Bump serialize-javascript from 6.0.0 to 6.0.2 in /solution by dependabot[bot] · Pull Request #74 · googlemaps-samples/codelab-maps-platform-deckgl-js
Navigation Menu
{{ message }}
- Notifications You must be signed in to change notification settings
- Fork 9
Comments
Open
dependabot[bot] wants to merge 1 commit intomasterfrom
Open
Bump serialize-javascript from 6.0.0 to 6.0.2 in /solution#74
dependabot[bot] wants to merge 1 commit intomasterfrom
Bump serialize-javascript from 6.0.0 to 6.0.2 in /solution#74
dependabot[bot] wants to merge 1 commit intomasterfrom
Conversation
Copy link
dependabot
bot
commented
on behalf of github
Feb 18, 2025
dependabot
bot
commented
on behalf of github
Bumps serialize-javascript from 6.0.0 to 6.0.2.
Release notes
Sourced from serialize-javascript's releases.
v6.0.2
- fix: serialize URL string contents to prevent XSS (#173) f27d65d
- Bump
@babel/traversefrom 7.10.1 to 7.23.7 (#171) 02499c0- docs: update readme with URL support (#146) 0d88527
- chore: update node version and lock file e2a3a91
- fix typo (#164) 5a1fa64
yahoo/serialize-javascript@v6.0.1...v6.0.2
v6.0.1
What's Changed
- Bump mocha from 9.0.1 to 9.0.2 by
@dependabotin yahoo/serialize-javascript#126- Bump mocha from 9.0.2 to 9.0.3 by
@dependabotin yahoo/serialize-javascript#127- Bump path-parse from 1.0.6 to 1.0.7 by
@dependabotin yahoo/serialize-javascript#129- Bump mocha from 9.0.3 to 9.1.0 by
@dependabotin yahoo/serialize-javascript#130- Bump mocha from 9.1.0 to 9.1.1 by
@dependabotin yahoo/serialize-javascript#131- Bump mocha from 9.1.1 to 9.1.2 by
@dependabotin yahoo/serialize-javascript#132- Bump mocha from 9.1.2 to 9.1.3 by
@dependabotin yahoo/serialize-javascript#133- Bump mocha from 9.1.3 to 9.1.4 by
@dependabotin yahoo/serialize-javascript#137- Bump mocha from 9.1.4 to 9.2.0 by
@dependabotin yahoo/serialize-javascript#138- Bump chai from 4.3.4 to 4.3.6 by
@dependabotin yahoo/serialize-javascript#140- Bump ansi-regex from 5.0.0 to 5.0.1 by
@dependabotin yahoo/serialize-javascript#141- Bump mocha from 9.2.0 to 9.2.2 by
@dependabotin yahoo/serialize-javascript#143- Bump minimist from 1.2.5 to 1.2.6 by
@dependabotin yahoo/serialize-javascript#144- Bump mocha from 9.2.2 to 10.0.0 by
@dependabotin yahoo/serialize-javascript#145- Bump mocha from 10.0.0 to 10.1.0 by
@dependabotin yahoo/serialize-javascript#149- Bump chai from 4.3.6 to 4.3.7 by
@dependabotin yahoo/serialize-javascript#150- ci: test.yml - actions bump by
@piwysockiin yahoo/serialize-javascript#151- Bump minimatch from 3.0.4 to 3.1.2 by
@dependabotin yahoo/serialize-javascript#152- Bump mocha from 10.1.0 to 10.2.0 by
@dependabotin yahoo/serialize-javascript#153- Bump json5 from 2.1.3 to 2.2.3 by
@dependabotin yahoo/serialize-javascript#155- Fix serialization issue for 0n. by
@momocowin yahoo/serialize-javascript#156- Release v6.0.1 by
@okuryuin yahoo/serialize-javascript#157New Contributors
@piwysockimade their first contribution in yahoo/serialize-javascript#151@momocowmade their first contribution in yahoo/serialize-javascript#156Full Changelog: yahoo/serialize-javascript@v6.0.0...v6.0.1
Commits
b71ec236.0.2f27d65dfix: serialize URL string contents to prevent XSS (#173)02499c0Bump@babel/traversefrom 7.10.1 to 7.23.7 (#171)0d88527docs: update readme with URL support (#146)e2a3a91chore: update node version and lock file5a1fa64fix typo (#164)7139f92Release v6.0.1 (#157)7e23ae8Fix serialization issue for 0n. (#156)343abd9Bump json5 from 2.1.3 to 2.2.3 (#155)38d0e70Bump mocha from 10.1.0 to 10.2.0 (#153)- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps [serialize-javascript](https://github.com/yahoo/serialize-javascript) from 6.0.0 to 6.0.2. - [Release notes](https://github.com/yahoo/serialize-javascript/releases) - [Commits](yahoo/serialize-javascript@v6.0.0...v6.0.2) --- updated-dependencies: - dependency-name: serialize-javascript dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
the
dependencies
label
Feb 18, 2025This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode characters
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment