chore(deps): bump the npm_and_yarn group across 3 directories with 40 updates #1

dependabot · 2025-04-24T20:26:17Z

Bumps the npm_and_yarn group with 28 updates in the / directory:

Package	From	To
axios	`1.6.0`	`1.8.2`
minimatch	`3.1.2`	`4.0.0`
postcss	`8.4.31`	`8.4.32`
qs	`6.11.2`	`6.12.0`
vue	`2.5.16`	`3.0.0`
vue-template-compiler	`2.6.11`	`2.7.16`
cross-spawn	`5.1.0`	`6.0.6`
express	`4.19.2`	`4.20.0`
http-proxy-middleware	`1.1.2`	`2.0.9`
webpack-bundle-analyzer	`2.13.1`	`4.10.2`
rollup	`0.46.3`	`2.79.2`
@sentry/browser	`5.19.0`	`7.119.1`
simple-git	`2.17.0`	`3.16.0`
ws	`6.2.2`	`6.2.3`
react-dev-utils	`3.1.3`	`12.0.1`
@babel/runtime	`7.21.0`	`7.27.0`
micromatch	`4.0.4`	`4.0.8`
node-fetch	`2.7.0`	`3.2.10`
body-parser	`1.18.3`	`1.20.3`
@babel/helpers	`7.23.1`	`7.27.0`
algoliasearch-helper	`2.26.1`	`2.28.1`
dset	`3.1.3`	`3.1.4`
elliptic	`6.5.3`	`6.6.1`
handlebars	`4.0.11`	`4.7.8`
i	`0.3.6`	`0.3.7`
store2	`2.14.2`	`2.14.4`
url-parse	`1.4.7`	`1.5.10`
thenify	`3.3.0`	`3.3.1`

Bumps the npm_and_yarn group with 3 updates in the /standalone-packages/sse-loading-screen directory: axios, @babel/runtime and path-to-regexp.
Bumps the npm_and_yarn group with 11 updates in the /standalone-packages/vscode-textmate directory:

Package	From	To
minimatch	`3.0.4`	`3.1.2`
mocha	`5.2.0`	`11.1.0`
remap-istanbul	`0.6.4`	`0.13.0`
qs	`6.5.2`	`6.5.3`
ajv	`5.5.2`	`6.12.6`
request	`2.87.0`	`2.88.2`
handlebars	`4.0.11`	`4.7.8`
minimist	`0.0.8`	`1.2.8`
mkdirp	`0.5.1`	`0.5.6`
tslint	`3.15.1`	`5.20.1`
thenify	`3.3.0`	`3.3.1`

Updates axios from 1.6.0 to 1.8.2

Release notes

Sourced from axios's releases.

Release v1.8.2

Release notes:

Bug Fixes

http-adapter: add allowAbsoluteUrls to path building (#6810) (fb8eec2)

Contributors to this release

Fasoro-Joseph Alexander

Release v1.8.1

Release notes:

Bug Fixes

utils: move generateString to platform utils to avoid importing crypto module into client builds; (#6789) (36a5a62)

Contributors to this release

Dmitriy Mozgovoy

Release v1.8.0

Release notes:

Bug Fixes

examples: application crashed when navigating examples in browser (#5938) (1260ded)

missing word in SUPPORT_QUESTION.yml (#6757) (1f890b1)

utils: replace getRandomValues with crypto module (#6788) (23a25af)

Features

Add config for ignoring absolute URLs (#5902) (#6192) (32c7bcc)

Reverts

Revert "chore: expose fromDataToStream to be consumable (#6731)" (#6732) (1317261), closes #6731 #6732

BREAKING CHANGES

code relying on the above will now combine the URLs instead of prefer request URL

feat: add config option for allowing absolute URLs

fix: add default value for allowAbsoluteUrls in buildFullPath

fix: typo in flow control when setting allowAbsoluteUrls

Contributors to this release

... (truncated)

Changelog

Sourced from axios's changelog.

1.8.2 (2025-03-07)

Bug Fixes

http-adapter: add allowAbsoluteUrls to path building (#6810) (fb8eec2)

Contributors to this release

Fasoro-Joseph Alexander

1.8.1 (2025-02-26)

Bug Fixes

utils: move generateString to platform utils to avoid importing crypto module into client builds; (#6789) (36a5a62)

Contributors to this release

Dmitriy Mozgovoy

1.8.0 (2025-02-25)

Bug Fixes

examples: application crashed when navigating examples in browser (#5938) (1260ded)

missing word in SUPPORT_QUESTION.yml (#6757) (1f890b1)

utils: replace getRandomValues with crypto module (#6788) (23a25af)

Features

Add config for ignoring absolute URLs (#5902) (#6192) (32c7bcc)

Reverts

Revert "chore: expose fromDataToStream to be consumable (#6731)" (#6732) (1317261), closes #6731 #6732

BREAKING CHANGES

code relying on the above will now combine the URLs instead of prefer request URL

feat: add config option for allowing absolute URLs

fix: add default value for allowAbsoluteUrls in buildFullPath

... (truncated)

Commits

a9f7689 chore(release): v1.8.2 (#6812)
fb8eec2 fix(http-adapter): add allowAbsoluteUrls to path building (#6810)
9812045 chore(sponsor): update sponsor block (#6804)
72acf75 chore(sponsor): update sponsor block (#6794)
2e64afd chore(release): v1.8.1 (#6800)
36a5a62 fix(utils): move generateString to platform utils to avoid importing crypto...
cceb7b1 chore(release): v1.8.0 (#6795)
23a25af fix(utils): replace getRandomValues with crypto module (#6788)
32c7bcc feat: Add config for ignoring absolute URLs (#5902) (#6192)
4a3e26c chore(config): adjust rollup config to preserve license header to minified Ja...
Additional commits viewable in compare view

Updates minimatch from 3.1.2 to 4.0.0

Changelog

Sourced from minimatch's changelog.

change log

10.0

Require node 20 or 22 and higher

9.0

No default export, only named exports.

8.0

Recursive descent parser for extglob, allowing correct support for arbitrarily nested extglob expressions

Bump required Node.js version

7.4

Add escape() method

Add unescape() method

Add Minimatch.hasMagic() method

7.3

Add support for posix character classes in a unicode-aware way.

7.2

Add windowsNoMagicRoot option

7.1

Add optimizationLevel configuration option, and revert the default back to the 6.2 style minimal optimizations, making the advanced transforms introduced in 7.0 opt-in. Also, process provided file paths in the same way in optimizationLevel:2 mode, so most things that matched with optimizationLevel 1 or 0 should match with level 2 as well. However, level 1 is the default, out of an abundance of caution.

7.0

Preprocess patterns to simplify complicated patterns and reduce out .. pattern portions where possible. Note that this means a pattern like a/b/../* will be equivalent to a/*, and will not match the string a/b/../c. If this causes problems, it can be addressed in a patch release by resolving .. portions in the test string.

6.2

... (truncated)

Commits

26d281d 4.0.0
f20fe55 engines declaration
e73729f Update to modern JS syntax
270dbea v3.0.0
668a1f4 Don't package browser version
6afb85f v2.0.10
6c14860 Do not crash on nested negative extglobs
See full diff in compare view

Updates postcss from 8.4.31 to 8.4.32

Release notes

Sourced from postcss's releases.

8.4.32

Fixed postcss().process() types (by @ferreira-tb).

Changelog

Sourced from postcss's changelog.

8.4.32

Fixed postcss().process() types (by Andrew Ferreira).

Commits

a0d9f10 Release 8.4.32 version
0146b3e Add Node.js 21 to CI
2398534 Update dependencies
1918533 Merge pull request #1902 from ferreira-tb/main
395e6dc Fix ProcessOptions interface
fa8cd15 Update dependencies
199a7c4 Typo
2528047 Update EM link
See full diff in compare view

Updates qs from 6.11.2 to 6.12.0

Changelog

Sourced from qs's changelog.

6.12.0

[New] parse/stringify: add decodeDotInKeys/encodeDotKeys options (#488)

[New] parse: add duplicates option

[New] parse/stringify: add allowEmptyArrays option to allow [] in object values (#487)

[Refactor] parse/stringify: move allowDots config logic to its own variable

[Refactor] stringify: move option-handling code into normalizeStringifyOptions

[readme] update readme, add logos (#484)

[readme] stringify: clarify default arrayFormat behavior

[readme] fix line wrapping

[readme] remove dead badges

[Deps] update side-channel

[meta] make the dist build 50% smaller

[meta] add sideEffects flag

[meta] run build in prepack, not prepublish

[Tests] parse: remove useless tests; add coverage

[Tests] stringify: increase coverage

[Tests] use mock-property

[Tests] stringify: improve coverage

[Dev Deps] update @ljharb/eslint-config , aud, has-override-mistake, has-property-descriptors, mock-property, npmignore, object-inspect, tape

[Dev Deps] pin glob, since v10.3.8+ requires a broken jackspeak

[Dev Deps] pin jackspeak since 2.1.2+ depends on npm aliases, which kill the install process in npm < 6

Commits

062334a v6.12.0
f09cffc [meta] make the dist build 50% smaller
934dfe8 [meta] run build in prepack, not prepublish
c8a269f [Tests] parse: remove useless tests; add coverage
1e04701 [Tests] stringify: increase coverage
e679e12 [Deps] update side-channel
6799475 [Dev Deps] update has-override-mistake
cc60bbd [Tests] use mock-property
30004b2 [New] parse/stringify: add decodeDotInKeys/encodeDotKeys options
82a098e [Refactor] parse/stringify: move allowDots config logic to its own variable
Additional commits viewable in compare view

Updates vue from 2.5.16 to 3.0.0

Changelog

Sourced from vue's changelog.

3.0.0 (2020-09-18)

3.0.0-rc.13 (2020-09-18)

Bug Fixes

hmr: make hmr working with class components (#2144) (422f05e)

reactivity: avoid length mutating array methods causing infinite updates (#2138) (f316a33), closes #2137

suspense: should discard unmount effects of invalidated pending branch (5bfcad1)

types: component instance inference without props (#2145) (57bdaa2)

Code Refactoring

watch APIs default to trigger pre-flush (49bb447), closes vuejs/vue-next#1706

Features

runtime-core: support using inject() inside props default functions (58c31e3)

watch: support dot-delimited path in watch option (1c9a0b3)

BREAKING CHANGES

watch APIs now default to use flush: 'pre' instead of flush: 'post'. This change affects watch, watchEffect, the watch component option, and this.$watch. See (49bb447) for more details.

3.0.0-rc.12 (2020-09-16)

Bug Fixes

reactivity: effect should only recursively self trigger with explicit options (3810de7), closes #2125

runtime-core: ensure root stable fragments inherit elements for moving (bebd44f), closes #2134

runtime-core: should still do full traverse of stable fragment children in dev + hmr (dd40ad8)

runtime-core/async-component: fix error component when there are no error handlers (c7b4a37), closes #2129

types/tsx: optional props from Mixin/Extends are treated as required (#2048) (89e9ab8)

Features

compiler-sfc: additionalData support for css preprocessors (#2126) (066d514)

3.0.0-rc.11 (2020-09-15)

... (truncated)

Commits

See full diff in compare view

Updates vue-template-compiler from 2.6.11 to 2.7.16

Release notes

Sourced from vue-template-compiler's releases.

v2.7.16 "Swan Song"

This is the final release for Vue 2.

Vue 2 will reach End of Life on December 31st, 2023. For more details, please read this blog post.

Please refer to CHANGELOG.md for details.

v2.7.16-beta.2

Please refer to CHANGELOG.md for details.

v2.7.16-beta.1

Please refer to CHANGELOG.md for details.

v2.7.15

Please refer to CHANGELOG.md for details.

v2.7.14

Please refer to CHANGELOG.md for details.

v2.7.13

Please refer to CHANGELOG.md for details.

v2.7.12

Please refer to CHANGELOG.md for details.

v2.7.11

Please refer to CHANGELOG.md for details.

v2.7.10

Please refer to CHANGELOG.md for details.

v2.7.9

Please refer to CHANGELOG.md for details.

v2.7.8

Please refer to CHANGELOG.md for details.

v2.7.7

Please refer to CHANGELOG.md for details.

v2.7.6

Please refer to CHANGELOG.md for details.

v2.7.5

Please refer to CHANGELOG.md for details.

v2.7.4

Please refer to CHANGELOG.md for details.

v2.7.3

... (truncated)

Changelog

Sourced from vue-template-compiler's changelog.

2.7.16 Swan Song (2023-12-24)

Bug Fixes

lifecycle: ensure component effect scopes are disconnected (56ce7f8), closes #13134

2.7.16-beta.2 (2023-12-14)

Bug Fixes

account for nested render calls (db9c566), closes #13131

types: export more types for v3 alignment (jsx / component options) (895669f), closes #13078 #13128

2.7.16-beta.1 (2023-12-08)

Bug Fixes

compiler-sfc: check template ref usage, (#12985) (83d9535), closes #12984

compiler-sfc: fix rewriteDefault edge cases (25f97a5), closes #13060 #12892 #12906

keep-alive: fix keep-alive memory leak (2632249), closes #12827

keep-alive: fix memory leak without breaking transition tests (e0747f4)

props: should not unwrap props that are raw refs (08382f0), closes #12930

shallowReactive: should track value if already reactive when set in shallowReactive (0ad8e8d)

style: always set new styles (f5ef882), closes #12901 #12946

types: fix shallowRef's return type (#12979) (a174c29), closes #12978

types: fix type augmentation and compiler-sfc types w/moduleResolution: bundler (#13107) (de0b97b), closes #13106

types: provide types for built-in components (3650c12), closes #13002

types: type VNodeChildren should allow type number (#13067) (24fcf69), closes #12973

utils: unwrap refs when stringifying values in template (ae3e4b1), closes #12884 #12888

watch: new property addition should trigger deep watcher with getter (6d857f5), closes #12967 #12972

2.7.15 (2023-10-23)

Bug Fixes

compiler-sfc: add semicolon after defineProps statement (#12879) (51fef2c)

compiler-sfc: fix macro usage in multi-variable declaration (#12873) (d27c128)

compiler-sfc: Optimize the value of emitIdentifier (#12851) (bb59751)

compiler-sfc: Resolve object expression parsing errors in v-on (#12862) (b8c8b3f)

lifecycle: scope might changed when call hook (#13070) (74ca5a1)

... (truncated)

Commits

13f4e7d release: v2.7.16
56ce7f8 fix(lifecycle): esnure component effect scopes are disconnected
305e4ae release: v2.7.16-beta.2
3e1037e chore: bump vitest to 1.0.4
db9c566 fix: account for nested render calls
895669f fix(types): export more types for v3 alignment (jsx / component options)
73bdf14 release: v2.7.16-beta.1
e0747f4 fix(keep-alive): fix memory leak without breaking transition tests
2632249 fix(keep-alive): fix keep-alive memory leak
3650c12 fix(types): provide types for built-in components
Additional commits viewable in compare view

Updates cross-spawn from 5.1.0 to 6.0.6

Changelog

Sourced from cross-spawn's changelog.

6.0.6 (2024-11-18)

Bug Fixes

disable regexp backtracking (#160) (ba5aaef)

core: support worker threads (#127) (f4af31c)

6.0.5 (2018-03-02)

Bug Fixes

avoid using deprecated Buffer constructor (#94) (d5770df), closes /nodejs.org/api/deprecations.html#deprecations_dep0005

6.0.4 (2018-01-31)

Bug Fixes

fix paths being incorrectly normalized on unix (06ee3c6), closes #90

6.0.3 (2018-01-23)

6.0.2 (2018-01-23)

6.0.1 (2018-01-23)

6.0.0 (2018-01-23)

Bug Fixes

... (truncated)

Commits

d35c865 chore(release): 6.0.6
5a37e19 chore: update package.json and package.lock
ba5aaef fix: disable regexp backtracking (#160)
f4af31c fix(core): support worker threads (#127)
301187a chore(release): 6.0.5
ae85d40 chore: fix linting errors
d5770df fix: avoid using deprecated Buffer constructor (#94)
6b64987 chore(package): update lint-staged to version 7.0.0 (#93)
39166eb chore: update eslint-config-moxy dependency
213aa43 Merge pull request #92 from moxystudio/greenkeeper/eslint-config-moxy-5.0.0
Additional commits viewable in compare view

Updates express from 4.19.2 to 4.20.0

Release notes

Sourced from express's releases.

4.20.0

What's Changed

Important

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

Other Changes

4.19.2 Staging by @wesleytodd in expressjs/express#5561

remove duplicate location test for data uri by @wesleytodd in expressjs/express#5562

feat: document beta releases expectations by @marco-ippolito in expressjs/express#5565

Cut down on duplicated CI runs by @jonchurch in expressjs/express#5564

Add a Threat Model by @UlisesGascon in expressjs/express#5526

Assign captain of encodeurl by @blakeembrey in expressjs/express#5579

Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by @jonchurch in expressjs/express#5587

docs: update Security.md by @inigomarquinez in expressjs/express#5590

docs: update triage nomination policy by @UlisesGascon in expressjs/express#5600

Add CodeQL (SAST) by @UlisesGascon in expressjs/express#5433

docs: add UlisesGascon as triage initiative captain by @UlisesGascon in expressjs/express#5605

deps: encodeurl@~2.0.0 by @blakeembrey in expressjs/express#5569

skip QUERY method test by @jonchurch in expressjs/express#5628

ignore ETAG query test on 21 and 22, reuse skip util by @jonchurch in expressjs/express#5639

add support Node.js@22 in the CI by @mertcanaltin in expressjs/express#5627

doc: add table of contents, tc/triager lists to readme by @mertcanaltin in expressjs/express#5619

List and sort all projects, add captains by @blakeembrey in expressjs/express#5653

docs: add @UlisesGascon as captain for cookie-parser by @UlisesGascon in expressjs/express#5666

✨ bring back query tests for node 21 by @ctcpip in expressjs/express#5690

[v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by @jonchurch in expressjs/express#5672

skip QUERY tests for Node 21 only, still not supported by @jonchurch in expressjs/express#5695

📝 update people, add ctcpip to TC by @ctcpip in expressjs/express#5683

remove minor version pinning from ci by @jonchurch in expressjs/express#5722

Fix link variable use in attribution section of CODE OF CONDUCT by @IamLizu in expressjs/express#5762

Replace Appveyor windows testing with GHA by @jonchurch in expressjs/express#5599

Add OSSF Scorecard badge by @UlisesGascon in expressjs/express#5436

update scorecard link by @bjohansebas in expressjs/express#5814

Nominate @IamLizu to the triage team by @UlisesGascon in expressjs/express#5836

deps: path-to-regexp@0.1.8 by @blakeembrey in expressjs/express#5603

docs: specify new instructions for question and discuss by @IamLizu in expressjs/express#5835

4.x: Upgrade merge-descriptors dependency by @RobinTail in expressjs/express#5781

path-to-regexp@0.1.10 by @blakeembrey in expressjs/express#5902

New Contributors

@marco-ippolito made their first contribution in expressjs/express#5565

@inigomarquinez made their first contribution in expressjs/express#5590

@mertcanaltin made their first contribution in expressjs/express#5627

@ctcpip made their first contribution in expressjs/express#5690

@bjohansebas made their first contribution in expressjs/express#5814

Full Changelog: expressjs/express@4.19.1...4.20.0

Changelog

Sourced from express's changelog.

4.20.0 / 2024-09-10

deps: serve-static@0.16.0

Remove link renderization in html while redirecting

deps: send@0.19.0

Remove link renderization in html while redirecting

deps: body-parser@0.6.0

add depth option to customize the depth level in the parser

IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Remove link renderization in html while using res.redirect

deps: path-to-regexp@0.1.10

Adds support for named matching groups in the routes using a regex

Adds backtracking protection to parameters without regexes defined

deps: encodeurl@~2.0.0

Removes encoding of \, |, and ^ to align better with URL spec

Deprecate passing options.maxAge and options.expires to res.clearCookie

Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie

Commits

21df421 4.20.0
4c9ddc1 feat: upgrade to serve-static@0.16.0
9ebe5d5 feat: upgrade to send@0.19.0 (#5928)
ec4a01b feat: upgrade to body-parser@1.20.3 (#5926)
54271f6 fix: don't render redirect values in anchor href
125bb74 path-to-regexp@0.1.10 (#5902)
2a980ad merge-descriptors@1.0.3 (#5781)
a3e7e05 docs: specify new instructions for question and discuss
c5addb9 deps: path-to-regexp@0.1.8 (#5603)
e35380a docs: add @IamLizu to the triage team (#5836)
Additional commits viewable in compare view

Updates http-proxy-middleware from 1.1.2 to 2.0.9

Release notes

Sourced from http-proxy-middleware's releases.

v2.0.9

What's Changed

fix(fixRequestBody): check readableLength by @chimurai in chimurai/http-proxy-middleware#1097

chore(package): v2.0.9 by @chimurai in chimurai/http-proxy-middleware#1099

Full Changelog: chimurai/http-proxy-middleware@v2.0.8...v2.0.9

v2.0.8

What's Changed

fix(fixRequestBody): prevent multiple .write() calls by @chimurai in chimurai/http-proxy-middleware#1090

fix(fixRequestBody): handle invalid request by @chimurai in chimurai/http-proxy-middleware#1091

chore(package): v2.0.8 by @chimurai in chimurai/http-proxy-middleware#1094

Full Changelog: chimurai/http-proxy-middleware@v2.0.7...v2.0.8

v2.0.7

Full Changelog: chimurai/http-proxy-middleware@v2.0.6...v2.0.7

v2.0.7-beta.1

Full Changelog: chimurai/http-proxy-middleware@v2.0.7-beta.0...v2.0.7-beta.1

v2.0.7-beta.0

Full Changelog: chimurai/http-proxy-middleware@v2.0.6...v2.0.7-beta.0

v2.0.6

What's Changed

fix(proxyReqWs): catch socket errors by @chimurai in chimurai/http-proxy-middleware#763

chore(package): v2.0.6 by @chimurai in chimurai/http-proxy-middleware#764

Full Changelog: chimurai/http-proxy-middleware@v2.0.5...v2.0.6

v2.0.5

What's Changed

fix(error handler): add default handler to econnreset by @chimurai in chimurai/http-proxy-middleware#759

chore(package): v2.0.5 by @chimurai in chimurai/http-proxy-middleware#760

Full Changelog: chimurai/http-proxy-middleware@v2.0.4...v2.0.5

v2.0.4

What's Changed

chore(package): bump dev dependencies by @chimurai in chimurai/http-proxy-middleware#714

chore(vscode): add recommended extensions by @chimurai in chimurai/http-proxy-middleware#715

docs(response-interceptor.md): add headers modification example by @stefanwright1988 in chimurai/http-proxy-middleware#724

fix(fix-request-body): improve content type check by @kevinxh in chimurai/http-proxy-middleware#725

chore(package): v2.0.4 by @chimurai in chimurai/http-proxy-middleware#729

... (truncated)

Changelog

Sourced from http-proxy-middleware's changelog.

v2.0.9

fix(fixRequestBody): check readableLength

v2.0.8

fix(fixRequestBody): prevent multiple .write() calls

fix(fixRequestBody): handle invalid request

v2.0.7

ci(github actions): add publish.yml

fix(filter): handle errors

v2.0.6

fix(proxyReqWs): catch socket errors (#763)

v2.0.5

fix(error handler): add default handler to econnreset (#759)

v2.0.4

fix(fix-request-body): improve content type check (#725) (kevinxh)

v2.0.3

feat(package): optional @types/express peer dependency (#707)

v2.0.2

chore(deps): update @types/http-proxy to 1.17.8 (#701)

fix(fixRequestBody): fix request body for empty JSON object requests (#640) (mhassan1)

fix(types): fix type regression (#700)

v2.0.1

fix(fixRequestBody): fix type error (#615)

test(coverage): improve coverage config (#609) (leonardobazico)

test: add test coverage to fixRequestBody and responseInterceptor (#608) (leonardobazico)

chore(typescript): extract handlers types (#603) (leonardobazico)

v2.0.0

chore(package): drop node 10 [BREAKING CHANGE] (

… updates Bumps the npm_and_yarn group with 28 updates in the / directory: | Package | From | To | | --- | --- | --- | | [axios](https://github.com/axios/axios) | `1.6.0` | `1.8.2` | | [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `4.0.0` | | [postcss](https://github.com/postcss/postcss) | `8.4.31` | `8.4.32` | | [qs](https://github.com/ljharb/qs) | `6.11.2` | `6.12.0` | | [vue](https://github.com/vuejs/core) | `2.5.16` | `3.0.0` | | [vue-template-compiler](https://github.com/vuejs/vue) | `2.6.11` | `2.7.16` | | [cross-spawn](https://github.com/moxystudio/node-cross-spawn) | `5.1.0` | `6.0.6` | | [express](https://github.com/expressjs/express) | `4.19.2` | `4.20.0` | | [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `1.1.2` | `2.0.9` | | [webpack-bundle-analyzer](https://github.com/webpack-contrib/webpack-bundle-analyzer) | `2.13.1` | `4.10.2` | | [rollup](https://github.com/rollup/rollup) | `0.46.3` | `2.79.2` | | [@sentry/browser](https://github.com/getsentry/sentry-javascript) | `5.19.0` | `7.119.1` | | [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `2.17.0` | `3.16.0` | | [ws](https://github.com/websockets/ws) | `6.2.2` | `6.2.3` | | [react-dev-utils](https://github.com/facebook/create-react-app/tree/HEAD/packages/react-dev-utils) | `3.1.3` | `12.0.1` | | [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.21.0` | `7.27.0` | | [micromatch](https://github.com/micromatch/micromatch) | `4.0.4` | `4.0.8` | | [node-fetch](https://github.com/node-fetch/node-fetch) | `2.7.0` | `3.2.10` | | [body-parser](https://github.com/expressjs/body-parser) | `1.18.3` | `1.20.3` | | [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.23.1` | `7.27.0` | | [algoliasearch-helper](https://github.com/algolia/instantsearch) | `2.26.1` | `2.28.1` | | [dset](https://github.com/lukeed/dset) | `3.1.3` | `3.1.4` | | [elliptic](https://github.com/indutny/elliptic) | `6.5.3` | `6.6.1` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.0.11` | `4.7.8` | | [i](https://github.com/pksunkara/inflect) | `0.3.6` | `0.3.7` | | [store2](https://github.com/nbubna/store) | `2.14.2` | `2.14.4` | | [url-parse](https://github.com/unshiftio/url-parse) | `1.4.7` | `1.5.10` | | [thenify](https://github.com/thenables/thenify) | `3.3.0` | `3.3.1` | Bumps the npm_and_yarn group with 3 updates in the /standalone-packages/sse-loading-screen directory: [axios](https://github.com/axios/axios), [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) and [path-to-regexp](https://github.com/pillarjs/path-to-regexp). Bumps the npm_and_yarn group with 11 updates in the /standalone-packages/vscode-textmate directory: | Package | From | To | | --- | --- | --- | | [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.2` | | [mocha](https://github.com/mochajs/mocha) | `5.2.0` | `11.1.0` | | [remap-istanbul](https://github.com/SitePen/remap-istanbul) | `0.6.4` | `0.13.0` | | [qs](https://github.com/ljharb/qs) | `6.5.2` | `6.5.3` | | [ajv](https://github.com/ajv-validator/ajv) | `5.5.2` | `6.12.6` | | [request](https://github.com/request/request) | `2.87.0` | `2.88.2` | | [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.0.11` | `4.7.8` | | [minimist](https://github.com/minimistjs/minimist) | `0.0.8` | `1.2.8` | | [mkdirp](https://github.com/isaacs/node-mkdirp) | `0.5.1` | `0.5.6` | | [tslint](https://github.com/palantir/tslint) | `3.15.1` | `5.20.1` | | [thenify](https://github.com/thenables/thenify) | `3.3.0` | `3.3.1` | Updates `axios` from 1.6.0 to 1.8.2 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.6.0...v1.8.2) Updates `minimatch` from 3.1.2 to 4.0.0 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.1.2...v4.0.0) Updates `postcss` from 8.4.31 to 8.4.32 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.31...8.4.32) Updates `qs` from 6.11.2 to 6.12.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.11.2...v6.12.0) Updates `vue` from 2.5.16 to 3.0.0 - [Release notes](https://github.com/vuejs/core/releases) - [Changelog](https://github.com/vuejs/core/blob/v3.0.0/CHANGELOG.md) - [Commits](https://github.com/vuejs/core/commits/v3.0.0) Updates `vue-template-compiler` from 2.6.11 to 2.7.16 - [Release notes](https://github.com/vuejs/vue/releases) - [Changelog](https://github.com/vuejs/vue/blob/main/CHANGELOG.md) - [Commits](vuejs/vue@v2.6.11...v2.7.16) Updates `cross-spawn` from 5.1.0 to 6.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/v6.0.6/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@5.1.0...v6.0.6) Updates `express` from 4.19.2 to 4.20.0 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.19.2...4.20.0) Updates `http-proxy-middleware` from 1.1.2 to 2.0.9 - [Release notes](https://github.com/chimurai/http-proxy-middleware/releases) - [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v2.0.9/CHANGELOG.md) - [Commits](chimurai/http-proxy-middleware@v1.1.2...v2.0.9) Updates `webpack-bundle-analyzer` from 2.13.1 to 4.10.2 - [Changelog](https://github.com/webpack-contrib/webpack-bundle-analyzer/blob/master/CHANGELOG.md) - [Commits](webpack-contrib/webpack-bundle-analyzer@v2.13.1...v4.10.2) Updates `rollup` from 0.46.3 to 2.79.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v0.46.3...v2.79.2) Updates `@sentry/browser` from 5.19.0 to 7.119.1 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/7.119.1/CHANGELOG.md) - [Commits](getsentry/sentry-javascript@5.19.0...7.119.1) Updates `simple-git` from 2.17.0 to 3.16.0 - [Release notes](https://github.com/steveukx/git-js/releases) - [Changelog](https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md) - [Commits](https://github.com/steveukx/git-js/commits/simple-git@3.16.0/simple-git) Updates `ws` from 6.2.2 to 6.2.3 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@6.2.2...6.2.3) Updates `react-dev-utils` from 3.1.3 to 12.0.1 - [Release notes](https://github.com/facebook/create-react-app/releases) - [Changelog](https://github.com/facebook/create-react-app/blob/main/CHANGELOG-1.x.md) - [Commits](https://github.com/facebook/create-react-app/commits/react-dev-utils@12.0.1/packages/react-dev-utils) Updates `@babel/runtime` from 7.21.0 to 7.27.0 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.27.0/packages/babel-runtime) Updates `micromatch` from 4.0.4 to 4.0.8 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@4.0.4...4.0.8) Updates `node-fetch` from 2.7.0 to 3.2.10 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.7.0...v3.2.10) Updates `body-parser` from 1.18.3 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.18.3...1.20.3) Updates `@babel/helpers` from 7.23.1 to 7.27.0 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.27.0/packages/babel-helpers) Updates `algoliasearch-helper` from 2.26.1 to 2.28.1 - [Release notes](https://github.com/algolia/instantsearch/releases) - [Commits](https://github.com/algolia/instantsearch/commits) Updates `dset` from 3.1.3 to 3.1.4 - [Release notes](https://github.com/lukeed/dset/releases) - [Commits](lukeed/dset@v3.1.3...v3.1.4) Updates `ejs` from 2.7.4 to 3.1.8 - [Release notes](https://github.com/mde/ejs/releases) - [Commits](mde/ejs@v2.7.4...v3.1.8) Updates `elliptic` from 6.5.3 to 6.6.1 - [Commits](indutny/elliptic@v6.5.3...v6.6.1) Updates `handlebars` from 4.0.11 to 4.7.8 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.8/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.0.11...v4.7.8) Updates `i` from 0.3.6 to 0.3.7 - [Commits](pksunkara/inflect@v0.3.6...v0.3.7) Updates `path-to-regexp` from 0.1.7 to 0.1.10 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v1.8.0...v1.9.0) Updates `serve-static` from 1.15.0 to 1.16.0 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/master/HISTORY.md) - [Commits](expressjs/serve-static@v1.15.0...1.16.0) Updates `store2` from 2.14.2 to 2.14.4 - [Commits](nbubna/store@2.14.2...2.14.4) Updates `url-parse` from 1.4.7 to 1.5.10 - [Commits](unshiftio/url-parse@1.4.7...1.5.10) Updates `thenify` from 3.3.0 to 3.3.1 - [Changelog](https://github.com/thenables/thenify/blob/master/History.md) - [Commits](thenables/thenify@3.3.0...3.3.1) Updates `axios` from 1.7.4 to 1.8.2 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.6.0...v1.8.2) Updates `@babel/runtime` from 7.23.2 to 7.27.0 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.27.0/packages/babel-runtime) Updates `path-to-regexp` from 1.8.0 to 1.9.0 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v1.8.0...v1.9.0) Updates `minimatch` from 3.0.4 to 3.1.2 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.1.2...v4.0.0) Updates `mocha` from 5.2.0 to 11.1.0 - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/main/CHANGELOG.md) - [Commits](mochajs/mocha@v5.2.0...v11.1.0) Updates `remap-istanbul` from 0.6.4 to 0.13.0 - [Release notes](https://github.com/SitePen/remap-istanbul/releases) - [Commits](SitePen/remap-istanbul@0.6.4...0.13.0) Updates `qs` from 6.5.2 to 6.5.3 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.11.2...v6.12.0) Updates `ajv` from 5.5.2 to 6.12.6 - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](ajv-validator/ajv@v5.5.2...v6.12.6) Updates `request` from 2.87.0 to 2.88.2 - [Changelog](https://github.com/request/request/blob/master/CHANGELOG.md) - [Commits](https://github.com/request/request/commits) Updates `handlebars` from 4.0.11 to 4.7.8 - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.8/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.0.11...v4.7.8) Updates `minimist` from 0.0.8 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v0.0.8...v1.2.8) Updates `mkdirp` from 0.5.1 to 0.5.6 - [Changelog](https://github.com/isaacs/node-mkdirp/blob/main/CHANGELOG.md) - [Commits](isaacs/node-mkdirp@0.5.1...v0.5.6) Updates `tslint` from 3.15.1 to 5.20.1 - [Release notes](https://github.com/palantir/tslint/releases) - [Changelog](https://github.com/palantir/tslint/blob/master/CHANGELOG.md) - [Commits](palantir/tslint@3.15.1...5.20.1) Updates `tough-cookie` from 2.3.4 to 2.5.0 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v2.3.4...v2.5.0) Updates `json-schema` from 0.2.3 to 0.4.0 - [Commits](kriszyp/json-schema@v0.2.3...v0.4.0) Updates `request` from 2.87.0 to 2.88.2 - [Changelog](https://github.com/request/request/blob/master/CHANGELOG.md) - [Commits](https://github.com/request/request/commits) Updates `thenify` from 3.3.0 to 3.3.1 - [Changelog](https://github.com/thenables/thenify/blob/master/History.md) - [Commits](thenables/thenify@3.3.0...3.3.1) --- updated-dependencies: - dependency-name: axios dependency-version: 1.8.2 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: minimatch dependency-version: 4.0.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: postcss dependency-version: 8.4.32 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: qs dependency-version: 6.12.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: vue dependency-version: 3.0.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: vue-template-compiler dependency-version: 2.7.16 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-version: 6.0.6 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: express dependency-version: 4.20.0 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: http-proxy-middleware dependency-version: 2.0.9 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: webpack-bundle-analyzer dependency-version: 4.10.2 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: rollup dependency-version: 2.79.2 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@sentry/browser" dependency-version: 7.119.1 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: simple-git dependency-version: 3.16.0 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: ws dependency-version: 6.2.3 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: react-dev-utils dependency-version: 12.0.1 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@babel/runtime" dependency-version: 7.27.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: micromatch dependency-version: 4.0.8 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-version: 3.2.10 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: body-parser dependency-version: 1.20.3 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/helpers" dependency-version: 7.27.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: algoliasearch-helper dependency-version: 2.28.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: dset dependency-version: 3.1.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ejs dependency-version: 3.1.8 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-version: 6.6.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: handlebars dependency-version: 4.7.8 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: i dependency-version: 0.3.7 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-version: 0.1.10 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-version: 1.16.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: store2 dependency-version: 2.14.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: url-parse dependency-version: 1.5.10 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: thenify dependency-version: 3.3.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: axios dependency-version: 1.8.2 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@babel/runtime" dependency-version: 7.27.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-version: 1.9.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimatch dependency-version: 3.1.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mocha dependency-version: 11.1.0 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: remap-istanbul dependency-version: 0.13.0 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: qs dependency-version: 6.5.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ajv dependency-version: 6.12.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: request dependency-version: 2.88.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: handlebars dependency-version: 4.7.8 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-version: 1.2.8 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mkdirp dependency-version: 0.5.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tslint dependency-version: 5.20.1 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: tough-cookie dependency-version: 2.5.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json-schema dependency-version: 0.4.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: request dependency-version: 2.88.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: thenify dependency-version: 3.3.1 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 24, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the npm_and_yarn group across 3 directories with 40 updates #1

chore(deps): bump the npm_and_yarn group across 3 directories with 40 updates #1

Uh oh!

dependabot bot commented on behalf of github Apr 24, 2025

Uh oh!

Uh oh!

chore(deps): bump the npm_and_yarn group across 3 directories with 40 updates #1

Are you sure you want to change the base?

chore(deps): bump the npm_and_yarn group across 3 directories with 40 updates #1

Uh oh!

Conversation

dependabot bot commented on behalf of github Apr 24, 2025

Release v1.8.2

Release notes:

Bug Fixes

Contributors to this release

Release v1.8.1

Release notes:

Bug Fixes

Contributors to this release

Release v1.8.0

Release notes:

Bug Fixes

Features

Reverts

BREAKING CHANGES

Contributors to this release

1.8.2 (2025-03-07)

Bug Fixes

Contributors to this release

1.8.1 (2025-02-26)

Bug Fixes

Contributors to this release

1.8.0 (2025-02-25)

Bug Fixes

Features

Reverts

BREAKING CHANGES

change log

10.0

9.0

8.0

7.4

7.3

7.2

7.1

7.0

6.2

8.4.32

8.4.32

6.12.0

3.0.0 (2020-09-18)

3.0.0-rc.13 (2020-09-18)

Bug Fixes

Code Refactoring

Features

BREAKING CHANGES

3.0.0-rc.12 (2020-09-16)

Bug Fixes

Features

3.0.0-rc.11 (2020-09-15)

v2.7.16 "Swan Song"

v2.7.16-beta.2

v2.7.16-beta.1

v2.7.15

v2.7.14

v2.7.13

v2.7.12

v2.7.11

v2.7.10

v2.7.9

v2.7.8

v2.7.7

v2.7.6

v2.7.5

v2.7.4

v2.7.3

2.7.16 Swan Song (2023-12-24)

Bug Fixes

2.7.16-beta.2 (2023-12-14)

Bug Fixes

2.7.16-beta.1 (2023-12-08)

Bug Fixes

2.7.15 (2023-10-23)

Bug Fixes

6.0.6 (2024-11-18)