Bump formidable from 3.5.1 to 3.5.4 in /workspaces/linguist by dependabot[bot] · Pull Request #44

Bump formidable from 3.5.1 to 3.5.4 in /workspaces/linguist by dependabot[bot] · Pull Request #44 · dsp-testing/community-plugins

Bumps formidable from 3.5.1 to 3.5.4.

Release notes

Sourced from formidable's releases.

v3.5.3

What's Changed

Fix existing test failure by @ryhmrt in node-formidable/formidable#990

update Ryan Dahl x account link by @moetezch in node-formidable/formidable#989

update failing tests

update CI/CD workflows and actions;

update CodeQL github action for security analysis

update readme, links and badges

update to use cuid2 (battle-tested @paralleldrive/cuid2 package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.

New Contributors

@ryhmrt made their first contribution in node-formidable/formidable#990

@moetezch made their first contribution in node-formidable/formidable#989

Full Changelog: node-formidable/formidable@v3.5.2...v3.5.3

v3.5.2

No release notes provided.

Changelog

Sourced from formidable's changelog.

3.5.4

fix the os.machine breaking some dependents, fix #994

add Node 16, 18, 20, 22 to CI/CD

3.5.3

security report by ZAST.AI help for some vulnerabilities addressing (primarily the random names generation)

update failing tests

update CI/CD workflows and actions;

update CodeQL github action for security analysis

update readme, links and badges

update to use cuid2 (battle-tested @paralleldrive/cuid2 package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.

3.5.2

fix: (#982) make it easier to import hexoid with webpack

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.