From 215202303d773923fdbc5f6623da65bf281a7425 Mon Sep 17 00:00:00 2001 From: Santeri Hiltunen Date: Wed, 12 Jun 2024 12:28:38 +0300 Subject: [PATCH 1/2] Disable dependabot for now --- .github/dependabot.yml | 40 ++++++++++++++++++++-------------------- 1 file changed, 20 insertions(+), 20 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index c38ab82..fe88922 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,23 +1,23 @@ # https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates -version: 2 -updates: - - package-ecosystem: "npm" - directory: "/" - versioning-strategy: increase-if-necessary - schedule: - interval: "weekly" - groups: - development-dependencies: - dependency-type: development - production-dependencies: - dependency-type: production +# version: 2 +# updates: +# - package-ecosystem: "npm" +# directory: "/" +# versioning-strategy: increase-if-necessary +# schedule: +# interval: "weekly" +# groups: +# development-dependencies: +# dependency-type: development +# production-dependencies: +# dependency-type: production - - package-ecosystem: "github-actions" - directory: "/" - groups: - all-actions: - patterns: - - "*" - schedule: - interval: "monthly" +# - package-ecosystem: "github-actions" +# directory: "/" +# groups: +# all-actions: +# patterns: +# - "*" +# schedule: +# interval: "monthly" From dcbebad0b41742024e6f3d6f497a105ed8a730dd Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 17 Jun 2024 09:50:29 +0000 Subject: [PATCH 2/2] Bump protobufjs in the production-dependencies group across 1 directory Bumps the production-dependencies group with 1 update in the / directory: [protobufjs](https://github.com/protobufjs/protobuf.js). Updates `protobufjs` from 7.2.6 to 7.3.2 - [Release notes](https://github.com/protobufjs/protobuf.js/releases) - [Changelog](https://github.com/protobufjs/protobuf.js/blob/master/CHANGELOG.md) - [Commits](https://github.com/protobufjs/protobuf.js/compare/protobufjs-v7.2.6...protobufjs-v7.3.2) --- updated-dependencies: - dependency-name: protobufjs dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] --- package-lock.json | 8 ++++---- packages/libpg-query-wasm/package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 54ad4b7..b9ac142 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1322,9 +1322,9 @@ "link": true }, "node_modules/protobufjs": { - "version": "7.2.6", - "resolved": "https://registry.npmjs.org/protobufjs/-/protobufjs-7.2.6.tgz", - "integrity": "sha512-dgJaEDDL6x8ASUZ1YqWciTRrdOuYNzoOf27oHNfdyvKqHr5i0FV7FSLU+aIeFjyFgVxrpTOtQUi0BLLBymZaBw==", + "version": "7.3.2", + "resolved": "https://registry.npmjs.org/protobufjs/-/protobufjs-7.3.2.tgz", + "integrity": "sha512-RXyHaACeqXeqAKGLDl68rQKbmObRsTIn4TYVUUug1KfS47YWCo5MacGITEryugIgZqORCvJWEk4l449POg5Txg==", "hasInstallScript": true, "dependencies": { "@protobufjs/aspromise": "^1.1.2", @@ -1716,7 +1716,7 @@ "version": "0.2.1", "license": "BSD-3-Clause", "dependencies": { - "protobufjs": "~7.2.5" + "protobufjs": "~7.3.2" }, "devDependencies": { "protobufjs-cli": "^1.1.2" diff --git a/packages/libpg-query-wasm/package.json b/packages/libpg-query-wasm/package.json index eedefc4..27f70d8 100644 --- a/packages/libpg-query-wasm/package.json +++ b/packages/libpg-query-wasm/package.json @@ -53,7 +53,7 @@ "test:readme": "txm Readme.md" }, "dependencies": { - "protobufjs": "~7.2.5" + "protobufjs": "~7.3.2" }, "devDependencies": { "protobufjs-cli": "^1.1.2"