chore(deps): bump qs from 6.7.0 to 6.10.3 #61

dependabot · 2022-01-11T11:19:47Z

Bumps qs from 6.7.0 to 6.10.3.

Changelog

6.10.3

[Fix] parse: ignore __proto__ keys (#428)

[Robustness] stringify: avoid relying on a global undefined (#427)

[actions] reuse common workflows

[Dev Deps] update eslint, @ljharb/eslint-config, object-inspect, tape

6.10.2

[Fix] stringify: actually fix cyclic references (#426)

[Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)

[readme] remove travis badge; add github actions/codecov badges; update URLs

[Docs] add note and links for coercing primitive values (#408)

[actions] update codecov uploader

[actions] update workflows

[Tests] clean up stringify tests slightly

[Dev Deps] update eslint, @ljharb/eslint-config, aud, object-inspect, safe-publish-latest, tape

6.10.1

[Fix] stringify: avoid exception on repeated object values (#402)

6.10.0

[New] stringify: throw on cycles, instead of an infinite loop (#395, #394, #393)

[New] parse: add allowSparse option for collapsing arrays with missing indices (#312)

[meta] fix README.md (#399)

[meta] only run npm run dist in publish, not install

[Dev Deps] update eslint, @ljharb/eslint-config, aud, has-symbols, tape

[Tests] fix tests on node v0.6

[Tests] use ljharb/actions/node/install instead of ljharb/actions/node/run

[Tests] Revert "[meta] ignore eclint transitive audit warning"

6.9.7

[Fix] parse: ignore __proto__ keys (#428)

[Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)

[Robustness] stringify: avoid relying on a global undefined (#427)

[readme] remove travis badge; add github actions/codecov badges; update URLs

[Docs] add note and links for coercing primitive values (#408)

[Tests] clean up stringify tests slightly

[meta] fix README.md (#399)

Revert "[meta] ignore eclint transitive audit warning"

[actions] backport actions from main

[Dev Deps] backport updates from main

6.9.6

[Fix] restore dist dir; mistakenly removed in d4f6c32

6.9.5

[Fix] stringify: do not encode parens for RFC1738

[Fix] stringify: fix arrayFormat comma with empty array/objects (#350)

[Refactor] format: remove util.assign call

[meta] add "Allow Edits" workflow; update rebase workflow

[actions] switch Automatic Rebase workflow to pull_request_target event

... (truncated)

Commits

f92ddb5 v6.10.3
d9e9529 [Dev Deps] update eslint
8b4cc14 [Fix] parse: ignore __proto__ keys
ad63d36 [actions] reuse common workflows
c028385 [Dev Deps] update eslint, @ljharb/eslint-config, object-inspect, tape
0a1d3e8 [Robustness] stringify: avoid relying on a global undefined
408ff95 v6.10.2
3cea04d [Dev Deps] update @ljharb/eslint-config
28fba8f [Dev Deps] update eslint, @ljharb/eslint-config, tape
9aee773 [Fix] stringify: actually fix cyclic references
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [qs](https://github.com/ljharb/qs) from 6.7.0 to 6.10.3. - [Release notes](https://github.com/ljharb/qs/releases) - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.7.0...v6.10.3) --- updated-dependencies: - dependency-name: qs dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2022-06-07T11:23:25Z

Superseded by #72.

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 11, 2022

dependabot bot mentioned this pull request Jan 11, 2022

chore(deps): bump qs from 6.7.0 to 6.10.2 #60

Closed

dependabot bot closed this Jun 7, 2022

dependabot bot deleted the dependabot/npm_and_yarn/qs-6.10.3 branch June 7, 2022 11:23

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump qs from 6.7.0 to 6.10.3 #61

chore(deps): bump qs from 6.7.0 to 6.10.3 #61

Uh oh!

dependabot bot commented on behalf of github Jan 11, 2022

Uh oh!

dependabot bot commented on behalf of github Jun 7, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

chore(deps): bump qs from 6.7.0 to 6.10.3 #61

chore(deps): bump qs from 6.7.0 to 6.10.3 #61

Uh oh!

Conversation

dependabot bot commented on behalf of github Jan 11, 2022

6.10.3

6.10.2

6.10.1

6.10.0

6.9.7

6.9.6

6.9.5

Uh oh!

dependabot bot commented on behalf of github Jun 7, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant