mirror of
https://github.com/Unleash/unleash.git
synced 2025-01-31 00:16:47 +01:00
87a84426ec
1416 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
renovate[bot]
|
938f12908b
|
chore(deps): update dependency @types/react to v18.3.18 (#9146)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@types/react](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/react) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react)) | [`18.3.17` -> `18.3.18`](https://renovatebot.com/diffs/npm/@types%2freact/18.3.17/18.3.18) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xMjUuMSIsInVwZGF0ZWRJblZlciI6IjM5LjEyNS4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
89cb9dc59a
|
chore(deps): update dependency vite to v5.4.12 [security] (#9131)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [vite](https://vite.dev) ([source](https://redirect.github.com/vitejs/vite/tree/HEAD/packages/vite)) | [`5.4.11` -> `5.4.12`](https://renovatebot.com/diffs/npm/vite/5.4.11/5.4.12) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | ### GitHub Vulnerability Alerts #### [CVE-2025-24010](https://redirect.github.com/vitejs/vite/security/advisories/GHSA-vg6x-rcgg-rjx6) ### Summary Vite allowed any websites to send any requests to the development server and read the response due to default CORS settings and lack of validation on the Origin header for WebSocket connections. ### Upgrade Path Users that does not match either of the following conditions should be able to upgrade to a newer version of Vite that fixes the vulnerability without any additional configuration. - Using the backend integration feature - Using a reverse proxy in front of Vite - Accessing the development server via a domain other than `localhost` or `*.localhost` - Using a plugin / framework that connects to the WebSocket server on their own from the browser #### Using the backend integration feature If you are using the backend integration feature and not setting [`server.origin`](https://vite.dev/config/server-options.html#server-origin), you need to add the origin of the backend server to the [`server.cors.origin`](https://redirect.github.com/expressjs/cors#configuration-options) option. Make sure to set a specific origin rather than `*`, otherwise any origin can access your development server. #### Using a reverse proxy in front of Vite If you are using a reverse proxy in front of Vite and sending requests to Vite with a hostname other than `localhost` or `*.localhost`, you need to add the hostname to the new [`server.allowedHosts`](https://vite.dev/config/server-options.html#server-allowedhosts) option. For example, if the reverse proxy is sending requests to `http://vite:5173`, you need to add `vite` to the `server.allowedHosts` option. #### Accessing the development server via a domain other than `localhost` or `*.localhost` You need to add the hostname to the new [`server.allowedHosts`](https://vite.dev/config/server-options.html#server-allowedhosts) option. For example, if you are accessing the development server via `http://foo.example.com:8080`, you need to add `foo.example.com` to the `server.allowedHosts` option. #### Using a plugin / framework that connects to the WebSocket server on their own from the browser If you are using a plugin / framework, try upgrading to a newer version of Vite that fixes the vulnerability. If the WebSocket connection appears not to be working, the plugin / framework may have a code that connects to the WebSocket server on their own from the browser. In that case, you can either: - fix the plugin / framework code to the make it compatible with the new version of Vite - set `legacy.skipWebSocketTokenCheck: true` to opt-out the fix for [2] while the plugin / framework is incompatible with the new version of Vite - When enabling this option, **make sure that you are aware of the security implications** described in the impact section of [2] above. ### Mitigation without upgrading Vite #### [1]: Permissive default CORS settings Set `server.cors` to `false` or limit `server.cors.origin` to trusted origins. #### [2]: Lack of validation on the Origin header for WebSocket connections There aren't any mitigations for this. #### [3]: Lack of validation on the Host header for HTTP requests Use Chrome 94+ or use HTTPS for the development server. ### Details There are three causes that allowed malicious websites to send any requests to the development server: #### [1]: Permissive default CORS settings Vite sets the [`Access-Control-Allow-Origin`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin) header depending on [`server.cors`](https://vite.dev/config/server-options.html#server-cors) option. The default value was `true` which sets `Access-Control-Allow-Origin: *`. This allows websites on any origin to `fetch` contents served on the development server. Attack scenario: 1. The attacker serves a malicious web page (`http://malicious.example.com`). 2. The user accesses the malicious web page. 3. The attacker sends a `fetch('http://127.0.0.1:5173/main.js')` request by JS in that malicious web page. This request is normally blocked by same-origin policy, but that's not the case for the reasons above. 4. The attacker gets the content of `http://127.0.0.1:5173/main.js`. #### [2]: Lack of validation on the Origin header for WebSocket connections Vite starts a WebSocket server to handle HMR and other functionalities. This WebSocket server [did not perform validation on the Origin header](https://redirect.github.com/vitejs/vite/blob/v6.0.7/packages/vite/src/node/server/ws.ts#L145-L157) and was vulnerable to Cross-Site WebSocket Hijacking (CSWSH) attacks. With that attack, an attacker can read and write messages on the WebSocket connection. Vite only sends some information over the WebSocket connection ([list of the file paths that changed, the file content where the errored happened, etc.](https://redirect.github.com/vitejs/vite/blob/v6.0.7/packages/vite/types/hmrPayload.d.ts#L12-L72)), but plugins can send arbitrary messages and may include more sensitive information. Attack scenario: 1. The attacker serves a malicious web page (`http://malicious.example.com`). 2. The user accesses the malicious web page. 3. The attacker runs `new WebSocket('http://127.0.0.1:5173', 'vite-hmr')` by JS in that malicious web page. 4. The user edits some files. 5. Vite sends some HMR messages over WebSocket. 6. The attacker gets the content of the HMR messages. #### [3]: Lack of validation on the Host header for HTTP requests Unless [`server.https`](https://vite.dev/config/server-options.html#server-https) is set, Vite starts the development server on HTTP. Non-HTTPS servers are vulnerable to DNS rebinding attacks without validation on the Host header. But Vite did not perform validation on the Host header. By exploiting this vulnerability, an attacker can send arbitrary requests to the development server bypassing the same-origin policy. 1. The attacker serves a malicious web page that is served on **HTTP** (`http://malicious.example.com:5173`) (HTTPS won't work). 2. The user accesses the malicious web page. 3. The attacker changes the DNS to point to 127.0.0.1 (or other private addresses). 4. The attacker sends a `fetch('/main.js')` request by JS in that malicious web page. 5. The attacker gets the content of `http://127.0.0.1:5173/main.js` bypassing the same origin policy. ### Impact #### [1]: Permissive default CORS settings Users with the default `server.cors` option may: - get the source code stolen by malicious websites - give the attacker access to functionalities that are not supposed to be exposed externally - Vite core does not have any functionality that causes changes somewhere else when receiving a request, but plugins may implement those functionalities and servers behind `server.proxy` may have those functionalities. #### [2]: Lack of validation on the Origin header for WebSocket connections All users may get the file paths of the files that changed and the file content where the error happened be stolen by malicious websites. For users that is using a plugin that sends messages over WebSocket, that content may be stolen by malicious websites. For users that is using a plugin that has a functionality that is triggered by messages over WebSocket, that functionality may be exploited by malicious websites. #### [3]: Lack of validation on the Host header for HTTP requests Users using HTTP for the development server and using a browser that is not Chrome 94+ may: - get the source code stolen by malicious websites - give the attacker access to functionalities that are not supposed to be exposed externally - Vite core does not have any functionality that causes changes somewhere else when receiving a request, but plugins may implement those functionalities and servers behind `server.proxy` may have those functionalities. Chrome 94+ users are not affected for [3], because [sending a request to a private network page from public non-HTTPS page is forbidden](https://developer.chrome.com/blog/private-network-access-update#chrome_94) since Chrome 94. ### Related Information Safari has [a bug that blocks requests to loopback addresses from HTTPS origins](https://bugs.webkit.org/show_bug.cgi?id=171934). This means when the user is using Safari and Vite is listening on lookback addresses, there's another condition of "the malicious web page is served on HTTP" to make [1] and [2] to work. ### PoC #### [2]: Lack of validation on the Origin header for WebSocket connections 1. I used the `react` template which utilizes HMR functionality. ``` npm create vite@latest my-vue-app-react -- --template react ``` 2. Then on a malicious server, serve the following POC html: ```html <!doctype html> <html lang="en"> <head> <meta charset="utf-8" /> <title>vite CSWSH</title> </head> <body> <div id="logs"></div> <script> const div = document.querySelectorAll('#logs')[0]; const ws = new WebSocket('ws://localhost:5173','vite-hmr'); ws.onmessage = event => { const logLine = document.createElement('p'); logLine.innerHTML = event.data; div.append(logLine); }; </script> </body> </html> ``` 3. Kick off Vite ``` npm run dev ``` 4. Load the development server (open `http://localhost:5173/`) as well as the malicious page in the browser. 5. Edit `src/App.jsx` file and intentionally place a syntax error 6. Notice how the malicious page can view the websocket messages and a snippet of the source code is exposed Here's a video demonstrating the POC: https://github.com/user-attachments/assets/a4ad05cd-0b34-461c-9ff6-d7c8663d6961 --- ### Release Notes <details> <summary>vitejs/vite (vite)</summary> ### [`v5.4.12`](https://redirect.github.com/vitejs/vite/releases/tag/v5.4.12) [Compare Source](https://redirect.github.com/vitejs/vite/compare/v5.4.11...v5.4.12) Please refer to [CHANGELOG.md](https://redirect.github.com/vitejs/vite/blob/v5.4.12/packages/vite/CHANGELOG.md) for details. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xMDcuMCIsInVwZGF0ZWRJblZlciI6IjM5LjEwNy4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
2a06a71f28
|
chore(deps): update dependency @codemirror/state to v6.5.1 (#9129)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@codemirror/state](https://redirect.github.com/codemirror/state) | [`6.5.0` -> `6.5.1`](https://renovatebot.com/diffs/npm/@codemirror%2fstate/6.5.0/6.5.1) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>codemirror/state (@​codemirror/state)</summary> ### [`v6.5.1`](https://redirect.github.com/codemirror/state/blob/HEAD/CHANGELOG.md#651-2025-01-10) [Compare Source](https://redirect.github.com/codemirror/state/compare/6.5.0...6.5.1) ##### Bug fixes `countColumn` no longer loops infinitely when given a `to` that's higher than the input string's length. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xMDcuMCIsInVwZGF0ZWRJblZlciI6IjM5LjEwNy4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
ed9c0a466c
|
chore(deps): update dependency cypress to v13.17.0 (#9035)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [cypress](https://cypress.io) ([source](https://redirect.github.com/cypress-io/cypress)) | [`13.16.1` -> `13.17.0`](https://renovatebot.com/diffs/npm/cypress/13.16.1/13.17.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>cypress-io/cypress (cypress)</summary> ### [`v13.17.0`](https://redirect.github.com/cypress-io/cypress/releases/tag/v13.17.0) [Compare Source](https://redirect.github.com/cypress-io/cypress/compare/v13.16.1...v13.17.0) Changelog: https://docs.cypress.io/app/references/changelog#13-17-0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
6163d8b93f
|
chore(deps): update dependency sass to v1.83.0 (#9032)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [sass](https://redirect.github.com/sass/dart-sass) | [`1.81.1` -> `1.83.0`](https://renovatebot.com/diffs/npm/sass/1.81.1/1.83.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>sass/dart-sass (sass)</summary> ### [`v1.83.0`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1830) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.82.0...1.83.0) - Allow trailing commas in *all* argument and parameter lists. ### [`v1.82.0`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1820) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.81.1...1.82.0) ##### Command-Line Interface - Improve `--watch` mode reliability when making multiple changes at once, such as checking out a different Git branch. - Parse the `calc-size()` function as a calculation now that it's supported in some browsers. ##### Dart API - Add a `SassCalculation.calcSize()` function. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
9265eb3a02
|
chore(deps): update dependency msw to v2.7.0 (#9030)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| [msw](https://mswjs.io)
([source](https://redirect.github.com/mswjs/msw)) | [`2.6.9` ->
`2.7.0`](https://renovatebot.com/diffs/npm/msw/2.6.9/2.7.0) |
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
---
### Release Notes
<details>
<summary>mswjs/msw (msw)</summary>
###
[`v2.7.0`](https://redirect.github.com/mswjs/msw/releases/tag/v2.7.0)
[Compare
Source](https://redirect.github.com/mswjs/msw/compare/v2.6.9...v2.7.0)
##### v2.7.0 (2024-12-17)
##### Features
- use `picocolors` instead of `chalk`
([#​2377](https://redirect.github.com/mswjs/msw/issues/2377))
([`85bdd82`](
|
||
|
renovate[bot]
|
376b23fd18
|
chore(deps): update dependency @testing-library/react to v16.1.0 (#9029)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@testing-library/react](https://redirect.github.com/testing-library/react-testing-library) | [`16.0.1` -> `16.1.0`](https://renovatebot.com/diffs/npm/@testing-library%2freact/16.0.1/16.1.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>testing-library/react-testing-library (@​testing-library/react)</summary> ### [`v16.1.0`](https://redirect.github.com/testing-library/react-testing-library/compare/v16.0.1...85ac2534a59abd38880011e77da4bb8c716eba84) [Compare Source](https://redirect.github.com/testing-library/react-testing-library/compare/v16.0.1...v16.1.0) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
ec5e11808d
|
chore(deps): update dependency @codemirror/state to v6.5.0 (#9027)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@codemirror/state](https://redirect.github.com/codemirror/state) | [`6.4.1` -> `6.5.0`](https://renovatebot.com/diffs/npm/@codemirror%2fstate/6.4.1/6.5.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>codemirror/state (@​codemirror/state)</summary> ### [`v6.5.0`](https://redirect.github.com/codemirror/state/blob/HEAD/CHANGELOG.md#650-2024-12-09) [Compare Source](https://redirect.github.com/codemirror/state/compare/6.4.1...6.5.0) ##### New features `RangeSet.compare` now supports a `boundChange` callback that is called when there's a change in the way ranges are split. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
fbab5507a0
|
chore(deps): update dependency @uiw/react-codemirror to v4.23.7 (#9026)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@uiw/react-codemirror](https://uiwjs.github.io/react-codemirror) ([source](https://redirect.github.com/uiwjs/react-codemirror)) | [`4.23.6` -> `4.23.7`](https://renovatebot.com/diffs/npm/@uiw%2freact-codemirror/4.23.6/4.23.7) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>uiwjs/react-codemirror (@​uiw/react-codemirror)</summary> ### [`v4.23.7`](https://redirect.github.com/uiwjs/react-codemirror/releases/tag/v4.23.7) [Compare Source](https://redirect.github.com/uiwjs/react-codemirror/compare/v4.23.6...v4.23.7) [](https://jaywcjlove.github.io/#/sponsor) [](https://uiwjs.github.io/npm-unpkg/#/pkg/@​uiw/react-codemirror@4.23.7/file/README.md) Documentation v4.23.7: https://raw.githack.com/uiwjs/react-codemirror/5b16350/index.html\ Comparing Changes: https://github.com/uiwjs/react-codemirror/compare/v4.23.6...v4.23.7 ```shell npm i @​uiw/react-codemirror@4.23.7 ``` - 💄 chore: update nextjs example. [#​677](https://redirect.github.com/uiwjs/react-codemirror/issues/677) [`ab89f28`](https://redirect.github.com/uiwjs/react-codemirror/commit/ab89f28) [@​jaywcjlove](https://redirect.github.com/jaywcjlove) - 🐞 fix(theme): implement 'exports' field in themes/theme/package.json ([#​708](https://redirect.github.com/uiwjs/react-codemirror/issues/708)) [`4edca1d`](https://redirect.github.com/uiwjs/react-codemirror/commit/4edca1d) [@​aspiers](https://redirect.github.com/aspiers) - 🐞 fix(theme): implement 'exports' field in themes/\*/package.json [#​708](https://redirect.github.com/uiwjs/react-codemirror/issues/708) [#​613](https://redirect.github.com/uiwjs/react-codemirror/issues/613) [#​680](https://redirect.github.com/uiwjs/react-codemirror/issues/680) [`ced0b1a`](https://redirect.github.com/uiwjs/react-codemirror/commit/ced0b1a) [@​jaywcjlove](https://redirect.github.com/jaywcjlove) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
8993a633e9
|
chore(deps): update dependency @uiw/codemirror-theme-duotone to v4.23.7 (#9024)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@uiw/codemirror-theme-duotone](https://uiwjs.github.io/react-codemirror/#/theme/data/duotone/light) ([source](https://redirect.github.com/uiwjs/react-codemirror)) | [`4.23.6` -> `4.23.7`](https://renovatebot.com/diffs/npm/@uiw%2fcodemirror-theme-duotone/4.23.6/4.23.7) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>uiwjs/react-codemirror (@​uiw/codemirror-theme-duotone)</summary> ### [`v4.23.7`](https://redirect.github.com/uiwjs/react-codemirror/releases/tag/v4.23.7) [Compare Source](https://redirect.github.com/uiwjs/react-codemirror/compare/v4.23.6...v4.23.7) [](https://jaywcjlove.github.io/#/sponsor) [](https://uiwjs.github.io/npm-unpkg/#/pkg/@​uiw/react-codemirror@4.23.7/file/README.md) Documentation v4.23.7: https://raw.githack.com/uiwjs/react-codemirror/5b16350/index.html\ Comparing Changes: https://github.com/uiwjs/react-codemirror/compare/v4.23.6...v4.23.7 ```shell npm i @​uiw/react-codemirror@4.23.7 ``` - 💄 chore: update nextjs example. [#​677](https://redirect.github.com/uiwjs/react-codemirror/issues/677) [`ab89f28`](https://redirect.github.com/uiwjs/react-codemirror/commit/ab89f28) [@​jaywcjlove](https://redirect.github.com/jaywcjlove) - 🐞 fix(theme): implement 'exports' field in themes/theme/package.json ([#​708](https://redirect.github.com/uiwjs/react-codemirror/issues/708)) [`4edca1d`](https://redirect.github.com/uiwjs/react-codemirror/commit/4edca1d) [@​aspiers](https://redirect.github.com/aspiers) - 🐞 fix(theme): implement 'exports' field in themes/\*/package.json [#​708](https://redirect.github.com/uiwjs/react-codemirror/issues/708) [#​613](https://redirect.github.com/uiwjs/react-codemirror/issues/613) [#​680](https://redirect.github.com/uiwjs/react-codemirror/issues/680) [`ced0b1a`](https://redirect.github.com/uiwjs/react-codemirror/commit/ced0b1a) [@​jaywcjlove](https://redirect.github.com/jaywcjlove) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
755a008166
|
chore(deps): update dependency @types/react to v18.3.17 (#9023)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@types/react](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/react) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react)) | [`18.3.16` -> `18.3.17`](https://renovatebot.com/diffs/npm/@types%2freact/18.3.16/18.3.17) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
4b7a186d82
|
chore(deps): update dependency msw to v2.6.9 (#9020)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| [msw](https://mswjs.io)
([source](https://redirect.github.com/mswjs/msw)) | [`2.6.8` ->
`2.6.9`](https://renovatebot.com/diffs/npm/msw/2.6.8/2.6.9) |
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
---
### Release Notes
<details>
<summary>mswjs/msw (msw)</summary>
###
[`v2.6.9`](https://redirect.github.com/mswjs/msw/releases/tag/v2.6.9)
[Compare
Source](https://redirect.github.com/mswjs/msw/compare/v2.6.8...v2.6.9)
#### v2.6.9 (2024-12-16)
##### Bug Fixes
- support `SharedArrayBuffer` in `HttpResponse.arrayBuffer`
([#​2389](https://redirect.github.com/mswjs/msw/issues/2389))
([`41f00e1`](
|
||
|
renovate[bot]
|
9dfdf48ace
|
chore(deps): update react monorepo (#9018)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@types/react](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/react) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react)) | [`18.3.12` -> `18.3.16`](https://renovatebot.com/diffs/npm/@types%2freact/18.3.12/18.3.16) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | | [@types/react-dom](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/react-dom) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom)) | [`18.3.1` -> `18.3.5`](https://renovatebot.com/diffs/npm/@types%2freact-dom/18.3.1/18.3.5) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuODAuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
77a104960b
|
chore(deps): update dependency tss-react to v4.9.14 (#9015)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [tss-react](https://www.tss-react.dev) ([source](https://redirect.github.com/garronej/tss-react)) | [`4.9.13` -> `4.9.14`](https://renovatebot.com/diffs/npm/tss-react/4.9.13/4.9.14) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>garronej/tss-react (tss-react)</summary> ### [`v4.9.14`](https://redirect.github.com/garronej/tss-react/releases/tag/v4.9.14) [Compare Source](https://redirect.github.com/garronej/tss-react/compare/v4.9.13...v4.9.14) <!-- Release notes generated using configuration in .github/release.yaml at refs/heads/main --> **Full Changelog**: https://github.com/garronej/tss-react/compare/v4.9.13...v4.9.14 </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS43Mi41IiwidXBkYXRlZEluVmVyIjoiMzkuNzIuNSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
9e5a2359ae
|
chore(deps): update dependency msw to v2.6.8 (#9014)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [msw](https://mswjs.io) ([source](https://redirect.github.com/mswjs/msw)) | [`2.6.6` -> `2.6.8`](https://renovatebot.com/diffs/npm/msw/2.6.6/2.6.8) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>mswjs/msw (msw)</summary> ### [`v2.6.8`](https://redirect.github.com/mswjs/msw/releases/tag/v2.6.8) [Compare Source](https://redirect.github.com/mswjs/msw/compare/v2.6.7...v2.6.8) #### v2.6.8 (2024-12-07) ##### Bug Fixes - **setupServer:** reapply interception after calling `server.listen()` after `server.close()` ([#​2383](https://redirect.github.com/mswjs/msw/issues/2383)) ([`00da9ca`]( |
||
|
renovate[bot]
|
487d3f25e9
|
chore(deps): update dependency cypress to v13.16.1 (#9008)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [cypress](https://cypress.io) ([source](https://redirect.github.com/cypress-io/cypress)) | [`13.16.0` -> `13.16.1`](https://renovatebot.com/diffs/npm/cypress/13.16.0/13.16.1) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>cypress-io/cypress (cypress)</summary> ### [`v13.16.1`](https://redirect.github.com/cypress-io/cypress/releases/tag/v13.16.1) [Compare Source](https://redirect.github.com/cypress-io/cypress/compare/v13.16.0...v13.16.1) Changelog: https://docs.cypress.io/app/references/changelog#13-16-1 </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS43Mi41IiwidXBkYXRlZEluVmVyIjoiMzkuNzIuNSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
9add1a464c
|
chore(deps): update dependency @types/react-test-renderer to v18.3.1 (#9007)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@types/react-test-renderer](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/react-test-renderer) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-test-renderer)) | [`18.3.0` -> `18.3.1`](https://renovatebot.com/diffs/npm/@types%2freact-test-renderer/18.3.0/18.3.1) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS43Mi41IiwidXBkYXRlZEluVmVyIjoiMzkuNzIuNSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
87d03e8270
|
chore(deps): update dependency sass to v1.81.1 (#8946)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [sass](https://redirect.github.com/sass/dart-sass) | [`1.81.0` -> `1.81.1`](https://renovatebot.com/diffs/npm/sass/1.81.0/1.81.1) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>sass/dart-sass (sass)</summary> ### [`v1.81.1`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1811) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.81.0...1.81.1) - No user-visible changes. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS40Mi40IiwidXBkYXRlZEluVmVyIjoiMzkuNDIuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
152dd76f02
|
chore(deps): update dependency sass to v1.81.0 (#8927)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [sass](https://redirect.github.com/sass/dart-sass) | [`1.80.6` -> `1.81.0`](https://renovatebot.com/diffs/npm/sass/1.80.6/1.81.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>sass/dart-sass (sass)</summary> ### [`v1.81.0`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1810) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.7...1.81.0) - Fix a few cases where deprecation warnings weren't being emitted for global built-in functions whose names overlap with CSS calculations. - Add support for the CSS `round()` calculation with a single argument, as long as that argument might be a unitless number. ### [`v1.80.7`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1807) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.6...1.80.7) ##### Embedded Host - Don't treat `0` as `undefined` for the `green` and `blue` channels in the `LegacyColor` constructor. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS40Mi40IiwidXBkYXRlZEluVmVyIjoiMzkuNDIuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
bd0ad18a63
|
chore(deps): update dependency jsonpath-plus to v10.2.0 (#8919)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [jsonpath-plus](https://redirect.github.com/s3u/JSONPath) | [`10.1.0` -> `10.2.0`](https://renovatebot.com/diffs/npm/jsonpath-plus/10.1.0/10.2.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>s3u/JSONPath (jsonpath-plus)</summary> ### [`v10.2.0`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1020) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.1.0...v10.2.0) - fix(eval): improve security of safe-eval ([#​233](https://redirect.github.com/s3u/JSONPath/issues/233)) - chore: update deps. and devDeps. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS40Mi40IiwidXBkYXRlZEluVmVyIjoiMzkuNDIuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
913a158479
|
chore(deps): update dependency cypress to v13.16.0 (#8918)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [cypress](https://cypress.io) ([source](https://redirect.github.com/cypress-io/cypress)) | [`13.15.2` -> `13.16.0`](https://renovatebot.com/diffs/npm/cypress/13.15.2/13.16.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>cypress-io/cypress (cypress)</summary> ### [`v13.16.0`](https://redirect.github.com/cypress-io/cypress/releases/tag/v13.16.0) [Compare Source](https://redirect.github.com/cypress-io/cypress/compare/v13.15.2...v13.16.0) Changelog: https://docs.cypress.io/guides/references/changelog#13-16-0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS40Mi40IiwidXBkYXRlZEluVmVyIjoiMzkuNDIuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
8fbf7976e6
|
chore(deps): update yarn to v4.5.3 (#8911)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [yarn](https://redirect.github.com/yarnpkg/berry) ([source](https://redirect.github.com/yarnpkg/berry/tree/HEAD/packages/yarnpkg-cli)) | [`4.5.1` -> `4.5.3`](https://renovatebot.com/diffs/npm/yarn/4.5.1/4.5.3) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>yarnpkg/berry (yarn)</summary> ### [`v4.5.3`]( |
||
|
renovate[bot]
|
0c5ff44738
|
chore(deps): update dependency @vitejs/plugin-react to v4.3.4 (#8910)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@vitejs/plugin-react](https://redirect.github.com/vitejs/vite-plugin-react/tree/main/packages/plugin-react#readme) ([source](https://redirect.github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react)) | [`4.3.3` -> `4.3.4`](https://renovatebot.com/diffs/npm/@vitejs%2fplugin-react/4.3.3/4.3.4) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>vitejs/vite-plugin-react (@​vitejs/plugin-react)</summary> ### [`v4.3.4`](https://redirect.github.com/vitejs/vite-plugin-react/blob/HEAD/packages/plugin-react/CHANGELOG.md#434-2024-11-26) [Compare Source](https://redirect.github.com/vitejs/vite-plugin-react/compare/v4.3.3...v4.3.4) ##### Add Vite 6 to peerDependencies range Vite 6 is highly backward compatible, not much to add! ##### Force Babel to output spec compliant import attributes [#​386](https://redirect.github.com/vitejs/vite-plugin-react/pull/386) The default was an old spec (`with type: "json"`). We now enforce spec compliant (`with { type: "json" }`) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS40Mi40IiwidXBkYXRlZEluVmVyIjoiMzkuNDIuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
9b53194b4a
|
chore(deps): update dependency msw to v2.6.6 (#8898)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [msw](https://mswjs.io) ([source](https://redirect.github.com/mswjs/msw)) | [`2.6.4` -> `2.6.6`](https://renovatebot.com/diffs/npm/msw/2.6.4/2.6.6) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>mswjs/msw (msw)</summary> ### [`v2.6.6`](https://redirect.github.com/mswjs/msw/releases/tag/v2.6.6) [Compare Source](https://redirect.github.com/mswjs/msw/compare/v2.6.5...v2.6.6) #### v2.6.6 (2024-11-22) ##### Bug Fixes - **types:** support optional path parameters ([#​2368](https://redirect.github.com/mswjs/msw/issues/2368)) ([`3b7b776`]( |
||
|
renovate[bot]
|
ba7cad6c45
|
chore(deps): update dependency vite to v5.4.11 (#8790)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [vite](https://vite.dev) ([source](https://redirect.github.com/vitejs/vite/tree/HEAD/packages/vite)) | [`5.4.10` -> `5.4.11`](https://renovatebot.com/diffs/npm/vite/5.4.10/5.4.11) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>vitejs/vite (vite)</summary> ### [`v5.4.11`](https://redirect.github.com/vitejs/vite/releases/tag/v5.4.11) [Compare Source](https://redirect.github.com/vitejs/vite/compare/v5.4.10...v5.4.11) Please refer to [CHANGELOG.md](https://redirect.github.com/vitejs/vite/blob/v5.4.11/packages/vite/CHANGELOG.md) for details. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xOS4wIiwidXBkYXRlZEluVmVyIjoiMzkuMTkuMCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
5a39efe707
|
chore(deps): update dependency msw to v2.6.4 (#8786)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [msw](https://mswjs.io) ([source](https://redirect.github.com/mswjs/msw)) | [`2.6.2` -> `2.6.4`](https://renovatebot.com/diffs/npm/msw/2.6.2/2.6.4) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>mswjs/msw (msw)</summary> ### [`v2.6.4`](https://redirect.github.com/mswjs/msw/releases/tag/v2.6.4) [Compare Source](https://redirect.github.com/mswjs/msw/compare/v2.6.3...v2.6.4) #### v2.6.4 (2024-11-10) ##### Bug Fixes - prevent infinite loop when bypassing `sendBeacon()` requests ([#​2353](https://redirect.github.com/mswjs/msw/issues/2353)) ([`2fa98c3`]( |
||
|
renovate[bot]
|
efd1cce90d
|
chore(deps): update dependency react-dropzone to v14.3.5 (#8759)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [react-dropzone](https://redirect.github.com/react-dropzone/react-dropzone) | [`14.2.10` -> `14.3.5`](https://renovatebot.com/diffs/npm/react-dropzone/14.2.10/14.3.5) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>react-dropzone/react-dropzone (react-dropzone)</summary> ### [`v14.3.5`](https://redirect.github.com/react-dropzone/react-dropzone/releases/tag/v14.3.5) [Compare Source](https://redirect.github.com/react-dropzone/react-dropzone/compare/v14.3.4...v14.3.5) ##### Bug Fixes - fix wrong file type msg ux and close [#​1221](https://redirect.github.com/react-dropzone/react-dropzone/issues/1221) ([4ca683b]( |
||
|
renovate[bot]
|
0cbdc1439c
|
chore(deps): update dependency msw to v2.6.2 (#8758)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [msw](https://mswjs.io) ([source](https://redirect.github.com/mswjs/msw)) | [`2.5.1` -> `2.6.2`](https://renovatebot.com/diffs/npm/msw/2.5.1/2.6.2) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>mswjs/msw (msw)</summary> ### [`v2.6.2`](https://redirect.github.com/mswjs/msw/releases/tag/v2.6.2) [Compare Source](https://redirect.github.com/mswjs/msw/compare/v2.6.1...v2.6.2) ##### v2.6.2 (2024-11-07) ##### Bug Fixes - update `@bundled-es-modules/cookie` to 2.0.1 ([#​2312](https://redirect.github.com/mswjs/msw/issues/2312)) ([`c134352`]( |
||
|
renovate[bot]
|
584be706ec
|
chore(deps): update dependency sass to v1.80.6 (#8729)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [sass](https://redirect.github.com/sass/dart-sass) | [`1.80.4` -> `1.80.6`](https://renovatebot.com/diffs/npm/sass/1.80.4/1.80.6) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>sass/dart-sass (sass)</summary> ### [`v1.80.6`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1806) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.5...1.80.6) ##### Command-Line Interface - Make `@parcel/watcher` an optional dependency so this can still be installed on operating systems where it's unavailable. ### [`v1.80.5`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1805) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.4...1.80.5) ##### Embedded Host - Don't produce phantom `@import` deprecations when using an importer with the legacy API. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS45LjUiLCJ1cGRhdGVkSW5WZXIiOiIzOS45LjUiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
9126e0a26f
|
chore(deps): update dependency cypress to v13.15.2 (#8728)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [cypress](https://cypress.io) ([source](https://redirect.github.com/cypress-io/cypress)) | [`13.15.1` -> `13.15.2`](https://renovatebot.com/diffs/npm/cypress/13.15.1/13.15.2) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>cypress-io/cypress (cypress)</summary> ### [`v13.15.2`](https://redirect.github.com/cypress-io/cypress/releases/tag/v13.15.2) [Compare Source](https://redirect.github.com/cypress-io/cypress/compare/v13.15.1...v13.15.2) Changelog: https://docs.cypress.io/guides/references/changelog#13-15-2 </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS45LjUiLCJ1cGRhdGVkSW5WZXIiOiIzOS45LjUiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
d42c10b0fe
|
chore(deps): update dependency @uiw/react-codemirror to v4.23.6 (#8712)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@uiw/react-codemirror](https://uiwjs.github.io/react-codemirror) ([source](https://redirect.github.com/uiwjs/react-codemirror)) | [`4.23.5` -> `4.23.6`](https://renovatebot.com/diffs/npm/@uiw%2freact-codemirror/4.23.5/4.23.6) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>uiwjs/react-codemirror (@​uiw/react-codemirror)</summary> ### [`v4.23.6`](https://redirect.github.com/uiwjs/react-codemirror/releases/tag/v4.23.6) [Compare Source](https://redirect.github.com/uiwjs/react-codemirror/compare/v4.23.5...v4.23.6) [](https://jaywcjlove.github.io/#/sponsor) [](https://uiwjs.github.io/npm-unpkg/#/pkg/@​uiw/react-codemirror@4.23.6/file/README.md) Documentation v4.23.6: https://raw.githack.com/uiwjs/react-codemirror/57d9fb7/index.html\ Comparing Changes: https://github.com/uiwjs/react-codemirror/compare/v4.23.5...v4.23.6 ```shell npm i @​uiw/react-codemirror@4.23.6 ``` - 🐞 fix: Implement 'exports' field in package.json for the core & basics setup package ([#​692](https://redirect.github.com/uiwjs/react-codemirror/issues/692)) [`8f1ff2d`](https://redirect.github.com/uiwjs/react-codemirror/commit/8f1ff2d) [@​fatton139](https://redirect.github.com/fatton139) - 🐞 fix: resolve exports field issue causing README.md loading error in documentation [#​692](https://redirect.github.com/uiwjs/react-codemirror/issues/692) [`c2437c7`](https://redirect.github.com/uiwjs/react-codemirror/commit/c2437c7) [@​jaywcjlove](https://redirect.github.com/jaywcjlove) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS45LjUiLCJ1cGRhdGVkSW5WZXIiOiIzOS45LjUiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
7d800f6565
|
chore(deps): update dependency @testing-library/jest-dom to v6.6.3 (#8705)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@testing-library/jest-dom](https://redirect.github.com/testing-library/jest-dom) | [`6.6.2` -> `6.6.3`](https://renovatebot.com/diffs/npm/@testing-library%2fjest-dom/6.6.2/6.6.3) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>testing-library/jest-dom (@​testing-library/jest-dom)</summary> ### [`v6.6.3`](https://redirect.github.com/testing-library/jest-dom/compare/v6.6.2...5ba015651c7b10c154e5a4ae54f85df6010c5295) [Compare Source](https://redirect.github.com/testing-library/jest-dom/compare/v6.6.2...v6.6.3) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS43LjEiLCJ1cGRhdGVkSW5WZXIiOiIzOS43LjEiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
Tymoteusz Czech
|
656483d819
|
chore: remove stale flags (#8689)
- `projectOverviewRefactorFeedback` - `featureSearchFeedbackPosting` - `featureSearchFeedback` |
||
Jaanus Sellin
|
1cedc374c1
|
feat: activity widget (#8628)
It is still raw, next PRs add styling and date filtering for only single year.  --------- Co-authored-by: kwasniew <kwasniewski.mateusz@gmail.com> |
||
|
renovate[bot]
|
f7a136d4bb
|
chore(deps): update dependency @uiw/codemirror-theme-duotone to v4.23.6 (#8633)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@uiw/codemirror-theme-duotone](https://uiwjs.github.io/react-codemirror/#/theme/data/duotone/light) ([source](https://redirect.github.com/uiwjs/react-codemirror)) | [`4.23.5` -> `4.23.6`](https://renovatebot.com/diffs/npm/@uiw%2fcodemirror-theme-duotone/4.23.5/4.23.6) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>uiwjs/react-codemirror (@​uiw/codemirror-theme-duotone)</summary> ### [`v4.23.6`](https://redirect.github.com/uiwjs/react-codemirror/releases/tag/v4.23.6) [Compare Source](https://redirect.github.com/uiwjs/react-codemirror/compare/v4.23.5...v4.23.6) [](https://jaywcjlove.github.io/#/sponsor) [](https://uiwjs.github.io/npm-unpkg/#/pkg/@​uiw/react-codemirror@4.23.6/file/README.md) Documentation v4.23.6: https://raw.githack.com/uiwjs/react-codemirror/57d9fb7/index.html\ Comparing Changes: https://github.com/uiwjs/react-codemirror/compare/v4.23.5...v4.23.6 ```shell npm i @​uiw/react-codemirror@4.23.6 ``` - 🐞 fix: Implement 'exports' field in package.json for the core & basics setup package ([#​692](https://redirect.github.com/uiwjs/react-codemirror/issues/692)) [`8f1ff2d`](https://redirect.github.com/uiwjs/react-codemirror/commit/8f1ff2d) [@​fatton139](https://redirect.github.com/fatton139) - 🐞 fix: resolve exports field issue causing README.md loading error in documentation [#​692](https://redirect.github.com/uiwjs/react-codemirror/issues/692) [`c2437c7`](https://redirect.github.com/uiwjs/react-codemirror/commit/c2437c7) [@​jaywcjlove](https://redirect.github.com/jaywcjlove) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzUuMiIsInVwZGF0ZWRJblZlciI6IjM4LjEzNS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
fbbe04465c
|
chore(deps): update dependency cypress to v13.15.1 (#8620)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [cypress](https://cypress.io) ([source](https://redirect.github.com/cypress-io/cypress)) | [`13.15.0` -> `13.15.1`](https://renovatebot.com/diffs/npm/cypress/13.15.0/13.15.1) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>cypress-io/cypress (cypress)</summary> ### [`v13.15.1`](https://redirect.github.com/cypress-io/cypress/releases/tag/v13.15.1) [Compare Source](https://redirect.github.com/cypress-io/cypress/compare/v13.15.0...v13.15.1) Changelog: https://docs.cypress.io/guides/references/changelog#13-15-1 </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzUuMiIsInVwZGF0ZWRJblZlciI6IjM4LjEzNS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
Christopher Kolstad
|
8d4e3efbc5
|
chore: upgrade to biome 1.9.4 (#8616)
The two lints being turned off are new for 1.9.x and caused a massive diff inside frontend if activated. To reduce impact, these were turned off for the merge. We might want to look at turning them back on once we're ready to have a semantic / a11y refactor of our frontend. |
||
|
renovate[bot]
|
a582f071e0
|
chore(deps): update dependency msw to v2.5.1 (#8604)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| [msw](https://mswjs.io)
([source](https://redirect.github.com/mswjs/msw)) | [`2.5.0` ->
`2.5.1`](https://renovatebot.com/diffs/npm/msw/2.5.0/2.5.1) |
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
---
### Release Notes
<details>
<summary>mswjs/msw (msw)</summary>
###
[`v2.5.1`](https://redirect.github.com/mswjs/msw/releases/tag/v2.5.1)
[Compare
Source](https://redirect.github.com/mswjs/msw/compare/v2.5.0...v2.5.1)
#### v2.5.1 (2024-10-24)
##### Bug Fixes
- update`@inquirer/confirm` requirement to 5.0.0
([#​2325](https://redirect.github.com/mswjs/msw/issues/2325))
([`b65c0a8`](
|
||
|
renovate[bot]
|
d716d2e7f6
|
chore(deps): update dependency sass to v1.80.4 (#8602)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [sass](https://redirect.github.com/sass/dart-sass) | [`1.80.3` -> `1.80.4`](https://renovatebot.com/diffs/npm/sass/1.80.3/1.80.4) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>sass/dart-sass (sass)</summary> ### [`v1.80.4`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1804) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.3...1.80.4) - No user-visible changes. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzUuMiIsInVwZGF0ZWRJblZlciI6IjM4LjEzNS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
37874bdf1b
|
chore(deps): update dependency @types/react to v18.3.12 (#8600)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@types/react](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/react) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react)) | [`18.3.11` -> `18.3.12`](https://renovatebot.com/diffs/npm/@types%2freact/18.3.11/18.3.12) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzUuMiIsInVwZGF0ZWRJblZlciI6IjM4LjEzNS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
85bc8fba27
|
chore(deps): update dependency @types/jest to v29.5.14 (#8599)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@types/jest](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/jest) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest)) | [`29.5.13` -> `29.5.14`](https://renovatebot.com/diffs/npm/@types%2fjest/29.5.13/29.5.14) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzUuMiIsInVwZGF0ZWRJblZlciI6IjM4LjEzNS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
916e890c93
|
chore(deps): update dependency vite to v5.4.10 (#8586)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [vite](https://vite.dev) ([source](https://redirect.github.com/vitejs/vite/tree/HEAD/packages/vite)) | [`5.4.9` -> `5.4.10`](https://renovatebot.com/diffs/npm/vite/5.4.9/5.4.10) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>vitejs/vite (vite)</summary> ### [`v5.4.10`](https://redirect.github.com/vitejs/vite/releases/tag/v5.4.10) [Compare Source](https://redirect.github.com/vitejs/vite/compare/v5.4.9...v5.4.10) Please refer to [CHANGELOG.md](https://redirect.github.com/vitejs/vite/blob/v5.4.10/packages/vite/CHANGELOG.md) for details. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzMuMSIsInVwZGF0ZWRJblZlciI6IjM4LjEzMy4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
fc8571d5cf
|
chore(deps): update dependency msw to v2.5.0 (#8581)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [msw](https://mswjs.io) ([source](https://redirect.github.com/mswjs/msw)) | [`2.4.12` -> `2.5.0`](https://renovatebot.com/diffs/npm/msw/2.4.12/2.5.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>mswjs/msw (msw)</summary> ### [`v2.5.0`](https://redirect.github.com/mswjs/msw/releases/tag/v2.5.0) [Compare Source](https://redirect.github.com/mswjs/msw/compare/v2.4.13...v2.5.0) #### v2.5.0 (2024-10-22) ##### Features - isolate parent and child frames when handling requests ([#​2324](https://redirect.github.com/mswjs/msw/issues/2324)) ([`a1a81ba`]( |
||
|
renovate[bot]
|
6efb9b61e1
|
chore(deps): update dependency jsonpath-plus to v10.1.0 (#8580)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [jsonpath-plus](https://redirect.github.com/s3u/JSONPath) | [`10.0.0` -> `10.1.0`](https://renovatebot.com/diffs/npm/jsonpath-plus/10.0.0/10.1.0) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>s3u/JSONPath (jsonpath-plus)</summary> ### [`v10.1.0`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1010) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.0.7...v10.1.0) - feat: add typeof operator to safe script ### [`v10.0.7`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1007) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.0.6...v10.0.7) - fix(security): prevent `constructor` access - docs: add security policy file ### [`v10.0.6`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1006) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.0.5...v10.0.6) - fix(security): prevent `call`/`apply` invocation of `Function` ### [`v10.0.5`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1005) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.0.4...v10.0.5) - fix: remove overly aggressive disabling of native functions but disallow `__proto__` ### [`v10.0.4`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1004) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.0.3...v10.0.4) - fix(security): further prevent binding of Function calls which may evade detection ### [`v10.0.3`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1003) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.0.2...v10.0.3) - fix(security): prevent binding of Function calls which may evade detection ### [`v10.0.2`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1002) [Compare Source](https://redirect.github.com/s3u/JSONPath/compare/v10.0.1...v10.0.2) - fix(security): prevent Function calls outside of member expressions ### [`v10.0.1`](https://redirect.github.com/s3u/JSONPath/blob/HEAD/CHANGES.md#1001) - fix(security): prohibit `Function` in "safe" vm </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzMuMSIsInVwZGF0ZWRJblZlciI6IjM4LjEzMy4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
Gastón Fournier
|
7221697a96
|
security: move orval to dev dependency (#8569)
Looking at https://github.com/Unleash/unleash/security/dependabot/204 it seems that the dependency comes from orval that should not be needed in production: ```shell $ yarn why --recursive jsonpath-plus └─ unleash-frontend-local@workspace:. └─ orval@npm:6.31.0 (via npm:^6.31.0) ├─ @orval/angular@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/core@npm:6.31.0 (via npm:6.31.0) │ └─ @ibm-cloud/openapi-ruleset@npm:1.17.0 (via npm:^1.14.2) │ ├─ @stoplight/spectral-formats@npm:1.6.0 (via npm:^1.6.0) │ │ └─ @stoplight/spectral-core@npm:1.18.3 (via npm:^1.8.0) │ │ ├─ jsonpath-plus@npm:7.1.0 (via npm:7.1.0) │ │ └─ nimma@npm:0.2.2 (via npm:0.2.2) │ │ └─ jsonpath-plus@npm:6.0.1 (via npm:^6.0.1) │ ├─ @stoplight/spectral-functions@npm:1.8.0 (via npm:^1.7.2) │ │ ├─ @stoplight/spectral-core@npm:1.18.3 (via npm:^1.7.0) │ │ └─ @stoplight/spectral-formats@npm:1.6.0 (via npm:^1.0.0) │ └─ @stoplight/spectral-rulesets@npm:1.19.1 (via npm:^1.18.1) │ ├─ @stoplight/spectral-core@npm:1.18.3 (via npm:^1.8.1) │ ├─ @stoplight/spectral-formats@npm:1.6.0 (via npm:^1.5.0) │ └─ @stoplight/spectral-functions@npm:1.8.0 (via npm:^1.5.1) ├─ @orval/axios@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/core@npm:6.31.0 (via npm:6.31.0) ├─ @orval/core@npm:6.31.0 (via npm:6.31.0) ├─ @orval/fetch@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/core@npm:6.31.0 (via npm:6.31.0) ├─ @orval/hono@npm:6.31.0 (via npm:6.31.0) │ ├─ @orval/core@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/zod@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/core@npm:6.31.0 (via npm:6.31.0) ├─ @orval/mock@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/core@npm:6.31.0 (via npm:6.31.0) ├─ @orval/query@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/core@npm:6.31.0 (via npm:6.31.0) ├─ @orval/swr@npm:6.31.0 (via npm:6.31.0) │ └─ @orval/core@npm:6.31.0 (via npm:6.31.0) └─ @orval/zod@npm:6.31.0 (via npm:6.31.0) ``` These are dependencies that are optional for your project. If they fail to install, the installation process will continue without error, but they will be included if they can be successfully installed. By default, optionalDependencies are installed in both environments, including production. |
||
|
renovate[bot]
|
1894271791
|
chore(deps): update yarn to v4.5.1 (#8565)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [yarn](https://redirect.github.com/yarnpkg/berry) ([source](https://redirect.github.com/yarnpkg/berry/tree/HEAD/packages/yarnpkg-cli)) | [`4.4.1` -> `4.5.1`](https://renovatebot.com/diffs/npm/yarn/4.4.1/4.5.1) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>yarnpkg/berry (yarn)</summary> ### [`v4.5.1`]( |
||
|
renovate[bot]
|
5a01a7e981
|
chore(deps): update dependency sass to v1.80.3 (#8562)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [sass](https://redirect.github.com/sass/dart-sass) | [`1.77.8` -> `1.80.3`](https://renovatebot.com/diffs/npm/sass/1.77.8/1.80.3) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>sass/dart-sass (sass)</summary> ### [`v1.80.3`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1803) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.2...1.80.3) - Fix a bug where `@import url("...")` would crash in plain CSS files. - Improve consistency of how warnings are emitted by different parts of the compiler. This should result in minimal user-visible changes, but different types of warnings should now respond more reliably to flags like `--quiet`, `--verbose`, and `--silence-deprecation`. ### [`v1.80.2`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1802) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.1...1.80.2) - Fix a bug where deprecation warnings were incorrectly emitted for the plain-CSS `invert()` function. ### [`v1.80.1`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1801) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.80.0...1.80.1) - Fix a bug where repeated deprecation warnings were not automatically limited. ### [`v1.80.0`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1800) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.79.6...1.80.0) - `@import` is now officially deprecated, as are global built-in functions that are available within built-in modules. See [the Sass blog post] for more details on the deprecation process. [the Sass blog post]: https://sass-lang.com/blog/import-is-deprecated/ ##### Embedded Host - Fix an error that would sometimes occur when deprecation warnings were emitted when using a custom importer with the legacy API. ### [`v1.79.6`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1796) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.79.5...1.79.6) - Fix a bug where Sass would add an extra `*/` after loud comments with whitespace after an explicit `*/` in the indented syntax. - **Potentially breaking bug fix:** Adding text after an explicit `*/` in the indented syntax is now an error, rather than silently generating invalid CSS. ##### Embedded Host - Properly export the `SassBoolean` type. ### [`v1.79.5`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1795) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.79.4...1.79.5) - Changes to how `selector.unify()` and `@extend` combine selectors: - The relative order of pseudo-classes (like `:hover`) and pseudo-elements (like `::before`) within each original selector is now preserved when they're combined. - Pseudo selectors are now consistently placed at the end of the combined selector, regardless of which selector they came from. Previously, this reordering only applied to pseudo-selectors in the second selector. - Tweak the color transformation matrices for OKLab and OKLCH to match the newer, more accurate values in the CSS spec. - Fix a slight inaccuracy case when converting to `srgb-linear` and `display-p3`. - **Potentially breaking bug fix:** `math.unit()` now wraps multiple denominator units in parentheses. For example, `px/(em*em)` instead of `px/em*em`. ##### Command-Line Interface - Use `@parcel/watcher` to watch the filesystem when running from JavaScript and not using `--poll`. This should mitigate more frequent failures users have been seeing since version 4.0.0 of Chokidar, our previous watching tool, was released. ##### JS API - Fix `SassColor.interpolate()` to allow an undefined `options` parameter, as the types indicate. ##### Embedded Sass - Properly pass missing color channel values to and from custom functions. ### [`v1.79.4`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1794) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.79.3...1.79.4) ##### JS API - Fix a bug where passing `green` or `blue` to `color.change()` for legacy colors would fail. ### [`v1.79.3`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1793) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.79.2...1.79.3) - Update the `$channel` parameter in the suggested replacement for `color.red()`, `color.green()`, `color.blue()`, `color.hue()`, `color.saturation()`, `color.lightness()`, `color.whiteness()`, and `color.blackness()` to use a quoted string. ### [`v1.79.2`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1792) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.79.1...1.79.2) - Add a `$space` parameter to the suggested replacement for `color.red()`, `color.green()`, `color.blue()`, `color.hue()`, `color.saturation()`, `color.lightness()`, `color.whiteness()`, and `color.blackness()`. - Update deprecation warnings for the legacy JS API to include a link to [relevant documentation]. [relevant documentation]: https://sass-lang.com/d/legacy-js-api ### [`v1.79.1`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1791) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.79.0...1.79.1) - No user-visible changes. ### [`v1.79.0`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1790) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.78.0...1.79.0) - **Breaking change**: Passing a number with unit `%` to the `$alpha` parameter of `color.change()`, `color.adjust()`, `change-color()`, and `adjust-color()` is now interpreted as a percentage, instead of ignoring the unit. For example, `color.change(red, $alpha: 50%)` now returns `rgb(255 0 0 / 0.5)`. - **Potentially breaking compatibility fix**: Sass no longer rounds RGB channels to the nearest integer. This means that, for example, `rgb(0 0 1) != rgb(0 0 0.6)`. This matches the latest version of the CSS spec and browser behavior. - **Potentially breaking compatibility fix**: Passing large positive or negative values to `color.adjust()` can now cause a color's channels to go outside that color's gamut. In most cases this will currently be clipped by the browser and end up showing the same color as before, but once browsers implement gamut mapping it may produce a different result. - Add support for CSS Color Level 4 [color spaces]. Each color value now tracks its color space along with the values of each channel in that color space. There are two general principles to keep in mind when dealing with new color spaces: 1. With the exception of legacy color spaces (`rgb`, `hsl`, and `hwb`), colors will always be emitted in the color space they were defined in unless they're explicitly converted. 2. The `color.to-space()` function is the only way to convert a color to another color space. Some built-in functions may do operations in a different color space, but they'll always convert back to the original space afterwards. - `rgb` colors can now have non-integer channels and channels outside the normal gamut of 0-255. These colors are always emitted using the `rgb()` syntax so that modern browsers that are being displayed on wide-gamut devices can display the most accurate color possible. - Add support for all the new color syntax defined in Color Level 4, including: - `oklab()`, `oklch()`, `lab()`, and `lch()` functions; - a top-level `hwb()` function that matches the space-separated CSS syntax; - and a `color()` function that supports the `srgb`, `srgb-linear`, `display-p3`, `a98-rgb`, `prophoto-rgb`, `rec2020`, `xyz`, `xyz-d50`, and `xyz-d65` color spaces. - Add new functions for working with color spaces: - `color.to-space($color, $space)` converts `$color` to the given `$space`. In most cases this conversion is lossless—the color may end up out-of-gamut for the destination color space, but browsers will generally display it as best they can regardless. However, the `hsl` and `hwb` spaces can't represent out-of-gamut colors and so will be clamped. - `color.channel($color, $channel, $space: null)` returns the value of the given `$channel` in `$color`, after converting it to `$space` if necessary. It should be used instead of the old channel-specific functions such as `color.red()` and `color.hue()`. - `color.same($color1, $color2)` returns whether two colors represent the same color even across color spaces. It differs from `$color1 == $color2` because `==` never consider colors in different (non-legacy) spaces as equal. - `color.is-in-gamut($color, $space: null)` returns whether `$color` is in-gamut for its color space (or `$space` if it's passed). - `color.to-gamut($color, $space: null)` returns `$color` constrained to its space's gamut (or to `$space`'s gamut, if passed). This is generally not recommended since even older browsers will display out-of-gamut colors as best they can, but it may be necessary in some cases. - `color.space($color)`: Returns the name of `$color`'s color space. - `color.is-legacy($color)`: Returns whether `$color` is in a legacy color space (`rgb`, `hsl`, or `hwb`). - `color.is-powerless($color, $channel, $space: null)`: Returns whether the given `$channel` of `$color` is powerless in `$space` (or its own color space). A channel is "powerless" if its value doesn't affect the way the color is displayed, such as hue for a color with 0 chroma. - `color.is-missing($color, $channel)`: Returns whether `$channel`'s value is missing in `$color`. Missing channels can be explicitly specified using the special value `none` and can appear automatically when `color.to-space()` returns a color with a powerless channel. Missing channels are usually treated as 0, except when interpolating between two colors and in `color.mix()` where they're treated as the same value as the other color. - Update existing functions to support color spaces: - `hsl()` and `color.hwb()` no longer forbid out-of-bounds values. Instead, they follow the CSS spec by clamping them to within the allowed range. - `color.change()`, `color.adjust()`, and `color.scale()` now support all channels of all color spaces. However, if you want to modify a channel that's not in `$color`'s own color space, you have to explicitly specify the space with the `$space` parameter. (For backwards-compatibility, this doesn't apply to legacy channels of legacy colors—for example, you can still adjust an `rgb` color's saturation without passing `$space: hsl`). - `color.mix()` and `color.invert()` now support the standard CSS algorithm for interpolating between two colors (the same one that's used for gradients and animations). To use this, pass the color space to use for interpolation to the `$method` parameter. For polar color spaces like `hsl` and `oklch`, this parameter also allows you to specify how hue interpolation is handled. - `color.complement()` now supports a `$space` parameter that indicates which color space should be used to take the complement. - `color.grayscale()` now operates in the `oklch` space for non-legacy colors. - `color.ie-hex-str()` now automatically converts its color to the `rgb` space and gamut-maps it so that it can continue to take colors from any color space. [color spaces]: https://developer.mozilla.org/en-US/docs/Web/CSS/color_value - The following functions are now deprecated, and uses should be replaced with the new color-space-aware functions defined above: - The `color.red()`, `color.green()`, `color.blue()`, `color.hue()`, `color.saturation()`, `color.lightness()`, `color.whiteness()`, and `color.blackness()` functions, as well as their global counterparts, should be replaced with calls to `color.channel()`. - The global `adjust-hue()`, `saturate()`, `desaturate()`, `lighten()`, `darken()`, `transaprentize()`, `fade-out()`, `opacify()`, and `fade-in()` functions should be replaced by `color.adjust()` or `color.scale()`. - Add a `global-builtin` future deprecation, which can be opted-into with the `--future-deprecation` flag or the `futureDeprecations` option in the JS or Dart API. This emits warnings when any global built-in functions that are now available in `sass:` modules are called. It will become active by default in an upcoming release alongside the `@import` deprecation. ##### Dart API - Added a `ColorSpace` class which represents the various color spaces defined in the CSS spec. - Added `SassColor.space` which returns a color's color space. - Added `SassColor.channels` and `.channelsOrNull` which returns a list of channel values, with missing channels converted to 0 or exposed as null, respectively. - Added `SassColor.isLegacy`, `.isInGamut`, `.channel()`, `.isChannelMissing()`, `.isChannelPowerless()`, `.toSpace()`, `.toGamut()`, `.changeChannels()`, and `.interpolate()` which do the same thing as the Sass functions of the corresponding names. - `SassColor.rgb()` now allows out-of-bounds and non-integer arguments. - `SassColor.hsl()` and `.hwb()` now allow out-of-bounds arguments. - Added `SassColor.hwb()`, `.srgb()`, `.srgbLinear()`, `.displayP3()`, `.a98Rgb()`, `.prophotoRgb()`, `.rec2020()`, `.xyzD50()`, `.xyzD65()`, `.lab()`, `.lch()`, `.oklab()`, `.oklch()`, and `.forSpace()` constructors. - Deprecated `SassColor.red`, `.green`, `.blue`, `.hue`, `.saturation`, `.lightness`, `.whiteness`, and `.blackness` in favor of `SassColor.channel()`. - Deprecated `SassColor.changeRgb()`, `.changeHsl()`, and `.changeHwb()` in favor of `SassColor.changeChannels()`. - Added `SassNumber.convertValueToUnit()` as a shorthand for `SassNumber.convertValue()` with a single numerator. - Added `InterpolationMethod` and `HueInterpolationMethod` which collectively represent the method to use to interpolate two colors. ##### JS API - While the legacy API has been deprecated since we released the modern API, we now emit warnings when the legacy API is used to make sure users are aware that it will be removed in Dart Sass 2.0.0. In the meantime, you can silence these warnings by passing `legacy-js-api` in `silenceDeprecations` when using the legacy API. - Modify `SassColor` to accept a new `space` option, with support for all the new color spaces defined in Color Level 4. - Add `SassColor.space` which returns a color's color space. - Add `SassColor.channels` and `.channelsOrNull` which returns a list of channel values, with missing channels converted to 0 or exposed as null, respectively. - Add `SassColor.isLegacy`, `.isInGamut()`, `.channel()`, `.isChannelMissing()`, `.isChannelPowerless()`, `.toSpace()`, `.toGamut()`, `.change()`, and `.interpolate()` which do the same thing as the Sass functions of the corresponding names. - Deprecate `SassColor.red`, `.green`, `.blue`, `.hue`, `.saturation`, `.lightness`, `.whiteness`, and `.blackness` in favor of `SassColor.channel()`. ##### Embedded Sass - Add `Color` SassScript value, with support for all the new color spaces defined in Color Level 4. - Remove `RgbColor`, `HslColor` and `HwbColor` SassScript values. ### [`v1.78.0`](https://redirect.github.com/sass/dart-sass/blob/HEAD/CHANGELOG.md#1780) [Compare Source](https://redirect.github.com/sass/dart-sass/compare/1.77.8...1.78.0) - The `meta.feature-exists` function is now deprecated. This deprecation is named `feature-exists`. - Fix a crash when using `@at-root` without any queries or children in the indented syntax. ##### JS API - Backport the deprecation options (`fatalDeprecations`, `futureDeprecations`, and `silenceDeprecations`) to the legacy JS API. The legacy JS API is itself deprecated, and you should move off of it if possible, but this will allow users of bundlers and other tools that are still using the legacy API to still control deprecation warnings. - Fix a bug where accessing `SourceSpan.url` would crash when a relative URL was passed to the Sass API. ##### Embedded Sass - Explicitly expose a `sass` executable from the `sass-embedded` npm package. This was intended to be included in 1.63.0, but due to the way platform-specific dependency executables are installed it did not work as intended. Now users can run `npx sass` for local installs or just `sass` when `sass-embedded` is installed globally. - Add linux-riscv64, linux-musl-riscv64, and android-riscv64 support for the `sass-embedded` npm package. - Fix an edge case where the Dart VM could hang when shutting down when requests were in flight. - Fix a race condition where the embedded host could fail to shut down if it was closed around the same time a new compilation was started. - Fix a bug where parse-time deprecation warnings could not be controlled by the deprecation options in some circumstances. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzMuMSIsInVwZGF0ZWRJblZlciI6IjM4LjEzMy4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |
||
|
renovate[bot]
|
3bbb1c91f8
|
chore(deps): update dependency msw to v2.4.12 (#8559)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| [msw](https://mswjs.io)
([source](https://redirect.github.com/mswjs/msw)) | [`2.4.11` ->
`2.4.12`](https://renovatebot.com/diffs/npm/msw/2.4.11/2.4.12) |
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
---
### Release Notes
<details>
<summary>mswjs/msw (msw)</summary>
###
[`v2.4.12`](https://redirect.github.com/mswjs/msw/releases/tag/v2.4.12)
[Compare
Source](https://redirect.github.com/mswjs/msw/compare/v2.4.11...v2.4.12)
#### v2.4.12 (2024-10-21)
##### Bug Fixes
- **node:** preserve headers instanceof when recording raw headers
([#​2321](https://redirect.github.com/mswjs/msw/issues/2321))
([`a58a300`](
|
||
|
renovate[bot]
|
cb6b776154
|
chore(deps): update dependency react-dropzone to v14.2.10 (#8549)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
|
[react-dropzone](https://redirect.github.com/react-dropzone/react-dropzone)
| [`14.2.9` ->
`14.2.10`](https://renovatebot.com/diffs/npm/react-dropzone/14.2.9/14.2.10)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
[](https://docs.renovatebot.com/merge-confidence/)
|
---
### Release Notes
<details>
<summary>react-dropzone/react-dropzone (react-dropzone)</summary>
###
[`v14.2.10`](https://redirect.github.com/react-dropzone/react-dropzone/releases/tag/v14.2.10)
[Compare
Source](https://redirect.github.com/react-dropzone/react-dropzone/compare/v14.2.9...v14.2.10)
##### Bug Fixes
- fix exports declaration
([53bba3a](
|
||
|
renovate[bot]
|
4f877f37c6
|
chore(deps): update dependency @vitejs/plugin-react to v4.3.3 (#8548)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@vitejs/plugin-react](https://redirect.github.com/vitejs/vite-plugin-react/tree/main/packages/plugin-react#readme) ([source](https://redirect.github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react)) | [`4.3.2` -> `4.3.3`](https://renovatebot.com/diffs/npm/@vitejs%2fplugin-react/4.3.2/4.3.3) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>vitejs/vite-plugin-react (@​vitejs/plugin-react)</summary> ### [`v4.3.3`](https://redirect.github.com/vitejs/vite-plugin-react/blob/HEAD/packages/plugin-react/CHANGELOG.md#433-2024-10-19) [Compare Source](https://redirect.github.com/vitejs/vite-plugin-react/compare/v4.3.2...v4.3.3) ##### React Compiler runtimeModule option removed React Compiler was updated to accept a `target` option and `runtimeModule` was removed. vite-plugin-react will still detect `runtimeModule` for backwards compatibility. When using a custom `runtimeModule` or `target !== '19'`, the plugin will not try to pre-optimize `react/compiler-runtime` dependency. The [react-compiler-runtime](https://www.npmjs.com/package/react-compiler-runtime) is now available on npm can be used instead of the local shim for people using the compiler with React < 19. Here is the configuration to use the compiler with React 18 and correct source maps in development: ```bash npm install babel-plugin-react-compiler react-compiler-runtime @​babel/plugin-transform-react-jsx-development ``` ```ts export default defineConfig(({ command }) => { const babelPlugins = [['babel-plugin-react-compiler', { target: '18' }]] if (command === 'serve') { babelPlugins.push(['@​babel/plugin-transform-react-jsx-development', {}]) } return { plugins: [react({ babel: { plugins: babelPlugins } })], } }) ``` </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7pm every weekday,before 5am every weekday" in timezone Europe/Madrid, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Unleash/unleash). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMjAuMSIsInVwZGF0ZWRJblZlciI6IjM4LjEyMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> |