Bump @mitre/saf from 1.2.0 to 1.2.1 #59

dependabot · 2023-01-04T17:11:14Z

Bumps @mitre/saf from 1.2.0 to 1.2.1.

Release notes

Sourced from @mitre/saf's releases.

1.2.1

What's New

Gosec integration @Amndeep7 (#977)

Deleted buggy test @ChrisHinchey (#980)

generate .env via CLI @georgedias (#927)

Dependency Updates

Bump @oclif/plugin-plugins from 2.1.9 to 2.1.12 @dependabot (#975)

Bump @oclif/core from 1.23.0 to 1.23.1 @dependabot (#974)

Bump @typescript-eslint/eslint-plugin from 5.47.1 to 5.48.0 @dependabot (#973)

Bump eslint from 8.30.0 to 8.31.0 @dependabot (#972)

Bump @oclif/plugin-help from 5.1.20 to 5.1.22 @dependabot (#971)

Bump @oclif/plugin-warn-if-update-available from 2.0.17 to 2.0.18 @dependabot (#970)

Bump @oclif/test from 2.1.0 to 2.2.19 @dependabot (#969)

Bump yaml from 2.2.0 to 2.2.1 @dependabot (#968)

Bump aws-sdk from 2.1285.0 to 2.1286.0 @dependabot (#967)

Bump ts-node from 10.8.1 to 10.9.1 @dependabot (#966)

Bump @oclif/plugin-version from 1.1.1 to 1.1.3 @dependabot (#965)

Bump aws-sdk from 2.1284.0 to 2.1285.0 @dependabot (#963)

Bump axios from 1.2.1 to 1.2.2 @dependabot (#962)

Bump @mitre/heimdall-lite from 2.6.32 to 2.6.33 @dependabot (#961)

Bump @aws-sdk/client-config-service from 3.238.0 to 3.241.0 @dependabot (#959)

Bump inquirer-file-tree-selection-prompt from 1.0.19 to 2.0.2 @dependabot (#958)

Bump @mitre/hdf-converters from 2.6.32 to 2.6.33 @dependabot (#957)

Bump @types/lodash from 4.14.182 to 4.14.191 @dependabot (#880)

Bump @types/node from 17.0.41 to 18.11.18 @dependabot (#948)

Bump @types/prompt-sync from 4.1.1 to 4.2.0 @dependabot (#674)

Bump oclif from 3.1.0 to 3.4.3 @dependabot (#951)

Bump @aws-sdk/client-config-service from 3.127.0 to 3.238.0 @dependabot (#946)

Bump @oclif/plugin-plugins from 2.1.0 to 2.1.9 @dependabot (#937)

Bump @oclif/plugin-warn-if-update-available from 2.0.4 to 2.0.17 @dependabot (#935)

Bump @oclif/plugin-help from 5.1.12 to 5.1.20 @dependabot (#917)

Bump uuid and @types/uuid @dependabot (#906)

Bump typescript from 4.7.4 to 4.9.4 @dependabot (#900)

Bump fs-extra from 10.1.0 to 11.1.0 @dependabot (#878)

Bump @types/mustache from 4.2.1 to 4.2.2 @dependabot (#866)

Bump chai from 4.3.6 to 4.3.7 @dependabot (#828)

Bump winston from 3.8.1 to 3.8.2 @dependabot (#657)

Bump table from 6.8.0 to 6.8.1 @dependabot (#815)

Bump @oclif/plugin-version from 1.1.1 to 1.1.3 @dependabot (#720)

Bump eslint-config-oclif-typescript from 1.0.2 to 1.0.3 @dependabot (#695)

Bump ts-node from 10.8.1 to 10.9.1 @dependabot (#535)

Bump @oclif/core from 1.9.5 to 1.23.0 @dependabot (#953)

Bump express from 4.18.1 to 4.18.2 @dependabot (#922)

Bump yaml from 1.10.2 to 2.2.0 @dependabot (#942)

Bump @typescript-eslint/eslint-plugin from 5.30.6 to 5.47.1 @dependabot (#947)

Bump mocha and @types/mocha @dependabot (#918)

Bump eslint from 8.17.0 to 8.30.0 @dependabot (#928)

Bump aws-sdk from 2.1172.0 to 2.1284.0 @dependabot (#954)

... (truncated)

Commits

3bae31e 1.2.1
c3ec46c Merge pull request #977 from mitre/gosec_integration
23ab555 resolve merge conflicts with main
86376c5 Deleted buggy test (#980)
0805138 needed to change version numbers of some dependencies due to modules vs commonjs
b674a54 deepsource
2d74296 added gosec integration
a5344a9 update versions to latest release of heimdall monorepo
56f6633 Merge pull request #975 from mitre/dependabot/npm_and_yarn/oclif/plugin-plugi...
1ece26e Merge pull request #974 from mitre/dependabot/npm_and_yarn/oclif/core-1.23.1
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@mitre/saf](https://github.com/mitre/saf) from 1.2.0 to 1.2.1. - [Release notes](https://github.com/mitre/saf/releases) - [Commits](mitre/saf@1.2.0...1.2.1) --- updated-dependencies: - dependency-name: "@mitre/saf" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Jan 4, 2023

chore: autopublish 2023-01-04T17:11:58Z

c000b7c

github-actions bot approved these changes Jan 4, 2023

View reviewed changes

github-actions bot enabled auto-merge January 4, 2023 17:12

github-actions bot merged commit 30b0ae8 into master Jan 4, 2023

dependabot bot deleted the dependabot/npm_and_yarn/mitre/saf-1.2.1 branch January 4, 2023 17:12

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump @mitre/saf from 1.2.0 to 1.2.1 #59

Bump @mitre/saf from 1.2.0 to 1.2.1 #59

dependabot bot commented on behalf of github Jan 4, 2023

Bump @mitre/saf from 1.2.0 to 1.2.1 #59

Bump @mitre/saf from 1.2.0 to 1.2.1 #59

Conversation

dependabot bot commented on behalf of github Jan 4, 2023

1.2.1

What's New

Dependency Updates