach hooks after url is ensured (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2292">#2292</a>) (<a href="https://github.com/vuejs/vue-router/commit/1575a18">1575a18</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2079">#2079</a></li> </ul> <h2>v3.2.0</h2> <h3>Bug Fixes</h3> <ul> <li><strong>html5:</strong> make base case insensitive (<a href="https://github.com/vuejs/vue-router/commit/04a2143">04a2143</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2154">#2154</a></li> <li>check for pushState being a function (<a href="https://github.com/vuejs/vue-router/commit/bc41f67">bc41f67</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3154">#3154</a></li> </ul> <h3>Features</h3> <ul> <li><strong>link:</strong> add aria-current to active links (close <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2116">#2116</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3073">#3073</a>) (<a href="https://github.com/vuejs/vue-router/commit/6ec0ee5">6ec0ee5</a>)</li> <li><strong>scroll:</strong> use manual scrollRestoration with scrollBehavior (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/1814">#1814</a>) (<a href="https://github.com/vuejs/vue-router/commit/1261363">1261363</a>)</li> <li><strong>types:</strong> NavigationGuardNext (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2497">#2497</a>) (<a href="https://github.com/vuejs/vue-router/commit/d18c497">d18c497</a>)</li> </ul> <h2>v3.1.6</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vuejs/vue-router/blob/dev/CHANGELOG.md">vue-router's changelog</a>.</em></p> <blockquote> <h1><a href="https://github.com/vuejs/vue-router/compare/v3.3.4...v3.4.0">3.4.0</a> (2020-08-05)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>query:</strong> cast query values to strings (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2131">#2131</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3232">#3232</a>) (<a href="https://github.com/vuejs/vue-router/commit/f0d9c2d">f0d9c2d</a>)</li> <li><strong>scroll:</strong> run scrollBehavior on initial load (fix <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3196">#3196</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3199">#3199</a>) (<a href="https://github.com/vuejs/vue-router/commit/84398ae">84398ae</a>)</li> <li><strong>types:</strong> add missing <code>options</code> property type (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3248">#3248</a>) (<a href="https://github.com/vuejs/vue-router/commit/83920c9">83920c9</a>)</li> </ul> <h3>Features</h3> <ul> <li>add vetur tags and attributes (<a href="https://github.com/vuejs/vue-router/commit/bf1e1bd">bf1e1bd</a>)</li> <li><strong>errors:</strong> capture errors thrown in redirect callback in onError (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3251">#3251</a>) (<a href="https://github.com/vuejs/vue-router/commit/40e4df7">40e4df7</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a> <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3201">#3201</a></li> <li><strong>errors:</strong> expose <code>isNavigationFailure</code> (<a href="https://github.com/vuejs/vue-router/commit/8d92dc0">8d92dc0</a>)</li> <li><strong>errors:</strong> NavigationDuplicated name for backwards compatibility (<a href="https://github.com/vuejs/vue-router/commit/b854a20">b854a20</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.3...v3.3.4">3.3.4</a> (2020-06-13)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>matcher:</strong> navigate to same as current location (<a href="https://github.com/vuejs/vue-router/commit/62598b9">62598b9</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3216">#3216</a></li> <li><strong>types:</strong> missing children (<a href="https://github.com/vuejs/vue-router/commit/c1df447">c1df447</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3230">#3230</a></li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.2...v3.3.3">3.3.3</a> (2020-06-12)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>history:</strong> initial redirect call onReady's onSuccess (<a href="https://github.com/vuejs/vue-router/commit/4d484bf">4d484bf</a>), closes <a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3225">#3225</a></li> <li>update ja docs (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3214">#3214</a>) (<a href="https://github.com/vuejs/vue-router/commit/c05f741">c05f741</a>)</li> </ul> <h3>Features</h3> <ul> <li>better wording for navigation redirected failure (<a href="https://github.com/vuejs/vue-router/commit/1f3aea6">1f3aea6</a>)</li> <li><strong>types:</strong> RouterConfig for multiple components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3217">#3217</a>) (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3218">#3218</a>) (<a href="https://github.com/vuejs/vue-router/commit/dab86c5">dab86c5</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.1...v3.3.2">3.3.2</a> (2020-05-29)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> NavigationCanceled with async components (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3211">#3211</a>) (<a href="https://github.com/vuejs/vue-router/commit/be39ca3">be39ca3</a>)</li> <li>remove error.stack modification (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3212">#3212</a>) (<a href="https://github.com/vuejs/vue-router/commit/a0075ed">a0075ed</a>)</li> </ul> <h2><a href="https://github.com/vuejs/vue-router/compare/v3.3.0...v3.3.1">3.3.1</a> (2020-05-27)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>errors:</strong> avoid unnecessary log of errors (<a href="https://github.com/vuejs/vue-router/commit/2c77247">2c77247</a>)</li> </ul> <h1><a href="https://github.com/vuejs/vue-router/compare/v3.2.0...v3.3.0">3.3.0</a> (2020-05-27)</h1> <h3>Features</h3> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vuejs/vue-router/commit/4f752308cd1a220d3b74ca10e91181cfb7e89335"><code>4f75230</code></a> chore(changelog): 3.4.0</li> <li><a href="https://github.com/vuejs/vue-router/commit/4860ad0cb28e351a55026b922afdb96cd0769780"><code>4860ad0</code></a> chore(release): 3.4.0</li> <li><a href="https://github.com/vuejs/vue-router/commit/8d5ddb01e6318fe72332c5655cfb5fc67b264514"><code>8d5ddb0</code></a> build: bundle 3.4.0</li> <li><a href="https://github.com/vuejs/vue-router/commit/ea03de16e18218c55203ba497365ad470ebd8e29"><code>ea03de1</code></a> feat: add vetur tags and attributes</li> <li><a href="https://github.com/vuejs/vue-router/commit/fe41809f0840d1063856e2cebc2bda151341862e"><code>fe41809</code></a> docs(zh): add more details to resolution flow [skip ci] (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/2710">#2710</a>)</li> <li><a href="https://github.com/vuejs/vue-router/commit/d2740c115ddf12080972029dc7b3f275e3d26072"><code>d2740c1</code></a> build(deps): bump lodash from 4.17.15 to 4.17.19 [skip-ci] (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3259">#3259</a>)</li> <li><a href="https://github.com/vuejs/vue-router/commit/2c47d3cec240f35604872c6a14a5d06012fd6bb2"><code>2c47d3c</code></a> build(deps): bump elliptic from 6.5.0 to 6.5.3 [skip-ci] (<a href="https://github-redirect.dependabot.com/vuejs/vue-router/issues/3269">#3269</a>)</li> <li><a href="https://github.com/vuejs/vue-router/commit/dfc289202703319cf7beb38d03c9258c806c4d62"><code>dfc2892</code></a> refactor: add missing type rename [skip ci]</li> <li><a href="https://github.com/vuejs/vue-router/commit/9f5989e4777a6beca19f4354d438d57dfc7fb01a"><code>9f5989e</code></a> refactor: isRouterError -> isNavigationFailure</li> <li><a href="https://github.com/vuejs/vue-router/commit/b65104098fe66189b2ef0b82cc9f6ead81dfdd75"><code>b651040</code></a> Apply suggestions from code review</li> <li>Additional commits viewable in <a href="https://github.com/vuejs/vue-router/compare/v3.0.6...v3.4.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.0)](https://dependabot.com/compatibility-score/?dependency-name=vue-router&package-manager=npm_and_yarn&previous-version=3.0.6&new-version=3.4.0) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
45	43	https://api.github.com/repos/sustained/sforzando/issues/170	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/170/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/170/comments	https://api.github.com/repos/sustained/sforzando/issues/170/events	https://github.com/sustained/sforzando/pull/170	668169046	MDExOlB1bGxSZXF1ZXN0NDU4NzA5NDIw	170	[Security] Bump elliptic from 6.5.0 to 6.5.3	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 2113530249, 'node_id': 'MDU6TGFiZWwyMTEzNTMwMjQ5', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/security', 'name': 'security', 'color': 'ee0701', 'default': False, 'description': 'Pull requests that address a security vulnerability'}, {'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-07-29T21:22:22Z	2020-07-29T21:22:23Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/170', 'html_url': 'https://github.com/sustained/sforzando/pull/170', 'diff_url': 'https://github.com/sustained/sforzando/pull/170.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/170.patch'}	Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.0 to 6.5.3. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-vh7m-p724-62c2">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Signature Malleabillity in elliptic</strong> The Elliptic package before version 6.5.3 for Node.js allows ECDSA signature malleability via variations in encoding, leading '\0' bytes, or integer overflows. This could conceivably have a security-relevant impact if an application relied on a single canonical signature.</p> <p>Affected versions: < 6.5.3</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li><a href="https://github.com/indutny/elliptic/commit/60489415e545efdfd3010ae74b9726facbf08ca8"><code>6048941</code></a> 6.5.2</li> <li><a href="https://github.com/indutny/elliptic/commit/9984964457c9f8a63b91b01ea103260417eca237"><code>9984964</code></a> package: bump dependencies</li> <li><a href="https://github.com/indutny/elliptic/commit/ec735edde187a43693197f6fa3667ceade751a3a"><code>ec735ed</code></a> utils: leak less information in <code>getNAF()</code></li> <li><a href="https://github.com/indutny/elliptic/commit/71e4e8e2f5b8f0bdbfbe106c72cc9fbc746d3d60"><code>71e4e8e</code></a> 6.5.1</li> <li><a href="https://github.com/indutny/elliptic/commit/7ec66ffa255079260126d87b1762a59ea10de5ea"><code>7ec66ff</code></a> short: add infinity check before multiplying</li> <li><a href="https://github.com/indutny/elliptic/commit/ee7970b92f388e981d694be0436c4c8036b5d36c"><code>ee7970b</code></a> travis: really move on</li> <li><a href="https://github.com/indutny/elliptic/commit/637d0216b58de7edee4f3eb5641295ac323acadb"><code>637d021</code></a> travis: move on</li> <li><a href="https://github.com/indutny/elliptic/commit/5ed0babb6467cd8575a9218265473fda926d9d42"><code>5ed0bab</code></a> package: update deps</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.0...v6.5.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=elliptic&package-manager=npm_and_yarn&previous-version=6.5.0&new-version=6.5.3)](https://dependabot.com/compatibility-score/?dependency-name=elliptic&package-manager=npm_and_yarn&previous-version=6.5.0&new-version=6.5.3) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
46	44	https://api.github.com/repos/sustained/sforzando/issues/169	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/169/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/169/comments	https://api.github.com/repos/sustained/sforzando/issues/169/events	https://github.com/sustained/sforzando/pull/169	667633680	MDExOlB1bGxSZXF1ZXN0NDU4MjYzMTAy	169	Bump tone from 13.4.9 to 14.7.39	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	open	False	[]	0	2020-07-29T07:57:15Z	2020-07-29T07:57:17Z		CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/169', 'html_url': 'https://github.com/sustained/sforzando/pull/169', 'diff_url': 'https://github.com/sustained/sforzando/pull/169.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/169.patch'}	Bumps [tone](https://github.com/Tonejs/Tone.js) from 13.4.9 to 14.7.39. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/releases">tone's releases</a>.</em></p> <blockquote> <h2>13.8.25</h2> <ul> <li>Moving to common.js-style code</li> </ul> <p><strong>Breaking Changes</strong></p> <ul> <li>AudioNode.prototype.connect is no longer overwritten. This means that you can no longer connect native nodes to Tone.js Nodes.</li> <li>Tone.connect(srcNode, destNode, [ouputNum], [inputNum]) is the way to connect native Web Audio nodes with Tone.js nodes.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/blob/dev/CHANGELOG.md">tone's changelog</a>.</em></p> <blockquote> <h1>14.7.0</h1> <h3>Features</h3> <ul> <li><strong>Converted to typescript!!!</strong></li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd75">f7bdd75</a>)</li> <li>adding ability to get the frequency at the FFT index (<a href="https://github.com/Tonejs/Tone.js/commit/22cecdc281c8076c054affaef9dc422665acda2e">22cecdc</a>)</li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd7528fa9549740dc514df6308303c060e091">f7bdd75</a>)</li> <li>adding BiquadFilter (<a href="https://github.com/Tonejs/Tone.js/commit/75617d341fe44ca5d332ea4e547f07c266a54753">75617d3</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/686">#686</a></li> <li>adding linting to jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/10ef513">10ef513</a>)</li> <li>adding send/receive to Channel (<a href="https://github.com/Tonejs/Tone.js/commit/703f27a">703f27a</a>)</li> <li>Adding triggerRelease to PluckSynth (<a href="https://github.com/Tonejs/Tone.js/commit/04405af">04405af</a>)</li> <li>Can set the parameter after constructing Param (<a href="https://github.com/Tonejs/Tone.js/commit/23ca0f9">23ca0f9</a>)</li> <li>adding onerror to Sampler (<a href="https://github.com/Tonejs/Tone.js/commit/7236600182d336d6598f86d7d7afe8761e733774">7236600</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/605">#605</a></li> <li>Chorus extends StereoFeedbackEffect (<a href="https://github.com/Tonejs/Tone.js/commit/a28f1af">a28f1af</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/575">#575</a></li> <li>Convolver is just a wrapper around the ConvolverNode, no longer an effect (<a href="https://github.com/Tonejs/Tone.js/commit/1668dec">1668dec</a>)</li> <li>Get an oscillator wave as an array (<a href="https://github.com/Tonejs/Tone.js/commit/9ad519e">9ad519e</a>)</li> <li>OfflineContext returns a ToneAudioBuffer (<a href="https://github.com/Tonejs/Tone.js/commit/889dafa">889dafa</a>)</li> <li>OfflineContext yields thread every second of audio rendered (<a href="https://github.com/Tonejs/Tone.js/commit/1154470">1154470</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/436">#436</a></li> <li>Renaming TransportTimelineSignal to SyncedSignal (<a href="https://github.com/Tonejs/Tone.js/commit/86853fb">86853fb</a>)</li> <li>es6 output (<a href="https://github.com/Tonejs/Tone.js/commit/e5d28baa5f02c19a6f1c8c50c99e98bd1551d15b">e5d28ba</a>)</li> <li>Render a segment of the envelope as an array (<a href="https://github.com/Tonejs/Tone.js/commit/fc5b6f7">fc5b6f7</a>)</li> <li>testing examples in jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/e306319">e306319</a>)</li> <li>Wrapper around the AudioWorkletNode (<a href="https://github.com/Tonejs/Tone.js/commit/2ee8cb1">2ee8cb1</a>)</li> <li>Input/Outputs are no longer arrays. <ul> <li>simplifies connect/disconnect logic greatly. Simplifies API to just have clearly named inputs/outputs instead of overloading input/output connect numbers</li> </ul> </li> <li>Using "Destination" instead of "Master" for output <ul> <li>More consistent with Web Audio API</li> </ul> </li> <li>FrequencyShifter - thanks <a href="https://github.com/Foaly">@Foaly</a></li> <li>PolySynth does not require a polyphony value. <ul> <li>Voice allocation and disposing is done automatically based on demand.</li> </ul> </li> <li>MetalSynth and MembraneSynth extends Monophonic enabling them to be used in PolySynth</li> <li>OnePoleFilter is a 6b-per-octave lowpass or highpass filter <ul> <li>Using OnePoleFilter in PluckSynth and LowpassCombFilter</li> </ul> </li> <li>latencyHint is now set in constructor (<a href="https://github.com/Tonejs/Tone.js/commit/ba8e82b1ca8a841a23d6e774641916019c37cc92">ba8e82b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/658">#658</a></li> <li>meter output can be normalRange in addition to decibels (<a href="https://github.com/Tonejs/Tone.js/commit/2625a134b62af117c1c525a4e631e4e52b25ba90">2625a13</a>)</li> <li>option to pass in the number of input channels to Panner (<a href="https://github.com/Tonejs/Tone.js/commit/d966735bd97bddc70039bce5a48f26413054eddc">d966735</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/609">#609</a></li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li>TransportTimelineSignal renamed SyncedSignal</li> <li>Master renamed Destination</li> <li>Buffer renamed ToneAudioBuffer</li> <li>Buffer.on("loaded") is should now use: <code>Tone.loaded(): Promise<void></code></li> <li>Removing bower (<a href="https://github.com/Tonejs/Tone.js/commit/71c8b3bbb96e45cfc4aa2cce8a2d8c61a092c91e">71c8b3b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/197">#197</a></li> <li>Removing Ctrl classes (<a href="https://github.com/Tonejs/Tone.js/commit/51d06bd9873b2f1936a3169930f9696f1ccfb845">51d06bd</a>)</li> </ul> <h1>13.8.25</h1> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Tonejs/Tone.js/commits">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.39)](https://dependabot.com/compatibility-score/?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.39) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
47	45	https://api.github.com/repos/sustained/sforzando/issues/168	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/168/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/168/comments	https://api.github.com/repos/sustained/sforzando/issues/168/events	https://github.com/sustained/sforzando/pull/168	666899572	MDExOlB1bGxSZXF1ZXN0NDU3NjY1MTk2	168	Bump tone from 13.4.9 to 14.7.38	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-07-28T08:59:07Z	2020-07-29T07:57:21Z	2020-07-29T07:57:19Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/168', 'html_url': 'https://github.com/sustained/sforzando/pull/168', 'diff_url': 'https://github.com/sustained/sforzando/pull/168.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/168.patch'}	Bumps [tone](https://github.com/Tonejs/Tone.js) from 13.4.9 to 14.7.38. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/releases">tone's releases</a>.</em></p> <blockquote> <h2>13.8.25</h2> <ul> <li>Moving to common.js-style code</li> </ul> <p><strong>Breaking Changes</strong></p> <ul> <li>AudioNode.prototype.connect is no longer overwritten. This means that you can no longer connect native nodes to Tone.js Nodes.</li> <li>Tone.connect(srcNode, destNode, [ouputNum], [inputNum]) is the way to connect native Web Audio nodes with Tone.js nodes.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/blob/dev/CHANGELOG.md">tone's changelog</a>.</em></p> <blockquote> <h1>14.7.0</h1> <h3>Features</h3> <ul> <li><strong>Converted to typescript!!!</strong></li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd75">f7bdd75</a>)</li> <li>adding ability to get the frequency at the FFT index (<a href="https://github.com/Tonejs/Tone.js/commit/22cecdc281c8076c054affaef9dc422665acda2e">22cecdc</a>)</li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd7528fa9549740dc514df6308303c060e091">f7bdd75</a>)</li> <li>adding BiquadFilter (<a href="https://github.com/Tonejs/Tone.js/commit/75617d341fe44ca5d332ea4e547f07c266a54753">75617d3</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/686">#686</a></li> <li>adding linting to jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/10ef513">10ef513</a>)</li> <li>adding send/receive to Channel (<a href="https://github.com/Tonejs/Tone.js/commit/703f27a">703f27a</a>)</li> <li>Adding triggerRelease to PluckSynth (<a href="https://github.com/Tonejs/Tone.js/commit/04405af">04405af</a>)</li> <li>Can set the parameter after constructing Param (<a href="https://github.com/Tonejs/Tone.js/commit/23ca0f9">23ca0f9</a>)</li> <li>adding onerror to Sampler (<a href="https://github.com/Tonejs/Tone.js/commit/7236600182d336d6598f86d7d7afe8761e733774">7236600</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/605">#605</a></li> <li>Chorus extends StereoFeedbackEffect (<a href="https://github.com/Tonejs/Tone.js/commit/a28f1af">a28f1af</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/575">#575</a></li> <li>Convolver is just a wrapper around the ConvolverNode, no longer an effect (<a href="https://github.com/Tonejs/Tone.js/commit/1668dec">1668dec</a>)</li> <li>Get an oscillator wave as an array (<a href="https://github.com/Tonejs/Tone.js/commit/9ad519e">9ad519e</a>)</li> <li>OfflineContext returns a ToneAudioBuffer (<a href="https://github.com/Tonejs/Tone.js/commit/889dafa">889dafa</a>)</li> <li>OfflineContext yields thread every second of audio rendered (<a href="https://github.com/Tonejs/Tone.js/commit/1154470">1154470</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/436">#436</a></li> <li>Renaming TransportTimelineSignal to SyncedSignal (<a href="https://github.com/Tonejs/Tone.js/commit/86853fb">86853fb</a>)</li> <li>es6 output (<a href="https://github.com/Tonejs/Tone.js/commit/e5d28baa5f02c19a6f1c8c50c99e98bd1551d15b">e5d28ba</a>)</li> <li>Render a segment of the envelope as an array (<a href="https://github.com/Tonejs/Tone.js/commit/fc5b6f7">fc5b6f7</a>)</li> <li>testing examples in jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/e306319">e306319</a>)</li> <li>Wrapper around the AudioWorkletNode (<a href="https://github.com/Tonejs/Tone.js/commit/2ee8cb1">2ee8cb1</a>)</li> <li>Input/Outputs are no longer arrays. <ul> <li>simplifies connect/disconnect logic greatly. Simplifies API to just have clearly named inputs/outputs instead of overloading input/output connect numbers</li> </ul> </li> <li>Using "Destination" instead of "Master" for output <ul> <li>More consistent with Web Audio API</li> </ul> </li> <li>FrequencyShifter - thanks <a href="https://github.com/Foaly">@Foaly</a></li> <li>PolySynth does not require a polyphony value. <ul> <li>Voice allocation and disposing is done automatically based on demand.</li> </ul> </li> <li>MetalSynth and MembraneSynth extends Monophonic enabling them to be used in PolySynth</li> <li>OnePoleFilter is a 6b-per-octave lowpass or highpass filter <ul> <li>Using OnePoleFilter in PluckSynth and LowpassCombFilter</li> </ul> </li> <li>latencyHint is now set in constructor (<a href="https://github.com/Tonejs/Tone.js/commit/ba8e82b1ca8a841a23d6e774641916019c37cc92">ba8e82b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/658">#658</a></li> <li>meter output can be normalRange in addition to decibels (<a href="https://github.com/Tonejs/Tone.js/commit/2625a134b62af117c1c525a4e631e4e52b25ba90">2625a13</a>)</li> <li>option to pass in the number of input channels to Panner (<a href="https://github.com/Tonejs/Tone.js/commit/d966735bd97bddc70039bce5a48f26413054eddc">d966735</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/609">#609</a></li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li>TransportTimelineSignal renamed SyncedSignal</li> <li>Master renamed Destination</li> <li>Buffer renamed ToneAudioBuffer</li> <li>Buffer.on("loaded") is should now use: <code>Tone.loaded(): Promise<void></code></li> <li>Removing bower (<a href="https://github.com/Tonejs/Tone.js/commit/71c8b3bbb96e45cfc4aa2cce8a2d8c61a092c91e">71c8b3b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/197">#197</a></li> <li>Removing Ctrl classes (<a href="https://github.com/Tonejs/Tone.js/commit/51d06bd9873b2f1936a3169930f9696f1ccfb845">51d06bd</a>)</li> </ul> <h1>13.8.25</h1> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Tonejs/Tone.js/commits">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.38)](https://dependabot.com/compatibility-score/?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.38) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
48	46	https://api.github.com/repos/sustained/sforzando/issues/167	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/167/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/167/comments	https://api.github.com/repos/sustained/sforzando/issues/167/events	https://github.com/sustained/sforzando/pull/167	666085199	MDExOlB1bGxSZXF1ZXN0NDU2OTkwNTAz	167	Bump tone from 13.4.9 to 14.7.35	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-07-27T08:15:03Z	2020-07-28T08:59:12Z	2020-07-28T08:59:10Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/167', 'html_url': 'https://github.com/sustained/sforzando/pull/167', 'diff_url': 'https://github.com/sustained/sforzando/pull/167.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/167.patch'}	Bumps [tone](https://github.com/Tonejs/Tone.js) from 13.4.9 to 14.7.35. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/releases">tone's releases</a>.</em></p> <blockquote> <h2>13.8.25</h2> <ul> <li>Moving to common.js-style code</li> </ul> <p><strong>Breaking Changes</strong></p> <ul> <li>AudioNode.prototype.connect is no longer overwritten. This means that you can no longer connect native nodes to Tone.js Nodes.</li> <li>Tone.connect(srcNode, destNode, [ouputNum], [inputNum]) is the way to connect native Web Audio nodes with Tone.js nodes.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/blob/dev/CHANGELOG.md">tone's changelog</a>.</em></p> <blockquote> <h1>14.7.0</h1> <h3>Features</h3> <ul> <li><strong>Converted to typescript!!!</strong></li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd75">f7bdd75</a>)</li> <li>adding ability to get the frequency at the FFT index (<a href="https://github.com/Tonejs/Tone.js/commit/22cecdc281c8076c054affaef9dc422665acda2e">22cecdc</a>)</li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd7528fa9549740dc514df6308303c060e091">f7bdd75</a>)</li> <li>adding BiquadFilter (<a href="https://github.com/Tonejs/Tone.js/commit/75617d341fe44ca5d332ea4e547f07c266a54753">75617d3</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/686">#686</a></li> <li>adding linting to jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/10ef513">10ef513</a>)</li> <li>adding send/receive to Channel (<a href="https://github.com/Tonejs/Tone.js/commit/703f27a">703f27a</a>)</li> <li>Adding triggerRelease to PluckSynth (<a href="https://github.com/Tonejs/Tone.js/commit/04405af">04405af</a>)</li> <li>Can set the parameter after constructing Param (<a href="https://github.com/Tonejs/Tone.js/commit/23ca0f9">23ca0f9</a>)</li> <li>adding onerror to Sampler (<a href="https://github.com/Tonejs/Tone.js/commit/7236600182d336d6598f86d7d7afe8761e733774">7236600</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/605">#605</a></li> <li>Chorus extends StereoFeedbackEffect (<a href="https://github.com/Tonejs/Tone.js/commit/a28f1af">a28f1af</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/575">#575</a></li> <li>Convolver is just a wrapper around the ConvolverNode, no longer an effect (<a href="https://github.com/Tonejs/Tone.js/commit/1668dec">1668dec</a>)</li> <li>Get an oscillator wave as an array (<a href="https://github.com/Tonejs/Tone.js/commit/9ad519e">9ad519e</a>)</li> <li>OfflineContext returns a ToneAudioBuffer (<a href="https://github.com/Tonejs/Tone.js/commit/889dafa">889dafa</a>)</li> <li>OfflineContext yields thread every second of audio rendered (<a href="https://github.com/Tonejs/Tone.js/commit/1154470">1154470</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/436">#436</a></li> <li>Renaming TransportTimelineSignal to SyncedSignal (<a href="https://github.com/Tonejs/Tone.js/commit/86853fb">86853fb</a>)</li> <li>es6 output (<a href="https://github.com/Tonejs/Tone.js/commit/e5d28baa5f02c19a6f1c8c50c99e98bd1551d15b">e5d28ba</a>)</li> <li>Render a segment of the envelope as an array (<a href="https://github.com/Tonejs/Tone.js/commit/fc5b6f7">fc5b6f7</a>)</li> <li>testing examples in jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/e306319">e306319</a>)</li> <li>Wrapper around the AudioWorkletNode (<a href="https://github.com/Tonejs/Tone.js/commit/2ee8cb1">2ee8cb1</a>)</li> <li>Input/Outputs are no longer arrays. <ul> <li>simplifies connect/disconnect logic greatly. Simplifies API to just have clearly named inputs/outputs instead of overloading input/output connect numbers</li> </ul> </li> <li>Using "Destination" instead of "Master" for output <ul> <li>More consistent with Web Audio API</li> </ul> </li> <li>FrequencyShifter - thanks <a href="https://github.com/Foaly">@Foaly</a></li> <li>PolySynth does not require a polyphony value. <ul> <li>Voice allocation and disposing is done automatically based on demand.</li> </ul> </li> <li>MetalSynth and MembraneSynth extends Monophonic enabling them to be used in PolySynth</li> <li>OnePoleFilter is a 6b-per-octave lowpass or highpass filter <ul> <li>Using OnePoleFilter in PluckSynth and LowpassCombFilter</li> </ul> </li> <li>latencyHint is now set in constructor (<a href="https://github.com/Tonejs/Tone.js/commit/ba8e82b1ca8a841a23d6e774641916019c37cc92">ba8e82b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/658">#658</a></li> <li>meter output can be normalRange in addition to decibels (<a href="https://github.com/Tonejs/Tone.js/commit/2625a134b62af117c1c525a4e631e4e52b25ba90">2625a13</a>)</li> <li>option to pass in the number of input channels to Panner (<a href="https://github.com/Tonejs/Tone.js/commit/d966735bd97bddc70039bce5a48f26413054eddc">d966735</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/609">#609</a></li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li>TransportTimelineSignal renamed SyncedSignal</li> <li>Master renamed Destination</li> <li>Buffer renamed ToneAudioBuffer</li> <li>Buffer.on("loaded") is should now use: <code>Tone.loaded(): Promise<void></code></li> <li>Removing bower (<a href="https://github.com/Tonejs/Tone.js/commit/71c8b3bbb96e45cfc4aa2cce8a2d8c61a092c91e">71c8b3b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/197">#197</a></li> <li>Removing Ctrl classes (<a href="https://github.com/Tonejs/Tone.js/commit/51d06bd9873b2f1936a3169930f9696f1ccfb845">51d06bd</a>)</li> </ul> <h1>13.8.25</h1> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Tonejs/Tone.js/commits">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.35)](https://dependabot.com/compatibility-score/?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.35) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>
49	47	https://api.github.com/repos/sustained/sforzando/issues/166	https://api.github.com/repos/sustained/sforzando	https://api.github.com/repos/sustained/sforzando/issues/166/labels{/name}	https://api.github.com/repos/sustained/sforzando/issues/166/comments	https://api.github.com/repos/sustained/sforzando/issues/166/events	https://github.com/sustained/sforzando/pull/166	664268013	MDExOlB1bGxSZXF1ZXN0NDU1NTM0Njcw	166	Bump tone from 13.4.9 to 14.7.33	{'login': 'dependabot-preview[bot]', 'id': 27856297, 'node_id': 'MDM6Qm90Mjc4NTYyOTc=', 'avatar_url': 'https://avatars3.githubusercontent.com/in/2141?v=4', 'gravatar_id': '', 'url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D', 'html_url': 'https://github.com/apps/dependabot-preview', 'followers_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/followers', 'following_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/following{/other_user}', 'gists_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/gists{/gist_id}', 'starred_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/starred{/owner}{/repo}', 'subscriptions_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/subscriptions', 'organizations_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/orgs', 'repos_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/repos', 'events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/events{/privacy}', 'received_events_url': 'https://api.github.com/users/dependabot-preview%5Bbot%5D/received_events', 'type': 'Bot', 'site_admin': False}	[{'id': 1544875350, 'node_id': 'MDU6TGFiZWwxNTQ0ODc1MzUw', 'url': 'https://api.github.com/repos/sustained/sforzando/labels/topic:%20Dependencies', 'name': 'topic: Dependencies', 'color': '0366d6', 'default': False, 'description': 'It relates to our dependencies.'}]	closed	False	[]	1	2020-07-23T07:44:58Z	2020-07-27T08:15:11Z	2020-07-27T08:15:08Z	CONTRIBUTOR	{'url': 'https://api.github.com/repos/sustained/sforzando/pulls/166', 'html_url': 'https://github.com/sustained/sforzando/pull/166', 'diff_url': 'https://github.com/sustained/sforzando/pull/166.diff', 'patch_url': 'https://github.com/sustained/sforzando/pull/166.patch'}	Bumps [tone](https://github.com/Tonejs/Tone.js) from 13.4.9 to 14.7.33. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/releases">tone's releases</a>.</em></p> <blockquote> <h2>13.8.25</h2> <ul> <li>Moving to common.js-style code</li> </ul> <p><strong>Breaking Changes</strong></p> <ul> <li>AudioNode.prototype.connect is no longer overwritten. This means that you can no longer connect native nodes to Tone.js Nodes.</li> <li>Tone.connect(srcNode, destNode, [ouputNum], [inputNum]) is the way to connect native Web Audio nodes with Tone.js nodes.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Tonejs/Tone.js/blob/dev/CHANGELOG.md">tone's changelog</a>.</em></p> <blockquote> <h1>14.7.0</h1> <h3>Features</h3> <ul> <li><strong>Converted to typescript!!!</strong></li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd75">f7bdd75</a>)</li> <li>adding ability to get the frequency at the FFT index (<a href="https://github.com/Tonejs/Tone.js/commit/22cecdc281c8076c054affaef9dc422665acda2e">22cecdc</a>)</li> <li>adding AudioWorkletNode constructors to Context (<a href="https://github.com/Tonejs/Tone.js/commit/f7bdd7528fa9549740dc514df6308303c060e091">f7bdd75</a>)</li> <li>adding BiquadFilter (<a href="https://github.com/Tonejs/Tone.js/commit/75617d341fe44ca5d332ea4e547f07c266a54753">75617d3</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/686">#686</a></li> <li>adding linting to jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/10ef513">10ef513</a>)</li> <li>adding send/receive to Channel (<a href="https://github.com/Tonejs/Tone.js/commit/703f27a">703f27a</a>)</li> <li>Adding triggerRelease to PluckSynth (<a href="https://github.com/Tonejs/Tone.js/commit/04405af">04405af</a>)</li> <li>Can set the parameter after constructing Param (<a href="https://github.com/Tonejs/Tone.js/commit/23ca0f9">23ca0f9</a>)</li> <li>adding onerror to Sampler (<a href="https://github.com/Tonejs/Tone.js/commit/7236600182d336d6598f86d7d7afe8761e733774">7236600</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/605">#605</a></li> <li>Chorus extends StereoFeedbackEffect (<a href="https://github.com/Tonejs/Tone.js/commit/a28f1af">a28f1af</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/575">#575</a></li> <li>Convolver is just a wrapper around the ConvolverNode, no longer an effect (<a href="https://github.com/Tonejs/Tone.js/commit/1668dec">1668dec</a>)</li> <li>Get an oscillator wave as an array (<a href="https://github.com/Tonejs/Tone.js/commit/9ad519e">9ad519e</a>)</li> <li>OfflineContext returns a ToneAudioBuffer (<a href="https://github.com/Tonejs/Tone.js/commit/889dafa">889dafa</a>)</li> <li>OfflineContext yields thread every second of audio rendered (<a href="https://github.com/Tonejs/Tone.js/commit/1154470">1154470</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/436">#436</a></li> <li>Renaming TransportTimelineSignal to SyncedSignal (<a href="https://github.com/Tonejs/Tone.js/commit/86853fb">86853fb</a>)</li> <li>es6 output (<a href="https://github.com/Tonejs/Tone.js/commit/e5d28baa5f02c19a6f1c8c50c99e98bd1551d15b">e5d28ba</a>)</li> <li>Render a segment of the envelope as an array (<a href="https://github.com/Tonejs/Tone.js/commit/fc5b6f7">fc5b6f7</a>)</li> <li>testing examples in jsdocs (<a href="https://github.com/Tonejs/Tone.js/commit/e306319">e306319</a>)</li> <li>Wrapper around the AudioWorkletNode (<a href="https://github.com/Tonejs/Tone.js/commit/2ee8cb1">2ee8cb1</a>)</li> <li>Input/Outputs are no longer arrays. <ul> <li>simplifies connect/disconnect logic greatly. Simplifies API to just have clearly named inputs/outputs instead of overloading input/output connect numbers</li> </ul> </li> <li>Using "Destination" instead of "Master" for output <ul> <li>More consistent with Web Audio API</li> </ul> </li> <li>FrequencyShifter - thanks <a href="https://github.com/Foaly">@Foaly</a></li> <li>PolySynth does not require a polyphony value. <ul> <li>Voice allocation and disposing is done automatically based on demand.</li> </ul> </li> <li>MetalSynth and MembraneSynth extends Monophonic enabling them to be used in PolySynth</li> <li>OnePoleFilter is a 6b-per-octave lowpass or highpass filter <ul> <li>Using OnePoleFilter in PluckSynth and LowpassCombFilter</li> </ul> </li> <li>latencyHint is now set in constructor (<a href="https://github.com/Tonejs/Tone.js/commit/ba8e82b1ca8a841a23d6e774641916019c37cc92">ba8e82b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/658">#658</a></li> <li>meter output can be normalRange in addition to decibels (<a href="https://github.com/Tonejs/Tone.js/commit/2625a134b62af117c1c525a4e631e4e52b25ba90">2625a13</a>)</li> <li>option to pass in the number of input channels to Panner (<a href="https://github.com/Tonejs/Tone.js/commit/d966735bd97bddc70039bce5a48f26413054eddc">d966735</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/609">#609</a></li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li>TransportTimelineSignal renamed SyncedSignal</li> <li>Master renamed Destination</li> <li>Buffer renamed ToneAudioBuffer</li> <li>Buffer.on("loaded") is should now use: <code>Tone.loaded(): Promise<void></code></li> <li>Removing bower (<a href="https://github.com/Tonejs/Tone.js/commit/71c8b3bbb96e45cfc4aa2cce8a2d8c61a092c91e">71c8b3b</a>), closes <a href="https://github-redirect.dependabot.com/Tonejs/Tone.js/issues/197">#197</a></li> <li>Removing Ctrl classes (<a href="https://github.com/Tonejs/Tone.js/commit/51d06bd9873b2f1936a3169930f9696f1ccfb845">51d06bd</a>)</li> </ul> <h1>13.8.25</h1> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Tonejs/Tone.js/commits">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.33)](https://dependabot.com/compatibility-score/?dependency-name=tone&package-manager=npm_and_yarn&previous-version=13.4.9&new-version=14.7.33) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details>

The file is too large to be shown. View raw

7.8 MiB Raw Blame History

7.8 MiB

Raw Blame History