[DPEDE-1784](deps): Bump qs, express and @cypress/request#1903
[DPEDE-1784](deps): Bump qs, express and @cypress/request#1903dependabot[bot] wants to merge 1 commit intomasterfrom
Conversation
dependabot
bot
added
dependencies
dependabot
bot
added
dependencies
|
The CI pipeline has run successfully in https://jenkinsprod.corp.intranet:8443/job/UX-CHI/job/Productive/job/Chi/job/PR-1903/1/. ✅ |
|
You can check this PRs instance in https://nginx-pr-1903-ux-chi.rke-odc-test.corp.intranet (internal) |
dependabot
bot
force-pushed
the
dependabot-npm_and_yarn-multi-eb18b0876f
branch
from
70ce808 to
1823bcc
Compare
|
SonarQube Quality Gate
|
|
The CI pipeline has run successfully in https://jenkinsprod.corp.intranet:8443/job/UX-CHI/job/Productive/job/Chi/job/PR-1903/2/. ✅ |
|
You can check this PRs instance in https://nginx-pr-1903-ux-chi.rke-odc-test.corp.intranet (internal) |
Bumps [qs](https://github.com/ljharb/qs), [express](https://github.com/expressjs/express) and [@cypress/request](https://github.com/cypress-io/request). These dependencies needed to be updated together. Updates `qs` from 6.14.0 to 6.14.1 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.14.0...v6.14.1) Updates `express` from 4.21.2 to 4.22.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/v4.22.1/History.md) - [Commits](expressjs/express@4.21.2...v4.22.1) Updates `@cypress/request` from 3.0.9 to 3.0.10 - [Release notes](https://github.com/cypress-io/request/releases) - [Changelog](https://github.com/cypress-io/request/blob/master/CHANGELOG.md) - [Commits](cypress-io/request@v3.0.9...v3.0.10) --- updated-dependencies: - dependency-name: qs dependency-version: 6.14.1 dependency-type: indirect - dependency-name: express dependency-version: 4.22.1 dependency-type: indirect - dependency-name: "@cypress/request" dependency-version: 3.0.10 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot-npm_and_yarn-multi-eb18b0876f
branch
from
1823bcc to
a1bd217
Compare
|
The CI pipeline did not run successfully in https://jenkinsprod.corp.intranet:8443/job/UX-CHI/job/Productive/job/Chi/job/PR-1903/3/. ❌ |
|
Superseded by #1949. |
|
Removed the Kubernetes allocated resources |
1 similar comment
|
Removed the Kubernetes allocated resources |
Bumps qs, express and @cypress/request. These dependencies needed to be updated together.
Updates
qsfrom 6.14.0 to 6.14.1Changelog
Sourced from qs's changelog.
Commits
3fa11a5v6.14.1a626704[Dev Deps] updatenpmignore3086902[Fix] ensure arrayLength applies to[]notation as wellfc7930e[Dev Deps] updateeslint,@ljharb/eslint-config0b06aac[Dev Deps] update@ljharb/eslint-config64951f6[Refactor]parse: extract key segment splitting helpere1bd259[Dev Deps] update@ljharb/eslint-configf4b3d39[eslint] add eslint 9 optional peer dep6e94d95[Dev Deps] updateeslint,@ljharb/eslint-config,npmignore973dc3c[actions] add workflow permissionsUpdates
expressfrom 4.21.2 to 4.22.1Release notes
Sourced from express's releases.
Changelog
Sourced from express's changelog.
Commits
12fae144.22.15ddf311Revert "sec: security patch for CVE-2024-51999"49744ab4.22.0 (#6921)6e97452sec: security patch for CVE-2024-519996a23d34deps: use tilde notation forqs(#6919)8c12cdfdeps: qs@6.14.0 (#6909)7fea74fdeps: use tilde notation for certain dependencies (#6905)dac7a04chore: wider range for query test skip (#6513)997919bci: add node.js 24 to test matrix (#6506)36fb59cfix(ci): reordernpm isteps to fix ci for older node versions (#6336)Updates
@cypress/requestfrom 3.0.9 to 3.0.10Release notes
Sourced from
@cypress/request's releases.Commits
e783d90fix: release cypress-io/request#97 (#102)e3d6845chore: fix approval/release job (#100)cea7bc6chore: fix broken circle context (#99)a5253c3Merge pull request #97 from hmaesta/master6cc9ddecommig yarn.lockd0c69d2chore(deps): allow qs patch versions72bbc6bchore(deps): update qs to v6.14.1e02f5cbchore: use npm credentials context (#95)You can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.