Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency jsonpath-plus to v10 #1966

Closed
wants to merge 1 commit into from
Closed

chore(deps): update dependency jsonpath-plus to v10 #1966

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 8, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
jsonpath-plus 7.2.0 -> 10.2.0 age adoption passing confidence

Release Notes

s3u/JSONPath (jsonpath-plus)

v10.2.0

Compare Source

  • fix(eval): improve security of safe-eval (#​233)
  • chore: update deps. and devDeps.

v10.1.0

Compare Source

  • feat: add typeof operator to safe script

v10.0.7

Compare Source

  • fix(security): prevent constructor access
  • docs: add security policy file

v10.0.6

Compare Source

  • fix(security): prevent call/apply invocation of Function

v10.0.5

Compare Source

  • fix: remove overly aggressive disabling of native functions but
    disallow __proto__

v10.0.4

Compare Source

  • fix(security): further prevent binding of Function calls which may evade detection

v10.0.3

Compare Source

  • fix(security): prevent binding of Function calls which may evade detection

v10.0.2

Compare Source

  • fix(security): prevent Function calls outside of member expressions

v10.0.1

  • fix(security): prohibit Function in "safe" vm

v10.0.0

BREAKING CHANGES:

  • Require Node 18+

  • fix(security): use safe vm by default in Node

  • chore: bump jsep, devDeps. and lint

v9.0.0

Compare Source

BREAKING CHANGES:

  • Removes preventEval property. Prefer eval: false instead.

  • Changed behavior of eval property. In the browser, eval/Function won't be used by default to evaluate expressions. Instead, we'll safely evaluate using a subset of JavaScript. To resume using unsafe eval in the browser, pass in the option eval: "native"

  • feat: add safe eval for browser and eval option (#​185) (@​80avin)

  • feat: add ignoreEvalErrors property (@​80avin)

v8.1.0

v8.0.0

Configuration

📅 Schedule: Branch creation - "after 2am every weekday,before 5am every weekday" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the deps Renovate PRs label Oct 8, 2024
@aspect-workflows Aspect Workflows
Copy link

aspect-workflows bot commented Oct 8, 2024
edited
Loading

Test

⚠️ Buildkite build #7261 failed.

Test

e2e/bzlmod

All tests were cache hits

5 tests (100.0%) were fully cached saving 502ms.

Test

e2e/gyp_no_install_script

All tests were cache hits

2 tests (100.0%) were fully cached saving 420ms.

Test

e2e/js_image_oci

All tests were cache hits

1 test (100.0%) was fully cached saving 9s.

Test

e2e/npm_link_package

All tests were cache hits

3 tests (100.0%) were fully cached saving 555ms.

Test

e2e/npm_link_package-esm

All tests were cache hits

3 tests (100.0%) were fully cached saving 575ms.

Test

e2e/npm_translate_lock

All tests were cache hits

1 test (100.0%) was fully cached saving 22ms.

Test

e2e/npm_translate_lock_empty

All tests were cache hits

1 test (100.0%) was fully cached saving 22ms.

Test

e2e/npm_translate_lock_multi

All tests were cache hits

2 tests (100.0%) were fully cached saving 97ms.

Test

e2e/npm_translate_lock_partial_clone

All tests were cache hits

1 test (100.0%) was fully cached saving 22ms.

Test

e2e/npm_translate_lock_replace_packages

All tests were cache hits

3 tests (100.0%) were fully cached saving 145ms.

Test

e2e/npm_translate_lock_subdir_patch

All tests were cache hits

1 test (100.0%) was fully cached saving 93ms.

Test

e2e/npm_translate_package_lock

All tests were cache hits

1 test (100.0%) was fully cached saving 26ms.

Test

e2e/npm_translate_yarn_lock

All tests were cache hits

1 test (100.0%) was fully cached saving 26ms.

Test

e2e/package_json_module

All tests were cache hits

1 test (100.0%) was fully cached saving 362ms.

Test

e2e/pnpm_lockfiles

All tests were cache hits

42 tests (100.0%) were fully cached saving 3s.

Test

e2e/pnpm_workspace

All tests were cache hits

10 tests (100.0%) were fully cached saving 4s.

Test

e2e/pnpm_workspace_rerooted

All tests were cache hits

12 tests (100.0%) were fully cached saving 1s.

Test

e2e/repo_mapping

All tests were cache hits

2 tests (100.0%) were fully cached saving 276ms.

Test

e2e/rules_foo

All tests were cache hits

2 tests (100.0%) were fully cached saving 115ms.

Test

e2e/runfiles

All tests were cache hits

1 test (100.0%) was fully cached saving 116ms.

Test

e2e/vendored_node

All tests were cache hits

1 test (100.0%) was fully cached saving 181ms.

Buildifier

Format

@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 7 times, most recently from dc3a949 to 3d1efdf Compare October 16, 2024 15:30
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 13 times, most recently from 8328570 to 36d7053 Compare October 22, 2024 23:40
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 5 times, most recently from 83e5a9e to 1689726 Compare November 3, 2024 05:23
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 3 times, most recently from 72da696 to 4a8895b Compare November 7, 2024 22:19
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 2 times, most recently from 5e02341 to b68c867 Compare December 8, 2024 20:28
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 4 times, most recently from 36427fe to 320744d Compare December 21, 2024 00:07
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 4 times, most recently from 98c4a2d to 7706db6 Compare January 4, 2025 15:42
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 11 times, most recently from 3c3d878 to 4b7c255 Compare January 16, 2025 00:16
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 2 times, most recently from 57a53db to 7e7ae3f Compare January 22, 2025 17:38
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch 2 times, most recently from 1f15c1c to dc668e0 Compare February 5, 2025 18:34
@renovate renovate bot force-pushed the renovate/jsonpath-plus-10.x branch from dc668e0 to a3a08b5 Compare February 6, 2025 18:33
@jbedard jbedard closed this Feb 6, 2025
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Feb 6, 2025

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for any future 10.x releases. But if you manually upgrade to 10.x then Renovate will re-enable minor and patch updates automatically.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

@renovate renovate bot deleted the renovate/jsonpath-plus-10.x branch February 6, 2025 20:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
deps Renovate PRs
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@jbedard