Bump cookie, @aws-amplify/ui-react, aws-amplify and express #269

dependabot · 2024-10-10T20:04:27Z

Bumps cookie to 0.7.1 and updates ancestor dependencies cookie, @aws-amplify/ui-react, aws-amplify and express. These dependencies need to be updated together.

Updates cookie from 0.4.2 to 0.7.1

Release notes

Sourced from cookie's releases.

0.7.1

Fixed

Allow leading dot for domain (#174)

Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec

Add fast path for serialize without options, use obj.hasOwnProperty when parsing (#172)

jshttp/cookie@v0.7.0...v0.7.1

0.7.0

perf: parse cookies ~10% faster (#144 by @kurtextrem and #170)

fix: narrow the validation of cookies to match RFC6265 (#167 by @bewinsnw)

fix: add main to package.json for rspack (#166 by @proudparrot2)

jshttp/cookie@v0.6.0...v0.7.0

0.6.0

Add partitioned option

0.5.0

Add priority option

Fix expires option to reject invalid dates

pref: improve default decode speed

pref: remove slow string split in parse

Commits

cf4658f 0.7.1
6a8b8f5 Allow leading dot for domain (#174)
58015c0 Remove more code and perf wins (#172)
ab057d6 0.7.0
5f02ca8 Migrate history to GitHub releases
a5d591c Migrate history to GitHub releases
51968f9 Skip isNaN
9e7ca51 perf(parse): cache length, return early (#144)
d6f39b0 Fix tests for old node
6bb701f Remove failing scorecard
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by blakeembrey, a new releaser for cookie since your current version.

Updates @aws-amplify/ui-react from 3.6.1 to 6.5.3

Release notes

Sourced from @aws-amplify/ui-react's releases.

@aws-amplify/ui-react@6.5.3

Patch Changes

Updated dependencies [0d86485fc]:

@aws-amplify/ui@6.6.3

@aws-amplify/ui-react-core@3.0.27

@aws-amplify/ui-react@6.5.2

Patch Changes

#5849 22e285f58 Thanks @calebpollman! - chore(utils): prefer isFunction

#5830 545aa6a60 Thanks @calebpollman! - chore(rollup): upgrade rollup deps, migrate to mjs config file, enforce linting on mjs files

#5853 87d74a7de Thanks @calebpollman! - fix(deps): remove @aws-amplify/core devDep from react-core

Updated dependencies [22e285f58, 545aa6a60, 87d74a7de]:

@aws-amplify/ui-react-core@3.0.26

@aws-amplify/ui@6.6.2

@aws-amplify/ui-react@6.5.1

Patch Changes
#5796 bf9dbc334 Thanks @esauerbo! - chore(deps): Fix transitive dependencies.
#5825 3a677a1af Thanks @dbanksdesign! - feat(theming): add global style ability (experimental)

Adding the ability to create global styles with the experimental theming APIs
<GlobalStyle styles={{
  'body': {
    backgroundColor: 'purple'
    // supports design tokens!
    color: theme.tokens.colors.font.primary
  }
}} />
Updated dependencies [bf9dbc334, 3a677a1af]:

@aws-amplify/ui-react-core@3.0.25

@aws-amplify/ui@6.6.1
@aws-amplify/ui-react@6.5.0

Minor Changes
#5812 0ddeea9d4 Thanks @dbanksdesign! - feat(theming) add custom component style rendering
const customComponentTheme = defineComponentTheme({

... (truncated)

Changelog

Sourced from @aws-amplify/ui-react's changelog.

6.5.3

Patch Changes

Updated dependencies [0d86485fc]:

@aws-amplify/ui@6.6.3

@aws-amplify/ui-react-core@3.0.27

6.5.2

Patch Changes

#5849 22e285f58 Thanks @calebpollman! - chore(utils): prefer isFunction

#5830 545aa6a60 Thanks @calebpollman! - chore(rollup): upgrade rollup deps, migrate to mjs config file, enforce linting on mjs files

#5853 87d74a7de Thanks @calebpollman! - fix(deps): remove @aws-amplify/core devDep from react-core

Updated dependencies [22e285f58, 545aa6a60, 87d74a7de]:

@aws-amplify/ui-react-core@3.0.26

@aws-amplify/ui@6.6.2

6.5.1

Patch Changes
#5796 bf9dbc334 Thanks @esauerbo! - chore(deps): Fix transitive dependencies.
#5825 3a677a1af Thanks @dbanksdesign! - feat(theming): add global style ability (experimental)

Adding the ability to create global styles with the experimental theming APIs
<GlobalStyle styles={{
  'body': {
    backgroundColor: 'purple'
    // supports design tokens!
    color: theme.tokens.colors.font.primary
  }
}} />
Updated dependencies [bf9dbc334, 3a677a1af]:

@aws-amplify/ui-react-core@3.0.25

@aws-amplify/ui@6.6.1
6.5.0

Minor Changes

... (truncated)

Commits

9ac7b8d Version Packages (#5871)
6f76f9c Version Packages (#5842)
87d74a7 fix(deps): remove @aws-amplify/core devDep from react-core (#5853)
8b4a28b feat(ai-conversation): add allowAttachments prop (#5802)
22e285f chore(utils): prefer isFunction (#5849)
545aa6a chore(rollup): upgrade rollup deps, migrate to mjs config file, enforce linti...
8822de9 Version Packages (#5828)
bf9dbc3 chore(deps): Fix transitive dependencies (#5796)
3a677a1 feat(theming): add global style ability (#5825)
c855f47 Version Packages (#5809)
Additional commits viewable in compare view

Updates aws-amplify from 5.3.19 to 6.6.4

Release notes

Sourced from aws-amplify's releases.

2024-09-30 Amplify JS release - [email protected]

What's Changed

chore(deps-dev): bump next from 14.2.6 to 14.2.10 by @dependabot in aws-amplify/amplify-js#13822

chore: Merge release into main by @aws-amplify-ops in aws-amplify/amplify-js#13821

fix(storage): md5 calculation for react native by @ashwinkumar6 in aws-amplify/amplify-js#13836

feat(auth): Enable resumable SignIn by @joon-won in aws-amplify/amplify-js#13483

chore(deps-dev): bump rollup from 4.21.1 to 4.22.4 by @dependabot in aws-amplify/amplify-js#13843

[Chore] Refactor Storage Options by @ashika112 in aws-amplify/amplify-js#13613

Revert "feat(auth): Enable resumable SignIn" by @joon-won in aws-amplify/amplify-js#13855

fix(rtn-web-browser): prevent CustomTab to show in recent used app by @AnantTiwari001 in aws-amplify/amplify-js#13847

fix(auth): remove redundant remove guest identityId call by @HuiSF in aws-amplify/amplify-js#13789

release(required): Amplify JS release by @HuiSF in aws-amplify/amplify-js#13862

New Contributors

@AnantTiwari001 made their first contribution in aws-amplify/amplify-js#13847

Full Changelog: https://github.com/aws-amplify/amplify-js/compare/[email protected]@6.6.3

2024-09-16 Amplify JS release - [email protected]

What's Changed

release(required): Revert "Reapply "feat(core): resolve webcrypto from node:crypto for Node18 (#13599)" (#13775)" by @HuiSF in aws-amplify/amplify-js#13820

Full Changelog: https://github.com/aws-amplify/amplify-js/compare/[email protected]@6.6.2

2024-09-16 Amplify JS release - [email protected]

What's Changed

chore: Merge release into main by @aws-amplify-ops in aws-amplify/amplify-js#13783

Reapply "feat(core): resolve webcrypto from node:crypto for Node18 (#13599)" by @HuiSF in aws-amplify/amplify-js#13775

fix(auth): custom userPoolEndpoint cannot be applied on the server-side by @HuiSF in aws-amplify/amplify-js#13739

chore: Update GraphQL configuration shape to expect AI routes by @cshfang in aws-amplify/amplify-js#13799

chore(deps): bump serve-static from 1.15.0 to 1.16.2 by @dependabot in aws-amplify/amplify-js#13805

release(required): Amplify JS release by @Samaritan1011001 in aws-amplify/amplify-js#13814

Full Changelog: https://github.com/aws-amplify/amplify-js/compare/[email protected]@6.6.1

2024-09-04 Amplify JS release - [email protected]

What's Changed

chore(deps): bump micromatch from 4.0.7 to 4.0.8 by @dependabot in aws-amplify/amplify-js#13755

Chore: Update Dependency review config by @ashika112 in aws-amplify/amplify-js#13756

feat(api-graphql): pass authToken via subprotocol by @iartemiev in aws-amplify/amplify-js#13727

feat: Label automation workflows & old workflow cleanup by @jimblanc in aws-amplify/amplify-js#13734

feat(auth): HostedUI oidc signout by @Samaritan1011001 in aws-amplify/amplify-js#13512

fix: update yarn lock file with correct versions by @Samaritan1011001 in aws-amplify/amplify-js#13778

release: Amplify JS release by @jimblanc in aws-amplify/amplify-js#13782

Full Changelog: https://github.com/aws-amplify/amplify-js/compare/[email protected]@6.6.0

2024-09-03 Amplify JS release - [email protected]

... (truncated)

Commits

1d4c5c8 chore(release): Publish [skip release]
bf47c11 chore(release): Set core metadata [skip release]
4281eb7 release(required): Amplify JS release (#13883)
e921e11 chore: add Apache-2.0 AND MIT as allowed license (#13865)
6891c04 (feat): Add granular user agent for Ai (#13835)
865847e Merge branch 'main' into yuhengsh-feat/add-granular-user-agent
c1078f9 update yarn.lock
3ee8932 chore: Merge release into main (#13867)
80e3a45 Merge branch 'main' into temp/release-merge-1727732177
c7d8ca3 chore(release): Update API docs [skip release]
Additional commits viewable in compare view

Updates express from 4.21.0 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1

What's Changed

Backport a fix for CVE-2024-47764 to the 4.x branch by @joshbuker in expressjs/express#6029

Release: 4.21.1 by @UlisesGascon in expressjs/express#6031

Full Changelog: expressjs/express@4.21.0...4.21.1

Changelog

Sourced from express's changelog.

4.21.1 / 2024-10-08

Backported a fix for CVE-2024-47764

Commits

8e229f9 4.21.1
a024c8a fix(deps): [email protected]
See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
@aws-amplify/ui-react	[>= 6.a, < 7]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [cookie](https://github.com/jshttp/cookie) to 0.7.1 and updates ancestor dependencies [cookie](https://github.com/jshttp/cookie), [@aws-amplify/ui-react](https://github.com/aws-amplify/amplify-ui/tree/HEAD/packages/react), [aws-amplify](https://github.com/aws-amplify/amplify-js) and [express](https://github.com/expressjs/express). These dependencies need to be updated together. Updates `cookie` from 0.4.2 to 0.7.1 - [Release notes](https://github.com/jshttp/cookie/releases) - [Commits](jshttp/cookie@v0.4.2...v0.7.1) Updates `@aws-amplify/ui-react` from 3.6.1 to 6.5.3 - [Release notes](https://github.com/aws-amplify/amplify-ui/releases) - [Changelog](https://github.com/aws-amplify/amplify-ui/blob/main/packages/react/CHANGELOG.md) - [Commits](https://github.com/aws-amplify/amplify-ui/commits/@aws-amplify/[email protected]/packages/react) Updates `aws-amplify` from 5.3.19 to 6.6.4 - [Release notes](https://github.com/aws-amplify/amplify-js/releases) - [Commits](https://github.com/aws-amplify/amplify-js/compare/[email protected]@6.6.4) Updates `express` from 4.21.0 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](expressjs/express@4.21.0...4.21.1) --- updated-dependencies: - dependency-name: cookie dependency-type: indirect - dependency-name: "@aws-amplify/ui-react" dependency-type: direct:production - dependency-name: aws-amplify dependency-type: direct:production - dependency-name: express dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-11-06T18:20:07Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added the dependencies Pull requests that update a dependency file label Oct 10, 2024

dependabot bot closed this Nov 6, 2024

dependabot bot deleted the dependabot/npm_and_yarn/multi-e1fa6b6e97 branch November 6, 2024 18:20

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump cookie, @aws-amplify/ui-react, aws-amplify and express #269

Bump cookie, @aws-amplify/ui-react, aws-amplify and express #269

dependabot bot commented on behalf of github Oct 10, 2024 •

edited

Loading

dependabot bot commented on behalf of github Nov 6, 2024

Bump cookie, @aws-amplify/ui-react, aws-amplify and express #269

Bump cookie, @aws-amplify/ui-react, aws-amplify and express #269

Conversation

dependabot bot commented on behalf of github Oct 10, 2024 • edited Loading

0.7.1

0.7.0

0.6.0

0.5.0

@​aws-amplify/ui-react@​6.5.3

Patch Changes

@​aws-amplify/ui-react@​6.5.2

Patch Changes

@​aws-amplify/ui-react@​6.5.1

Patch Changes

@​aws-amplify/ui-react@​6.5.0

Minor Changes

6.5.3

Patch Changes

6.5.2

Patch Changes

6.5.1

Patch Changes

6.5.0

Minor Changes

2024-09-30 Amplify JS release - [email protected]

What's Changed

New Contributors

2024-09-16 Amplify JS release - [email protected]

What's Changed

2024-09-16 Amplify JS release - [email protected]

What's Changed

2024-09-04 Amplify JS release - [email protected]

What's Changed

2024-09-03 Amplify JS release - [email protected]

4.21.1

What's Changed

4.21.1 / 2024-10-08

dependabot bot commented on behalf of github Nov 6, 2024

dependabot bot commented on behalf of github Oct 10, 2024 •

edited

Loading

`@aws-amplify/ui-react@6`.5.3

`@aws-amplify/ui-react@6`.5.2

`@aws-amplify/ui-react@6`.5.1

`@aws-amplify/ui-react@6`.5.0