Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the npm_and_yarn group with 4 updates #13

Closed

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 5, 2024

Bumps the npm_and_yarn group with 4 updates: nth-check, cssnano, gulp-imagemin and trim-newlines.

Updates nth-check from 1.0.2 to 2.1.1

Release notes

Sourced from nth-check's releases.

v2.1.1

  • The ESM code had some issues that are now fixed aeeb067

fb55/nth-check@v2.1.0...v2.1.1

v2.1.0

What's Changed

  • nth-check is now a dual CommonJS and ESM module fb55/nth-check#206
  • With the new sequence and generate methods, it is now possible to generate a sequence of indices for a given formula fb55/nth-check#207

Full Changelog: fb55/nth-check@v2.0.1...v2.1.0

v2.0.1

Fixes:

  • Replace regex with hand-rolled parser for nth-expressions (#9) 9894c1d
    • Ensures parsing will always have linear time complexity.

Internal:

  • chore(ci): Use GitHub Actions, Dependabot (#10) e02b4dd
  • Bump dependencies

fb55/nth-check@v2.0.0...v2.0.1

v2.0.0

  • Port module to TS, Jest, ESLint

Breaking:

  • The main export is now a default export.
  • The module now throws regular Errors on invalid selectors instead of SyntaxErrors.
Commits

Updates cssnano from 4.1.11 to 6.1.2

Release notes

Sourced from cssnano's releases.

v6.1.2

Bug Fixes

  • preserve correct order of gap and column-gap properties

Patch Changes

  • update autoprefixer

v6.1.1

Patch changes

  • update selector parser
  • in the minify font plugin, you can pass a function to determine whether a css variable is one of font, font-family, and font-weight to determine whether the variable needs to remove quotes.

v6.1.0

This release contains a lot of fixes to Browserslist support thanks to @​colinrotherham

Features

  • support Browserslist options in more plugins
  • support overriding autoprefixer options

Additionally, this release includes improved TypeScript types.

v6.0.5

Bug Fixes

  • correctly minify font declaration in edge cases
  • preserve initial property in -webkit-line-clamp

v6.0.4

Bug Fixes

  • preserve empty @layer declarations
  • avoid crashing when encountering @layer without any braces afterwards
  • update to latest lilconfig dependency to avoid vulnerability

v6.0.3

Bug fixes

  • do not sort unknown properties

Other

  • Require latest browserslist and postcss-selector-parser

v6.0.2

  • fix: update cssnano peer dependency to 8.4.31 to avoid security issue
  • fix: update postcss-calc to 9.0.1 to solve disappearing expressions inside two brackets
  • deps(postcss-svgo): update SVGO to 3.0.5 and update doc
  • chore: update css-declaration-sorter
  • fix(postcss-minify-selectors): prevent mangling of timeline range names
  • fix(postcss-convert-values): keep percent unit in @Property
  • chore(cssnano): update lilconfig to 3.0.0

v6.0.1

... (truncated)

Commits
  • 760ba29 Publish cssnano 6.1.2
  • 0ffe067 Update css-declaration-sorter to 7.2.0
  • 0b9ce45 Merge pull request #1589 from cssnano/update-autoprefixer
  • 2f3fb50 chore(cssnano-preset-advanced): update autoprefixer
  • 3282447 Merge pull request #1587 from cssnano/update-dev-deps
  • 0857e15 chore: update development dependencies
  • 7a1cfe3 Merge pull request #1586 from cssnano/update-website
  • 32eebd5 docs: update website dependencies
  • 18206e6 Merge pull request #1585 from cssnano/release-611
  • d7b4d2b Publish cssnano 6.1.1
  • Additional commits viewable in compare view

Updates gulp-imagemin from 6.2.0 to 9.0.0

Release notes

Sourced from gulp-imagemin's releases.

v9.0.0

Breaking

  • Require Node.js 18 70e07e8

sindresorhus/gulp-imagemin@v8.0.0...v9.0.0

v8.0.0

sindresorhus/gulp-imagemin@v7.1.0...v8.0.0

v7.1.0

sindresorhus/gulp-imagemin@v7.0.0...v7.1.0

v7.0.0

Breaking

  • Require Node.js 10 aacca91
  • Replace jpegtran with mozjpeg in the default plugins (#336) 279a91b

sindresorhus/gulp-imagemin@v6.2.0...v7.0.0

Commits

Updates trim-newlines from 1.0.0 to 3.0.1

Release notes

Sourced from trim-newlines's releases.

v3.0.0

Breaking:

  • Require Node.js 8 (#1) 75db891

Enhancements:

  • Add TypeScript definition (#1) 75db891

sindresorhus/trim-newlines@v2.0.0...v3.0.0

Commits

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps the npm_and_yarn group with 4 updates: [nth-check](https://github.com/fb55/nth-check), [cssnano](https://github.com/cssnano/cssnano), [gulp-imagemin](https://github.com/sindresorhus/gulp-imagemin) and [trim-newlines](https://github.com/sindresorhus/trim-newlines).


Updates `nth-check` from 1.0.2 to 2.1.1
- [Release notes](https://github.com/fb55/nth-check/releases)
- [Commits](fb55/nth-check@v1.0.2...v2.1.1)

Updates `cssnano` from 4.1.11 to 6.1.2
- [Release notes](https://github.com/cssnano/cssnano/releases)
- [Commits](https://github.com/cssnano/cssnano/compare/[email protected])

Updates `gulp-imagemin` from 6.2.0 to 9.0.0
- [Release notes](https://github.com/sindresorhus/gulp-imagemin/releases)
- [Commits](sindresorhus/gulp-imagemin@v6.2.0...v9.0.0)

Updates `trim-newlines` from 1.0.0 to 3.0.1
- [Release notes](https://github.com/sindresorhus/trim-newlines/releases)
- [Commits](https://github.com/sindresorhus/trim-newlines/commits)

---
updated-dependencies:
- dependency-name: nth-check
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: cssnano
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: gulp-imagemin
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: trim-newlines
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 5, 2024
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-49effa9972 branch from 2826389 to 167da69 Compare April 5, 2024 04:10
@NeftaliYagua
Copy link
Member

@dependabot rebase

Copy link
Contributor Author

dependabot bot commented on behalf of github May 8, 2024

Superseded by #15.

@dependabot dependabot bot closed this May 8, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/npm_and_yarn-49effa9972 branch May 8, 2024 09:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant