Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump xmldom and web-ext #12

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 12, 2022

Removes xmldom. It's no longer used after updating ancestor dependency web-ext. These dependencies need to be updated together.

Removes xmldom

Updates web-ext from 3.0.0 to 3.2.1

Release notes

Sourced from web-ext's releases.

3.2.1

Bug Fixes

  • Increased web-ext sign default timeout (#1748)

See all changes: 3.2.0...3.2.1

3.2.0

Features

  • web-ext run --target chromium can now be used to run a WebExtension on Chromium-based browsers (by default web-ext will search and run Google Chrome, --chromium-binary BINARY_PATH can be used to run a specific Chromium-based browser, including Brave, Edge, Opera or Vivaldi) (#1392)
  • web-ext commands are now showing a code frame when parsing manifest.json or messages.json files fails (thanks to parse-json dependency updated to v5)
  • Updated web-ext lint to use addons-linter version 1.14.0:
    • Imported Firefox 70 APIs schema
    • Imported Firefox 69 APIs schema
    • Updated mdn-browser-compat-data to v.0.0.94
    • Support linting for all icons in manifest.json (#2677)
    • Support linting CRX3 files (#2621)
    • Limit extension id to 255 chars max to match AMO limit on submissions (#2643)
    • See all addons-linter changes: 1.10.0...1.14.0

Bug Fixes

  • web-ext now strips the UTF-8 BOM before parsing manifest.json/messages.json (#1712, closes #1013)
  • web-ext run is now choosing a random free tcp port for the Firefox Desktop remote debugging server (#1669, closes #1509), use web-ext run --verbose ... if you need to know which port Firefox Desktop is listening on
  • Updated dependencies:
    • yargs v13.3.0 (#1658)
    • Changed npm dependency from opn to open (#1715)
    • Changed npm dependency from require-uncached to import-fresh (#1691)
    • node-notifier v6 (#1710)
    • source-map-support v0.5.13 (#1671)

See all changes: 3.1.1...3.2.0

3.1.1

Bug Fixes

  • Added explicit validation of the choices supported by the --target option (#1644) (739aa52)
  • Fixed regression on supporting multiple values after --ignore-files/-i (#1652) (ff0ffa5)
  • Updated dependencis:
    • fx-runner to v1.0.11 (e2537d9), fixes #1659 (npm audit failure, security advisor related lodash dependency)
    • update-notifier to v3.0.1 (#1646) (72bb28c)

See all changes: 3.1.0...3.1.1

3.1.0

Features

... (truncated)

Commits
  • 97670ad chore(audit): Add handlebars advisory to nsprc ignore list (#1750) (#1751)
  • 9f2d9c0 chore: Bump package version for release 3.2.1
  • 7aa8660 fix: Backported longer sign command timeout from sign-addon 1.0.0
  • 20cc8c2 test: Disabled code coverage collection on Travis windows workers (#1742)
  • e315c93 chore: Bump package version for release 3.2.0
  • 16cf22f chore(flow): 'flow ignored' promisify.custom uknown type signature error
  • af243be chore(deps): update dependency flow-bin to v0.108.0
  • 70e4d0e chore(flow): Fixed new flow-check errors detected by flow 0.108.0 (#1718)
  • 155bdfa chore: Minor tweaks to the messages logged for JSON parsing errors
  • a44e350 fix(deps): update dependency parse-json to v5
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Removes [xmldom](https://github.com/xmldom/xmldom). It's no longer used after updating ancestor dependency [web-ext](https://github.com/mozilla/web-ext). These dependencies need to be updated together.


Removes `xmldom`

Updates `web-ext` from 3.0.0 to 3.2.1
- [Release notes](https://github.com/mozilla/web-ext/releases)
- [Commits](mozilla/web-ext@3.0.0...3.2.1)

---
updated-dependencies:
- dependency-name: xmldom
  dependency-type: indirect
- dependency-name: web-ext
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants