Skip to content
This repository was archived by the owner on Aug 9, 2021. It is now read-only.

chore(deps): bump bunyan from 1.8.13 to 1.8.14#395

Closed
dependabot-preview[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/develop/bunyan-1.8.14
Closed

chore(deps): bump bunyan from 1.8.13 to 1.8.14#395
dependabot-preview[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/develop/bunyan-1.8.14

Conversation

@dependabot-preview

@dependabot-preview dependabot-preview Bot commented Jul 6, 2020
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps bunyan from 1.8.13 to 1.8.14.

Changelog

Sourced from bunyan's changelog.

1.8.14

  • [pull #558] Update minimum "moment" version to 2.19.3 for CVE-2017-18214.
  • [issue #589] Use os.EOL for newlines in bunyan output, which helps with some Unix-EOL-naive apps like notepad. (By @bwknight877.)
  • Development change: Switched to GitHub Actions for CI.
Commits
  • a9fe41d 1.8.14
  • 990426d Update moment to resolve regex DoS vulnerability (#558)
  • 088371c Switch from Travis to GitHub Actions for CI (#642)
  • 554837b Remove old hack for some old Node 0.6 versions (#567)
  • 4ae3824 changelog entry for recent fix
  • 749c66d Use os.EOL for line endings for text loggers (#590)
  • bfece9f travis: test with more node versions
  • 4e33c84 Fix test suite failure in node v14 due to util.inspect change with circular refs
  • ab8e5c6 Fix a test failure in node >=12 due to util.format edge case change
  • b6f73f3 Add tip about --no-optional (#625)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

@dependabot-preview dependabot-preview Bot requested a review from zachferland July 6, 2020 13:40
@dependabot-preview dependabot-preview Bot force-pushed the dependabot/npm_and_yarn/develop/bunyan-1.8.14 branch from fc620d0 to 7949e1b Compare July 7, 2020 18:09
@dependabot-preview
chore(deps): bump bunyan from 1.8.13 to 1.8.14
2b67b24 
Bumps [bunyan](https://github.com/trentm/node-bunyan) from 1.8.13 to 1.8.14.
- [Release notes](https://github.com/trentm/node-bunyan/releases)
- [Changelog](https://github.com/trentm/node-bunyan/blob/1.8.14/CHANGES.md)
- [Commits](trentm/node-bunyan@1.8.13...1.8.14)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
@dependabot-preview dependabot-preview Bot force-pushed the dependabot/npm_and_yarn/develop/bunyan-1.8.14 branch from 7949e1b to 2b67b24 Compare July 7, 2020 18:36
@zachferland zachferland force-pushed the develop branch 19 times, most recently from 119b3d6 to b43198b Compare July 28, 2020 18:15
@zachferland zachferland force-pushed the develop branch 4 times, most recently from 9feee27 to bb30960 Compare July 29, 2020 14:20
@dependabot-preview

dependabot-preview Bot commented Jan 11, 2021

Copy link
Copy Markdown
Contributor Author

Superseded by #469.

@dependabot-preview dependabot-preview Bot deleted the dependabot/npm_and_yarn/develop/bunyan-1.8.14 branch January 11, 2021 10:30
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@zachferland zachferland Awaiting requested review from zachferland

Assignees

@zachferland zachferland

Labels

package & dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@zachferland