Skip to content

Bump the npm_and_yarn group across 1 directory with 11 updates#8

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/corporate_finances_ui_py/npm_and_yarn-7efeb75be9
Open

Bump the npm_and_yarn group across 1 directory with 11 updates#8
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/corporate_finances_ui_py/npm_and_yarn-7efeb75be9

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot bot commented on behalf of github Feb 11, 2025

Bumps the npm_and_yarn group with 9 updates in the /corporate_finances_ui_py directory:

Package From To
sweetalert2 11.10.7 11.16.0
body-parser 1.20.2 1.20.3
express 4.19.2 4.21.2
cookie 0.4.2 0.7.2
socket.io 4.7.5 4.8.1
webpack 5.76.1 5.97.1
@angular-devkit/build-angular 15.2.11 19.1.6
ws 8.11.0 8.17.1
socket.io-adapter 2.5.4 2.5.5

Updates sweetalert2 from 11.10.7 to 11.16.0

Release notes

Sourced from sweetalert2's releases.

v11.16.0

11.16.0 (2025-02-08)

Features

v11.15.10

11.15.10 (2025-01-03)

Bug Fixes

  • kiss: get rid of sass:color (ef5ff13)

v11.15.9

11.15.9 (2025-01-02)

Bug Fixes

  • styles: stop using sass:math, add $swal2-icon-border-width scss variable (d0bf711)

v11.15.8

11.15.8 (2025-01-02)

Bug Fixes

v11.15.7

11.15.7 (2025-01-02)

Bug Fixes

v11.15.6

11.15.6 (2025-01-02)

Bug Fixes

  • get rid of SCSS mixins, one file for styles is what I need (#2791) (5e72a29)

v11.15.5

11.15.5 (2025-01-01)

... (truncated)

Changelog

Sourced from sweetalert2's changelog.

11.16.0 (2025-02-08)

Features

11.15.10 (2025-01-03)

Bug Fixes

  • kiss: get rid of sass:color (ef5ff13)

11.15.9 (2025-01-02)

Bug Fixes

  • styles: stop using sass:math, add $swal2-icon-border-width scss variable (d0bf711)

11.15.8 (2025-01-02)

Bug Fixes

11.15.7 (2025-01-02)

Bug Fixes

11.15.6 (2025-01-02)

Bug Fixes

  • get rid of SCSS mixins, one file for styles is what I need (#2791) (5e72a29)

11.15.5 (2025-01-01)

Bug Fixes

  • revert "stop using deprecated sass imports (#2790)" (dd97316)

11.15.4 (2025-01-01)

... (truncated)

Commits
  • 403359d chore(release): 11.16.0 [skip ci]
  • 3f64e05 feat: add built-in light/dark/auto themes (#2796)
  • 4dd4bcd chore: bump cycjimmy/semantic-release-action
  • 9c2cc32 chore: lint tools folder
  • d37dc40 chore: add xndoll and pidoll to sponsors
  • 744e68e chore: bump cypress 13 -> 14
  • 14f1025 chore(release): 11.15.10 [skip ci]
  • ef5ff13 fix(kiss): get rid of sass:color
  • a896a99 chore(release): 11.15.9 [skip ci]
  • d0bf711 fix(styles): stop using sass:math, add $swal2-icon-border-width scss variable
  • Additional commits viewable in compare view

Updates body-parser from 1.20.2 to 1.20.3

Release notes

Sourced from body-parser's releases.

1.20.3

What's Changed

Important

  • deps: qs@6.13.0
  • add depth option to customize the depth level in the parser
  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity). Documentation

Other changes

New Contributors

Full Changelog: expressjs/body-parser@1.20.2...1.20.3

Changelog

Sourced from body-parser's changelog.

1.20.3 / 2024-09-10

  • deps: qs@6.13.0
  • add depth option to customize the depth level in the parser
  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
Commits
Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.


Updates express from 4.19.2 to 4.21.2

Release notes

Sourced from express's releases.

4.21.2

What's Changed

Full Changelog: expressjs/express@4.21.1...4.21.2

4.21.1

What's Changed

Full Changelog: expressjs/express@4.21.0...4.21.1

4.21.0

What's Changed

New Contributors

Full Changelog: expressjs/express@4.20.0...4.21.0

4.20.0

What's Changed

Important

  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
  • Remove link renderization in html while using res.redirect

Other Changes

... (truncated)

Changelog

Sourced from express's changelog.

4.21.2 / 2024-11-06

  • deps: path-to-regexp@0.1.12
    • Fix backtracking protection
  • deps: path-to-regexp@0.1.11
    • Throws an error on invalid path values

4.21.1 / 2024-10-08

4.21.0 / 2024-09-11

  • Deprecate res.location("back") and res.redirect("back") magic string
  • deps: serve-static@1.16.2
    • includes send@0.19.0
  • deps: finalhandler@1.3.1
  • deps: qs@6.13.0

4.20.0 / 2024-09-10

  • deps: serve-static@0.16.0
    • Remove link renderization in html while redirecting
  • deps: send@0.19.0
    • Remove link renderization in html while redirecting
  • deps: body-parser@0.6.0
    • add depth option to customize the depth level in the parser
    • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
  • Remove link renderization in html while using res.redirect
  • deps: path-to-regexp@0.1.10
    • Adds support for named matching groups in the routes using a regex
    • Adds backtracking protection to parameters without regexes defined
  • deps: encodeurl@~2.0.0
    • Removes encoding of \, |, and ^ to align better with URL spec
  • Deprecate passing options.maxAge and options.expires to res.clearCookie
    • Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie
Commits
Maintainer changes

This version was pushed to npm by jonchurch, a new releaser for express since your current version.


Updates cookie from 0.4.2 to 0.7.2

Release notes

Sourced from cookie's releases.

v0.7.2

Fixed

  • Fix object assignment of hasOwnProperty (#177) bc38ffd

jshttp/cookie@v0.7.1...v0.7.2

0.7.1

Fixed

  • Allow leading dot for domain (#174)
    • Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec
  • Add fast path for serialize without options, use obj.hasOwnProperty when parsing (#172)

jshttp/cookie@v0.7.0...v0.7.1

0.7.0

jshttp/cookie@v0.6.0...v0.7.0

0.6.0

  • Add partitioned option

0.5.0

  • Add priority option
  • Fix expires option to reject invalid dates
  • pref: improve default decode speed
  • pref: remove slow string split in parse
Commits
Maintainer changes

This version was pushed to npm by blakeembrey, a new releaser for cookie since your current version.


Updates socket.io from 4.7.5 to 4.8.1

Release notes

Sourced from socket.io's releases.

socket.io@4.8.1

Due to a change in the bundler configuration, the production bundle (socket.io.min.js) did not support sending and receiving binary data in version 4.8.0. This is now fixed.

Dependencies

socket.io-client@4.8.1

Bug Fixes

  • bundle: do not mangle the "_placeholder" attribute (ca9e994)

Dependencies

socket.io-client@4.8.0

Features

Custom transport implementations

The transports option now accepts an array of transport implementations:

import { io } from "socket.io-client";
import { XHR, WebSocket } from "engine.io-client";
const socket = io({
transports: [XHR, WebSocket]
});

Here is the list of provided implementations:

Transport Description
Fetch HTTP long-polling based on the built-in fetch() method.
NodeXHR HTTP long-polling based on the XMLHttpRequest object provided by the xmlhttprequest-ssl package.
XHR HTTP long-polling based on the built-in XMLHttpRequest object.
NodeWebSocket WebSocket transport based on the WebSocket object provided by the ws package.
WebSocket WebSocket transport based on the built-in WebSocket object.
WebTransport WebTransport transport based on the built-in WebTransport object.

Usage:

Transport browser Node.js Deno Bun

... (truncated)

Commits
  • 91e1c8b chore(release): socket.io@4.8.1
  • 8d5528a chore(release): socket.io-client@4.8.1
  • 71387e5 refactor(sio-client): reexport transports from the engine
  • aead835 refactor(sio): make Namespace._fns private (#5196)
  • 029e010 chore(release): engine.io-client@6.6.2
  • 4ca6ddb docs(nuxt): update example with latest version
  • ca9e994 fix(sio-client): do not mangle the "_placeholder" attribute
  • 4865f2e fix(eio-client): prevent infinite loop with Node.js built-in WebSocket
  • d4b3dde ci: use Node.js 22
  • 3b68658 chore: bump @​fails-components/webtransport to version 1.1.4 (dev)
  • Additional commits viewable in compare view

Updates express from 4.19.2 to 4.21.2

Release notes

Sourced from express's releases.

4.21.2

What's Changed

Full Changelog: expressjs/express@4.21.1...4.21.2

4.21.1

What's Changed

Full Changelog: expressjs/express@4.21.0...4.21.1

4.21.0

What's Changed

New Contributors

Full Changelog: expressjs/express@4.20.0...4.21.0

4.20.0

What's Changed

Important

  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
  • Remove link renderization in html while using res.redirect

Other Changes

... (truncated)

Changelog

Sourced from express's changelog.

4.21.2 / 2024-11-06

  • deps: path-to-regexp@0.1.12
    • Fix backtracking protection
  • deps: path-to-regexp@0.1.11
    • Throws an error on invalid path values

4.21.1 / 2024-10-08

4.21.0 / 2024-09-11

  • Deprecate res.location("back") and res.redirect("back") magic string
  • deps: serve-static@1.16.2
    • includes send@0.19.0
  • deps: finalhandler@1.3.1
  • deps: qs@6.13.0

4.20.0 / 2024-09-10

  • deps: serve-static@0.16.0
    • Remove link renderization in html while redirecting
  • deps: send@0.19.0
    • Remove link renderization in html while redirecting
  • deps: body-parser@0.6.0
    • add depth option to customize the depth level in the parser
    • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
  • Remove link renderization in html while using res.redirect
  • deps: path-to-regexp@0.1.10
    • Adds support for named matching groups in the routes using a regex
    • Adds backtracking protection to parameters without regexes defined
  • deps: encodeurl@~2.0.0
    • Removes encoding of \, |, and ^ to align better with URL spec
  • Deprecate passing options.maxAge and options.expires to res.clearCookie
    • Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie
Commits
Maintainer changes

This version was pushed to npm by jonchurch, a new releaser for express since your current version.


Updates send from 0.18.0 to 0.19.0

Release notes

Sourced from send's releases.

0.19.0

What's Changed

New Contributors

Full Changelog: pillarjs/send@0.18.0...0.19.0

Changelog

Sourced from send's changelog.

0.19.0 / 2024-09-10

  • Remove link renderization in html while redirecting
Commits
Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for send since your current version.


Updates serve-static from 1.15.0 to 1.16.2

Release notes

Sourced from serve-static's releases.

v1.16.2

What's Changed

Full Changelog: expressjs/serve-static@v1.16.1...v1.16.2

v1.16.1

What's Changed

New Contributors

Full Changelog: expressjs/serve-static@1.16.0...v1.16.1

1.16.0

What's Changed

New Contributors

Full Changelog: expressjs/serve-static@v1.15.0...1.16.0

Changelog

Sourced from serve-static's changelog.

1.16.2 / 2024-09-11

  • deps: encodeurl@~2.0.0

1.16.1 / 2024-09-11

  • deps: send@0.19.0

1.16.0 / 2024-09-10

  • Remove link renderization in html while redirecting
Commits
Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for serve-static since your current version.


Updates webpack from 5.76.1 to 5.97.1

Release notes

Sourced from webpack's releases.

v5.97.1

Bug Fixes

  • Performance regression
  • Sub define key should't be renamed when it's a defined variable

v5.97.0

Bug Fixes

  • Don't crash with filesystem cache and unknown scheme
  • Generate a valid code when output.iife is true and output.library.type is umd
  • Fixed conflict variable name with concatenate modules and runtime code
  • Merge duplicate chunks before
  • Collisions in ESM library
  • Use recursive search for versions of shared dependencies
  • [WASM] Don't crash WebAssembly with Reference Types (sync and async)
  • [WASM] Fixed wasm loading for sync and async webassembly
  • [CSS] Don't add [uniqueName] to localIdentName when it is empty
  • [CSS] Parsing strings on Windows
  • [CSS] Fixed CSS local escaping

New Features

  • Added support for injecting debug IDs
  • Export the MergeDuplicateChunks plugin
  • Added universal loading for JS chunks and JS worker chunks (only ES modules)
  • [WASM] Added universal loading for WebAssembly chunks (only for async WebAssembly)
  • [CSS] Allow initial CSS chunks to be placed anywhere - the output.cssHeadDataCompression option was deleted
  • [CSS] Added universal loading for CSS chunks
  • [CSS] Parse ICSS @value at-rules in CSS modules
  • [CSS] Parse ICSS :import rules in CSS modules
  • [CSS] Added the url and import options for CSS
  • [CSS] Allow to import custom properties in CSS modules

Performance

  • Faster Queue implementation, also fixed queue iterator state in dequeue method to ensure correct behavior after item removal

v5.96.1

Bug Fixes

  • [Types] Add @types/eslint-scope to dependencieS
  • [Types] Fixed regression in validate

v5.96.0

Bug Fixes

  • Fixed Module Federation should track all referenced chunks
  • Handle Data URI without base64 word
  • HotUpdateChunk have correct runtime when modified with new runtime

... (truncated)

Commits

Updates @angular-devkit/build-angular from 15.2.11 to 19.1.6

Release notes

Sourced from @​angular-devkit/build-angular's releases.

v19.1.6

19.1.6 (2025-02-05)

@​schematics/angular

Commit Description
fix - 3f7042672 remove additional newline after standalone property
fix - e9778dba0 skip ssr migration when @angular/ssr is not a dependency

@​angular/build

Commit Description
fix - 27f833186 avoid pre-transform errors with Vite pre-bundling
fix - 8f6ee7ed9 ensure full rebuild after initial error build in watch mode
fix - 2b9c00f68 prevent fallback to serving main.js for unknown requests
fix - 45abd15b7 prevent server manifest generation when no server features are enabled

@​angular/ssr

Commit Description
fix - 5bf5e5fd2 prioritize the first matching route over subsequent ones

v19.1.5

19.1.5 (2025-01-29)

@​schematics/angular

Commit Description
fix - 14e3a71e4 update library schematic to use @angular-devkit/build-angular:ng-packagr

@​angular/build

Commit Description
fix - d53d25fc1 allow tailwindcss 4.x as a peer dependency
fix - bd9d379f0 disable TypeScript removeComments option
fix - e73e9102e handle empty module case to avoid TypeError
fix - bb413456e keep background referenced HMR update chunks
fix - 2011d3428 support template updates that also trigger global stylesheet changes
fix - 688019946 update vite to version 6.0.11

@​angular/ssr

Commit Description
fix - 94643d54d enhance dynamic route matching for better performance and accuracy
fix - 747557aa0 redirect to locale pathname instead of full URL
fix - bbbc1eb7a rename provideServerRoutesConfig to provideServerRouting

v19.1.4

19.1.4 (2025-01-22)

@​angular-devkit/schematics

Commit Description
fix - aa6f0d051 ensure collections can be resolved via test runner in pnpm workspaces

... (truncated)

Changelog

Sourced from @​angular-devkit/build-angular's changelog.

19.1.6 (2025-02-05)

@​schematics/angular

Commit Type Description
3f7042672 fix remove additional newline after standalone property
e9778dba0 fix skip ssr migration when @angular/ssr is not a dependency

@​angular/build

Commit Type Description
27f833186 fix avoid pre-transform errors with Vite pre-bundling
8f6ee7ed9 fix ensure full rebuild after initial error build in watch mode
2b9c00f68 fix prevent fallback to serving main.js for unknown requests
45abd15b7 fix prevent server manifest generation when no server features are enabled

@​angular/ssr

Commit Type Description
5bf5e5fd2 fix prioritize the first matching route over subsequent ones

19.2.0-next.1 (2025-01-29)

@​schematics/angular

Commit Type Description
cae068be3 fix update library schematic to use @angular-devkit/build-angular:ng-packagr

@​angular/build

Commit Type Description
694ef8e6e fix allow tailwindcss 4.x as a peer dependency
1a3ef3b60 fix disable TypeScript removeComments option
d4ee36065 fix keep background referenced HMR update chunks
531dcdca4 fix support template updates t...

Description has been truncated

@dependabot
Bump the npm_and_yarn group across 1 directory with 11 updates
5a77116 
Bumps the npm_and_yarn group with 9 updates in the /corporate_finances_ui_py directory:

| Package | From | To |
| --- | --- | --- |
| [sweetalert2](https://github.com/sweetalert2/sweetalert2) | `11.10.7` | `11.16.0` |
| [body-parser](https://github.com/expressjs/body-parser) | `1.20.2` | `1.20.3` |
| [express](https://github.com/expressjs/express) | `4.19.2` | `4.21.2` |
| [cookie](https://github.com/jshttp/cookie) | `0.4.2` | `0.7.2` |
| [socket.io](https://github.com/socketio/socket.io) | `4.7.5` | `4.8.1` |
| [webpack](https://github.com/webpack/webpack) | `5.76.1` | `5.97.1` |
| [@angular-devkit/build-angular](https://github.com/angular/angular-cli) | `15.2.11` | `19.1.6` |
| [ws](https://github.com/websockets/ws) | `8.11.0` | `8.17.1` |
| [socket.io-adapter](https://github.com/socketio/socket.io-adapter) | `2.5.4` | `2.5.5` |



Updates `sweetalert2` from 11.10.7 to 11.16.0
- [Release notes](https://github.com/sweetalert2/sweetalert2/releases)
- [Changelog](https://github.com/sweetalert2/sweetalert2/blob/main/CHANGELOG.md)
- [Commits](sweetalert2/sweetalert2@v11.10.7...v11.16.0)

Updates `body-parser` from 1.20.2 to 1.20.3
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](expressjs/body-parser@1.20.2...1.20.3)

Updates `express` from 4.19.2 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](expressjs/express@4.19.2...4.21.2)

Updates `cookie` from 0.4.2 to 0.7.2
- [Release notes](https://github.com/jshttp/cookie/releases)
- [Commits](jshttp/cookie@v0.4.2...v0.7.2)

Updates `socket.io` from 4.7.5 to 4.8.1
- [Release notes](https://github.com/socketio/socket.io/releases)
- [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md)
- [Commits](https://github.com/socketio/socket.io/compare/socket.io@4.7.5...socket.io@4.8.1)

Updates `express` from 4.19.2 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](expressjs/express@4.19.2...4.21.2)

Updates `send` from 0.18.0 to 0.19.0
- [Release notes](https://github.com/pillarjs/send/releases)
- [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md)
- [Commits](pillarjs/send@0.18.0...0.19.0)

Updates `serve-static` from 1.15.0 to 1.16.2
- [Release notes](https://github.com/expressjs/serve-static/releases)
- [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md)
- [Commits](expressjs/serve-static@v1.15.0...v1.16.2)

Updates `webpack` from 5.76.1 to 5.97.1
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.76.1...v5.97.1)

Updates `@angular-devkit/build-angular` from 15.2.11 to 19.1.6
- [Release notes](https://github.com/angular/angular-cli/releases)
- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](angular/angular-cli@15.2.11...19.1.6)

Updates `ws` from 8.11.0 to 8.17.1
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@8.11.0...8.17.1)

Updates `socket.io-adapter` from 2.5.4 to 2.5.5
- [Release notes](https://github.com/socketio/socket.io-adapter/releases)
- [Changelog](https://github.com/socketio/socket.io-adapter/blob/2.5.5/CHANGELOG.md)
- [Commits](socketio/socket.io-adapter@2.5.4...2.5.5)

---
updated-dependencies:
- dependency-name: sweetalert2
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: body-parser
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: express
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: cookie
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: socket.io
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: express
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: send
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: serve-static
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: webpack
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@angular-devkit/build-angular"
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: ws
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: socket.io-adapter
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants