Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[framework-fixture-dependencies]: Bump astro from 4.12.2 to 4.16.18 in /packages/static-build/test/fixtures/astro-v4 in the core group across 1 directory #12784

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[framework-fixture-dependencies]: Bump astro from 4.12.2 to 4.16.18 in /packages/static-build/test/fixtures/astro-v4 in the core group across 1 directory #12784

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 19, 2024
edited
Loading

Bumps the core group with 1 update in the /packages/static-build/test/fixtures/astro-v4 directory: astro.

Updates astro from 4.12.2 to 4.16.18

Release notes

Sourced from astro's releases.

[email protected]

Patch Changes

[email protected]

Patch Changes

  • #12632 e7d14c3 Thanks @​ematipico! - Fixes an issue where the checkOrigin feature wasn't correctly checking the content-type header

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

  • #12436 453ec6b Thanks @​martrapp! - Fixes a potential null access in the clientside router

  • #12392 0462219 Thanks @​apatel369! - Fixes an issue where scripts were not correctly injected during the build. The issue was triggered when there were injected routes with the same entrypoint and different pattern

[email protected]

Patch Changes

  • #12420 acac0af Thanks @​ematipico! - Fixes an issue where the dev server returns a 404 status code when a user middleware returns a valid Response.

... (truncated)

Changelog

Sourced from astro's changelog.

4.16.18

Patch Changes

4.16.17

Patch Changes

  • #12632 e7d14c3 Thanks @​ematipico! - Fixes an issue where the checkOrigin feature wasn't correctly checking the content-type header

4.16.16

Patch Changes

4.16.15

Patch Changes

4.16.14

Patch Changes

4.16.13

Patch Changes

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 19, 2024
@dependabot dependabot bot requested a review from trek as a code owner December 19, 2024 08:59
@dependabot dependabot bot added the minor Minor version bump label Dec 19, 2024
@dependabot dependabot bot mentioned this pull request Dec 19, 2024
Closed
@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Dec 19, 2024
edited
Loading

⚠️ No Changeset found

Latest commit: 2223a89

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@socket-security Socket Security
Copy link

socket-security bot commented Dec 19, 2024
edited
Loading

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/[email protected] Transitive: environment, eval +35 196 MB fredkschott

🚮 Removed packages: npm/[email protected]

View full report↗︎

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-cba56ce04c branch from f7211d2 to 7d9bdfe Compare December 20, 2024 08:34
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-cba56ce04c branch from 7d9bdfe to 7566576 Compare December 23, 2024 08:40
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-cba56ce04c branch from 7566576 to 71b6fdd Compare January 3, 2025 08:54
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-cba56ce04c branch from 71b6fdd to 917da0d Compare January 6, 2025 08:19
@dependabot
[framework-fixture-dependencies]: Bump astro
2223a89 
Bumps the core group with 1 update in the /packages/static-build/test/fixtures/astro-v4 directory: [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro).


Updates `astro` from 4.12.2 to 4.16.18
- [Release notes](https://github.com/withastro/astro/releases)
- [Changelog](https://github.com/withastro/astro/blob/[email protected]/packages/astro/CHANGELOG.md)
- [Commits](https://github.com/withastro/astro/commits/[email protected]/packages/astro)

---
updated-dependencies:
- dependency-name: astro
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: core
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-cba56ce04c branch from 917da0d to 2223a89 Compare January 8, 2025 08:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TooTallNate TooTallNate Awaiting requested review from TooTallNate TooTallNate is a code owner

@EndangeredMassa EndangeredMassa Awaiting requested review from EndangeredMassa EndangeredMassa is a code owner

@trek trek Awaiting requested review from trek trek is a code owner

@onsclom onsclom Awaiting requested review from onsclom onsclom is a code owner

@jeffsee55 jeffsee55 Awaiting requested review from jeffsee55 jeffsee55 is a code owner

@erikareads erikareads Awaiting requested review from erikareads erikareads is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file minor Minor version bump
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants