Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump @babel/runtime and @angular-devkit/build-angular in /flink-runtime-web/web-dashboard #26405

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump @babel/runtime and @angular-devkit/build-angular in /flink-runtime-web/web-dashboard #26405

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 4, 2025

Bumps @babel/runtime to 7.26.10 and updates ancestor dependency @angular-devkit/build-angular. These dependencies need to be updated together.

Updates @babel/runtime from 7.26.0 to 7.26.10

Release notes

Sourced from @​babel/runtime's releases.

v7.26.10 (2025-03-11)

Thanks @​jordan-choi and @​mmmsssttt404 for your first PRs!

This release includes a fix for GHSA-968p-4wvh-cqc8, a security vulnerability which affects the .replace method of transpiled regular expressions that use named capturing groups.

👓 Spec Compliance

🐛 Bug Fix

  • babel-parser, babel-template
  • babel-core
  • babel-parser, babel-plugin-transform-typescript
  • babel-traverse
  • babel-generator
  • babel-parser
  • babel-helpers, babel-runtime, babel-runtime-corejs2, babel-runtime-corejs3

💅 Polish

  • babel-standalone

🏠 Internal

Committers: 6

v7.26.9 (2025-02-14)

🐛 Bug Fix

... (truncated)

Changelog

Sourced from @​babel/runtime's changelog.

v7.26.10 (2025-03-11)

👓 Spec Compliance

🐛 Bug Fix

  • babel-parser, babel-template
  • babel-core
  • babel-parser, babel-plugin-transform-typescript
  • babel-traverse
  • babel-generator
  • babel-parser
  • babel-helpers, babel-runtime, babel-runtime-corejs2, babel-runtime-corejs3

💅 Polish

  • babel-standalone

🏠 Internal

v7.26.9 (2025-02-14)

🐛 Bug Fix

🏠 Internal

v7.26.7 (2025-01-24)

🐛 Bug Fix

  • babel-helpers, babel-preset-env, babel-runtime-corejs3
  • babel-plugin-transform-typeof-symbol

... (truncated)

Commits

Updates @angular-devkit/build-angular from 18.2.12 to 18.2.17

Release notes

Sourced from @​angular-devkit/build-angular's releases.

18.2.17

@​angular/build

Commit Description
fix - 247ceff7f update vite to 5.4.16 due to a security issues

18.2.16

@​angular-devkit/build-angular

Commit Description
fix - 4267a80c5 remove @vitejs/plugin-basic-ssl from dependencies

@​angular/build

Commit Description
fix - 9c2904d0d update vite to 5.4.15

v18.2.15

18.2.15 (2025-03-13)

@​angular-devkit/build-angular

Commit Description
fix - 255c8a50d update babel packages

v18.2.14

18.2.14 (2025-01-29)

@​angular-devkit/build-angular

Commit Description
fix - 9d34d28ec remove unused vite dependency

v18.2.13

18.2.13 (2025-01-29)

@​angular/cli

Commit Description
fix - deeaf1883 correctly select package versions in descending order during ng add

@​angular/build

Commit Description
fix - fdddf2c08 update vite to version 5.4.14
Changelog

Sourced from @​angular-devkit/build-angular's changelog.

18.2.17 (2025-04-02)

@​angular/build

Commit Type Description
247ceff7f fix update vite to 5.4.16 due to a security issues

17.3.15 (2025-04-02)

@​angular-devkit/build-angular

Commit Type Description
0525fec61 fix update vite to 5.4.16 due to a security issues

20.0.0-next.3 (2025-03-26)

Breaking Changes

@​angular/cli

  • Node.js versions from 22.0 to 22.10 are no longer supported

@​schematics/angular

Commit Type Description
9e6b9b537 fix add type checking of host bindings to strict config
381d35fe4 fix remove empty scripts option value from new applications
a910fe9ae fix remove explicit outputPath option value from generated applications

@​angular/cli

Commit Type Description
64732534e fix update minimum supported Node.js 22 version to 22.11.0

@​angular/build

Commit Type Description

... (truncated)

Commits
  • 303bee9 release: cut the v18.2.17 release
  • 247ceff fix(@​angular/build): update vite to 5.4.16 due to a security issues
  • e4b6363 release: cut the v18.2.16 release
  • 9c2904d fix(@​angular/build): update vite to 5.4.15
  • 4267a80 fix(@​angular-devkit/build-angular): remove @vitejs/plugin-basic-ssl from de...
  • 18ea0db release: cut the v18.2.15 release
  • c88727a ci: update angular/dev-infra actions version
  • 255c8a5 fix(@​angular-devkit/build-angular): update babel packages
  • d621da8 release: cut the v18.2.14 release
  • 9d34d28 fix(@​angular-devkit/build-angular): remove unused vite dependency
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump @babel/runtime and @angular-devkit/build-angular
8cca206 
Bumps [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) to 7.26.10 and updates ancestor dependency [@angular-devkit/build-angular](https://github.com/angular/angular-cli). These dependencies need to be updated together.


Updates `@babel/runtime` from 7.26.0 to 7.26.10
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.26.10/packages/babel-runtime)

Updates `@angular-devkit/build-angular` from 18.2.12 to 18.2.17
- [Release notes](https://github.com/angular/angular-cli/releases)
- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](angular/angular-cli@18.2.12...18.2.17)

---
updated-dependencies:
- dependency-name: "@babel/runtime"
  dependency-version: 7.26.10
  dependency-type: indirect
- dependency-name: "@angular-devkit/build-angular"
  dependency-version: 18.2.17
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 4, 2025
@flinkbot
Copy link
Collaborator

flinkbot commented Apr 4, 2025
edited
Loading

CI report:

Bot commands The @flinkbot bot supports the following commands:
  • @flinkbot run azure re-run the last Azure build

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@flinkbot