dependabot[bot]
ab200d624d
Bump express from 4.19.2 to 4.21.0 ( #785 )
2024-09-19 00:26:07 -07:00
dependabot[bot]
894e6c152e
Bump the npm_and_yarn group across 1 directory with 2 updates ( #769 )
2024-08-27 19:49:25 -07:00
Evan Simkowitz
f2faa6b735
Upgrade a bunch of Yarn packages ( #755 )
...
Addresses some security notices
2024-08-07 12:08:25 -07:00
dependabot[bot]
fbf4915210
Bump electron-updater from 6.1.8 to 6.2.1 in the npm_and_yarn group across 1 directory ( #717 )
...
Bumps the npm_and_yarn group with 1 update in the / directory:
[electron-updater](https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater ).
Updates `electron-updater` from 6.1.8 to 6.2.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/electron-userland/electron-builder/releases ">electron-updater's
releases</a>.</em></p>
<blockquote>
<h2>electron-updater@6.2.1</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/8091 ">#8091</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/e2a181d9fe3fbdd84690359e275daaef24584729 "><code>e2a181d9</code></a>
Thanks <a
href="https://github.com/mmaietta "><code>@mmaietta</code></a>! -
fix(mac): revert autoupdate for mac differential</li>
</ul>
<h2>electron-updater@6.2.0</h2>
<h3>Minor Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/7709 ">#7709</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/79df54238621fbe48ba20444129950ba2dc49983 "><code>79df5423</code></a>
Thanks <a
href="https://github.com/beyondkmp "><code>@beyondkmp</code></a>! -
feat: adding differential downloader for updates on macOS</li>
</ul>
<h2>electron-updater@6.1.9</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/8051 ">#8051</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/48603ba09dc7103849a2975799c19068fd08fc07 "><code>48603ba0</code></a>
Thanks <a
href="https://github.com/mmaietta "><code>@mmaietta</code></a>! - fix:
auto-update powershell script requires reset of
<code>PSModulePath</code></p>
</li>
<li>
<p><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/8057 ">#8057</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/ccbb80dea4b6146ea2d2186193a1f307096e4d1e "><code>ccbb80de</code></a>
Thanks <a
href="https://github.com/mmaietta "><code>@mmaietta</code></a>! - chore:
upgrading connected dependencies (typescript requires higher eslint
version)</p>
</li>
<li>
<p>Updated dependencies [<a
href="https://github.com/electron-userland/electron-builder/commit/ccbb80dea4b6146ea2d2186193a1f307096e4d1e "><code>ccbb80de</code></a>]:</p>
<ul>
<li>builder-util-runtime@9.2.4</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/electron-userland/electron-builder/blob/master/packages/electron-updater/CHANGELOG.md ">electron-updater's
changelog</a>.</em></p>
<blockquote>
<h2>6.2.1</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/8091 ">#8091</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/e2a181d9fe3fbdd84690359e275daaef24584729 "><code>e2a181d9</code></a>
Thanks <a
href="https://github.com/mmaietta "><code>@mmaietta</code></a>! -
fix(mac): revert autoupdate for mac differential</li>
</ul>
<h2>6.2.0</h2>
<h3>Minor Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/7709 ">#7709</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/79df54238621fbe48ba20444129950ba2dc49983 "><code>79df5423</code></a>
Thanks <a
href="https://github.com/beyondkmp "><code>@beyondkmp</code></a>! -
feat: adding differential downloader for updates on macOS</li>
</ul>
<h2>6.1.9</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/8051 ">#8051</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/48603ba09dc7103849a2975799c19068fd08fc07 "><code>48603ba0</code></a>
Thanks <a
href="https://github.com/mmaietta "><code>@mmaietta</code></a>! - fix:
auto-update powershell script requires reset of
<code>PSModulePath</code></p>
</li>
<li>
<p><a
href="https://redirect.github.com/electron-userland/electron-builder/pull/8057 ">#8057</a>
<a
href="https://github.com/electron-userland/electron-builder/commit/ccbb80dea4b6146ea2d2186193a1f307096e4d1e "><code>ccbb80de</code></a>
Thanks <a
href="https://github.com/mmaietta "><code>@mmaietta</code></a>! - chore:
upgrading connected dependencies (typescript requires higher eslint
version)</p>
</li>
<li>
<p>Updated dependencies [<a
href="https://github.com/electron-userland/electron-builder/commit/ccbb80dea4b6146ea2d2186193a1f307096e4d1e "><code>ccbb80de</code></a>]:</p>
<ul>
<li>builder-util-runtime@9.2.4</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/electron-userland/electron-builder/commit/62d1991a7f1a26476100349733588763500ef16a "><code>62d1991</code></a>
chore(deploy): Release (electron-updater@6.2.1) (<a
href="https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater/issues/8092 ">#8092</a>)</li>
<li><a
href="https://github.com/electron-userland/electron-builder/commit/e2a181d9fe3fbdd84690359e275daaef24584729 "><code>e2a181d</code></a>
fix(mac): revert mac differential autoupdate (<a
href="https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater/issues/8091 ">#8091</a>)</li>
<li><a
href="https://github.com/electron-userland/electron-builder/commit/cb335ecfef1f4fd1aef94020c1eaf5ce91bef574 "><code>cb335ec</code></a>
chore(deploy): Release v24.13.3 (electron-updater@6.2.0) (<a
href="https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater/issues/8084 ">#8084</a>)</li>
<li><a
href="https://github.com/electron-userland/electron-builder/commit/79df54238621fbe48ba20444129950ba2dc49983 "><code>79df542</code></a>
feat: add support for differential zip updates on macOS (<a
href="https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater/issues/7709 ">#7709</a>)</li>
<li><a
href="https://github.com/electron-userland/electron-builder/commit/89656087d683dbe53240c920a684092b70d638db "><code>8965608</code></a>
chore(deploy): Release v24.13.1 (electron-updater@6.1.9) (<a
href="https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater/issues/8056 ">#8056</a>)</li>
<li><a
href="https://github.com/electron-userland/electron-builder/commit/ccbb80dea4b6146ea2d2186193a1f307096e4d1e "><code>ccbb80d</code></a>
chore: upgrading connected dependencies (typescript 5.3.3 requires
higher esl...</li>
<li><a
href="https://github.com/electron-userland/electron-builder/commit/48603ba09dc7103849a2975799c19068fd08fc07 "><code>48603ba</code></a>
fix: auto-update powershell script requires reset of
<code>PSModulePath</code> (<a
href="https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater/issues/8051 ">#8051</a>)</li>
<li>See full diff in <a
href="https://github.com/electron-userland/electron-builder/commits/electron-updater@6.2.1/packages/electron-updater ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/wavetermdev/waveterm/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-23 12:22:19 -07:00
dependabot[bot]
d54a61658f
Bump braces from 3.0.2 to 3.0.3 in the npm_and_yarn group across 1 directory ( #684 )
...
Bumps the npm_and_yarn group with 1 update in the / directory:
[braces](https://github.com/micromatch/braces ).
Updates `braces` from 3.0.2 to 3.0.3
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/micromatch/braces/commit/74b2db2938fad48a2ea54a9c8bf27a37a62c350d "><code>74b2db2</code></a>
3.0.3</li>
<li><a
href="https://github.com/micromatch/braces/commit/88f1429a0f47e1dd3813de35211fc97ffda27f9e "><code>88f1429</code></a>
update eslint. lint, fix unit tests.</li>
<li><a
href="https://github.com/micromatch/braces/commit/415d660c3002d1ab7e63dbf490c9851da80596ff "><code>415d660</code></a>
Snyk js braces 6838727 (<a
href="https://redirect.github.com/micromatch/braces/issues/40 ">#40</a>)</li>
<li><a
href="https://github.com/micromatch/braces/commit/190510f79db1adf21d92798b0bb6fccc1f72c9d6 "><code>190510f</code></a>
fix tests, skip 1 test in test/braces.expand</li>
<li><a
href="https://github.com/micromatch/braces/commit/716eb9f12d820b145a831ad678618731927e8856 "><code>716eb9f</code></a>
readme bump</li>
<li><a
href="https://github.com/micromatch/braces/commit/a5851e57f45c3431a94d83fc565754bc10f5bbc3 "><code>a5851e5</code></a>
Merge pull request <a
href="https://redirect.github.com/micromatch/braces/issues/37 ">#37</a>
from coderaiser/fix/vulnerability</li>
<li><a
href="https://github.com/micromatch/braces/commit/2092bd1fb108d2c59bd62e243b70ad98db961538 "><code>2092bd1</code></a>
feature: braces: add maxSymbols (<a
href="https://github.com/micromatch/braces/issues/ ">https://github.com/micromatch/braces/issues/ </a>...</li>
<li><a
href="https://github.com/micromatch/braces/commit/9f5b4cf47329351bcb64287223ffb6ecc9a5e6d3 "><code>9f5b4cf</code></a>
fix: vulnerability (<a
href="https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727 ">https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727 </a>)</li>
<li><a
href="https://github.com/micromatch/braces/commit/98414f9f1fabe021736e26836d8306d5de747e0d "><code>98414f9</code></a>
remove funding file</li>
<li><a
href="https://github.com/micromatch/braces/commit/665ab5d561c017a38ba7aafd92cc6655b91d8c14 "><code>665ab5d</code></a>
update keepEscaping doc (<a
href="https://redirect.github.com/micromatch/braces/issues/27 ">#27</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/micromatch/braces/compare/3.0.2...3.0.3 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/wavetermdev/waveterm/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-26 21:34:48 -07:00
dependabot[bot]
56f44151df
Bump ws from 7.5.9 to 7.5.10 in the npm_and_yarn group across 1 directory ( #683 )
...
Bumps the npm_and_yarn group with 1 update in the / directory:
[ws](https://github.com/websockets/ws ).
Updates `ws` from 7.5.9 to 7.5.10
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/websockets/ws/releases ">ws's
releases</a>.</em></p>
<blockquote>
<h2>7.5.10</h2>
<h1>Bug fixes</h1>
<ul>
<li>Backported e55e5106 to the 7.x release line (22c28763).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/websockets/ws/commit/d962d70649e393841ee1ed726a8f7ffbe90d0c06 "><code>d962d70</code></a>
[dist] 7.5.10</li>
<li><a
href="https://github.com/websockets/ws/commit/22c28763234aa75a7e1b76f5c01c181260d7917f "><code>22c2876</code></a>
[security] Fix crash when the Upgrade header cannot be read (<a
href="https://redirect.github.com/websockets/ws/issues/2231 ">#2231</a>)</li>
<li>See full diff in <a
href="https://github.com/websockets/ws/compare/7.5.9...7.5.10 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/wavetermdev/waveterm/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-20 19:11:02 -07:00
Mike Sawka
652250ac3c
bump electron to 30.0.8 ( #662 )
2024-05-28 21:01:18 -07:00
Red J Adaya
14b38b31c8
AI Chat Sidebar ( #657 )
2024-05-28 20:53:16 -07:00
Evan Simkowitz
13f4203437
Autocomplete using the Newton parser ( #599 )
...
I've reworked the autocomplete parser to more closely match Newton, the
Fig-compatible parser I prototyped earlier this year. I was able to move
a lot faster by reusing patterns that inshellisense proved out, such as
for templates and generators.
I also support some features that inshellisense doesn't, like proper
combining of Posix-compatible flags, handling of option argument
separators, and handling of cursors in insertValues.
2024-05-28 17:17:29 -07:00
Mike Sawka
aac9e27382
upgrade electron version ( #658 )
2024-05-16 12:48:37 -07:00
dependabot[bot]
4c0c4f422a
Bump ejs from 3.1.9 to 3.1.10 in the npm_and_yarn group across 1 directory ( #642 )
...
Bumps the npm_and_yarn group with 1 update in the / directory:
[ejs](https://github.com/mde/ejs ).
Updates `ejs` from 3.1.9 to 3.1.10
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/mde/ejs/releases ">ejs's
releases</a>.</em></p>
<blockquote>
<h2>v3.1.10</h2>
<p>Version 3.1.10</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/mde/ejs/commit/d3f807dea9ce904e20a47a661f2310ce9134dc2a "><code>d3f807d</code></a>
Version 3.1.10</li>
<li><a
href="https://github.com/mde/ejs/commit/9ee26dde5d7015d9c0e2ff87314cabeac5247c02 "><code>9ee26dd</code></a>
Mocha TDD</li>
<li><a
href="https://github.com/mde/ejs/commit/e469741dca7df2eb400199e1cdb74621e3f89aa5 "><code>e469741</code></a>
Basic pollution protection</li>
<li><a
href="https://github.com/mde/ejs/commit/715e9507fa3e6122dc6430fe0f25a6e6ded300c1 "><code>715e950</code></a>
Merge pull request <a
href="https://redirect.github.com/mde/ejs/issues/756 ">#756</a> from
Jeffrey-mu/main</li>
<li><a
href="https://github.com/mde/ejs/commit/cabe3146ad964a1e98db7742abf435906ca79406 "><code>cabe314</code></a>
Include advanced usage examples</li>
<li><a
href="https://github.com/mde/ejs/commit/29b076cdbbf3eb1b4323b33299ab6d79391b2c33 "><code>29b076c</code></a>
Added header</li>
<li><a
href="https://github.com/mde/ejs/commit/11503c79af882e3635b513d57c7f1813792eb127 "><code>11503c7</code></a>
Merge branch 'main' of github.com:mde/ejs into main</li>
<li><a
href="https://github.com/mde/ejs/commit/7690404e2fc1688756938e4d2fc19e0fac77d736 "><code>7690404</code></a>
Added security banner to README</li>
<li><a
href="https://github.com/mde/ejs/commit/f47d7aedd51a983e4f73045f962b1209096b5800 "><code>f47d7ae</code></a>
Update SECURITY.md</li>
<li><a
href="https://github.com/mde/ejs/commit/828cea1687e3db459ab09d2f405d2444c7580b90 "><code>828cea1</code></a>
Update SECURITY.md</li>
<li>Additional commits viewable in <a
href="https://github.com/mde/ejs/compare/v3.1.9...v3.1.10 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/wavetermdev/waveterm/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-02 14:40:36 -07:00
Evan Simkowitz
cd855762cd
Migrate package manager to Yarn Modern ( #628 )
...
We were using Yarn Classic. While this is not deprecated, Yarn is moving
in a different direction with Yarn Modern (read more
[here](https://yarnpkg.com/migration/overview )) and we should align with
that. The migration mainly requires rebuilding our lockfile. We will
still use `node_modules` for now, though in the future we may want to
adopt the new [Plug'n'Play model](https://yarnpkg.com/features/pnp ).
2024-05-02 14:13:32 -07:00
Evan Simkowitz
ea0cf62b67
Replace classnames with clsx ( #634 )
...
[`clsx`](https://www.npmjs.com/package/clsx ) is a drop-in replacement
for `classnames` that is a quarter of the size and is faster.
2024-05-02 11:40:44 -07:00
dependabot[bot]
34392ab65d
Bump ejs from 3.1.9 to 3.1.10 in the npm_and_yarn group across 1 directory ( #637 )
...
Bumps the npm_and_yarn group with 1 update in the / directory:
[ejs](https://github.com/mde/ejs ).
Updates `ejs` from 3.1.9 to 3.1.10
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/mde/ejs/releases ">ejs's
releases</a>.</em></p>
<blockquote>
<h2>v3.1.10</h2>
<p>Version 3.1.10</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/mde/ejs/commit/d3f807dea9ce904e20a47a661f2310ce9134dc2a "><code>d3f807d</code></a>
Version 3.1.10</li>
<li><a
href="https://github.com/mde/ejs/commit/9ee26dde5d7015d9c0e2ff87314cabeac5247c02 "><code>9ee26dd</code></a>
Mocha TDD</li>
<li><a
href="https://github.com/mde/ejs/commit/e469741dca7df2eb400199e1cdb74621e3f89aa5 "><code>e469741</code></a>
Basic pollution protection</li>
<li><a
href="https://github.com/mde/ejs/commit/715e9507fa3e6122dc6430fe0f25a6e6ded300c1 "><code>715e950</code></a>
Merge pull request <a
href="https://redirect.github.com/mde/ejs/issues/756 ">#756</a> from
Jeffrey-mu/main</li>
<li><a
href="https://github.com/mde/ejs/commit/cabe3146ad964a1e98db7742abf435906ca79406 "><code>cabe314</code></a>
Include advanced usage examples</li>
<li><a
href="https://github.com/mde/ejs/commit/29b076cdbbf3eb1b4323b33299ab6d79391b2c33 "><code>29b076c</code></a>
Added header</li>
<li><a
href="https://github.com/mde/ejs/commit/11503c79af882e3635b513d57c7f1813792eb127 "><code>11503c7</code></a>
Merge branch 'main' of github.com:mde/ejs into main</li>
<li><a
href="https://github.com/mde/ejs/commit/7690404e2fc1688756938e4d2fc19e0fac77d736 "><code>7690404</code></a>
Added security banner to README</li>
<li><a
href="https://github.com/mde/ejs/commit/f47d7aedd51a983e4f73045f962b1209096b5800 "><code>f47d7ae</code></a>
Update SECURITY.md</li>
<li><a
href="https://github.com/mde/ejs/commit/828cea1687e3db459ab09d2f405d2444c7580b90 "><code>828cea1</code></a>
Update SECURITY.md</li>
<li>Additional commits viewable in <a
href="https://github.com/mde/ejs/compare/v3.1.9...v3.1.10 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/wavetermdev/waveterm/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-02 10:58:48 -07:00
Mike Sawka
6e28151dad
update dependencies (including electron v30) ( #605 )
...
* remove console.logs
* update dependencies
2024-04-25 14:03:38 -07:00
Evan Simkowitz
265cc30347
Update electron-rebuild reference to @electron/rebuild as recommended by Yarn ( #593 )
2024-04-23 11:07:52 -07:00
dependabot[bot]
59aef86e77
Bump tar from 6.2.0 to 6.2.1 ( #568 )
...
Bumps [tar](https://github.com/isaacs/node-tar ) from 6.2.0 to 6.2.1.
- [Release notes](https://github.com/isaacs/node-tar/releases )
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md )
- [Commits](https://github.com/isaacs/node-tar/compare/v6.2.0...v6.2.1 )
---
updated-dependencies:
- dependency-name: tar
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-10 23:46:43 -07:00
Mike Sawka
5353f40a20
new sidebar UI ( #567 )
2024-04-10 22:15:11 -07:00
Mike Sawka
0024f0f3e8
fix xterm.js versions and addon versions ( #534 )
...
* make xterm packages consistent
* add serializeAddon, fix varsUpdated
2024-03-29 10:52:18 -07:00
Mike Sawka
8a3d9628ba
add addons-webgl, protected with clientsettings flag ( #532 )
2024-03-28 23:19:39 -07:00
Evan Simkowitz
e867bcb398
Add overlay scrollbar for main sidebar, adjust active session display behavior ( #505 )
...
* Add overlay scrollbar to left sidebar
* Keep active session bolded when mainview is not session
* fix color of scrollbar
* swap expression args
* add active color for scrollbar
* add active/highlight to history, connections, and settings
2024-03-27 12:47:57 -07:00
dependabot[bot]
d21182f7e0
Bump express from 4.18.2 to 4.19.2 ( #502 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.18.2 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.18.2...4.19.2 )
---
updated-dependencies:
- dependency-name: express
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-27 09:59:43 -07:00
Mike Sawka
195ee98424
dependency updates ( #501 )
2024-03-27 09:44:28 -07:00
dependabot[bot]
dcc7b2943e
Bump webpack-dev-middleware from 5.3.3 to 5.3.4 ( #490 )
...
Bumps [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware ) from 5.3.3 to 5.3.4.
- [Release notes](https://github.com/webpack/webpack-dev-middleware/releases )
- [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md )
- [Commits](https://github.com/webpack/webpack-dev-middleware/compare/v5.3.3...v5.3.4 )
---
updated-dependencies:
- dependency-name: webpack-dev-middleware
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-25 09:55:15 -07:00
dependabot[bot]
21bf07bbf8
Bump follow-redirects from 1.15.4 to 1.15.6 ( #457 )
...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects ) from 1.15.4 to 1.15.6.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases )
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.4...v1.15.6 )
---
updated-dependencies:
- dependency-name: follow-redirects
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-14 12:18:11 -07:00