dancefinder/dancefinder-app
5
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Projects Releases Activity

Build(deps-dev): bump cypress from 9.5.2 to 9.5.3 #305

Merged
argoyle merged 1 commits from dependabot-npm_and_yarn-cypress-9.5.3 into master 2022-04-05 08:32:23 +00:00
Conversation 3 Commits 1 Files Changed 2
+14 -21
argoyle commented 2022-04-03 04:40:54 +00:00 (Migrated from gitlab.com)
Copy Link
Copy Source

Bumps cypress from 9.5.2 to 9.5.3.

Release notes

Sourced from cypress's releases.

9.5.3

Released 3/28/2022

Bugfixes:

  • Corrected a logging issue with cy.intercept() where the response status code and response body were sometimes missing from the log details in open mode. Fixed #18757.
  • Fixed an issue in cy.readFile() where the command would not retry or provide a meaningful error message if null encoding was used and the file was not found. Fixed #20683.
  • Updated the Cypress Keyboard shortcuts to only run the shortcut when the pressed shortcut key was not used in conjunction with either the alt, ctrl, or shift modifier keys. This fixed an issue where the Cypress shortcut handler would override the browser native keyboard shortcut for search (ctrl + f). Fixed #20222.
  • Updates were made to correctly escape dollar signs in the CYPRESS_DOWNLOAD_PATH_TEMPLATE environment variable. Issues were seen utilizing this template when the env was provided from a package manager file. Fixed #19914.
  • Fix the Cypress.Buffer TypeScript type to reference the static constructor of Buffer, instead of incorrectly referencing the Buffer instance which caused Type errors. Fixes #20542.

Dependency Updates:

  • Upgraded electron dependency from 15.3.4 to 15.3.5 to address the CVE-2022-21718 NVD security vulnerability. Addressed in #20750.
  • Upgraded minimist dependency from 1.2.5 to 1.2.6. Addressed in #20756.
  • Upgraded nanoid dependency from 3.1.20 to 3.1.31 to address the CVE-2021-23566 NVD security vulnerability. Addressed in #20726.
  • Upgraded node-forge dependency from 1.0.0 to 1.3.0 to address the CVE-2022-24771 NVD security vulnerability. Addressed in #20727.
Commits
  • 1ff8bf8 release 9.5.3 [skip ci]
  • 51ec479 Empty commit to get a new percy nonce
  • 5e93175 Merge remote-tracking branch 'origin/master' into develop
  • 2f862e8 chore: update release documentation and fix interactive release scripts (#20799)
  • ea122ea chore: Update Chrome (stable) to 99.0.4844.84 (#20788)
  • 5dbedaf chore: Update Chrome (beta) to 100.0.4896.56 (#20778)
  • 6915b8e feat: support escaped dollar sign in CYPRESS_DOWNLOAD_PATH_TEMPLATE (#20698)
  • 25abf53 chore(deps): update dependency electron to v15.3.5 [security] (#20750)
  • 88556c2 Merge pull request #20726 from cypress-io/renovate/npm-nanoid-vulnerability
  • d59b7bd fix(deps): update dependency minimist to v1.2.6 🌟 (#20756)
  • Additional commits viewable in compare view

Dependabot commands
You can trigger Dependabot actions by commenting on this MR
  • $dependabot rebase will rebase this MR
  • $dependabot recreate will recreate this MR rewriting all the manual changes and resolving conflicts
Bumps [cypress](https://github.com/cypress-io/cypress) from 9.5.2 to 9.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/cypress/releases">cypress's releases</a>.</em></p> <blockquote> <h2>9.5.3</h2> <p><em>Released 3/28/2022</em></p> <p><strong>Bugfixes:</strong></p> <ul> <li>Corrected a logging issue with <code>cy.intercept()</code> where the response status code and response body were sometimes missing from the log details in <code>open</code> mode. Fixed <a href="https://github.com/cypress-io/cypress/issues/18757">#18757</a>.</li> <li>Fixed an issue in <code>cy.readFile()</code> where the command would not retry or provide a meaningful error message if <code>null</code> encoding was used and the file was not found. Fixed <a href="https://github.com/cypress-io/cypress/issues/20683">#20683</a>.</li> <li>Updated the Cypress Keyboard shortcuts to only run the shortcut when the pressed shortcut key was not used in conjunction with either the <code>alt</code>, <code>ctrl</code>, or <code>shift</code> modifier keys. This fixed an issue where the Cypress shortcut handler would override the browser native keyboard shortcut for search (<code>ctrl + f</code>). Fixed <a href="https://github.com/cypress-io/cypress/issues/20222">#20222</a>.</li> <li>Updates were made to correctly escape dollar signs in the <code>CYPRESS_DOWNLOAD_PATH_TEMPLATE</code> environment variable. Issues were seen utilizing this template when the env was provided from a package manager file. Fixed <a href="https://github.com/cypress-io/cypress/issues/19914">#19914</a>.</li> <li>Fix the <code>Cypress.Buffer</code> TypeScript type to reference the static constructor of <code>Buffer</code>, instead of incorrectly referencing the <code>Buffer</code> instance which caused Type errors. Fixes <a href="https://github.com/cypress-io/cypress/issues/20542">#20542</a>.</li> </ul> <p><strong>Dependency Updates:</strong></p> <ul> <li>Upgraded <code>electron</code> dependency from <code>15.3.4</code> to <code>15.3.5</code> to address the <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-21718">CVE-2022-21718</a> NVD security vulnerability. Addressed in <a href="https://github.com/cypress-io/cypress/issues/20750">#20750</a>.</li> <li>Upgraded <code>minimist</code> dependency from <code>1.2.5</code> to <code>1.2.6</code>. Addressed in <a href="https://github.com/cypress-io/cypress/issues/20756">#20756</a>.</li> <li>Upgraded <code>nanoid</code> dependency from <code>3.1.20</code> to <code>3.1.31</code> to address the <a href="https://nvd.nist.gov/vuln/detail/CVE-2021-23566">CVE-2021-23566</a> NVD security vulnerability. Addressed in <a href="https://github.com/cypress-io/cypress/pull/20726">#20726</a>.</li> <li>Upgraded <code>node-forge</code> dependency from <code>1.0.0</code> to <code>1.3.0</code> to address the <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-24771">CVE-2022-24771</a> NVD security vulnerability. Addressed in <a href="https://github.com/cypress-io/cypress/pull/20727">#20727</a>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cypress-io/cypress/commit/1ff8bf8992fb42bdd3981e7d8c41cca6833e9e65"><code>1ff8bf8</code></a> release 9.5.3 [skip ci]</li> <li><a href="https://github.com/cypress-io/cypress/commit/51ec479d53ce16c91ca9907d745212ce9f6642be"><code>51ec479</code></a> Empty commit to get a new percy nonce</li> <li><a href="https://github.com/cypress-io/cypress/commit/5e93175762ab9364fd5def8019d18c7f1935ceb3"><code>5e93175</code></a> Merge remote-tracking branch 'origin/master' into develop</li> <li><a href="https://github.com/cypress-io/cypress/commit/2f862e8add9d9e77a5ac8abad7cfb5b818832b6f"><code>2f862e8</code></a> chore: update release documentation and fix interactive release scripts (<a href="https://github.com/cypress-io/cypress/issues/20799">#20799</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/ea122eadc42b60c359916bb4e063ac292fe07ebf"><code>ea122ea</code></a> chore: Update Chrome (stable) to 99.0.4844.84 (<a href="https://github.com/cypress-io/cypress/issues/20788">#20788</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/5dbedaffd2a2276001b769cfe888345a9d3f3cb3"><code>5dbedaf</code></a> chore: Update Chrome (beta) to 100.0.4896.56 (<a href="https://github.com/cypress-io/cypress/issues/20778">#20778</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/6915b8e3de012fde9aeb601a3713548709964ae1"><code>6915b8e</code></a> feat: support escaped dollar sign in CYPRESS_DOWNLOAD_PATH_TEMPLATE (<a href="https://github.com/cypress-io/cypress/issues/20698">#20698</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/25abf53bc12f6e789eceec8d25f30c5f3f727320"><code>25abf53</code></a> chore(deps): update dependency electron to v15.3.5 [security] (<a href="https://github.com/cypress-io/cypress/issues/20750">#20750</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/88556c23c611c224028395d883d56cbdb0cfe0b0"><code>88556c2</code></a> Merge pull request <a href="https://github.com/cypress-io/cypress/issues/20726">#20726</a> from cypress-io/renovate/npm-nanoid-vulnerability</li> <li><a href="https://github.com/cypress-io/cypress/commit/d59b7bd0096858ed81892767c1b99945dea7b986"><code>d59b7bd</code></a> fix(deps): update dependency minimist to v1.2.6 🌟 (<a href="https://github.com/cypress-io/cypress/issues/20756">#20756</a>)</li> <li>Additional commits viewable in <a href="https://github.com/cypress-io/cypress/compare/v9.5.2...v9.5.3">compare view</a></li> </ul> </details> <br /> --- <details> <summary>Dependabot commands</summary> <br /> You can trigger Dependabot actions by commenting on this MR - `$dependabot rebase` will rebase this MR - `$dependabot recreate` will recreate this MR rewriting all the manual changes and resolving conflicts </details>
argoyle commented 2022-04-05 08:11:09 +00:00 (Migrated from gitlab.com)
Copy Link
Copy Source

added 3 commits

  • 3f10cbee...4cfd5f06 - 2 commits from branch master
  • 48814b53 - Build(deps-dev): bump cypress from 9.5.2 to 9.5.3

Compare with previous version

added 3 commits <ul><li>3f10cbee...4cfd5f06 - 2 commits from branch <code>master</code></li><li>48814b53 - Build(deps-dev): bump cypress from 9.5.2 to 9.5.3</li></ul> [Compare with previous version](/unboundsoftware/dancefinder/dancefinder-app/-/merge_requests/256/diffs?diff_id=366546273&start_sha=3f10cbee9cf1e8a7ad98a182d599ea4596d42536)
argoyle commented 2022-04-05 08:21:48 +00:00 (Migrated from gitlab.com)
Copy Link
Copy Source

added 3 commits

  • 48814b53...ef4b4d7f - 2 commits from branch master
  • 1badc5b7 - Build(deps-dev): bump cypress from 9.5.2 to 9.5.3

Compare with previous version

added 3 commits <ul><li>48814b53...ef4b4d7f - 2 commits from branch <code>master</code></li><li>1badc5b7 - Build(deps-dev): bump cypress from 9.5.2 to 9.5.3</li></ul> [Compare with previous version](/unboundsoftware/dancefinder/dancefinder-app/-/merge_requests/256/diffs?diff_id=366557805&start_sha=48814b5399ea476bc44fd47bff9b8fc408a6f67e)
argoyle (Migrated from gitlab.com) scheduled this pull request to auto merge when all checks succeed 2022-04-05 08:26:18 +00:00
argoyle commented 2022-04-05 08:32:23 +00:00 (Migrated from gitlab.com)
Copy Link
Copy Source

mentioned in commit a1c2d14887

mentioned in commit a1c2d148872829bc35e6267c36187b0204c25058
argoyle (Migrated from gitlab.com) merged commit a1c2d14887 into master 2022-04-05 08:32:23 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
dependencies
Pull requests that update a dependency file
 docker
javascript
security
Pull requests that address a security vulnerability
 severity:critical
severity:high
severity:low
severity:moderate
No Label dependencies javascript
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
argoyle (Joakim Olsson) buildtools (Buildtools) kubernetes (Kubernetes) releaser (Unbound Releaser) renovate (Renovate Bot)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: dancefinder/dancefinder-app#305
Delete Branch "dependabot-npm_and_yarn-cypress-9.5.3"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?