Protei/PromucFlow_constructor
2
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
2017ba26a5
PromucFlow_constructor/app
History
dependabot[bot] 2017ba26a5
chore: bump jszip from 3.7.1 to 3.10.1 in /app/client (#20324) 
Bumps [jszip](https://github.com/Stuk/jszip) from 3.7.1 to 3.10.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Stuk/jszip/blob/main/CHANGES.md">jszip's
changelog</a>.</em></p>
<blockquote>
<h3>v3.10.1 2022-08-02</h3>
<ul>
<li>Add sponsorship files.
<ul>
<li>If you appreciate the time spent maintaining JSZip then I would
really appreciate <a href="https://github.com/sponsors/Stuk">your
sponsorship</a>.</li>
</ul>
</li>
<li>Consolidate metadata types and expose OnUpdateCallback <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/851">#851</a>
and <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/852">#852</a></li>
<li>use <code>const</code> instead <code>var</code> in example from
README.markdown <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/828">#828</a></li>
<li>Switch manual download link to HTTPS <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/839">#839</a></li>
</ul>
<p>Internals:</p>
<ul>
<li>Replace jshint with eslint <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/842">#842</a></li>
<li>Add performance tests <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/834">#834</a></li>
</ul>
<h3>v3.10.0 2022-05-20</h3>
<ul>
<li>Change setimmediate dependency to more efficient one. Fixes <a
href="https://github-redirect.dependabot.com/Stuk/jszip/issues/617">Stuk/jszip#617</a>
(see <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/829">#829</a>)</li>
<li>Update types of <code>currentFile</code> metadata to include
<code>null</code> (see <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/826">#826</a>)</li>
</ul>
<h3>v3.9.1 2022-04-06</h3>
<ul>
<li>Fix recursive definition of <code>InputFileFormat</code> introduced
in 3.9.0.</li>
</ul>
<h3>v3.9.0 2022-04-04</h3>
<ul>
<li>Update types JSZip#loadAsync to accept a promise for data, and
remove arguments from <code>new JSZip()</code> (see <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/752">#752</a>)</li>
<li>Update types for <code>compressionOptions</code> to JSZipFileOptions
and JSZipGeneratorOptions (see <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/722">#722</a>)</li>
<li>Add types for <code>generateInternalStream</code> (see <a
href="https://github-redirect.dependabot.com/Stuk/jszip/pull/774">#774</a>)</li>
</ul>
<h3>v3.8.0 2022-03-30</h3>
<ul>
<li>Santize filenames when files are loaded with <code>loadAsync</code>,
to avoid <a
href="https://snyk.io/research/zip-slip-vulnerability">&quot;zip
slip&quot; attacks</a>. The original filename is available on each zip
entry as <code>unsafeOriginalName</code>. See the <a
href="https://stuk.github.io/jszip/documentation/api_jszip/load_async.html">documentation</a>.
Many thanks to McCaulay Hudson for reporting.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0f2f1e4d05"><code>0f2f1e4</code></a>
3.10.1</li>
<li><a
href="cae55105f5"><code>cae5510</code></a>
Updates for v3.10.1</li>
<li><a
href="179c9a0340"><code>179c9a0</code></a>
Update changelog for 3.10.1</li>
<li><a
href="61e1df58da"><code>61e1df5</code></a>
Add Jekyll files to gitignore</li>
<li><a
href="f299cce9b8"><code>f299cce</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/Stuk/jszip/issues/852">#852</a>
from Stuk/metadata-ts</li>
<li><a
href="852887aa94"><code>852887a</code></a>
Consolidate metadata types and expose OnUpdateCallback</li>
<li><a
href="5be00dfd0c"><code>5be00df</code></a>
Add sponsorship files</li>
<li><a
href="dabe86445c"><code>dabe864</code></a>
Update package-lock for benchmark</li>
<li><a
href="cc554dae51"><code>cc554da</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/Stuk/jszip/issues/841">#841</a>
from stevennyman/patch-2</li>
<li><a
href="caefbc082d"><code>caefbc0</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/Stuk/jszip/issues/834">#834</a>
from Stuk/benchmark</li>
<li>Additional commits viewable in <a
href="https://github.com/Stuk/jszip/compare/v3.7.1...v3.10.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jszip&package-manager=npm_and_yarn&previous-version=3.7.1&new-version=3.10.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the
default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as
the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as
the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the
default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/appsmithorg/appsmith/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-06 16:31:03 +05:30
..
client chore: bump jszip from 3.7.1 to 3.10.1 in /app/client (#20324) 2023-02-06 16:31:03 +05:30
rts fix: Unblocking CI - Unexpected cyclic dependency error and Lint spec fixes (#20260) 2023-01-31 20:33:10 +06:00
server feat: feature flag added for limiting gsheet access (#20223) 2023-02-06 10:57:43 +05:30
shared fix: Unblocking CI - Unexpected cyclic dependency error and Lint spec fixes (#20260) 2023-01-31 20:33:10 +06:00
util chore: bump decode-uri-component from 0.2.0 to 0.2.2 in /app/util/plugin-generation (#18658) 2022-12-07 11:00:38 +05:30
yarn.lock