Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[framework-fixture-dependencies]: Bump astro from 4.12.2 to 4.16.17 in /packages/static-build/test/fixtures/astro-v4 in the core group across 1 directory #12711

Closed
wants to merge 1 commit into from
Closed

[framework-fixture-dependencies]: Bump astro from 4.12.2 to 4.16.17 in /packages/static-build/test/fixtures/astro-v4 in the core group across 1 directory #12711

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 6, 2024
edited
Loading

Bumps the core group with 1 update in the /packages/static-build/test/fixtures/astro-v4 directory: astro.

Updates astro from 4.12.2 to 4.16.17

Release notes

Sourced from astro's releases.

[email protected]

Patch Changes

  • #12632 e7d14c3 Thanks @​ematipico! - Fixes an issue where the checkOrigin feature wasn't correctly checking the content-type header

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

  • #12436 453ec6b Thanks @​martrapp! - Fixes a potential null access in the clientside router

  • #12392 0462219 Thanks @​apatel369! - Fixes an issue where scripts were not correctly injected during the build. The issue was triggered when there were injected routes with the same entrypoint and different pattern

[email protected]

Patch Changes

  • #12420 acac0af Thanks @​ematipico! - Fixes an issue where the dev server returns a 404 status code when a user middleware returns a valid Response.

[email protected]

Patch Changes

... (truncated)

Changelog

Sourced from astro's changelog.

4.16.17

Patch Changes

  • #12632 e7d14c3 Thanks @​ematipico! - Fixes an issue where the checkOrigin feature wasn't correctly checking the content-type header

4.16.16

Patch Changes

4.16.15

Patch Changes

4.16.14

Patch Changes

4.16.13

Patch Changes

  • #12436 453ec6b Thanks @​martrapp! - Fixes a potential null access in the clientside router

  • #12392 0462219 Thanks @​apatel369! - Fixes an issue where scripts were not correctly injected during the build. The issue was triggered when there were injected routes with the same entrypoint and different pattern

4.16.12

Patch Changes

  • #12420 acac0af Thanks @​ematipico! - Fixes an issue where the dev server returns a 404 status code when a user middleware returns a valid Response.

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 6, 2024
@dependabot dependabot bot requested a review from erikareads as a code owner December 6, 2024 08:31
@dependabot dependabot bot added the minor Minor version bump label Dec 6, 2024
@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Dec 6, 2024
edited
Loading

⚠️ No Changeset found

Latest commit: eda3094

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@dependabot dependabot bot mentioned this pull request Dec 6, 2024
Closed
@socket-security Socket Security
Copy link

socket-security bot commented Dec 6, 2024
edited
Loading

Removed dependencies detected. Learn more about Socket for GitHub ↗︎

🚮 Removed packages: npm/[email protected]

View full report↗︎

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch from b6c49b7 to ea86698 Compare December 9, 2024 08:26
@socket-security Socket Security
Copy link

socket-security bot commented Dec 9, 2024
edited
Loading

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report↗︎

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch from ea86698 to 1c8aa30 Compare December 10, 2024 08:34
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch from 1c8aa30 to 2f30209 Compare December 11, 2024 08:35
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch from 2f30209 to 2b70309 Compare December 12, 2024 08:40
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch from 2b70309 to 7b820e1 Compare December 13, 2024 09:06
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch from 7b820e1 to 96fe818 Compare December 16, 2024 08:35
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 17, 2024

Dependabot can't parse your pnpm-lock.yaml. Because of this, Dependabot cannot update this pull request.

@dependabot
[framework-fixture-dependencies]: Bump astro
eda3094 
Bumps the core group with 1 update in the /packages/static-build/test/fixtures/astro-v4 directory: [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro).


Updates `astro` from 4.12.2 to 4.16.17
- [Release notes](https://github.com/withastro/astro/releases)
- [Changelog](https://github.com/withastro/astro/blob/[email protected]/packages/astro/CHANGELOG.md)
- [Commits](https://github.com/withastro/astro/commits/[email protected]/packages/astro)

---
updated-dependencies:
- dependency-name: astro
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: core
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch from 96fe818 to eda3094 Compare December 18, 2024 08:18
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 19, 2024

Superseded by #12784.

@dependabot dependabot bot closed this Dec 19, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/packages/static-build/test/fixtures/astro-v4/core-0d9dbbddc1 branch December 19, 2024 08:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TooTallNate TooTallNate Awaiting requested review from TooTallNate

@EndangeredMassa EndangeredMassa Awaiting requested review from EndangeredMassa

@trek trek Awaiting requested review from trek trek is a code owner

@onsclom onsclom Awaiting requested review from onsclom

@jeffsee55 jeffsee55 Awaiting requested review from jeffsee55

@erikareads erikareads Awaiting requested review from erikareads

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file minor Minor version bump
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants