Bump the npm_and_yarn group across 2 directories with 43 updates

[dependabot]

Bumps the npm_and_yarn group with 31 updates in the /twake/frontend directory:

Package	From	To
@sentry/browser	5.30.0	7.119.1
anchorme	1.1.2	3.0.2
crypto-js	4.1.1	4.2.0
markdown-to-jsx	7.1.7	7.4.0
semver	6.3.0	6.3.1
webpack	5.75.0	5.94.0
body-parser	1.20.1	1.20.3
express	4.18.2	4.21.1
browserify-sign	4.2.1	4.2.3
browserslist	3.2.8	4.24.0
react-dev-utils	11.0.4	12.0.1
cookie	0.4.2	0.7.2
react-cookie	4.1.1	7.2.1
decode-uri-component	0.2.0	0.2.2
ejs	3.1.8	3.1.10
es5-ext	0.10.62	0.10.64
follow-redirects	1.15.2	1.15.9
got	9.6.0	removed
@storybook/cli	6.5.9	8.3.5
loader-utils	1.2.3	1.4.2
resolve-url-loader	3.1.2	3.1.5
minimatch	3.0.4	3.1.2
recursive-readdir	2.2.2	2.2.3
rollup	2.79.1	2.79.2
socket.io-parser	3.3.3	3.3.4
trim	0.0.1	removed
@storybook/addon-docs	6.5.9	8.3.5
@storybook/addon-essentials	6.5.9	8.3.5
@storybook/react	6.5.9	8.3.5
ua-parser-js	0.7.32	0.7.39
word-wrap	1.2.3	1.2.5

Bumps the npm_and_yarn group with 7 updates in the /twake/integration-test directory:

Package	From	To
@babel/traverse	7.17.9	7.25.7
braces	3.0.2	3.0.3
browserslist	4.20.3	4.24.0
json5	2.2.1	2.2.3
micromatch	4.0.5	4.0.8
tough-cookie	4.0.0	4.1.4
word-wrap	1.2.3	1.2.5

Updates @sentry/browser from 5.30.0 to 7.119.1

Release notes

Sourced from @​sentry/browser's releases.

7.119.1

• fix(browser/v7): Ensure wrap() only returns functions (#13838 backport)

Work in this release contributed by @​legobeat. Thank you for your contribution!

7.119.0

• backport(tracing): Report dropped spans for transactions (#13343)

Bundle size 📦

Path	Size
@​sentry/browser (incl. Tracing, Replay, Feedback) - Webpack (gzipped)	80.96 KB
@​sentry/browser (incl. Tracing, Replay) - Webpack (gzipped)	71.89 KB
@​sentry/browser (incl. Tracing, Replay with Canvas) - Webpack (gzipped)	76.14 KB
@​sentry/browser (incl. Tracing, Replay) - Webpack with treeshaking flags (gzipped)	65.52 KB
@​sentry/browser (incl. Tracing) - Webpack (gzipped)	35.77 KB
@​sentry/browser (incl. browserTracingIntegration) - Webpack (gzipped)	35.66 KB
@​sentry/browser (incl. Feedback) - Webpack (gzipped)	31.71 KB
@​sentry/browser (incl. sendFeedback) - Webpack (gzipped)	31.72 KB
@​sentry/browser - Webpack (gzipped)	22.91 KB
@​sentry/browser (incl. Tracing, Replay, Feedback) - ES6 CDN Bundle (gzipped)	79.17 KB
@​sentry/browser (incl. Tracing, Replay) - ES6 CDN Bundle (gzipped)	70.49 KB
@​sentry/browser (incl. Tracing) - ES6 CDN Bundle (gzipped)	36.17 KB
@​sentry/browser - ES6 CDN Bundle (gzipped)	25.41 KB
@​sentry/browser (incl. Tracing, Replay) - ES6 CDN Bundle (minified & uncompressed)	221.92 KB
@​sentry/browser (incl. Tracing) - ES6 CDN Bundle (minified & uncompressed)	109.52 KB
@​sentry/browser - ES6 CDN Bundle (minified & uncompressed)	76.24 KB
@​sentry/browser (incl. Tracing) - ES5 CDN Bundle (gzipped)	39.45 KB
@​sentry/react (incl. Tracing, Replay) - Webpack (gzipped)	72.4 KB
@​sentry/react - Webpack (gzipped)	22.94 KB
@​sentry/nextjs Client (incl. Tracing, Replay) - Webpack (gzipped)	90.16 KB
@​sentry/nextjs Client - Webpack (gzipped)	54.27 KB
@​sentry-internal/feedback - Webpack (gzipped)	17.34 KB

7.118.0

• fix(v7/bundle): Ensure CDN bundles do not overwrite window.Sentry (#12579)

Bundle size 📦

Path	Size
@​sentry/browser (incl. Tracing, Replay, Feedback) - Webpack (gzipped)	80.83 KB
@​sentry/browser (incl. Tracing, Replay) - Webpack (gzipped)	71.77 KB
@​sentry/browser (incl. Tracing, Replay with Canvas) - Webpack (gzipped)	76.02 KB
@​sentry/browser (incl. Tracing, Replay) - Webpack with treeshaking flags (gzipped)	65.38 KB
@​sentry/browser (incl. Tracing) - Webpack (gzipped)	35.64 KB
@​sentry/browser (incl. browserTracingIntegration) - Webpack (gzipped)	35.53 KB
@​sentry/browser (incl. Feedback) - Webpack (gzipped)	31.6 KB
@​sentry/browser (incl. sendFeedback) - Webpack (gzipped)	31.61 KB

... (truncated)

Changelog

Sourced from @​sentry/browser's changelog.

7.119.1

• fix(browser/v7): Ensure wrap() only returns functions (#13838 backport)

Work in this release contributed by @​legobeat. Thank you for your contribution!

7.119.0

• backport(tracing): Report dropped spans for transactions (#13343)

7.118.0

• fix(v7/bundle): Ensure CDN bundles do not overwrite window.Sentry (#12579)

7.117.0

• feat(browser/v7): Publish browserprofling CDN bundle (#12224)
• fix(v7/publish): Add v7 tag to @sentry/replay (#12304)

7.116.0

• build(craft): Publish lambda layer under its own name for v7 (#12098) (#12099)

This release publishes a new AWS Lambda layer under the name SentryNodeServerlessSDKv7 that users still running v7 can use instead of pinning themselves to SentryNodeServerlessSDK:235.

7.115.0

• feat(v7): Add support for global onUnhandled Error/Promise for Bun (#11959)
• fix(replay/v7): Fix user activity not being updated in start() (#12003)
• ref(api): Remove lastEventId deprecation warnings (#12042)

7.114.0

Important Changes

• fix(browser/v7): Continuously record CLS (#11935)

This release fixes a bug that caused the cumulative layout shift (CLS) web vital not to be reported in a majority of the cases where it should have been reported. With this change, the CLS web vital should now always be reported for pageloads with layout shift. If a pageload did not have layout shift, no CLS web vital should be reported.

Please note that upgrading the SDK to this version may cause data in your dashboards to drastically change.

Other Changes

• build(aws-lambda/v7): Turn off lambda layer publishing (#11875)
• feat(v7): Add tunnel support to multiplexed transport (#11851)
• fix(opentelemetry-node): support HTTP_REQUEST_METHOD attribute (#11929)
• fix(react/v7): Fix react router v4/v5 span names (#11940)

... (truncated)

Commits

• c8452e1 release: 7.119.1
• 5a88ff6 fix(browser/v7): Ensure wrap() only returns functions (#13838 backport) (#1...
• 5adcbf9 Merge branch 'release/7.119.0' into v7
• f58bf69 release: 7.119.0
• a6bc39f fix(ci): GH dropped macos-11 at the end of June 24 (#13360)
• 2060d84 meta(changelog): Update CHANGELOG.md for 7.119.0 (#13350)
• f54c97a backport(tracing): Report dropped spans for transactions (#13343)
• eeae3cf test(v7/loader): Update Loader Script to latest (#12765)
• d3e2c7b meta(v7): Ignore pem for tests (#13051)
• 47f1710 Merge branch 'release/7.118.0' into v7
• Additional commits viewable in compare view

Updates anchorme from 1.1.2 to 3.0.2

Release notes

Sourced from anchorme's releases.

2.1.1

Improvements & New features

• The list options is exposing a lot more information about the listed token.
• conditional options (those options parameters that passes a function as the value) are receiving a second argument now, exposing a lot more information about the token.

// for all tokens
export interface BaseTokenProps {
	start: number;
	end: number;
	string: string;
	reason: string; // could be "url", "email", "file"
}
// for emails tokens
export interface Email extends BaseTokenProps {
isEmail: true;
protocol: string;
local: string;
host: string;
}
// for URL token
export interface URL extends BaseTokenProps {
isURL: true;
protocol: string;
host: string;
port: string;
ipv4: string;
ipv6: string;
confirmedByProtocol: boolean;
path: string;
query: string;
fragment: string;
}
// for file tokens
export interface File extends BaseTokenProps {
isFile: true;
filename: string;
filePath: string;
fileDirectory: string;
}

Bug fixes

• Fixed bug where the library doesn't count slashes at the end. (#71)

... (truncated)

Commits

• See full diff in compare view

Updates crypto-js from 4.1.1 to 4.2.0

Commits

• 808f499 Merge branch 'release/4.2.0'
• d5af3ae Update release notes.
• 9496e07 Bump version.
• 421dd53 Change default hash algorithm and iteration's for PBKDF2 to prevent weak secu...
• d1f4f4d Update grunt.
• c755289 Discontinued
• 1da3dab Discontinued
• 4dcaa7a Merge pull request #380 from Alanscut/dev
• 762feb2 chore: rename BF to Blowfish
• fb81418 feat: blowfish support
• Additional commits viewable in compare view

Updates markdown-to-jsx from 7.1.7 to 7.4.0

Release notes

Sourced from markdown-to-jsx's releases.

v7.4.0

Happy New Year! 🎆

markdown-to-jsx v7.4 features a new option renderRule! — From the README:

Supply your own rendering function that can selectively override how rules are rendered (note, this is different than options.overrides which operates at the HTML tag level and is more general). You can use this functionality to do pretty much anything with an established AST node; here's an example of selectively overriding the "codeBlock" rule to process LaTeX syntax using the @matejmazur/react-katex library:

import { Markdown, RuleType } from 'markdown-to-jsx'
import TeX from '@matejmazur/react-katex'
const exampleContent =
'Some important formula:\n\nlatex\nmathbb{N} = { a in mathbb{Z} : a > 0 }\n\n'
function App() {
return (
<Markdown
children={exampleContent}
options={{
renderRule(next, node, renderChildren, state) {
if (node.type === RuleType.codeBlock && node.lang === 'latex') {
return (
<TeX as="div" key={state.key}>{String.raw${node.text}}</TeX>
)
}
      return next()
    },
  }}
/&gt;

)
}

The README docs around syntax highlighting have also been updated with sample code.

With the new year comes a push toward v8. Performance will be a top priority, reducing the complexity of the library's regexes to increase throughput for SSR use-cases and ideally eliminate rare but frustrating issues like catastrophic backtracking. In addition, the library will be pivoting into more of a pure compiler model, with a React adapter offered and ones added for other major frameworks as well. The idea is anywhere you can run JS, you can use [secret new library name].

Stay tuned and thanks for being part of the journey ✌🏼 Here's to a great 2024 🍾

markdown-to-jsx is maintained by @​quantizor, buy him a coffee

Full Changelog: quantizor/markdown-to-jsx@v7.3.2...v7.4.0

v7.3.2

fix(types): path to esm types in "exports"

Full Changelog: quantizor/markdown-to-jsx@v7.3.1...v7.3.2

... (truncated)

Commits

• 34531eb chore: bump version
• 715e4e9 chore: update docs
• 8eb74da fix: ensure src prop is sanitized
• 44122eb chore: switch RuleType back to an enum
• f665b00 docs: add syntax highlighting example
• c68b1fb chore: update doc site
• 20c7a0b refactor: rename content to children
• c20733a refactor: strongly-type all nodes
• 79d640b refactor: compile away priority mapping
• 4b5f1c3 chore: cuter styles
• Additional commits viewable in compare view

Updates semver from 6.3.0 to 6.3.1

Release notes

Sourced from semver's releases.

v6.3.1

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

Changelog

Sourced from semver's changelog.

6.3.1 (2023-07-10)

Bug Fixes

• 928e56d #591 better handling of whitespace (#591) (@​lukekarrys, @​joaomoreno, @​nicolo-ribaudo)

6.2.0

• Coerce numbers to strings when passed to semver.coerce()
• Add rtl option to coerce from right to left

6.1.3

• Handle X-ranges properly in includePrerelease mode

6.1.2

• Do not throw when testing invalid version strings

6.1.1

• Add options support for semver.coerce()
• Handle undefined version passed to Range.test

6.1.0

• Add semver.compareBuild function
• Support * in semver.intersects

6.0

• Fix intersects logic.

  This is technically a bug fix, but since it is also a change to behavior that may require users updating their code, it is marked as a major version increment.

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

... (truncated)

Commits

• 44d27bc chore: release 6.3.1
• 928e56d fix: better handling of whitespace (#591)
• 39f6326 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates webpack from 5.75.0 to 5.94.0

Release notes

Sourced from webpack's releases.

v5.94.0

Bug Fixes

• Added runtime condition for harmony reexport checked
• Handle properly data/http/https protocols in source maps
• Make bigint optimistic when browserslist not found
• Move @​types/eslint-scope to dev deps
• Related in asset stats is now always an array when no related found
• Handle ASI for export declarations
• Mangle destruction incorrect with export named default properly
• Fixed unexpected asi generation with sequence expression
• Fixed a lot of types

New Features

• Added new external type "module-import"
• Support webpackIgnore for new URL() construction
• [CSS] @import pathinfo support

Security

• Fixed DOM clobbering in auto public path

v5.93.0

Bug Fixes

• Generate correct relative path to runtime chunks
• Makes DefinePlugin quieter under default log level
• Fixed mangle destructuring default in namespace import
• Fixed consumption of eager shared modules for module federation
• Strip slash for pretty regexp
• Calculate correct contenthash for CSS generator options

New Features

• Added the binary generator option for asset modules to explicitly keep source maps produced by loaders
• Added the modern-module library value for tree shakable output
• Added the overrideStrict option to override strict or non-strict mode for javascript modules

v5.92.1

Bug Fixes

• Doesn't crash with an error when the css experiment is enabled and contenthash is used

v5.92.0

Bug Fixes

• Correct tidle range's comutation for module federation
• Consider runtime for pure expression dependency update hash
• Return value in the subtractRuntime function for runtime logic

... (truncated)

Commits

• eabf85d chore(release): 5.94.0
• 955e057 security: fix DOM clobbering in auto public path
• 9822387 test: fix
• cbb86ed test: fix
• 5ac3d7f fix: unexpected asi generation with sequence expression
• 2411661 security: fix DOM clobbering in auto public path
• b8c03d4 fix: unexpected asi generation with sequence expression
• f46a03c revert: do not use heuristic fallback for "module-import"
• 60f1898 fix: do not use heuristic fallback for "module-import"
• 66306aa Revert "fix: module-import get fallback from externalsPresets"
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for webpack since your current version.

Updates body-parser from 1.20.1 to 1.20.3

Release notes

Sourced from body-parser's releases.

1.20.3

What's Changed

Important

• deps: [email protected]
• add depth option to customize the depth level in the parser
• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity). Documentation

Other changes

• chore: add support for OSSF scorecard reporting by @​inigomarquinez in expressjs/body-parser#522
• ci: fix errors in ci github action for node 8 and 9 by @​inigomarquinez in expressjs/body-parser#523
• fix: pin to [email protected] by @​wesleytodd in expressjs/body-parser#527
• deps: [email protected] by @​melikhov-dev in expressjs/body-parser#521
• Add OSSF Scorecard badge by @​bjohansebas in expressjs/body-parser#531
• Linter by @​UlisesGascon in expressjs/body-parser#534
• Release: 1.20.3 by @​UlisesGascon in expressjs/body-parser#535

New Contributors

• @​inigomarquinez made their first contribution in expressjs/body-parser#522
• @​melikhov-dev made their first contribution in expressjs/body-parser#521
• @​bjohansebas made their first contribution in expressjs/body-parser#531
• @​UlisesGascon made their first contribution in expressjs/body-parser#534

Full Changelog: expressjs/body-parser@1.20.2...1.20.3

1.20.2

• Fix strict json error message on Node.js 19+
• deps: content-type@~1.0.5
  • perf: skip value escaping when unnecessary
• deps: [email protected]

Changelog

Sourced from body-parser's changelog.

1.20.3 / 2024-09-10

• deps: [email protected]
• add depth option to customize the depth level in the parser
• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

1.20.2 / 2023-02-21

• Fix strict json error message on Node.js 19+
• deps: content-type@~1.0.5
  • perf: skip value escaping when unnecessary
• deps: [email protected]

Commits

• 1752951 1.20.3
• 39744cf chore: linter (#534)
• b2695c4 Merge commit from fork
• ade0f3f add scorecard to readme (#531)
• 99a1bd6 deps: [email protected] (#521)
• 9478591 fix: pin to [email protected]
• 83db46a ci: fix errors in ci github action for node 8 and 9 (#523)
• 9d4e212 chore: add support for OSSF scorecard reporting (#522)
• ee91374 1.20.2
• 368a93a Fix strict json error message on Node.js 19+
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.

Updates express from 4.18.2 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1

What's Changed

• Backport a fix for CVE-2024-47764 to the 4.x branch by @​joshbuker in expressjs/express#6029
• Release: 4.21.1 by @​UlisesGascon in expressjs/express#6031

Full Changelog: expressjs/express@4.21.0...4.21.1

4.21.0

What's Changed

• Deprecate "back" magic string in redirects by @​blakeembrey in expressjs/express#5935
• [email protected] by @​wesleytodd in expressjs/express#5954
• fix(deps): [email protected] by @​wesleytodd in expressjs/express#5951
• Upgraded dependency qs to 6.13.0 to match qs in body-parser by @​agadzinski93 in expressjs/express#5946

New Contributors

• @​agadzinski93 made their first contribution in expressjs/express#5946

Full Changelog: expressjs/express@4.20.0...4.21.0

4.20.0

What's Changed

Important

• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
• Remove link renderization in html while using res.redirect

Other Changes

• 4.19.2 Staging by @​wesleytodd in expressjs/express#5561
• remove duplicate location test for data uri by @​wesleytodd in expressjs/express#5562
• feat: document beta releases expectations by @​marco-ippolito in expressjs/express#5565
• Cut down on duplicated CI runs by @​jonchurch in expressjs/express#5564
• Add a Threat Model by @​UlisesGascon in expressjs/express#5526
• Assign captain of encodeurl by @​blakeembrey in expressjs/express#5579
• Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by @​jonchurch in expressjs/express#5587
• docs: update Security.md by @​inigomarquinez in expressjs/express#5590
• docs: update triage nomination policy by @​UlisesGascon in expressjs/express#5600
• Add CodeQL (SAST) by @​UlisesGascon in expressjs/express#5433
• docs: add UlisesGascon as triage initiative captain by @​UlisesGascon in expressjs/express#5605
• deps: encodeurl@~2.0.0 by @​blakeembrey in expressjs/express#5569
• skip QUERY method test by @​jonchurch in expressjs/express#5628
• ignore ETAG query test on 21 and 22, reuse skip util by @​jonchurch in expressjs/express#5639
• add support Node.js@22 in the CI by @​mertcanaltin in expressjs/express#5627
• doc: add table of contents, tc/triager lists to readme by @​mertcanaltin in expressjs/express#5619
• List and sort all projects, add captains by @​blakeembrey in expressjs/express#5653
• docs: add @​UlisesGascon as captain for cookie-parser by @​UlisesGascon in expressjs/express#5666
• ✨ bring back query tests for node 21 by @​ctcpip in expressjs/express#5690
• [v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by @​jonchurch in expressjs/express#5672
• skip QUERY tests for Node 21 only, still not supported by @​jonchurch in expressjs/express#5695

... (truncated)

Changelog

Sourced from express's changelog.

4.21.1 / 2024-10-08

• Backported a fix for CVE-2024-47764

4.21.0 / 2024-09-11

• Deprecate res.location("back") and res.redirect("back") magic string
• deps: [email protected]
  • includes [email protected]
• deps: [email protected]
• deps: [email protected]

4.20.0 / 2024-09-10

• deps: [email protected]
  • Remove link renderization in html while redirecting
• deps: [email protected]
  • Remove link renderization in html while redirecting
• deps: [email protected]
  • add depth option to customize the depth level in the parser
  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
• Remove link renderization in html while using res.redirect
• deps: [email protected]
  • Adds support for named matching groups in the routes using a regex
  • Adds backtracking protection to parameters without regexes defined
• deps: encodeurl@~2.0.0
  • Removes encoding of \, |, and ^ to align better with URL spec
• Deprecate passing options.maxAge and options.expires to res.clearCookie
  • Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie

4.19.2 / 2024-03-25

• Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

• Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

• Prevent open redirect allow list bypass due to encodeurl
• deps: [email protected]

4.18.3 / 2024-02-29

... (truncated)

Commits

• 8e229f9 4.21.1
• a024c8a fix(deps): [email protected]
• 7e562c6 4.21.0
• 1bcde96 fix(deps): [email protected] (#5946)
• 7d36477 fix(deps): [email protected] (#5951)
• 40d2d8f fix(deps): [email protected]
• 77ada90 Deprecate "back" magic string in redirects (#5935)
• 21df421 4.20.0
• 4c9ddc1 feat: upgrade to [email protected]
• 9ebe5d5 feat: upgrade to [email protected] (#5928)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for express since your current version.

Updates browserify-sign from 4.2.1 to 4.2.3

Changelog

Sourced from browserify-sign's changelog.

v4.2.3 - 2024-03-05

Commits

• [patch] widen support to 0.12 9247adf
• [patch] drop minimum node support to v1 4d0ee49
• [Dev Deps] update aud, npmignore, tape 87f3a35
• [actions] remove redundant finisher 37a4758
• [Deps] pin hash-base to ~3.0, due to a breaking change 9e2bf12
• [Deps] update parse-asn1 [f427270`](browserify/browserify-sign@f427270)
• [Deps] update elliptic fb261ce
• [Deps] pin elliptic due to a breaking change 168e16f

v4.2.2 - 2023-10-25

Fixed

• [Tests] log when openssl doesn't support cipher [#37](https://github.com/crypto-browserify/browserify-sign/issues/37)

Commits

• Only apps should have lockfiles 09a8995
• [eslint] switch to eslint 83fe463
• [meta] add npmignore and auto-changelog 4418183
• [meta] fix package.json indentation 9ac5a5e
• [Tests] migrate from travis to github actions d845d85
• [Fix] sign: throw on unsupported padding scheme 8767739
• [Fix] properly check the upper bound for DSA signatures 85994cd
• [Tests] handle openSSL not supporting a scheme f5f17c2
• [Deps] update bn.js, browserify-rsa, elliptic, parse-asn1, readable-stream, safe-buffer a67d0eb
• [Dev Deps] update nyc, standard, tape cc5350b
• [Tests] always run coverage; downgrade nyc 75ce1d5
• [meta] add safe-publish-latest dcf49ce
• [Tests] add npm run posttest 75dd8fd
• [Dev Deps] update tape 3aec038
• [Tests] skip unsupported schemes 703c83e
• [Tests] node < 6 lacks array includes 3aa43cf
• [Dev Deps] fix eslint range 98d4e0d

Commits

• bf2c3ec v4.2.3
• 9247adf [patch] widen support to 0.12
• f427270 [Deps] update `parse-asn1
• 87f3a35 [Dev Deps] update aud, npmignore, tape
• fb261ce [Deps] update elliptic
• 4d0ee49 [patch] drop minimum node support to v1
• 9e2bf12 [Deps] pin hash-base to ~3.0, due to a breaking change
• 168e16f [Deps] pin elliptic due to a breaking change
• 37a4758 [actions] remove redundant finisher
• 4af5a90 v4.2.2
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ljharb, a new releaser for browserify-sign since your current version.

Updates browserslist from 3.2.8 to 4.24.0

Release notes

Sourced from browserslist's releases.

4.24.0

• Added browserslist.findConfigFile() helper (by @​JLHwung).

4.23.3

• Fixed >= query for ios (by @​syi0808).

4.23.2

• Updated Firefox ESR.

4.23.1

• Fixed feature query with mobile to desktop when caniuse lags (by @​steverep).

4.23.0

• Added BROWSERSLIST_ROOT_PATH (by @​teleclimber).

Changelog

Sourced from browserslist's changelog.

4.24.0

• Added browserslist.findConfigFile() helper (by @​JLHwung).

4.23.3

• Fixed >= query for ios (by @​syi0808).

4.23.2

• Updated Firefox ESR.

4.23.1

• Fixed feature query with mobile to desktop when caniuse lags (by @​steverep).

4.23.0

• Added BROWSERSLIST_ROOT_PATH (by @​teleclimber).

4.22.3

• Fixed white spaces support in supports query (@​g-plane).
• Fixed shared config like @company/package/browserslist-config (@​boucodes).

4.22.2

• Fixed idempotency in time queries with mobileToDesktop (by Aliaksei Sapach).

4.22.1

• Updated Firefox ESR (by @​lerkor).

4.22

• Added fully supports query (by Ben Scott).
• Added partially supports alias for supports query (by Ben Scott).

4.21.11

• Added warning to --update-db to move to new CLI (by Ivan Vasilev).
• Fixed docs (by Tatsunori Uchino).

4.21.10

• Updated Firefox ESR.

4.21.9

• Fixed Opera Mobile edge cases (by Steve Repsher).

4.21.8

• Fixed supports query and mobileToDesktop (by Steve Repsher).

4.21.7

• Fixed last queries for Android (by Steve Repsher).

4.21.6

• Fixed time queries with mobileToDesktop (by Steve Repsher).
• Fixed docs (by Tatsunori Uchino, Will Stone, and Dominik Pschenitschni).

4.21.5

... (truncated)

Commits

• b11087b Release 4.24.0 version
• fcad561 Update dependencies
• 66bb558 Sort imports and declarations
• 2d83f96 Fix code style
• 73a476a Introduce browserslist.findConfigFile API (#844)
• ee095bd Release 4.32.3 version
• 0f4e6f7 Update dependencies
• 8f87b3c fix: browser ray gt or gte compare with latest version (#836)
• cdcfbc0 Release 4.23.2 version
• 9e8188b Update dependencies
• Additional commits viewable in compare view

Updates react-dev-utils from 11.0.4 to 12.0.1

Changelog

Sourced from react-dev-utils's changelog.

2.0.3 and Newer Versions

Please refer to CHANGELOG-2.x.md for the 2.x range, and https://github.com/facebook/create-react-app/blob/main/CHANGELOG.md for the newer versions.

1.1.5 (August 24, 2018)

• react-scripts

  • Update the webpack-dev-server dependency

• react-dev-utils

  • #4866 Fix a Windows-only vulnerability (CVE-2018-6342) in the development server (@​acdlite)
  • Update the sockjs-client dependency

Committers: 1

• Andrew Clark (acdlite)

Migrating from 1.1.4 to 1.1.5

Inside any created project that has not been ejected, run:

npm install --save --save-exact [email protected]

or

yarn add --exact [email protected]

1.1.4 (April 3, 2018)

🐛 Bug Fix

• react-dev-utils

  • #4250 Upgrade detect-port-alt to fix