Skip to content
This repository has been archived by the owner on Sep 29, 2024. It is now read-only.

Bump braces, vinyl-fs and gulp-load-plugins #24

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Apr 23, 2023

Bumps braces to 2.3.1 and updates ancestor dependencies braces, vinyl-fs and gulp-load-plugins. These dependencies need to be updated together.

Updates braces from 1.8.5 to 2.3.1

Changelog

Sourced from braces's changelog.

[2.3.1] - 2018-02-17

  • Remove unnecessary escape in Regex. (#14)

[2.3.0] - 2017-10-19

  • minor code reorganization
  • optimize regex
  • expose maxLength option

[2.2.1] - 2017-05-30

  • don't condense when braces contain extglobs

[2.2.0] - 2017-05-28

  • ensure word boundaries are preserved
  • fixes edge case where extglob characters precede a brace pattern

[2.1.1] - 2017-04-27

  • use snapdragon-node
  • handle edge case
  • optimizations, lint

[2.0.4] - 2017-04-11

  • pass opts to compiler
  • minor optimization in create method
  • re-write parser handlers to remove negation regex

[2.0.3] - 2016-12-10

  • use split-string
  • clear queue at the end
  • adds sequences example
  • add unit tests

[2.0.2] - 2016-10-21

  • fix comma handling in nested extglobs

[2.0.1] - 2016-10-20

  • add comments
  • more tests, ensure quotes are stripped

[2.0.0] - 2016-10-19

  • don't expand braces inside character classes

... (truncated)

Commits

Updates vinyl-fs from 2.4.4 to 3.0.2

Release notes

Sourced from vinyl-fs's releases.

v3.0.2

Fix

  • Avoid node internals for our WriteStream (167d8ff) - Closes #295

Build

  • Add node 9 to CI matrices (62d1969)

v3.0.1

Fix

  • Temporarily marshall old Vinyl objects to latest version in dest/symlink (bbfb50c)

Docs

v3.0.0

Breaking

  • Utilize vinyl-prepare & vinyl-sourcemap dependencies (af035a5) - Closes #193
  • Consistent modules names (7fd3190)
  • Improve symlink/junction behaviour (4b15227)
  • Rename relative option to relativeSymlinks (09379ba) - Closes #251
  • Rename stripBOM option to removeBOM (bfb56cd)
  • Remove flag property leakage on Vinyl objects (de1eced)
  • Handle overwrite option in symlink to be consistent with dest (08d33fb)
  • Remove ability to pass options to through2 (5fcdf3a)
  • Remove passthrough option & infer readable or passthrough (325a784)
  • Replace flag option with append option (e739f6c)
  • Default to using Junctions on Windows (40ac6e9) - Closes #210 #231
  • Rename option followSymlinks to resolveSymlinks (20fc47c) - Closes #205
  • Consistent directory layout (8dfe08b)
  • Upgrade Vinyl to 2.0.0 (5dc079c)
  • Added support for changing uid/gid on disk (7fc8509) - Closes #157 #188
  • Remove base option from dest/symlink options, use functions for folder instead (7abaf4d) - Closes #141
  • Remove superfluous argument from write-xxx modules & use file.path instead (501673b)
  • Throw when dest()/symlink() is called with invalid folder argument & unskip tests (462fee5)

Fix

  • Use explicit chmod to ensure setgid permission can be set & account for umask with default mode (8eb33dc) - Closes #183 #185
  • Avoid file.isDirectory in useJunctions default (a741486) - Closes #247 #252
  • Remove lodash.isequal dependency due to changed behavior (94f7ac7)
  • Use the sink stream utility to sink symlink stream (7a16a0b) - Closes #195
  • Use custom implementation of fs.WriteStream that supports flush (483d1cc) - Closes #189
  • Avoid setting a position in custom write stream (81f343b) - Closes #202 #203
  • Properly handle file in mkdirp path (3087b78) - Closes #181

... (truncated)

Commits

Updates gulp-load-plugins from 1.5.0 to 1.6.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [braces](https://github.com/micromatch/braces) to 2.3.1 and updates ancestor dependencies [braces](https://github.com/micromatch/braces), [vinyl-fs](https://github.com/gulpjs/vinyl-fs) and [gulp-load-plugins](https://github.com/jackfranklin/gulp-load-plugins). These dependencies need to be updated together.


Updates `braces` from 1.8.5 to 2.3.1
- [Release notes](https://github.com/micromatch/braces/releases)
- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md)
- [Commits](micromatch/braces@1.8.5...2.3.1)

Updates `vinyl-fs` from 2.4.4 to 3.0.2
- [Release notes](https://github.com/gulpjs/vinyl-fs/releases)
- [Commits](gulpjs/vinyl-fs@v2.4.4...v3.0.2)

Updates `gulp-load-plugins` from 1.5.0 to 1.6.0
- [Release notes](https://github.com/jackfranklin/gulp-load-plugins/releases)
- [Commits](jackfranklin/gulp-load-plugins@1.5.0...1.6.0)

---
updated-dependencies:
- dependency-name: braces
  dependency-type: indirect
- dependency-name: vinyl-fs
  dependency-type: indirect
- dependency-name: gulp-load-plugins
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 23, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants