Fix/lt 102695#2803
Open
longle-manabie wants to merge 55 commits into
Open
Conversation
Bumps [form-data](https://github.com/form-data/form-data) from 4.0.0 to 4.0.5. - [Release notes](https://github.com/form-data/form-data/releases) - [Changelog](https://github.com/form-data/form-data/blob/master/CHANGELOG.md) - [Commits](form-data/form-data@v4.0.0...v4.0.5) --- updated-dependencies: - dependency-name: form-data dependency-version: 4.0.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [sha.js](https://github.com/crypto-browserify/sha.js) from 2.4.11 to 2.4.12. - [Changelog](https://github.com/browserify/sha.js/blob/master/CHANGELOG.md) - [Commits](browserify/sha.js@v2.4.11...v2.4.12) --- updated-dependencies: - dependency-name: sha.js dependency-version: 2.4.12 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.21...4.17.23) --- updated-dependencies: - dependency-name: lodash-es dependency-version: 4.17.23 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.21...4.17.23) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.17.23 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…data-4.0.5 chore(deps): bump form-data from 4.0.0 to 4.0.5
Bumps [cipher-base](https://github.com/crypto-browserify/cipher-base) from 1.0.4 to 1.0.7. - [Changelog](https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md) - [Commits](browserify/cipher-base@v1.0.4...v1.0.7) --- updated-dependencies: - dependency-name: cipher-base dependency-version: 1.0.7 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
fix: update import assertion syntax for package.json in rollup config
…r-base-1.0.7 chore(deps): bump cipher-base from 1.0.4 to 1.0.7
Bumps [pbkdf2](https://github.com/browserify/pbkdf2) from 3.1.2 to 3.1.5. - [Changelog](https://github.com/browserify/pbkdf2/blob/master/CHANGELOG.md) - [Commits](browserify/pbkdf2@v3.1.2...v3.1.5) --- updated-dependencies: - dependency-name: pbkdf2 dependency-version: 3.1.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…2-3.1.5 chore(deps): bump pbkdf2 from 3.1.2 to 3.1.5
…s-2.4.12 chore(deps): bump sha.js from 2.4.11 to 2.4.12
chore(deps): upgrade elliptic to version 6.6.1
Bumps [rollup](https://github.com/rollup/rollup) from 3.29.4 to 3.30.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/v3.30.0/CHANGELOG.md) - [Commits](rollup/rollup@v3.29.4...v3.30.0) --- updated-dependencies: - dependency-name: rollup dependency-version: 3.30.0 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
…p-3.30.0 chore(deps-dev): bump rollup from 3.29.4 to 3.30.0
Bumps [ws](https://github.com/websockets/ws) from 8.16.0 to 8.19.0. - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@8.16.0...8.19.0) --- updated-dependencies: - dependency-name: ws dependency-version: 8.19.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…19.0 chore(deps): bump ws from 8.16.0 to 8.19.0
…version chore(deps): upgrade qs to version 6.14.1 and webpack-dev-middleware to version 5.3.4
Bumps [tar](https://github.com/isaacs/node-tar) from 6.2.0 to 7.5.9. - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v6.2.0...v7.5.9) --- updated-dependencies: - dependency-name: tar dependency-version: 7.5.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
….5.9 chore(deps): bump tar from 6.2.0 to 7.5.9
…h-4.17.23 chore(deps): bump lodash from 4.17.21 to 4.17.23
Bumps [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) from 7.23.9 to 7.26.10. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.26.10/packages/babel-runtime) --- updated-dependencies: - dependency-name: "@babel/runtime" dependency-version: 7.26.10 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…h-es-4.17.23 chore(deps): bump lodash-es from 4.17.21 to 4.17.23
Bumps [store2](https://github.com/nbubna/store) from 2.14.2 to 2.14.4. - [Commits](nbubna/store@2.14.2...2.14.4) --- updated-dependencies: - dependency-name: store2 dependency-version: 2.14.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…/runtime-7.26.10 chore(deps): bump @babel/runtime from 7.23.9 to 7.26.10
Bumps [express](https://github.com/expressjs/express) from 4.18.2 to 4.22.1. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/v4.22.1/History.md) - [Commits](expressjs/express@4.18.2...v4.22.1) --- updated-dependencies: - dependency-name: express dependency-version: 4.22.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…2-2.14.4 chore(deps): bump store2 from 2.14.2 to 2.14.4
Bumps [zx](https://github.com/google/zx) from 7.2.3 to 8.8.5. - [Release notes](https://github.com/google/zx/releases) - [Commits](google/zx@7.2.3...8.8.5) --- updated-dependencies: - dependency-name: zx dependency-version: 8.8.5 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
…ss-4.22.1 chore(deps): bump express from 4.18.2 to 4.22.1
chore(deps-dev): bump zx from 7.2.3 to 8.8.5
Bumps [min-document](https://github.com/Raynos/min-document) from 2.19.0 to 2.19.2. - [Commits](Raynos/min-document@v2.19.0...v2.19.2) --- updated-dependencies: - dependency-name: min-document dependency-version: 2.19.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…ocument-2.19.2 chore(deps): bump min-document from 2.19.0 to 2.19.2
…ebpack to 5.104.1
chore(deps): update js-yaml to 4.1.1 and postcss to 8.4.31; upgrade webpack to 5.104.1
chore(deps): update minimatch to version 5.1.8 and bn.js to version 5…….2.3
Bumps [brace-expansion](https://github.com/juliangruber/brace-expansion) from 1.1.11 to 2.0.2. - [Release notes](https://github.com/juliangruber/brace-expansion/releases) - [Commits](juliangruber/brace-expansion@1.1.11...v2.0.2) --- updated-dependencies: - dependency-name: brace-expansion dependency-version: 2.0.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…-expansion-2.0.2 chore(deps): bump brace-expansion from 1.1.11 to 2.0.2
[LT-102521] fix security issue
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Describe the big picture of your changes here to communicate to the maintainers why we should accept this pull request. If it fixes a bug or resolves a feature request, be sure to link to that issue.
The best way to propose a feature is to open an issue first and discuss your ideas there before implementing them.
Always follow the contribution guidelines when submitting a pull request.