Skip to content

Bump the npm_and_yarn group across 2 directories with 4 updates #2326

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Bump the npm_and_yarn group across 2 directories with 4 updates #2326

dependabot wants to merge 2 commits into from
+149 −226

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 18, 2025

Bumps the npm_and_yarn group with 4 updates in the / directory: @angular/common, @angular/compiler, js-yaml and jws.
Bumps the npm_and_yarn group with 2 updates in the /web directory: @angular/common and @angular/compiler.

Updates @angular/common from 17.3.12 to 19.2.16

Release notes

Sourced from @​angular/common's releases.

19.2.16

http

Commit Description
fix - 05fe6686a9 prevent XSRF token leakage to protocol-relative URLs

19.2.15

core

Commit Description
fix - 70d0639bc1 introduce BootstrapContext for improved server bootstrapping (#63639)

Breaking Changes

core

  • The server-side bootstrapping process has been changed to eliminate the reliance on a global platform injector.

    Before:

    const bootstrap = () => bootstrapApplication(AppComponent, config);

    After:

    const bootstrap = (context: BootstrapContext) =>
  bootstrapApplication(AppComponent, config, context);

    A schematic is provided to automatically update main.server.ts files to pass the BootstrapContext to the bootstrapApplication call.

    In addition, getPlatform() and destroyPlatform() will now return null and be a no-op respectively when running in a server environment.

For more information please see: GHSA-68x2-mx4q-78m7

19.2.14

compiler

Commit Description
fix - 24bab55f0c lexer support for template literals in object literals (#61601)

migrations

Commit Description
fix - 9e1cd49662 preserve comments when removing unused imports (#61674)

19.2.13

common

Commit Description
fix - 2c876b4fc5 avoid injecting ApplicationRef in FetchBackend (#61649)

service-worker

| Commit | Description |

... (truncated)

Changelog

Sourced from @​angular/common's changelog.

19.2.16 (2025-11-26)

http

Commit Type Description
05fe6686a9 fix prevent XSRF token leakage to protocol-relative URLs

21.1.0-next.0 (2025-11-25)

platform-browser

Commit Type Description
ec9dc94cee feat add context to createApplication
ab67988d2e feat resolve JIT resources in createApplication

router

Commit Type Description
a03c82564d feat Add scroll behavior controls on router navigation
c25d749d85 feat Execute RunGuardsAndResolvers function in injection context
c84d372778 feat Support wildcard params with segments trailing (#64737)

20.3.14 (2025-11-25)

http

Commit Type Description
0276479e7d fix prevent XSRF token leakage to protocol-relative URLs

21.0.1 (2025-11-25)

compiler-cli

| Commit | Type | Description |

... (truncated)

Commits
  • 05fe668 fix(http): prevent XSRF token leakage to protocol-relative URLs
  • 12e2302 build: update common's locales to use rules_js (#61630)
  • 9701047 test(common): Add circular deps test to 19.2.x (#61651)
  • 2c876b4 fix(common): avoid injecting ApplicationRef in FetchBackend (#61649)
  • 8e54b57 build: move private testing helpers outside platform-browser/testing (#61571)
  • 2b1b14f fix(core): cleanup rxResource abort listener (#58306)
  • 126efc9 fix(common): cancel reader when app is destroyed (#61528)
  • efda872 fix(common): prevent reading chunks if app is destroyed (#61354)
  • c43fd3a build: migrate common to use rules_js based toolchain (#61434)
  • 185b780 build: migrate packages/core/schematics to ts_project (#61420)
  • Additional commits viewable in compare view

Updates @angular/compiler from 17.3.12 to 19.2.17

Release notes

Sourced from @​angular/compiler's releases.

19.2.17

compiler

Commit Description
fix - 7c42e2ebeb prevent XSS via SVG animation attributeName and MathML/SVG URLs

19.2.16

http

Commit Description
fix - 05fe6686a9 prevent XSRF token leakage to protocol-relative URLs

19.2.15

core

Commit Description
fix - 70d0639bc1 introduce BootstrapContext for improved server bootstrapping (#63639)

Breaking Changes

core

  • The server-side bootstrapping process has been changed to eliminate the reliance on a global platform injector.

    Before:

    const bootstrap = () => bootstrapApplication(AppComponent, config);

    After:

    const bootstrap = (context: BootstrapContext) =>
  bootstrapApplication(AppComponent, config, context);

    A schematic is provided to automatically update main.server.ts files to pass the BootstrapContext to the bootstrapApplication call.

    In addition, getPlatform() and destroyPlatform() will now return null and be a no-op respectively when running in a server environment.

For more information please see: GHSA-68x2-mx4q-78m7

19.2.14

compiler

Commit Description
fix - 24bab55f0c lexer support for template literals in object literals (#61601)

migrations

Commit Description
fix - 9e1cd49662 preserve comments when removing unused imports (#61674)

19.2.13

... (truncated)

Changelog

Sourced from @​angular/compiler's changelog.

19.2.17 (2025-12-01)

compiler

Commit Type Description
7c42e2ebeb fix prevent XSS via SVG animation attributeName and MathML/SVG URLs

19.2.16 (2025-11-26)

http

Commit Type Description
05fe6686a9 fix prevent XSRF token leakage to protocol-relative URLs

21.1.0-next.0 (2025-11-25)

platform-browser

Commit Type Description
ec9dc94cee feat add context to createApplication
ab67988d2e feat resolve JIT resources in createApplication

router

Commit Type Description
a03c82564d feat Add scroll behavior controls on router navigation
c25d749d85 feat Execute RunGuardsAndResolvers function in injection context
c84d372778 feat Support wildcard params with segments trailing (#64737)

20.3.14 (2025-11-25)

http

| Commit | Type | Description |

... (truncated)

Commits
  • 7c42e2e fix(compiler): prevent XSS via SVG animation attributeName and MathML/SVG URLs
  • 24bab55 fix(compiler): lexer support for template literals in object literals (#61601)
  • fc2483e refactor(compiler): avoid duplication between FactoryTarget type (#61571)
  • 8e54b57 build: move private testing helpers outside platform-browser/testing (#61571)
  • 44bb328 fix(compiler): avoid conflicts between HMR code and local symbols (#61550)
  • 1007079 build: update compiler-cli to not be stamped when used for the compiler in ng...
  • 0d025c5 build: support new ng_project rule (#61336)
  • 899cb4a refactor: add explicit types for exports relying on inferred call return type...
  • 1312eb1 build: remove irrelevant madge circular deps tests (#61209)
  • 964b261 refactor(compiler): improve stringify (#60013)
  • Additional commits viewable in compare view

Updates js-yaml from 4.1.0 to 4.1.1

Changelog

Sourced from js-yaml's changelog.

[4.1.1] - 2025-11-12

Security

  • Fix prototype pollution issue in yaml merge (<<) operator.
Commits

Updates js-yaml from 3.14.1 to 3.14.2

Changelog

Sourced from js-yaml's changelog.

[4.1.1] - 2025-11-12

Security

  • Fix prototype pollution issue in yaml merge (<<) operator.
Commits

Updates jws from 4.0.0 to 4.0.1

Release notes

Sourced from jws's releases.

v4.0.1

Changed

  • Fix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require that a non empty secret is provided (via opts.secret, opts.privateKey or opts.key) when using HMAC algorithms.
  • Upgrading JWA version to 2.0.1, addressing a compatibility issue for Node >= 25.
Changelog

Sourced from jws's changelog.

[4.0.1]

Changed

  • Fix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require that a non empty secret is provided (via opts.secret, opts.privateKey or opts.key) when using HMAC algorithms.
  • Upgrading JWA version to 2.0.1, adressing a compatibility issue for Node >= 25.

[3.2.3]

Changed

  • Fix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require that a non empty secret is provided (via opts.secret, opts.privateKey or opts.key) when using HMAC algorithms.
  • Upgrading JWA version to 1.4.2, adressing a compatibility issue for Node >= 25.

[3.0.0]

Changed

2.0.0 - 2015-01-30

Changed

  • BREAKING: Default payload encoding changed from binary to utf8. utf8 is a is a more sensible default than binary because many payloads, as far as I can tell, will contain user-facing strings that could be in any language. ([6b6de48])

  • Code reorganization, thanks [@​fearphage]! (7880050)

Added

  • Option in all relevant methods for encoding. For those few users that might be depending on a binary encoding of the messages, this is for them. ([6b6de48])

... (truncated)

Commits
  • 34c45b2 Merge commit from fork
  • 49bc39b version 4.0.1
  • d42350c Enhance tests for HMAC streaming sign and verify
  • 5cb007c Improve secretOrKey initialization in VerifyStream
  • f9a2e1c Improve secret handling in SignStream
  • b9fb8d3 Merge pull request #102 from auth0/SRE-57-Upload-opslevel-yaml
  • 95b75ee Upload OpsLevel YAML
  • 8857ee7 test: remove unused variable (#96)
  • See full diff in compare view
Maintainer changes

This version was pushed to npm by julien.wollscheid, a new releaser for jws since your current version.


Updates jws from 3.2.2 to 3.2.3

Release notes

Sourced from jws's releases.

v4.0.1

Changed

  • Fix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require that a non empty secret is provided (via opts.secret, opts.privateKey or opts.key) when using HMAC algorithms.
  • Upgrading JWA version to 2.0.1, addressing a compatibility issue for Node >= 25.
Changelog

Sourced from jws's changelog.

[4.0.1]

Changed

  • Fix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require that a non empty secret is provided (via opts.secret, opts.privateKey or opts.key) when using HMAC algorithms.
  • Upgrading JWA version to 2.0.1, adressing a compatibility issue for Node >= 25.

[3.2.3]

Changed

  • Fix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require that a non empty secret is provided (via opts.secret, opts.privateKey or opts.key) when using HMAC algorithms.
  • Upgrading JWA version to 1.4.2, adressing a compatibility issue for Node >= 25.

[3.0.0]

Changed

2.0.0 - 2015-01-30

Changed

  • BREAKING: Default payload encoding changed from binary to utf8. utf8 is a is a more sensible default than binary because many payloads, as far as I can tell, will contain user-facing strings that could be in any language. ([6b6de48])

  • Code reorganization, thanks [@​fearphage]! (7880050)

Added

  • Option in all relevant methods for encoding. For those few users that might be depending on a binary encoding of the messages, this is for them. ([6b6de48])

... (truncated)

Commits
  • 34c45b2 Merge commit from fork
  • 49bc39b version 4.0.1
  • d42350c Enhance tests for HMAC streaming sign and verify
  • 5cb007c Improve secretOrKey initialization in VerifyStream
  • f9a2e1c Improve secret handling in SignStream
  • b9fb8d3 Merge pull request #102 from auth0/SRE-57-Upload-opslevel-yaml
  • 95b75ee Upload OpsLevel YAML
  • 8857ee7 test: remove unused variable (#96)
  • See full diff in compare view
Maintainer changes

This version was pushed to npm by julien.wollscheid, a new releaser for jws since your current version.


Updates @angular/common from 17.3.12 to 19.2.16

Release notes

Sourced from @​angular/common's releases.

19.2.16

http

Commit Description
fix - 05fe6686a9 prevent XSRF token leakage to protocol-relative URLs

19.2.15

core

Commit Description
fix - 70d0639bc1 introduce BootstrapContext for improved server bootstrapping (#63639)

Breaking Changes

core

  • The server-side bootstrapping process has been changed to eliminate the reliance on a global platform injector.

    Before:

    const bootstrap = () => bootstrapApplication(AppComponent, config);

    After:

    const bootstrap = (context: BootstrapContext) =>
  bootstrapApplication(AppComponent, config, context);

    A schematic is provided to automatically update main.server.ts files to pass the BootstrapContext to the bootstrapApplication call.

    In addition, getPlatform() and destroyPlatform() will now return null and be a no-op respectively when running in a server environment.

For more information please see: GHSA-68x2-mx4q-78m7

19.2.14

compiler

Commit Description
fix - 24bab55f0c lexer support for template literals in object literals (#61601)

migrations

Commit Description
fix - 9e1cd49662 preserve comments when removing unused imports (#61674)

19.2.13

common

Commit Description
fix - 2c876b4fc5 avoid injecting ApplicationRef in FetchBackend (#61649)

service-worker

| Commit | Description |

... (truncated)

Changelog

Sourced from @​angular/common's changelog.

19.2.16 (2025-11-26)

http

Commit Type Description
05fe6686a9 fix prevent XSRF token leakage to protocol-relative URLs

21.1.0-next.0 (2025-11-25)

platform-browser

Commit Type Description
ec9dc94cee feat add context to createApplication
ab67988d2e feat resolve JIT resources in createApplication

router

Commit Type Description
a03c82564d feat Add scroll behavior controls on router navigation
c25d749d85 feat Execute RunGuardsAndResolvers function in injection context
c84d372778 feat Support wildcard params with segments trailing (#64737)

20.3.14 (2025-11-25)

http

Commit Type Description
0276479e7d fix prevent XSRF token leakage to protocol-relative URLs

21.0.1 (2025-11-25)

compiler-cli

| Commit | Type | Description |

... (truncated)

Commits
  • 05fe668 fix(http): prevent XSRF token leakage to protocol-relative URLs
  • 12e2302 build: update common's locales to use rules_js (#61630)
  • 9701047 test(common): Add circular deps test to 19.2.x (#61651)
  • 2c876b4 fix(common): avoid injecting ApplicationRef in FetchBackend (#61649)
  • 8e54b57 build: move private testing helpers outside platform-browser/testing (#61571)
  • 2b1b14f fix(core): cleanup rxResource abort listener (#58306)
  • 126efc9 fix(common): cancel reader when app is destroyed (#61528)
  • efda872 fix(common): prevent reading chunks if app is destroyed (#61354)
  • c43fd3a build: migrate common to use rules_js based toolchain (#61434)
  • 185b780 build: migrate packages/core/schematics to ts_project (#61420)
  • Additional commits viewable in compare view

Updates @angular/compiler from 17.3.12 to 19.2.17

Release notes

Sourced from @​angular/compiler's releases.

19.2.17

compiler

Commit Description
fix - 7c42e2ebeb prevent XSS via SVG animation attributeName and MathML/SVG URLs

19.2.16

http

Commit Description
fix - 05fe6686a9 prevent XSRF token leakage to protocol-relative URLs

19.2.15

core

Commit Description
fix - 70d0639bc1 introduce BootstrapContext for improved server bootstrapping (#63639)

Breaking Changes

core

  • The server-side bootstrapping process has been changed to eliminate the reliance on a global platform injector.

    Before:

    const bootstrap = () => bootstrapApplication(AppComponent, config);

    After:

    const bootstrap = (context: BootstrapContext) =>
  bootstrapApplication(AppComponent, config, context);

    A schematic is provided to automatically update main.server.ts files to pass the BootstrapContext to the bootstrapApplication call.

    In addition, getPlatform() and destroyPlatform() will now return null and be a no-op respectively when running in a server environment.

For more information please see: GHSA-68x2-mx4q-78m7

19.2.14

compiler

Commit Description
fix - 24bab55f0c lexer support for template literals in object literals (#61601)

migrations

Commit Description
fix - 9e1cd49662 preserve comments when removing unused imports (#61674)

19.2.13

... (truncated)

Changelog

Sourced from @​angular/compiler's changelog.

19.2.17 (2025-12-01)

compiler

Commit Type Description
7c42e2ebeb fix prevent XSS via SVG animation attributeName and MathML/SVG URLs

19.2.16 (2025-11-26)

http

Commit Type Description
05fe6686a9 fix prevent XSRF token leakage to protocol-relative URLs

21.1.0-next.0 (2025-11-25)

platform-browser

Commit Type Description
ec9dc94cee feat add context to createApplication
ab67988d2e feat resolve JIT resources in createApplication

router

Commit Type Description
a03c82564d feat Add scroll behavior controls on router navigation
c25d749d85 feat Execute RunGuardsAndResolvers function in injection context
c84d372778 feat Support wildcard params with segments trailing (#64737)

20.3.14 (2025-11-25)

http

| Commit | Type | Description |

... (truncated)

Commits
  • 7c42e2e fix(compiler): prevent XSS via SVG animation attributeName and MathML/SVG URLs
  • 24bab55 fix(compiler): lexer support for template literals in object literals (#61601)
  • fc2483e refactor(compiler): avoid duplication between FactoryTarget type (#61571)
  • 8e54b57 build: move private testing helpers outside platform-browser/testing (#61571)
  • 44bb328 fix(compiler): avoid conflicts between HMR code and local symbols (#61550)
  • 1007079 build: update compiler-cli to not be stamped when used for the compiler in ng...
  • 0d025c5 build: support new ng_project rule (#61336)
  • 899cb4a refactor: add explicit types for exports relying on inferred call return type...
  • 1312eb1 build: remove irrelevant madge circular deps tests (#61209)
  • 964b261 refactor(compiler): improve stringify (#60013)
  • Additional commits viewable in compare view

Updates @angular/common from 17.3.12 to 21.0.6

Release notes

Sourced from @​angular/common's releases.

19.2.16

http

Commit Description
fix - 05fe6686a9 prevent XSRF token leakage to protocol-relative URLs

19.2.15

core

Commit Description
fix - 70d0639bc1 introduce BootstrapContext for improved server bootstrapping (#63639)

Breaking Changes

core

  • The server-side bootstrapping process has been changed to eliminate the reliance on a global platform injector.

    Before:

    const bootstrap = () => bootstrapApplication(AppComponent, config);

    After:

    const bootstrap = (context: BootstrapContext) =>
  bootstrapApplication(AppComponent, config, context);

    A schematic is provided to automatically update main.server.ts files to pass the BootstrapContext to the bootstrapApplication call.

    In addition, getPlatform() and destroyPlatform() will now return null and be a no-op respectively when running in a server environment.

For more information please see: GHSA-68x2-mx4q-78m7

19.2.14

compiler

Commit Description
fix - 24bab55f0c lexer support for template literals in object literals (#61601)

migrations

Commit Description
fix - 9e1cd49662 preserve comments when removing unused imports (#61674)

19.2.13

common

Commit Description
fix - 2c876b4fc5 avoid injecting ApplicationRef in FetchBackend (#61649)

service-worker

| Commit | Description |

... (truncated)

Changelog

Sourced from @​angular/common's changelog.

19.2.16 (2025-11-26)

http

Commit Type Description
05fe6686a9 fix prevent XSRF token leakage to protocol-relative URLs

21.1.0-next.0 (2025-11-25)

platform-browser

Commit Type Description
ec9dc94cee feat add context to createApplication
ab67988d2e feat resolve JIT resources in createApplication

router

Commit Type Description
a03c82564d feat Add scroll behavior controls on router navigation
c25d749d85 feat Execute RunGuardsAndResolvers function in injection context
c84d372778 feat Support wildcard params with segments trailing (#64737)

20.3.14 (2025-11-25)

http

Commit Type Description
0276479e7d fix prevent XSRF token leakage to protocol-relative URLs

21.0.1 (2025-11-25)

compiler-cli

| Commit | Type | Description |

... (truncated)

Commits
  • 05fe668 fix(http): prevent XSRF token leakage to protocol-relative URLs
  • 12e2302 build: update common's locales to use rules_js (#61630)
  • 9701047 test(common): Add circular deps test to 19.2.x (#61651)
  • 2c876b4 fix(common): avoid injecting ApplicationRef in FetchBackend (#61649)
  • 8e54b57 build: move private testing helpers outside platform-browser/testing (#61571)
  • 2b1b14f fix(core): cleanup rxResource abort listener (#58306)
  • 126efc9 fix(common): cancel reader when app is destroyed (#61528)
  • efda872 fix(common): prevent reading chunks if app is destroyed (#61354)
  • c43fd3a build: migrate common to use rules_js based toolchain (#61434)
  • 185b780 build: migrate packages/core/schematics to ts_project (#61420)
  • Additional commits viewable in compare view

Updates @angular/compiler from 17.3.12 to 21.0.6

Release notes

Sourced from @​angular/compiler's releases.

19.2.17

compiler

Commit Description
fix - 7c42e2ebeb prevent XSS via SVG animation attributeName and MathML/SVG URLs

19.2.16

http

Commit Description
fix - 05fe6686a9 prevent XSRF token leakage to protocol-relative URLs

19.2.15

core

Commit Description
fix - 70d0639bc1 introduce BootstrapContext for improved server bootstrapping (#63639)

Breaking Changes

core

  • The server-side bootstrapping process has been changed to eliminate the reliance on a global platform injector.

    Before:

    const bootstrap = () => bootstrapApplication(AppComponent, config);

    After:

    const bootstrap = (context: BootstrapContext) =>
  bootstrapApplication(AppComponent, config, context);

    A schematic is provided to automatically update main.server.ts files to pass the BootstrapContext to the bootstrapApplication call.

    In addition, getPlatform() and destroyPlatform() will now return null and be a no-op respectively when running in a server environment.

For more information please see: GHSA-68x2-mx4q-78m7

19.2.14

compiler

Commit Description
fix - 24bab55f0c lexer support for template literals in object literals (#61601)

migrations

Commit Description
fix - 9e1cd49662 preserve comments when removing unused imports (#61674)

19.2.13

... (truncated)

Changelog

Sourced from

@dependabot
Bump the npm_and_yarn group across 2 directories with 4 updates
4b50a5f 
Bumps the npm_and_yarn group with 4 updates in the / directory: [@angular/common](https://github.com/angular/angular/tree/HEAD/packages/common), [@angular/compiler](https://github.com/angular/angular/tree/HEAD/packages/compiler), [js-yaml](https://github.com/nodeca/js-yaml) and [jws](https://github.com/brianloveswords/node-jws).
Bumps the npm_and_yarn group with 2 updates in the /web directory: [@angular/common](https://github.com/angular/angular/tree/HEAD/packages/common) and [@angular/compiler](https://github.com/angular/angular/tree/HEAD/packages/compiler).


Updates `@angular/common` from 17.3.12 to 19.2.16
- [Release notes](https://github.com/angular/angular/releases)
- [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular/commits/19.2.16/packages/common)

Updates `@angular/compiler` from 17.3.12 to 19.2.17
- [Release notes](https://github.com/angular/angular/releases)
- [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular/commits/19.2.17/packages/compiler)

Updates `js-yaml` from 4.1.0 to 4.1.1
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](nodeca/js-yaml@4.1.0...4.1.1)

Updates `js-yaml` from 3.14.1 to 3.14.2
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](nodeca/js-yaml@4.1.0...4.1.1)

Updates `jws` from 4.0.0 to 4.0.1
- [Release notes](https://github.com/brianloveswords/node-jws/releases)
- [Changelog](https://github.com/auth0/node-jws/blob/master/CHANGELOG.md)
- [Commits](auth0/node-jws@v4.0.0...v4.0.1)

Updates `jws` from 3.2.2 to 3.2.3
- [Release notes](https://github.com/brianloveswords/node-jws/releases)
- [Changelog](https://github.com/auth0/node-jws/blob/master/CHANGELOG.md)
- [Commits](auth0/node-jws@v4.0.0...v4.0.1)

Updates `@angular/common` from 17.3.12 to 19.2.16
- [Release notes](https://github.com/angular/angular/releases)
- [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular/commits/19.2.16/packages/common)

Updates `@angular/compiler` from 17.3.12 to 19.2.17
- [Release notes](https://github.com/angular/angular/releases)
- [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular/commits/19.2.17/packages/compiler)

Updates `@angular/common` from 17.3.12 to 21.0.6
- [Release notes](https://github.com/angular/angular/releases)
- [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular/commits/19.2.16/packages/common)

Updates `@angular/compiler` from 17.3.12 to 21.0.6
- [Release notes](https://github.com/angular/angular/releases)
- [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular/commits/19.2.17/packages/compiler)

---
updated-dependencies:
- dependency-name: "@angular/common"
  dependency-version: 19.2.16
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@angular/compiler"
  dependency-version: 19.2.17
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: js-yaml
  dependency-version: 4.1.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: js-yaml
  dependency-version: 3.14.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: jws
  dependency-version: 4.0.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: jws
  dependency-version: 3.2.3
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@angular/common"
  dependency-version: 19.2.16
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@angular/compiler"
  dependency-version: 19.2.17
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@angular/common"
  dependency-version: 21.0.6
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@angular/compiler"
  dependency-version: 21.0.6
  dependency-type: direct:production
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Dec 18, 2025
@dependabot dependabot bot mentioned this pull request Dec 18, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rfontanarosa