Skip to content

[Snyk] Upgrade: , universal-user-agent, , , node-fetch #76

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade: , universal-user-agent, , , node-fetch #76

wants to merge 1 commit into from

Conversation

@NOUIY
Copy link
Owner

@NOUIY NOUIY commented Sep 12, 2024

snyk-top-banner

Snyk has created this PR to upgrade multiple dependencies.

👯 The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name Versions Released on

@octokit/types
from 8.0.0 to 8.2.1 | 4 versions ahead of your current version | 2 years ago
on 2023-01-20
universal-user-agent
from 6.0.0 to 6.0.1 | 1 version ahead of your current version | 10 months ago
on 2023-11-04
@octokit/endpoint
from 7.0.3 to 7.0.6 | 3 versions ahead of your current version | a year ago
on 2023-06-09
@octokit/request-error
from 3.0.2 to 3.0.3 | 1 version ahead of your current version | 2 years ago
on 2023-01-20
node-fetch
from 2.6.7 to 2.7.0 | 7 versions ahead of your current version | a year ago
on 2023-08-23

Release notes
Package name: @octokit/types
  • 8.2.1 - 2023-01-20

    8.2.1 (2023-01-20)

    Bug Fixes

    • revert "feat: many unreleased endpoint updates (#499)" (fcbd164)
  • 8.2.0 - 2023-01-20

    8.2.0 (2023-01-20)

    Features

  • 8.1.1 - 2023-01-13

    8.1.1 (2023-01-13)

    Reverts

  • 8.1.0 - 2023-01-11

    8.1.0 (2023-01-11)

    Features

  • 8.0.0 - 2022-10-12

    8.0.0 (2022-10-12)

    BREAKING CHANGES

    • @ octokit/types no longer include endpoint types for GHEC

    Features

    • feat: publish new GitHub Enterprise Cloud (GHEC) specific @ octokit/openapi-types-ghec package, plus lots of API changes (29539cf)
    • feat: add support for new "Get a Dependabot alert" API (GET /repos/{owner}/{repo}/dependabot/alerts/{alert_number})
    • feat: add support for new "Update a Dependabot alert" API (PATCH /repos/{owner}/{repo}/dependabot/alerts/{alert_number})
    • feat: add support for new "List Dependabot alerts for a repository" API (GET /repos/{owner}/{repo}/dependabot/alerts)
      • feat: add support for new "List organization secret" (GET /organizations/{org}/codespaces/secrets) Codespaces API
    • feat: add support for new "Get an organization public key" (GET /organizations/{org}/codespaces/secrets/public-key) Codespaces API
    • feat: add support for new "Get an organization secret" (GET /organizations/{org}/codespaces/secrets/{secret_name} ) Codespaces API
    • feat: adds support for new "Create or update an organization secret" (PUT /organizations/{org}/codespaces/secrets/{secret_name} ) Codespaces API
    • feat: add support for new "Delete an organization secret" (DELETE /organizations/{org}/codespaces/secrets/{secret_name}) Codespaces API
    • feat: add support for new "List selected repositories for an organization secret" (GET /organizations/{org}/codespaces/secrets/{secret_name}/repositories) Codespaces API
    • feat: add support for new "Set selected repositories for an organization secret" ( PUT /organizations/{org}/codespaces/secrets/{secret_name}/repositories) Codespaces API
    • feat: add support for new "Add selected repository to an organization secret" (PUT /organizations/{org}/codespaces/secrets/{secret_name}/repositories/{repository_id}) Codespaces API
    • feat: add support for new "Remove selected repository from an organization secret" (DELETE /organizations/{org}/codespaces/secrets/{secret_name}/repositories/{repository_id}) Codespaces API
    • feat: add support for resolution_comment attribute returned on secret scanning alerts
    • feat: add support for new scope attribute returned by the "Get a diff of the dependencies between commits" (GET /repos/{owner}/{repo}/dependency-graph/compare/{basehead}) API
    • deps: update @ octokit/openapi-types to v14 (#463) (7bf7e20)

    ### Fixes

    • fix: tweak documentation for repo starring related APIs (GET /repos/{owner}/{repo}/stargazers, GET /users/{username}/starred and GET /user/starred) to clarify what Accept header to send to get information about when stars were created
    • fix: tweak documentation for "Get community profile metrics" API (GET /repos/{owner}/{repo}/community/profile) to clarify that it only works with public repos which are not forks
    • fix: document the size attribute returned on repos across the API
    • fix: document that APIs can return 422 errors when an endpoint has been spammed with many requests
    • fix: document 301 status returned by labels-related APIs if the repo has been renamed or moved
    • fix: document 404 Not Found status returned by labels-related APIs
from @octokit/types GitHub release notes
Package name: universal-user-agent
  • 6.0.1 - 2023-11-04

    6.0.1 (2023-11-04)

    Bug Fixes

  • 6.0.0 - 2020-07-16

    6.0.0 (2020-07-16)

    Bug Fixes

    • use same code for all environments (#57) (a52f688)

    BREAKING CHANGES

    • no longer uses os-name in Node environment. The platform
      release version is no longer included. For example "Node.js/10.21.0 (Linux 4.15; x64)" is now `"Node.js/10.21.0 (Linux; x64)"
from universal-user-agent GitHub release notes
Package name: @octokit/endpoint from @octokit/endpoint GitHub release notes
Package name: @octokit/request-error from @octokit/request-error GitHub release notes
Package name: node-fetch from node-fetch GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade multiple dependencies with Snyk
555d020 
Snyk has created this PR to upgrade:
  - @octokit/types from 8.0.0 to 8.2.1.
    See this package in npm: https://www.npmjs.com/package/@octokit/types
  - universal-user-agent from 6.0.0 to 6.0.1.
    See this package in npm: https://www.npmjs.com/package/universal-user-agent
  - @octokit/endpoint from 7.0.3 to 7.0.6.
    See this package in npm: https://www.npmjs.com/package/@octokit/endpoint
  - @octokit/request-error from 3.0.2 to 3.0.3.
    See this package in npm: https://www.npmjs.com/package/@octokit/request-error
  - node-fetch from 2.6.7 to 2.7.0.
    See this package in npm: https://www.npmjs.com/package/node-fetch

See this project in Snyk:
https://app.snyk.io/org/nexuscompute/project/6fecdd51-23b4-4afe-b138-cac4f7564762?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

"socket hang up" / ECONNRESET on consecutive requests with Node.js 19 and Node.js 20

3 participants

@NOUIY @snyk-bot