[GitHub] [echarts-bar-racing] dependabot[bot] opened a new pull request, #4: chore(deps): bump json5 from 1.0.1 to 1.0.2
dependabot[bot] opened a new pull request, #4: URL: https://github.com/apache/echarts-bar-racing/pull/4 Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2. Release notes Sourced from https://github.com/json5/json5/releases;>json5's releases. v1.0.2 Fix: Properties with the name __proto__ are added to objects and arrays. (https://github-redirect.dependabot.com/json5/json5/issues/199;>#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (https://github-redirect.dependabot.com/json5/json5/issues/295;>#295). This has been backported to v1. (https://github-redirect.dependabot.com/json5/json5/issues/298;>#298) Changelog Sourced from https://github.com/json5/json5/blob/main/CHANGELOG.md;>json5's changelog. Unreleased [https://github.com/json5/json5/tree/main;>code, https://github.com/json5/json5/compare/v2.2.3...HEAD;>diff] v2.2.3 [https://github.com/json5/json5/tree/v2.2.3;>code, https://github.com/json5/json5/compare/v2.2.2...v2.2.3;>diff] Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (https://github-redirect.dependabot.com/json5/json5/issues/299;>#299) v2.2.2 [https://github.com/json5/json5/tree/v2.2.2;>code, https://github.com/json5/json5/compare/v2.2.1...v2.2.2;>diff] Fix: Properties with the name __proto__ are added to objects and arrays. (https://github-redirect.dependabot.com/json5/json5/issues/199;>#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (https://github-redirect.dependabot.com/json5/json5/issues/295;>#295). v2.2.1 [https://github.com/json5/json5/tree/v2.2.1;>code, https://github.com/json5/json5/compare/v2.2.0...v2.2.1;>diff] Fix: Removed dependence on minimist to patch CVE-2021-44906. (https://github-redirect.dependabot.com/json5/json5/issues/266;>#266) v2.2.0 [https://github.com/json5/json5/tree/v2.2.0;>code, https://github.com/json5/json5/compare/v2.1.3...v2.2.0;>diff] New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (https://github-redirect.dependabot.com/json5/json5/issues/236;>#236, https://github-redirect.dependabot.com/json5/json5/issues/244;>#244) v2.1.3 [https://github.com/json5/json5/tree/v2.1.3;>code, https://github.com/json5/json5/compare/v2.1.2...v2.1.3;>diff] Fix: An out of memory bug when parsing numbers has been fixed. (https://github-redirect.dependabot.com/json5/json5/issues/228;>#228, https://github-redirect.dependabot.com/json5/json5/issues/229;>#229) v2.1.2 [https://github.com/json5/json5/tree/v2.1.2;>code, https://github.com/json5/json5/compare/v2.1.1...v2.1.2;>diff] ... (truncated) Commits https://github.com/json5/json5/commit/a62db1e51e1031d92ac260f5bb38bbed1fdbc754;>a62db1e 1.0.2 https://github.com/json5/json5/commit/e0c23fe458a77c0b2cdb271376be5d8d0908133c;>e0c23fe docs: update CHANGELOG for v1.0.2 https://github.com/json5/json5/commit/62a65408408d40aeea14c7869ed327acead12972;>62a6540 fix: add proto to objects and arrays See full diff in https://github.com/json5/json5/compare/v1.0.1...v1.0.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=json5=npm_and_yarn=1.0.1=1.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this
[GitHub] [echarts-theme-builder] dependabot[bot] opened a new pull request, #39: Bump qs from 6.5.2 to 6.5.3
dependabot[bot] opened a new pull request, #39: URL: https://github.com/apache/echarts-theme-builder/pull/39 Bumps [qs](https://github.com/ljharb/qs) from 6.5.2 to 6.5.3. Changelog Sourced from https://github.com/ljharb/qs/blob/main/CHANGELOG.md;>qs's changelog. 6.5.3 [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428;>#428) [Fix] utils.merge: avoid a crash with a null target and a truthy non-array source [Fix] correctly parse nested arrays [Fix] stringify: fix a crash with strictNullHandling and a custom filter/serializeDate (https://github-redirect.dependabot.com/ljharb/qs/issues/279;>#279) [Fix] utils: merge: fix crash when source is a truthy primitive no options are provided [Fix] when parseArrays is false, properly handle keys ending in [] [Fix] fix for an impossible situation: when the formatter is called with a non-string value [Fix] utils.merge: avoid a crash with a null target and an array source [Refactor] utils: reduce observable [[Get]]s [Refactor] use cached Array.isArray [Refactor] stringify: Avoid arr = arr.concat(...), push to the existing instance (https://github-redirect.dependabot.com/ljharb/qs/issues/269;>#269) [Refactor] parse: only need to reassign the var once [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427;>#427) [readme] remove travis badge; add github actions/codecov badges; update URLs [Docs] Clean up license text so it’s properly detected as BSD-3-Clause [Docs] Clarify the need for arrayLimit option [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399;>#399) [meta] add FUNDING.yml [actions] backport actions from main [Tests] always use String(x) over x.toString() [Tests] remove nonexistent tape option [Dev Deps] backport from main Commits https://github.com/ljharb/qs/commit/298bfa55d6db00ddea78dd0333509aadf9bb3077;>298bfa5 v6.5.3 https://github.com/ljharb/qs/commit/ed0f5dcbef4b168a8ae299d78b1e4a2e9b1baf1f;>ed0f5dc [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428;>#428) https://github.com/ljharb/qs/commit/691e739cfa40cd42604dc05a54e6154371a429ab;>691e739 [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427;>#427) https://github.com/ljharb/qs/commit/1072d57d38a690e1ad7616dced44390bffedcbb2;>1072d57 [readme] remove travis badge; add github actions/codecov badges; update URLs https://github.com/ljharb/qs/commit/12ac1c403aaa04d1a34844f514ed9f9abfb76e64;>12ac1c4 [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399;>#399) https://github.com/ljharb/qs/commit/0338716b09fdbd4711823eeb0a14e556a2498e7a;>0338716 [actions] backport actions from main https://github.com/ljharb/qs/commit/5639c20ce0a7c1332200a3181339331483e5a3a1;>5639c20 Clean up license text so it’s properly detected as BSD-3-Clause https://github.com/ljharb/qs/commit/51b8a0b1b213596dd1702b837f5e7dec2229793d;>51b8a0b add FUNDING.yml https://github.com/ljharb/qs/commit/45f675936e742d92fac8d4dae5cfc385c576a977;>45f6759 [Fix] fix for an impossible situation: when the formatter is called with a no... https://github.com/ljharb/qs/commit/f814a7f8f2af059f8158f7e4b2bf8b46aeb62cd3;>f814a7f [Dev Deps] backport from main Additional commits viewable in https://github.com/ljharb/qs/compare/v6.5.2...v6.5.3;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=qs=npm_and_yarn=6.5.2=6.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any
[GitHub] [echarts-www] dependabot[bot] closed pull request #41: Bump braces and @babel/core
dependabot[bot] closed pull request #41: Bump braces and @babel/core URL: https://github.com/apache/echarts-www/pull/41 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] dependabot[bot] closed pull request #42: Bump glob-parent and @babel/core
dependabot[bot] closed pull request #42: Bump glob-parent and @babel/core URL: https://github.com/apache/echarts-www/pull/42 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] dependabot[bot] commented on pull request #41: Bump braces and @babel/core
dependabot[bot] commented on PR #41: URL: https://github.com/apache/echarts-www/pull/41#issuecomment-1343834851 Superseded by #45. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] dependabot[bot] opened a new pull request, #45: Bump braces and @babel/core
dependabot[bot] opened a new pull request, #45: URL: https://github.com/apache/echarts-www/pull/45 Bumps [braces](https://github.com/micromatch/braces) to 3.0.2 and updates ancestor dependency [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core). These dependencies need to be updated together. Updates `braces` from 1.8.5 to 3.0.2 Changelog Sourced from https://github.com/micromatch/braces/blob/master/CHANGELOG.md;>braces's changelog. Release history All notable changes to this project will be documented in this file. The format is based on http://keepachangelog.com/en/1.0.0/;>Keep a Changelog and this project adheres to http://semver.org/spec/v2.0.0.html;>Semantic Versioning. Changelogs are for humans, not machines. There should be an entry for every single version. The same types of changes should be grouped. Versions and sections should be linkable. The latest version comes first. The release date of each versions is displayed. Mention whether you follow Semantic Versioning. Changelog entries are classified using the following labels (from http://keepachangelog.com/;>keep-a-changelog): Added for new features. Changed for changes in existing functionality. Deprecated for soon-to-be removed features. Removed for now removed features. Fixed for any bug fixes. Security in case of vulnerabilities. [3.0.0] - 2018-04-08 v3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler. Breaking Changes The undocumented .makeRe method was removed Non-breaking changes Caching was removed [2.3.2] - 2018-04-08 start refactoring cover sets ... (truncated) Commits https://github.com/micromatch/braces/commit/25791512d219b284bd62bb068cae85d8e68bd05b;>2579151 3.0.2 https://github.com/micromatch/braces/commit/3c51342023661b8d07444509c32ce294b6cb43e7;>3c51342 3.0.1 https://github.com/micromatch/braces/commit/3d461a17d30689b5692da35fe1bd8727224a3274;>3d461a1 ensure brackets are matched https://github.com/micromatch/braces/commit/abcf3418f13b1082fccf65fa2f4a5afb9432f295;>abcf341 3.0.0 https://github.com/micromatch/braces/commit/68a3fdf75e1c234a568564230b27109c401d3a36;>68a3fdf refactor https://github.com/micromatch/braces/commit/bb5b5baa8de5131d9c802935df064e0d24e6d321;>bb5b5ba Remove appveyor from readme. https://github.com/micromatch/braces/commit/086008a104945dfa074177ad94fbad867935ccf5;>086008a travis: Drop sudo: false. https://github.com/micromatch/braces/commit/4ed704b01ba3fd5f613bc5fca0ff27bc3500894f;>4ed704b add unit tests https://github.com/micromatch/braces/commit/60eb9889bacdfe869f7ee044617252bc9f72e5ef;>60eb988 ranges https://github.com/micromatch/braces/commit/7b1abf0bed50fdbf7ab695520e67419204766237;>7b1abf0 Use proper nodejs versions for appveyor. Additional commits viewable in https://github.com/micromatch/braces/compare/1.8.5...3.0.2;>compare view Updates `@babel/core` from 7.0.0-beta.31 to 7.20.5 Release notes Sourced from https://github.com/babel/babel/releases;>@babel/core's releases. v7.20.5 (2022-11-28) Thanks https://github.com/davydof;>@davydof and https://github.com/SuperSodaSea;>@SuperSodaSea for your first PRs! :eyeglasses: Spec Compliance babel-helpers, babel-plugin-transform-destructuring, babel-plugin-transform-modules-commonjs, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15183;>#15183 Improve array destructuring spec compliance (https://github.com/SuperSodaSea;>@SuperSodaSea) babel-cli, babel-helpers, babel-plugin-proposal-class-properties, babel-plugin-proposal-class-static-block, babel-plugin-transform-classes, babel-plugin-transform-runtime, babel-preset-env https://github-redirect.dependabot.com/babel/babel/pull/15182;>#15182 fix: apply toPropertyKey when defining class members (https://github.com/JLHwung;>@JLHwung) babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-private-property-in-object, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime https://github-redirect.dependabot.com/babel/babel/pull/15133;>#15133 fix: validate rhs of in when transpiling #p in C (https://github.com/JLHwung;>@JLHwung) :bug: Bug Fix babel-parser https://github-redirect.dependabot.com/babel/babel/pull/15225;>#15225 Parse using[foo] as computed member expression (https://github.com/JLHwung;>@JLHwung) https://github-redirect.dependabot.com/babel/babel/pull/15207;>#15207 Export ParseResult type (https://github.com/davydof;>@davydof)
[GitHub] [echarts-www] dependabot[bot] commented on pull request #42: Bump glob-parent and @babel/core
dependabot[bot] commented on PR #42: URL: https://github.com/apache/echarts-www/pull/42#issuecomment-1343834846 Superseded by #44. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] dependabot[bot] opened a new pull request, #44: Bump glob-parent and @babel/core
dependabot[bot] opened a new pull request, #44: URL: https://github.com/apache/echarts-www/pull/44 Bumps [glob-parent](https://github.com/gulpjs/glob-parent) to 5.1.2 and updates ancestor dependency [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core). These dependencies need to be updated together. Updates `glob-parent` from 2.0.0 to 5.1.2 Release notes Sourced from https://github.com/gulpjs/glob-parent/releases;>glob-parent's releases. v5.1.2 Bug Fixes eliminate ReDoS (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/36;>#36) (https://github.com/gulpjs/glob-parent/commit/f9231168b0041fea3f8f954b3cceb56269fc6366;>f923116) v5.1.1 Bug Fixes unescape exclamation mark (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/26;>#26) (https://github.com/gulpjs/glob-parent/commit/a98874f1a59e407f4fb1beb0db4efa8392da60bb;>a98874f) v5.1.0 Features add flipBackslashes option to disable auto conversion of slashes (closes https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/24;>#24) (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/25;>#25) (https://github.com/gulpjs/glob-parent/commit/eecf91d5e3834ed78aee39c4eaaae654d76b87b3;>eecf91d) v5.0.0 ⚠ BREAKING CHANGES Drop support for node 6 bump dependencies Miscellaneous Chores Drop support for node 6 bump dependencies (https://github.com/gulpjs/glob-parent/commit/896c0c00b4e7362f60b96e7fc295ae929245255a;>896c0c0) v4.0.0 ⚠ BREAKING CHANGES question marks are valid path characters on Windows so avoid flagging as a glob when alone Update is-glob dependency Features hoist regexps and strings for performance gains (https://github.com/gulpjs/glob-parent/commit/4a80667c69355c76a572a5892b0f133c8e1f457e;>4a80667) question marks are valid path characters on Windows so avoid flagging as a glob when alone (https://github.com/gulpjs/glob-parent/commit/2a551dd0dc3235e78bf3c94843d4107072d17841;>2a551dd) Update is-glob dependency (https://github.com/gulpjs/glob-parent/commit/e41fcd895d1f7bc617dba45c9d935a7949b9c281;>e41fcd8) v3.1.0 Features ... (truncated) Changelog Sourced from https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md;>glob-parent's changelog. https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2;>5.1.2 (2021-03-06) Bug Fixes eliminate ReDoS (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/36;>#36) (https://github.com/gulpjs/glob-parent/commit/f9231168b0041fea3f8f954b3cceb56269fc6366;>f923116) https://www.github.com/gulpjs/glob-parent/compare/v6.0.1...v6.0.2;>6.0.2 (2021-09-29) Bug Fixes Improve performance (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/53;>#53) (https://www.github.com/gulpjs/glob-parent/commit/843f8de1c177e9a5c06c4cfd2349ca5207168e00;>843f8de) https://www.github.com/gulpjs/glob-parent/compare/v6.0.0...v6.0.1;>6.0.1 (2021-07-20) Bug Fixes Resolve ReDoS vulnerability from CVE-2021-35065 (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/49;>#49) (https://www.github.com/gulpjs/glob-parent/commit/3e9f04a3b4349db7e1962d87c9a7398cda51f339;>3e9f04a) https://www.github.com/gulpjs/glob-parent/compare/v5.1.2...v6.0.0;>6.0.0 (2021-05-03) ⚠ BREAKING CHANGES Correct mishandled escaped path separators (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/34;>#34) upgrade scaffold, dropping node 10 support Bug Fixes Correct mishandled escaped path separators (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/34;>#34) (https://www.github.com/gulpjs/glob-parent/commit/32f6d52663b7addac38d0dff570d8127edf03f47;>32f6d52), closes https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/32;>#32 Miscellaneous Chores upgrade scaffold, dropping node 10 support (https://www.github.com/gulpjs/glob-parent/commit/e83d0c5a411947cf69eb58f36349db80439c606f;>e83d0c5) https://github.com/gulpjs/glob-parent/compare/v5.1.0...v5.1.1;>5.1.1 (2021-01-27) Bug Fixes unescape exclamation mark (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/26;>#26) (https://github.com/gulpjs/glob-parent/commit/a98874f1a59e407f4fb1beb0db4efa8392da60bb;>a98874f) https://github.com/gulpjs/glob-parent/compare/v5.0.0...v5.1.0;>5.1.0 (2021-01-27) Features add flipBackslashes option to disable auto conversion of slashes (closes https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/24;>#24) (https://github-redirect.dependabot.com/gulpjs/glob-parent/issues/25;>#25) (https://github.com/gulpjs/glob-parent/commit/eecf91d5e3834ed78aee39c4eaaae654d76b87b3;>eecf91d) https://github.com/gulpjs/glob-parent/compare/v4.0.0...v5.0.0;>5.0.0 (2021-01-27) ⚠ BREAKING CHANGES Drop
[GitHub] [echarts-www] plainheart merged pull request #40: Bump minimatch from 3.0.4 to 3.0.8
plainheart merged PR #40: URL: https://github.com/apache/echarts-www/pull/40 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] dependabot[bot] opened a new pull request, #43: Bump scss-tokenizer and node-sass
dependabot[bot] opened a new pull request, #43: URL: https://github.com/apache/echarts-www/pull/43 Bumps [scss-tokenizer](https://github.com/sasstools/scss-tokenizer) to 0.4.3 and updates ancestor dependency [node-sass](https://github.com/sass/node-sass). These dependencies need to be updated together. Updates `scss-tokenizer` from 0.2.3 to 0.4.3 Release notes Sourced from https://github.com/sasstools/scss-tokenizer/releases;>scss-tokenizer's releases. v0.4.3 What's Changed Bump acorn from 5.7.3 to 5.7.4 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/sasstools/scss-tokenizer/pull/33;>sasstools/scss-tokenizer#33 Fixed ReDoS in loadAnnotation function of previous-map.js by https://github.com/sushantmittal;>@sushantmittal in https://github-redirect.dependabot.com/sasstools/scss-tokenizer/pull/49;>sasstools/scss-tokenizer#49 New Contributors https://github.com/dependabot;>@dependabot made their first contribution in https://github-redirect.dependabot.com/sasstools/scss-tokenizer/pull/33;>sasstools/scss-tokenizer#33 https://github.com/sushantmittal;>@sushantmittal made their first contribution in https://github-redirect.dependabot.com/sasstools/scss-tokenizer/pull/49;>sasstools/scss-tokenizer#49 Full Changelog: https://github.com/sasstools/scss-tokenizer/compare/v0.4.2...v0.4.3;>https://github.com/sasstools/scss-tokenizer/compare/v0.4.2...v0.4.3 v0.4.2 Misc Restore prepublishOnly npm script (https://github.com/xzyfer;>@xzyfer, ae79d74) v0.4.1 Fixes Error handling utf-8 encoded sourcemap urls (https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/13;>#13, https://github.com/xzyfer;>@xzyfer) v0.4.0 Fixes Fix endInterpolant not being captured (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/20;>#20) Fix tracking of token position (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/22;>#22) Tests Add basic test coverage to interpolant tokenization (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/20;>#20) Dependencies Replace babel-preset-es2015 with babel-preset-env (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) sass-spec@2.5.1 (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) babel-core@^6.26.3 (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) babel-jest@^23.6.0 (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) glob@^7.1.3 (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) jest@^23.6.0 (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) js-base64@^2.4.9 (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) source-map@^0.7.3 (https://github.com/xzyfer;>@xzyfer, https://github-redirect.dependabot.com/sasstools/scss-tokenizer/issues/23;>#23) Misc TravisCI now tests all supported Node versions Commit package-lock.json v0.3.0 ... (truncated) Commits https://github.com/sasstools/scss-tokenizer/commit/3e518d908cea22d0ca1bdf927ef752b7539f0533;>3e518d9 0.4.3 https://github.com/sasstools/scss-tokenizer/commit/ff8e9945bcf991d30e009e2f0ef4088d2830c92d;>ff8e994 Update changelog https://github.com/sasstools/scss-tokenizer/commit/a53b6f233e648cc01acbdd89c58786cf8ba56e35;>a53b6f2 Fixed ReDoS in 'loadAnnotation' function of previous-map.js. https://github.com/sasstools/scss-tokenizer/commit/b55257baa54197e7dae8085184cad7948fea0796;>b55257b Bump acorn from 5.7.3 to 5.7.4 https://github.com/sasstools/scss-tokenizer/commit/db9b196df81b399fa104928e8361c5c6f3efde10;>db9b196 0.4.2 https://github.com/sasstools/scss-tokenizer/commit/ae79d74ad591e2f8a5e61ed68be2595b4bfd37af;>ae79d74 Restore prepublishOnly npm script https://github.com/sasstools/scss-tokenizer/commit/32a65d8d8d757f2e0cca0b2e71ec69840466dded;>32a65d8 0.4.1 https://github.com/sasstools/scss-tokenizer/commit/cef5140251617c6d15cf639a4ffda246b7704344;>cef5140 Add support for utf8 name in input source map encoding https://github.com/sasstools/scss-tokenizer/commit/07c191732c621047a302c68b6718fd6bf0bd90d4;>07c1917 0.4.0 https://github.com/sasstools/scss-tokenizer/commit/d74f8038a00673adcb7a3b2fee91eebb7d6153e3;>d74f803 Commit package-lock.json Additional commits viewable in
[GitHub] [echarts-www] dependabot[bot] opened a new pull request, #42: Bump glob-parent and @babel/core
dependabot[bot] opened a new pull request, #42: URL: https://github.com/apache/echarts-www/pull/42 Removes [glob-parent](https://github.com/gulpjs/glob-parent). It's no longer used after updating ancestor dependency [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core). These dependencies need to be updated together. Removes `glob-parent` Updates `@babel/core` from 7.0.0-beta.31 to 7.20.5 Release notes Sourced from https://github.com/babel/babel/releases;>@babel/core's releases. v7.20.5 (2022-11-28) Thanks https://github.com/davydof;>@davydof and https://github.com/SuperSodaSea;>@SuperSodaSea for your first PRs! :eyeglasses: Spec Compliance babel-helpers, babel-plugin-transform-destructuring, babel-plugin-transform-modules-commonjs, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15183;>#15183 Improve array destructuring spec compliance (https://github.com/SuperSodaSea;>@SuperSodaSea) babel-cli, babel-helpers, babel-plugin-proposal-class-properties, babel-plugin-proposal-class-static-block, babel-plugin-transform-classes, babel-plugin-transform-runtime, babel-preset-env https://github-redirect.dependabot.com/babel/babel/pull/15182;>#15182 fix: apply toPropertyKey when defining class members (https://github.com/JLHwung;>@JLHwung) babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-private-property-in-object, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime https://github-redirect.dependabot.com/babel/babel/pull/15133;>#15133 fix: validate rhs of in when transpiling #p in C (https://github.com/JLHwung;>@JLHwung) :bug: Bug Fix babel-parser https://github-redirect.dependabot.com/babel/babel/pull/15225;>#15225 Parse using[foo] as computed member expression (https://github.com/JLHwung;>@JLHwung) https://github-redirect.dependabot.com/babel/babel/pull/15207;>#15207 Export ParseResult type (https://github.com/davydof;>@davydof) https://github-redirect.dependabot.com/babel/babel/pull/15198;>#15198 fix: parse import module, ... (https://github.com/JLHwung;>@JLHwung) babel-helper-wrap-function, babel-preset-env, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15181;>#15181 fix: Edge cases for async functions and noNewArrow assumption (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-plugin-transform-arrow-functions, babel-plugin-transform-parameters, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15163;>#15163 fix: Throw error when compiling super() in arrow functions with default / rest parameters (https://github.com/SuperSodaSea;>@SuperSodaSea) babel-helpers, babel-node, babel-plugin-proposal-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime https://github-redirect.dependabot.com/babel/babel/pull/15194;>#15194 fix: Bump regenerator and add tests (https://github.com/SuperSodaSea;>@SuperSodaSea) babel-helper-create-regexp-features-plugin https://github-redirect.dependabot.com/babel/babel/pull/15192;>#15192 fix: Update regjsparser for @babel/standalone (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-parser, babel-types https://github-redirect.dependabot.com/babel/babel/pull/15109;>#15109 fix: Babel 8 types (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-generator https://github-redirect.dependabot.com/babel/babel/pull/15143;>#15143 Don't print inner comments as leading when wrapping in (``) (https://github.com/nicolo-ribaudo;>@nicolo-ribaudo) babel-plugin-transform-block-scoping, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15167;>#15167 Register switch's discriminant in the outer scope (https://github.com/nicolo-ribaudo;>@nicolo-ribaudo) :nail_care: Polish babel-generator https://github-redirect.dependabot.com/babel/babel/pull/15173;>#15173 Improve generator behavior when comments:false (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-plugin-transform-block-scoping https://github-redirect.dependabot.com/babel/babel/pull/15164;>#15164 Only extract IDs for TDZ checks in assign when necessary (https://github.com/nicolo-ribaudo;>@nicolo-ribaudo) :house: Internal babel-core, babel-parser https://github-redirect.dependabot.com/babel/babel/pull/15202;>#15202 Bump typescript to 4.9.3 (https://github.com/JLHwung;>@JLHwung) Committers: 6 Alexander Davydov (https://github.com/davydof;>@davydof) Babel Bot
[GitHub] [echarts-www] plainheart merged pull request #39: Bump qs from 6.5.2 to 6.5.3
plainheart merged PR #39: URL: https://github.com/apache/echarts-www/pull/39 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] dependabot[bot] opened a new pull request, #41: Bump braces and @babel/core
dependabot[bot] opened a new pull request, #41: URL: https://github.com/apache/echarts-www/pull/41 Removes [braces](https://github.com/micromatch/braces). It's no longer used after updating ancestor dependency [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core). These dependencies need to be updated together. Removes `braces` Updates `@babel/core` from 7.0.0-beta.31 to 7.20.5 Release notes Sourced from https://github.com/babel/babel/releases;>@babel/core's releases. v7.20.5 (2022-11-28) Thanks https://github.com/davydof;>@davydof and https://github.com/SuperSodaSea;>@SuperSodaSea for your first PRs! :eyeglasses: Spec Compliance babel-helpers, babel-plugin-transform-destructuring, babel-plugin-transform-modules-commonjs, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15183;>#15183 Improve array destructuring spec compliance (https://github.com/SuperSodaSea;>@SuperSodaSea) babel-cli, babel-helpers, babel-plugin-proposal-class-properties, babel-plugin-proposal-class-static-block, babel-plugin-transform-classes, babel-plugin-transform-runtime, babel-preset-env https://github-redirect.dependabot.com/babel/babel/pull/15182;>#15182 fix: apply toPropertyKey when defining class members (https://github.com/JLHwung;>@JLHwung) babel-helper-create-class-features-plugin, babel-helpers, babel-plugin-proposal-decorators, babel-plugin-proposal-private-property-in-object, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime https://github-redirect.dependabot.com/babel/babel/pull/15133;>#15133 fix: validate rhs of in when transpiling #p in C (https://github.com/JLHwung;>@JLHwung) :bug: Bug Fix babel-parser https://github-redirect.dependabot.com/babel/babel/pull/15225;>#15225 Parse using[foo] as computed member expression (https://github.com/JLHwung;>@JLHwung) https://github-redirect.dependabot.com/babel/babel/pull/15207;>#15207 Export ParseResult type (https://github.com/davydof;>@davydof) https://github-redirect.dependabot.com/babel/babel/pull/15198;>#15198 fix: parse import module, ... (https://github.com/JLHwung;>@JLHwung) babel-helper-wrap-function, babel-preset-env, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15181;>#15181 fix: Edge cases for async functions and noNewArrow assumption (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-plugin-transform-arrow-functions, babel-plugin-transform-parameters, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15163;>#15163 fix: Throw error when compiling super() in arrow functions with default / rest parameters (https://github.com/SuperSodaSea;>@SuperSodaSea) babel-helpers, babel-node, babel-plugin-proposal-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime https://github-redirect.dependabot.com/babel/babel/pull/15194;>#15194 fix: Bump regenerator and add tests (https://github.com/SuperSodaSea;>@SuperSodaSea) babel-helper-create-regexp-features-plugin https://github-redirect.dependabot.com/babel/babel/pull/15192;>#15192 fix: Update regjsparser for @babel/standalone (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-parser, babel-types https://github-redirect.dependabot.com/babel/babel/pull/15109;>#15109 fix: Babel 8 types (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-generator https://github-redirect.dependabot.com/babel/babel/pull/15143;>#15143 Don't print inner comments as leading when wrapping in (``) (https://github.com/nicolo-ribaudo;>@nicolo-ribaudo) babel-plugin-transform-block-scoping, babel-traverse https://github-redirect.dependabot.com/babel/babel/pull/15167;>#15167 Register switch's discriminant in the outer scope (https://github.com/nicolo-ribaudo;>@nicolo-ribaudo) :nail_care: Polish babel-generator https://github-redirect.dependabot.com/babel/babel/pull/15173;>#15173 Improve generator behavior when comments:false (https://github.com/liuxingbaoyu;>@liuxingbaoyu) babel-plugin-transform-block-scoping https://github-redirect.dependabot.com/babel/babel/pull/15164;>#15164 Only extract IDs for TDZ checks in assign when necessary (https://github.com/nicolo-ribaudo;>@nicolo-ribaudo) :house: Internal babel-core, babel-parser https://github-redirect.dependabot.com/babel/babel/pull/15202;>#15202 Bump typescript to 4.9.3 (https://github.com/JLHwung;>@JLHwung) Committers: 6 Alexander Davydov (https://github.com/davydof;>@davydof) Babel Bot
[GitHub] [echarts-www] dependabot[bot] opened a new pull request, #40: Bump minimatch from 3.0.4 to 3.0.8
dependabot[bot] opened a new pull request, #40: URL: https://github.com/apache/echarts-www/pull/40 Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.0.8. Commits https://github.com/isaacs/minimatch/commit/782c264e9ff4b02b41923e827726e03c1bcaec28;>782c264 3.0.8 https://github.com/isaacs/minimatch/commit/6ade2da656d9611083d6b7590f1b47734342a55d;>6ade2da fix: trim pattern https://github.com/isaacs/minimatch/commit/a6f52b0f9692e918e59bae84dabee02db97f96c8;>a6f52b0 3.0.7 https://github.com/isaacs/minimatch/commit/e4cd43462340ca6b21212b68c9e314d8cdd9861a;>e4cd434 fix: treat nocase:true as always having magic https://github.com/isaacs/minimatch/commit/e6bbe1c01803254ebf19db02c9b06059cc9ce7cd;>e6bbe1c publishConfig for 3.0 https://github.com/isaacs/minimatch/commit/5b7cd3372be253759fb4d865eb3f38f189a5fcdf;>5b7cd33 3.0.6 https://github.com/isaacs/minimatch/commit/20b4b562830680867feb75f9c635aca08e5c86ff;>20b4b56 [fix] revert all breaking syntax changes https://github.com/isaacs/minimatch/commit/2ff038852ec03e85e60e0eb333005c680ac8a543;>2ff0388 document, expose, and test 'partial:true' option https://github.com/isaacs/minimatch/commit/5dbd6a799d875530f4a505f0cd165fcca34f67a2;>5dbd6a7 ci: tests and makework https://github.com/isaacs/minimatch/commit/dbda0654186626b01bbd53034a8c8eddf923db03;>dbda065 full test coverage, adding tests, deleting dead code Additional commits viewable in https://github.com/isaacs/minimatch/compare/v3.0.4...v3.0.8;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=minimatch=npm_and_yarn=3.0.4=3.0.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-www/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] dependabot[bot] opened a new pull request, #39: Bump qs from 6.5.2 to 6.5.3
dependabot[bot] opened a new pull request, #39: URL: https://github.com/apache/echarts-www/pull/39 Bumps [qs](https://github.com/ljharb/qs) from 6.5.2 to 6.5.3. Changelog Sourced from https://github.com/ljharb/qs/blob/main/CHANGELOG.md;>qs's changelog. 6.5.3 [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428;>#428) [Fix] utils.merge: avoid a crash with a null target and a truthy non-array source [Fix] correctly parse nested arrays [Fix] stringify: fix a crash with strictNullHandling and a custom filter/serializeDate (https://github-redirect.dependabot.com/ljharb/qs/issues/279;>#279) [Fix] utils: merge: fix crash when source is a truthy primitive no options are provided [Fix] when parseArrays is false, properly handle keys ending in [] [Fix] fix for an impossible situation: when the formatter is called with a non-string value [Fix] utils.merge: avoid a crash with a null target and an array source [Refactor] utils: reduce observable [[Get]]s [Refactor] use cached Array.isArray [Refactor] stringify: Avoid arr = arr.concat(...), push to the existing instance (https://github-redirect.dependabot.com/ljharb/qs/issues/269;>#269) [Refactor] parse: only need to reassign the var once [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427;>#427) [readme] remove travis badge; add github actions/codecov badges; update URLs [Docs] Clean up license text so it’s properly detected as BSD-3-Clause [Docs] Clarify the need for arrayLimit option [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399;>#399) [meta] add FUNDING.yml [actions] backport actions from main [Tests] always use String(x) over x.toString() [Tests] remove nonexistent tape option [Dev Deps] backport from main Commits https://github.com/ljharb/qs/commit/298bfa55d6db00ddea78dd0333509aadf9bb3077;>298bfa5 v6.5.3 https://github.com/ljharb/qs/commit/ed0f5dcbef4b168a8ae299d78b1e4a2e9b1baf1f;>ed0f5dc [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428;>#428) https://github.com/ljharb/qs/commit/691e739cfa40cd42604dc05a54e6154371a429ab;>691e739 [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427;>#427) https://github.com/ljharb/qs/commit/1072d57d38a690e1ad7616dced44390bffedcbb2;>1072d57 [readme] remove travis badge; add github actions/codecov badges; update URLs https://github.com/ljharb/qs/commit/12ac1c403aaa04d1a34844f514ed9f9abfb76e64;>12ac1c4 [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399;>#399) https://github.com/ljharb/qs/commit/0338716b09fdbd4711823eeb0a14e556a2498e7a;>0338716 [actions] backport actions from main https://github.com/ljharb/qs/commit/5639c20ce0a7c1332200a3181339331483e5a3a1;>5639c20 Clean up license text so it’s properly detected as BSD-3-Clause https://github.com/ljharb/qs/commit/51b8a0b1b213596dd1702b837f5e7dec2229793d;>51b8a0b add FUNDING.yml https://github.com/ljharb/qs/commit/45f675936e742d92fac8d4dae5cfc385c576a977;>45f6759 [Fix] fix for an impossible situation: when the formatter is called with a no... https://github.com/ljharb/qs/commit/f814a7f8f2af059f8158f7e4b2bf8b46aeb62cd3;>f814a7f [Dev Deps] backport from main Additional commits viewable in https://github.com/ljharb/qs/compare/v6.5.2...v6.5.3;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=qs=npm_and_yarn=6.5.2=6.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for
[GitHub] [echarts-bot] dependabot[bot] opened a new pull request, #16: chore(deps): bump trim and franc-min
dependabot[bot] opened a new pull request, #16: URL: https://github.com/apache/echarts-bot/pull/16 Removes [trim](https://github.com/Trott/trim). It's no longer used after updating ancestor dependency [franc-min](https://github.com/wooorm/franc). These dependencies need to be updated together. Removes `trim` Updates `franc-min` from 5.0.0 to 6.1.0 Release notes Sourced from https://github.com/wooorm/franc/releases;>franc-min's releases. franc-min@6.1.0 See https://github.com/wooorm/franc/releases/tag/6.1.0;>6.1.0 franc-min@6.0.0 See https://github.com/wooorm/franc/releases/tag/6.0.0;>6.0.0 Commits https://github.com/wooorm/franc/commit/1d508c8384eaee116663be273a5ad3b88901b420;>1d508c8 franc-min@6.1.0 https://github.com/wooorm/franc/commit/35efcd5dc1b2ee465c934ad9680f03194754ea3c;>35efcd5 6.1.0 https://github.com/wooorm/franc/commit/9930311bc7fc487cddeb20df04763f052eb0b49a;>9930311 Add improved docs https://github.com/wooorm/franc/commit/4c244c18e8b5eac2247c456a462d3eb92c0015e0;>4c244c1 Update actions https://github.com/wooorm/franc/commit/1c67227e09f349a25a438bdcd9e9856dd6032956;>1c67227 Use Node test runner https://github.com/wooorm/franc/commit/d820399e51c9fa7bc35c94584f0a2d47dffb6d48;>d820399 Refactor build scripts https://github.com/wooorm/franc/commit/284872d74b5fa475111ef03423401d826010d01a;>284872d Update unicode to v15 https://github.com/wooorm/franc/commit/4891e5a434300da333cddd7965d2ed3a5ff009d2;>4891e5a Refactor build scripts https://github.com/wooorm/franc/commit/9a00ced41ef9e0f19edaa756a539dc626d72a4c9;>9a00ced Regenerate https://github.com/wooorm/franc/commit/ae5f0ac8bd92313028ae1d6dd63bf526c86fd894;>ae5f0ac Remove lerna Additional commits viewable in https://github.com/wooorm/franc/compare/franc-min@5.0.0...franc-min@6.1.0;>compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bot/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] dependabot[bot] opened a new pull request, #17: chore(deps): bump got and nodemon
dependabot[bot] opened a new pull request, #17: URL: https://github.com/apache/echarts-bot/pull/17 Removes [got](https://github.com/sindresorhus/got). It's no longer used after updating ancestor dependency [nodemon](https://github.com/remy/nodemon). These dependencies need to be updated together. Removes `got` Updates `nodemon` from 2.0.18 to 2.0.20 Release notes Sourced from https://github.com/remy/nodemon/releases;>nodemon's releases. v2.0.20 https://github.com/remy/nodemon/compare/v2.0.19...v2.0.20;>2.0.20 (2022-09-16) Bug Fixes remove postinstall script (https://github.com/remy/nodemon/commit/e099e91cb6ff9cbb7912af86d22b91cd855a1ad0;>e099e91) v2.0.19 https://github.com/remy/nodemon/compare/v2.0.18...v2.0.19;>2.0.19 (2022-07-05) Bug Fixes Replace update notifier with simplified deps (https://github-redirect.dependabot.com/remy/nodemon/issues/2033;>#2033) (https://github.com/remy/nodemon/commit/176c4a6bed989fe94f103c905e5eee341d26794d;>176c4a6), closes https://github-redirect.dependabot.com/remy/nodemon/issues/1961;>#1961 https://github-redirect.dependabot.com/remy/nodemon/issues/2028;>#2028 Commits https://github.com/remy/nodemon/commit/e099e91cb6ff9cbb7912af86d22b91cd855a1ad0;>e099e91 fix: remove postinstall script https://github.com/remy/nodemon/commit/05de353d4de1a7e1f2aa2c9bf641c3fe2d652122;>05de353 chore: supports https://github.com/remy/nodemon/commit/876d60c8a241f13376f1b32f853d48ae77ec69a4;>876d60c chore: supporters https://github.com/remy/nodemon/commit/188f2d3cdc960fce5d7413e1326da76bd5be780c;>188f2d3 chore: supporters https://github.com/remy/nodemon/commit/a1ad44a876df74be742c64af5640b300c302b977;>a1ad44a chore: supporters update https://github.com/remy/nodemon/commit/8abd3fc9daff813199042c26a1e8aa5691a5ab37;>8abd3fc chore: supporters update https://github.com/remy/nodemon/commit/30c80f8a4eee379fa2ebad95b81c42ef11670829;>30c80f8 chore: add unused files to .npmignore (https://github-redirect.dependabot.com/remy/nodemon/issues/2055;>#2055) https://github.com/remy/nodemon/commit/3dd38deb4a97a52608aac148200b48d844df0a66;>3dd38de docs: added link on banner (https://github-redirect.dependabot.com/remy/nodemon/issues/1944;>#1944) https://github.com/remy/nodemon/commit/fb51359dde4b4ad6081f6c2690d1052fc8f5fcaf;>fb51359 docs: add important note about ignore rules https://github.com/remy/nodemon/commit/8fe7d770d06305e5e7a4aa4ab4783d4b2c5eaac8;>8fe7d77 chore: supporters Additional commits viewable in https://github.com/remy/nodemon/compare/v2.0.18...v2.0.20;>compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bot/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL
[GitHub] [echarts-bot] dependabot[bot] opened a new pull request, #14: chore(deps): bump moment from 2.29.3 to 2.29.4
dependabot[bot] opened a new pull request, #14: URL: https://github.com/apache/echarts-bot/pull/14 Bumps [moment](https://github.com/moment/moment) from 2.29.3 to 2.29.4. Changelog Sourced from https://github.com/moment/moment/blob/develop/CHANGELOG.md;>moment's changelog. 2.29.4 Release Jul 6, 2022 https://github-redirect.dependabot.com/moment/moment/pull/6015;>#6015 [bugfix] Fix ReDoS in preprocessRFC2822 regex Commits https://github.com/moment/moment/commit/000ac1800e620f770f4eb31b5ae908f6167b0ab2;>000ac18 Build 2.24.4 https://github.com/moment/moment/commit/f2006b647939466f4f403721b8c7816d844c038c;>f2006b6 Bump version to 2.24.4 https://github.com/moment/moment/commit/536ad0c348f2f99009755698f491080757a48221;>536ad0c Update changelog for 2.29.4 https://github.com/moment/moment/commit/9a3b5894f3d5d602948ac8a02e4ee528a49ca3a3;>9a3b589 [bugfix] Fix redos in preprocessRFC2822 regex (https://github-redirect.dependabot.com/moment/moment/issues/6015;>#6015) https://github.com/moment/moment/commit/6374fd860aeff75e6c9d9d11540c6b22bc7ef175;>6374fd8 Merge branch 'master' into develop https://github.com/moment/moment/commit/b4e615307ee350b58ac9899e3587ce43972b0753;>b4e6153 Revert [bugfix] Fix redos in preprocessRFC2822 regex (https://github-redirect.dependabot.com/moment/moment/issues/6015;>#6015) https://github.com/moment/moment/commit/7aebb1617fc9bced87ab6bc4c317644019b23ce7;>7aebb16 [bugfix] Fix redos in preprocessRFC2822 regex (https://github-redirect.dependabot.com/moment/moment/issues/6015;>#6015) See full diff in https://github.com/moment/moment/compare/2.29.3...2.29.4;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=moment=npm_and_yarn=2.29.3=2.29.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bot/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] dependabot[bot] opened a new pull request, #15: chore(deps): bump minimatch from 3.0.4 to 3.1.2
dependabot[bot] opened a new pull request, #15: URL: https://github.com/apache/echarts-bot/pull/15 Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2. Commits https://github.com/isaacs/minimatch/commit/699c459443a6bd98f5b28197978f76e7f71467ac;>699c459 3.1.2 https://github.com/isaacs/minimatch/commit/2f2b5ff1bb1b6a01f4404f7e475f0a2cba578ab7;>2f2b5ff fix: trim pattern https://github.com/isaacs/minimatch/commit/25d7c0d09c47063c9b0d2ace17ef8e951d90eccc;>25d7c0d 3.1.1 https://github.com/isaacs/minimatch/commit/55dda291dfb595bd11b4edb19b45dd98eda76de0;>55dda29 fix: treat nocase:true as always having magic https://github.com/isaacs/minimatch/commit/5e1fb8dd2bb78c0ae22101b9229fac4c76ef039e;>5e1fb8d 3.1.0 https://github.com/isaacs/minimatch/commit/f8145c54f34075069f4a23cb214d871da4cd4006;>f8145c5 Add 'allowWindowsEscape' option https://github.com/isaacs/minimatch/commit/570e8b1aef6c9e823a824aa0b9be10db43857cd7;>570e8b1 add publishConfig for v3 publishes https://github.com/isaacs/minimatch/commit/5b7cd3372be253759fb4d865eb3f38f189a5fcdf;>5b7cd33 3.0.6 https://github.com/isaacs/minimatch/commit/20b4b562830680867feb75f9c635aca08e5c86ff;>20b4b56 [fix] revert all breaking syntax changes https://github.com/isaacs/minimatch/commit/2ff038852ec03e85e60e0eb333005c680ac8a543;>2ff0388 document, expose, and test 'partial:true' option Additional commits viewable in https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=minimatch=npm_and_yarn=3.0.4=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bot/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] Ovilia merged pull request #13: chore(deps): bump decode-uri-component from 0.2.0 to 0.2.2
Ovilia merged PR #13: URL: https://github.com/apache/echarts-bot/pull/13 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] dependabot[bot] opened a new pull request, #13: chore(deps): bump decode-uri-component from 0.2.0 to 0.2.2
dependabot[bot] opened a new pull request, #13: URL: https://github.com/apache/echarts-bot/pull/13 Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from https://github.com/SamVerschueren/decode-uri-component/releases;>decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2;>https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode throws - fixes https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/6;>#6 746ca5d Update license (https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/1;>#1) 486d7e2 Tidelift tasks a650457 Meta tweaks 66e1c28 https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1;>https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1 Commits https://github.com/SamVerschueren/decode-uri-component/commit/a0eea469d26eb0df668b081672cdb9581feb78eb;>a0eea46 0.2.2 https://github.com/SamVerschueren/decode-uri-component/commit/980e0bf09b64d94f1aa79012f895816c30ffd152;>980e0bf Prevent overwriting previously decoded tokens https://github.com/SamVerschueren/decode-uri-component/commit/3c8a373dd4837e89b3f970e01295dd03e1405a33;>3c8a373 0.2.1 https://github.com/SamVerschueren/decode-uri-component/commit/76abc939783fe3900fadb7d384a74d324d5557f3;>76abc93 Switch to GitHub workflows https://github.com/SamVerschueren/decode-uri-component/commit/746ca5dcb6667c5d364e782d53c542830e4c10b9;>746ca5d Fix issue where decode throws - fixes https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/6;>#6 https://github.com/SamVerschueren/decode-uri-component/commit/486d7e26d3a8c0fbe860fb651fe1bc98c2f2be30;>486d7e2 Update license (https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/1;>#1) https://github.com/SamVerschueren/decode-uri-component/commit/a65045724e6234acef87f31da499d4807b20b134;>a650457 Tidelift tasks https://github.com/SamVerschueren/decode-uri-component/commit/66e1c2834c0e189201cb65196ec3101372459b02;>66e1c28 Meta tweaks See full diff in https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=decode-uri-component=npm_and_yarn=0.2.0=0.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts
[GitHub] [echarts-www] plainheart commented on pull request #38: add echarty to extensions download page
plainheart commented on PR #38: URL: https://github.com/apache/echarts-www/pull/38#issuecomment-1336334486 Thanks for your contribution! The website will be updated in several days. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] plainheart merged pull request #38: add echarty to extensions download page
plainheart merged PR #38: URL: https://github.com/apache/echarts-www/pull/38 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] helgasoft opened a new pull request, #38: add echarty to extensions download page
helgasoft opened a new pull request, #38: URL: https://github.com/apache/echarts-www/pull/38 Thank you for the invitation ZW -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-wordcloud-generator] dependabot[bot] opened a new pull request, #5: build(deps): bump trim-newlines and vue-tsc
dependabot[bot] opened a new pull request, #5: URL: https://github.com/apache/echarts-wordcloud-generator/pull/5 Removes [trim-newlines](https://github.com/sindresorhus/trim-newlines). It's no longer used after updating ancestor dependency [vue-tsc](https://github.com/johnsoncodehk/volar/tree/HEAD/vue-language-tools/vue-tsc). These dependencies need to be updated together. Removes `trim-newlines` Updates `vue-tsc` from 0.1.7 to 1.0.9 Changelog Sourced from https://github.com/johnsoncodehk/volar/blob/master/CHANGELOG.md;>vue-tsc's changelog. 1.0.9 (2022/10/23) feat(vue-tsc): add error message for noEmitOnError (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1669;>#1669) feat: add support for custom file extensions (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1931;>#1931) feat: add support for typescript/javascript.suggest.completeFunctionCalls (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/956;>#956) feat: add support for JSX auto closing tags and tags commenting (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1494;>#1494) feat: add support for auto import component from .ts sources (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1643;>#1643) feat: add Server Stats command for debugging loading files feat: add volar.completion.normalizeComponentAutoImportName setting to support remove Vue ending for component auto import (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/82;>#82) feat: add volar.vueserver.diagnosticModel setting to support pull model for diagnostic feat: add experimentalUseElementAccessInTemplate setting in vueCompilerOptions for class component supports (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/997;>#997) feat: migrated to standard token types for support semantic tokens IDE other than VSCode feat: register file watchers in language server for support IDE other than VSCode (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2037;>#2037) perf: load scripts on demand on inferred project fix(doctor): update valid @types/node version and clarity words (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2043;>#2043) fix: avoid language server crash by invalid tsconfig references path (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1957;>#1957) fix: LanguageServicePlugin error don'ts reporting fix: SCSS At-Rule autocomplete not working fix: intellisense not working for files path start with . (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1147;>#1147) fix: avoid reporting partial diagnostic when failed to update cache range fix: formatting not working for template interpolations (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2026;>#2026) fix: file watchers not working (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2028;>#2028) fix: document version of code action incorrect (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2025;>#2025) fix: don't filter onXxx for props autocomplete (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2034;>#2034) fix: import statements completion not working (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1983#issuecomment-1278778898;>johnsoncodehk/volar#1983) fix: server throwing errors due to component auto import completion canceled (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1983;>#1983) fix: expand selection does not work correctly in \template (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1465;>#1465) fix: component tags messes with duplicate name template properties (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2030;>#2030) fix: improve invalid content trimming in .md files for VitePress fix: avoid language server throwing when changing built-in TS plugin activation Special Sponsor Out Gold Sponsors ... (truncated) Commits See full diff in https://github.com/johnsoncodehk/volar/commits/v1.0.9/vue-language-tools/vue-tsc;>compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI
[GitHub] [echarts-wordcloud-generator] dependabot[bot] opened a new pull request, #3: build(deps): bump got and vue-tsc
dependabot[bot] opened a new pull request, #3: URL: https://github.com/apache/echarts-wordcloud-generator/pull/3 Removes [got](https://github.com/sindresorhus/got). It's no longer used after updating ancestor dependency [vue-tsc](https://github.com/johnsoncodehk/volar/tree/HEAD/vue-language-tools/vue-tsc). These dependencies need to be updated together. Removes `got` Updates `vue-tsc` from 0.1.7 to 1.0.9 Changelog Sourced from https://github.com/johnsoncodehk/volar/blob/master/CHANGELOG.md;>vue-tsc's changelog. 1.0.9 (2022/10/23) feat(vue-tsc): add error message for noEmitOnError (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1669;>#1669) feat: add support for custom file extensions (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1931;>#1931) feat: add support for typescript/javascript.suggest.completeFunctionCalls (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/956;>#956) feat: add support for JSX auto closing tags and tags commenting (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1494;>#1494) feat: add support for auto import component from .ts sources (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1643;>#1643) feat: add Server Stats command for debugging loading files feat: add volar.completion.normalizeComponentAutoImportName setting to support remove Vue ending for component auto import (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/82;>#82) feat: add volar.vueserver.diagnosticModel setting to support pull model for diagnostic feat: add experimentalUseElementAccessInTemplate setting in vueCompilerOptions for class component supports (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/997;>#997) feat: migrated to standard token types for support semantic tokens IDE other than VSCode feat: register file watchers in language server for support IDE other than VSCode (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2037;>#2037) perf: load scripts on demand on inferred project fix(doctor): update valid @types/node version and clarity words (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2043;>#2043) fix: avoid language server crash by invalid tsconfig references path (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1957;>#1957) fix: LanguageServicePlugin error don'ts reporting fix: SCSS At-Rule autocomplete not working fix: intellisense not working for files path start with . (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1147;>#1147) fix: avoid reporting partial diagnostic when failed to update cache range fix: formatting not working for template interpolations (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2026;>#2026) fix: file watchers not working (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2028;>#2028) fix: document version of code action incorrect (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2025;>#2025) fix: don't filter onXxx for props autocomplete (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2034;>#2034) fix: import statements completion not working (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1983#issuecomment-1278778898;>johnsoncodehk/volar#1983) fix: server throwing errors due to component auto import completion canceled (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1983;>#1983) fix: expand selection does not work correctly in \template (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/1465;>#1465) fix: component tags messes with duplicate name template properties (https://github-redirect.dependabot.com/johnsoncodehk/volar/issues/2030;>#2030) fix: improve invalid content trimming in .md files for VitePress fix: avoid language server throwing when changing built-in TS plugin activation Special Sponsor Out Gold Sponsors ... (truncated) Commits See full diff in https://github.com/johnsoncodehk/volar/commits/v1.0.9/vue-language-tools/vue-tsc;>compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it -
[GitHub] [echarts-wordcloud-generator] dependabot[bot] opened a new pull request, #4: build(deps): bump yargs-parser, vue-tsc and yargs
dependabot[bot] opened a new pull request, #4: URL: https://github.com/apache/echarts-wordcloud-generator/pull/4 Bumps [yargs-parser](https://github.com/yargs/yargs-parser) to 21.1.1 and updates ancestor dependencies [yargs-parser](https://github.com/yargs/yargs-parser), [vue-tsc](https://github.com/johnsoncodehk/volar/tree/HEAD/vue-language-tools/vue-tsc) and [yargs](https://github.com/yargs/yargs). These dependencies need to be updated together. Updates `yargs-parser` from 4.2.1 to 21.1.1 Release notes Sourced from https://github.com/yargs/yargs-parser/releases;>yargs-parser's releases. yargs-parser: v21.1.1 https://github.com/yargs/yargs-parser/compare/yargs-parser-v21.1.0...yargs-parser-v21.1.1;>21.1.1 (2022-08-04) Bug Fixes typescript: ignore .cts files during publish (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/454;>#454) (https://github.com/yargs/yargs-parser/commit/d69f9c3a91c3ad2f9494d0a94e29a8b76c41b81b;>d69f9c3), closes https://github-redirect.dependabot.com/yargs/yargs-parser/issues/452;>#452 yargs-parser: v21.1.0 https://github.com/yargs/yargs-parser/compare/yargs-parser-v21.0.1...yargs-parser-v21.1.0;>21.1.0 (2022-08-03) Features allow the browser build to be imported (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/443;>#443) (https://github.com/yargs/yargs-parser/commit/a89259ff41d6f5312b3ce8a30bef343a993f395a;>a89259f) Bug Fixes halt-at-non-option: prevent known args from being parsed when unknown-options-as-args is enabled (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/438;>#438) (https://github.com/yargs/yargs-parser/commit/c474bc10c3aa0ae864b95e5722730114ef15f573;>c474bc1) node version check now uses process.versions.node (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/450;>#450) (https://github.com/yargs/yargs-parser/commit/d07bcdbe43075f7201fbe8a08e491217247fe1f1;>d07bcdb) parse options ending with 3+ hyphens (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/434;>#434) (https://github.com/yargs/yargs-parser/commit/4f1060b50759fadbac3315c5117b0c3d65b0a7d8;>4f1060b) yargs-parser: v21.0.1 https://github.com/yargs/yargs-parser/compare/yargs-parser-v21.0.0...yargs-parser-v21.0.1;>21.0.1 (2022-02-27) Bug Fixes return deno env object (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/432;>#432) (https://github.com/yargs/yargs-parser/commit/b00eb87b4860a890dd2dab0d6058241bbfd2b3ec;>b00eb87) yargs-parser yargs-parser-v21.0.0 ⚠ BREAKING CHANGES drops support for 10 (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/421;>#421) Bug Fixes esm json import (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/416;>#416) (https://www.github.com/yargs/yargs-parser/commit/90f970a6482dd4f5b5eb18d38596dd6f02d73edf;>90f970a) parser should preserve inner quotes (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/407;>#407) (https://www.github.com/yargs/yargs-parser/commit/ae11f496a8318ea8885aa25015d429b33713c314;>ae11f49) Code Refactoring drops support for 10 (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/421;>#421) (https://www.github.com/yargs/yargs-parser/commit/3aaf8784f5c7f2aec6108c1c6a55537fa7e3b5c1;>3aaf878) yargs-parser yargs-parser-v20.2.9 ... (truncated) Changelog Sourced from https://github.com/yargs/yargs-parser/blob/main/CHANGELOG.md;>yargs-parser's changelog. https://github.com/yargs/yargs-parser/compare/yargs-parser-v21.1.0...yargs-parser-v21.1.1;>21.1.1 (2022-08-04) Bug Fixes typescript: ignore .cts files during publish (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/454;>#454) (https://github.com/yargs/yargs-parser/commit/d69f9c3a91c3ad2f9494d0a94e29a8b76c41b81b;>d69f9c3), closes https://github-redirect.dependabot.com/yargs/yargs-parser/issues/452;>#452 https://github.com/yargs/yargs-parser/compare/yargs-parser-v21.0.1...yargs-parser-v21.1.0;>21.1.0 (2022-08-03) Features allow the browser build to be imported (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/443;>#443) (https://github.com/yargs/yargs-parser/commit/a89259ff41d6f5312b3ce8a30bef343a993f395a;>a89259f) Bug Fixes halt-at-non-option: prevent known args from being parsed when unknown-options-as-args is enabled (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/438;>#438) (https://github.com/yargs/yargs-parser/commit/c474bc10c3aa0ae864b95e5722730114ef15f573;>c474bc1) node version check now uses process.versions.node (https://github-redirect.dependabot.com/yargs/yargs-parser/issues/450;>#450) (https://github.com/yargs/yargs-parser/commit/d07bcdbe43075f7201fbe8a08e491217247fe1f1;>d07bcdb) parse options ending with 3+ hyphens
[GitHub] [echarts-wordcloud-generator] dependabot[bot] commented on pull request #2: build(deps): bump minimatch from 3.0.4 to 3.1.2
dependabot[bot] commented on PR #2: URL: https://github.com/apache/echarts-wordcloud-generator/pull/2#issuecomment-1328819570 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-wordcloud-generator] Ovilia closed pull request #2: build(deps): bump minimatch from 3.0.4 to 3.1.2
Ovilia closed pull request #2: build(deps): bump minimatch from 3.0.4 to 3.1.2 URL: https://github.com/apache/echarts-wordcloud-generator/pull/2 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-wordcloud-generator] Ovilia merged pull request #1: build(deps-dev): bump vite from 2.5.10 to 2.9.13
Ovilia merged PR #1: URL: https://github.com/apache/echarts-wordcloud-generator/pull/1 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bar-racing] dependabot[bot] opened a new pull request, #3: chore(deps): bump loader-utils from 1.4.0 to 1.4.2
dependabot[bot] opened a new pull request, #3: URL: https://github.com/apache/echarts-bar-racing/pull/3 Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.4.0 to 1.4.2. Release notes Sourced from https://github.com/webpack/loader-utils/releases;>loader-utils's releases. v1.4.2 https://github.com/webpack/loader-utils/compare/v1.4.1...v1.4.2;>1.4.2 (2022-11-11) Bug Fixes ReDoS problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/226;>#226) (https://github.com/webpack/loader-utils/commit/17cbf8fa8989c1cb45bdd2997aa524729475f1fa;>17cbf8f) v1.4.1 https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.1;>1.4.1 (2022-11-07) Bug Fixes security problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/220;>#220) (https://github.com/webpack/loader-utils/commit/4504e34c4796a5836ef70458327351675aed48a5;>4504e34) Changelog Sourced from https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md;>loader-utils's changelog. https://github.com/webpack/loader-utils/compare/v1.4.1...v1.4.2;>1.4.2 (2022-11-11) Bug Fixes ReDoS problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/226;>#226) (https://github.com/webpack/loader-utils/commit/17cbf8fa8989c1cb45bdd2997aa524729475f1fa;>17cbf8f) https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.1;>1.4.1 (2022-11-07) Bug Fixes security problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/220;>#220) (https://github.com/webpack/loader-utils/commit/4504e34c4796a5836ef70458327351675aed48a5;>4504e34) Commits https://github.com/webpack/loader-utils/commit/331ad5067d9a1a7b8d646692e6959639969210d1;>331ad50 chore(release): 1.4.2 https://github.com/webpack/loader-utils/commit/17cbf8fa8989c1cb45bdd2997aa524729475f1fa;>17cbf8f fix: ReDoS problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/226;>#226) https://github.com/webpack/loader-utils/commit/8f082b39f6903929f30fe29dab34f4d9c7ef070a;>8f082b3 chore(release): 1.4.1 https://github.com/webpack/loader-utils/commit/4504e34c4796a5836ef70458327351675aed48a5;>4504e34 fix: security problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/220;>#220) See full diff in https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=loader-utils=npm_and_yarn=1.4.0=1.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bar-racing/network/alerts). -- This is an
[GitHub] [echarts-wordcloud-generator] dependabot[bot] opened a new pull request, #2: build(deps): bump minimatch from 3.0.4 to 3.1.2
dependabot[bot] opened a new pull request, #2: URL: https://github.com/apache/echarts-wordcloud-generator/pull/2 Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2. Commits https://github.com/isaacs/minimatch/commit/699c459443a6bd98f5b28197978f76e7f71467ac;>699c459 3.1.2 https://github.com/isaacs/minimatch/commit/2f2b5ff1bb1b6a01f4404f7e475f0a2cba578ab7;>2f2b5ff fix: trim pattern https://github.com/isaacs/minimatch/commit/25d7c0d09c47063c9b0d2ace17ef8e951d90eccc;>25d7c0d 3.1.1 https://github.com/isaacs/minimatch/commit/55dda291dfb595bd11b4edb19b45dd98eda76de0;>55dda29 fix: treat nocase:true as always having magic https://github.com/isaacs/minimatch/commit/5e1fb8dd2bb78c0ae22101b9229fac4c76ef039e;>5e1fb8d 3.1.0 https://github.com/isaacs/minimatch/commit/f8145c54f34075069f4a23cb214d871da4cd4006;>f8145c5 Add 'allowWindowsEscape' option https://github.com/isaacs/minimatch/commit/570e8b1aef6c9e823a824aa0b9be10db43857cd7;>570e8b1 add publishConfig for v3 publishes https://github.com/isaacs/minimatch/commit/5b7cd3372be253759fb4d865eb3f38f189a5fcdf;>5b7cd33 3.0.6 https://github.com/isaacs/minimatch/commit/20b4b562830680867feb75f9c635aca08e5c86ff;>20b4b56 [fix] revert all breaking syntax changes https://github.com/isaacs/minimatch/commit/2ff038852ec03e85e60e0eb333005c680ac8a543;>2ff0388 document, expose, and test 'partial:true' option Additional commits viewable in https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=minimatch=npm_and_yarn=3.0.4=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-wordcloud-generator/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bar-racing] dependabot[bot] opened a new pull request, #2: chore(deps): bump minimatch from 3.0.4 to 3.1.2
dependabot[bot] opened a new pull request, #2: URL: https://github.com/apache/echarts-bar-racing/pull/2 Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2. Commits https://github.com/isaacs/minimatch/commit/699c459443a6bd98f5b28197978f76e7f71467ac;>699c459 3.1.2 https://github.com/isaacs/minimatch/commit/2f2b5ff1bb1b6a01f4404f7e475f0a2cba578ab7;>2f2b5ff fix: trim pattern https://github.com/isaacs/minimatch/commit/25d7c0d09c47063c9b0d2ace17ef8e951d90eccc;>25d7c0d 3.1.1 https://github.com/isaacs/minimatch/commit/55dda291dfb595bd11b4edb19b45dd98eda76de0;>55dda29 fix: treat nocase:true as always having magic https://github.com/isaacs/minimatch/commit/5e1fb8dd2bb78c0ae22101b9229fac4c76ef039e;>5e1fb8d 3.1.0 https://github.com/isaacs/minimatch/commit/f8145c54f34075069f4a23cb214d871da4cd4006;>f8145c5 Add 'allowWindowsEscape' option https://github.com/isaacs/minimatch/commit/570e8b1aef6c9e823a824aa0b9be10db43857cd7;>570e8b1 add publishConfig for v3 publishes https://github.com/isaacs/minimatch/commit/5b7cd3372be253759fb4d865eb3f38f189a5fcdf;>5b7cd33 3.0.6 https://github.com/isaacs/minimatch/commit/20b4b562830680867feb75f9c635aca08e5c86ff;>20b4b56 [fix] revert all breaking syntax changes https://github.com/isaacs/minimatch/commit/2ff038852ec03e85e60e0eb333005c680ac8a543;>2ff0388 document, expose, and test 'partial:true' option Additional commits viewable in https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=minimatch=npm_and_yarn=3.0.4=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bar-racing/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #68: Update doughnut.md
plainheart merged PR #68: URL: https://github.com/apache/echarts-handbook/pull/68 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] guda-art opened a new pull request, #68: Update doughnut.md
guda-art opened a new pull request, #68: URL: https://github.com/apache/echarts-handbook/pull/68 no series-pie.label. emphasis -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] wangyangang commented on issue #6: echarts如何绘制泰勒曲线?
wangyangang commented on issue #6: URL: https://github.com/apache/echarts-examples/issues/6#issuecomment-1287572001 我通过水平的markline实现了一下。方法是隐藏原来的y轴,用markline代替。 示例codesanbox链接:https://codesandbox.io/s/tong-guo-marklineshi-xian-yzhou-bu-jun-fen-dw5jc4 参考了这个作者的文章:https://blog.csdn.net/fjxtgdx/article/details/121661145?spm=1001.2014.3001.5501 ![image](https://user-images.githubusercontent.com/16028271/197310286-c524a16d-c0f7-41f2-85e9-fbaf9fc75ef4.png) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] wangyangang commented on issue #6: echarts如何绘制泰勒曲线?
wangyangang commented on issue #6: URL: https://github.com/apache/echarts-examples/issues/6#issuecomment-1286323881 > > > 我解决了 > > > https://user-images.githubusercontent.com/3960716/90377355-7af28e00-e0aa-11ea-91e5-7f07ed07a6df.png;> > > > > > > 请问是怎么解决的,最近也遇到了同样的问题,求教 > > 自定义 x 轴 axes.x 咋自定义的呀兄弟。谁知道怎么让坐标轴的value值不是均匀分布,而是自定义显示哪些刻度呢 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] wangyangang commented on issue #6: echarts如何绘制泰勒曲线?
wangyangang commented on issue #6: URL: https://github.com/apache/echarts-examples/issues/6#issuecomment-1286323236 > axes.x 咋自定义呀兄弟 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] tyn1998 opened a new pull request, #55: WIP: update bar-drilldown with multiple level drilldown
tyn1998 opened a new pull request, #55: URL: https://github.com/apache/echarts-examples/pull/55 ## Video Record https://user-images.githubusercontent.com/32434520/191771187-837ac176-25d4-4c60-bbfb-dfe940076a40.mov ## Todo - [ ] update the thumb of the bar-drilldown example -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] Ovilia merged pull request #67: doc: add doc for coarse-pointer
Ovilia merged PR #67: URL: https://github.com/apache/echarts-handbook/pull/67 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] Ovilia commented on a diff in pull request #67: doc: add doc for coarse-pointer
Ovilia commented on code in PR #67: URL: https://github.com/apache/echarts-handbook/pull/67#discussion_r975208291 ## contents/en/how-to/interaction/coarse-pointer.md: ## @@ -0,0 +1,27 @@ +# Intelligent Pointer Snapping + +Some interactive elements may be relatively small in charts, so sometimes it is difficult for users to click and do other operations accurately, especially on the mobile. Therefore, in Apache EChartsTM 5.4.0, we introduced the concept of "smart pointer snapping". + +Starting from this version, by default, ECharts enables pointer snapping for mobile charts and disables it for non-mobile charts. + +> If it needs to be enabled for all platforms, it can be achieved by setting `opt.useCoarserPointer` to `true` in [init](${mainSitePath}api.html#echarts.init); set to `false` is turned off for all platforms. + +## Snapping Algorithm + +When a mouse or touch event occurs, ECharts will determine whether it is interacting with an interactable element based on the position of the mouse or touch. If it is, the element is the object to be interacted with, which is the same logic before this optimization. If not, find an element that is closest to the mouse or touch position within a certain range. + +> The default range is 44px (see [W3C standard](https://www.w3.org/WAI/WCAG21/Understanding/target-size.html)), developers can set this value through `opt.pointerSize` when [init](${mainSitePath}api.html#echarts.init). + +More specifically, ECharts will loop through different angles and different radii (within `opt.pointerSize`) around the mouse or touch position until it finds an element that intersects it. If found, the element is considered to be an interactive object. + + + + +That is, if an element is within the `opt.pointerSize` radius of the mouse or touch position, the closest interactable element is considered the interactive object. Review Comment: Thanks for the review. I was using Google Translation and did not pay much attention to the difference between interactive and interactable. After a second thought, I think interactable can mean something can be interacted with (可交互的) while interactive is the adjective form of interaction (交互的). But I do like the idea to keep it simple so I changed all to be interactive. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart commented on a diff in pull request #67: doc: add doc for coarse-pointer
plainheart commented on code in PR #67: URL: https://github.com/apache/echarts-handbook/pull/67#discussion_r974997719 ## contents/en/how-to/interaction/coarse-pointer.md: ## @@ -0,0 +1,27 @@ +# Intelligent Pointer Snapping + +Some interactive elements may be relatively small in charts, so sometimes it is difficult for users to click and do other operations accurately, especially on the mobile. Therefore, in Apache EChartsTM 5.4.0, we introduced the concept of "smart pointer snapping". + +Starting from this version, by default, ECharts enables pointer snapping for mobile charts and disables it for non-mobile charts. + +> If it needs to be enabled for all platforms, it can be achieved by setting `opt.useCoarserPointer` to `true` in [init](${mainSitePath}api.html#echarts.init); set to `false` is turned off for all platforms. + +## Snapping Algorithm + +When a mouse or touch event occurs, ECharts will determine whether it is interacting with an interactable element based on the position of the mouse or touch. If it is, the element is the object to be interacted with, which is the same logic before this optimization. If not, find an element that is closest to the mouse or touch position within a certain range. + +> The default range is 44px (see [W3C standard](https://www.w3.org/WAI/WCAG21/Understanding/target-size.html)), developers can set this value through `opt.pointerSize` when [init](${mainSitePath}api.html#echarts.init). + +More specifically, ECharts will loop through different angles and different radii (within `opt.pointerSize`) around the mouse or touch position until it finds an element that intersects it. If found, the element is considered to be an interactive object. + + + + +That is, if an element is within the `opt.pointerSize` radius of the mouse or touch position, the closest interactable element is considered the interactive object. Review Comment: `interactable` seems less used and it's better to use `interactive` for consistency. ## contents/en/how-to/interaction/coarse-pointer.md: ## @@ -0,0 +1,27 @@ +# Intelligent Pointer Snapping + +Some interactive elements may be relatively small in charts, so sometimes it is difficult for users to click and do other operations accurately, especially on the mobile. Therefore, in Apache EChartsTM 5.4.0, we introduced the concept of "smart pointer snapping". + +Starting from this version, by default, ECharts enables pointer snapping for mobile charts and disables it for non-mobile charts. + +> If it needs to be enabled for all platforms, it can be achieved by setting `opt.useCoarserPointer` to `true` in [init](${mainSitePath}api.html#echarts.init); set to `false` is turned off for all platforms. + +## Snapping Algorithm + +When a mouse or touch event occurs, ECharts will determine whether it is interacting with an interactable element based on the position of the mouse or touch. If it is, the element is the object to be interacted with, which is the same logic before this optimization. If not, find an element that is closest to the mouse or touch position within a certain range. + +> The default range is 44px (see [W3C standard](https://www.w3.org/WAI/WCAG21/Understanding/target-size.html)), developers can set this value through `opt.pointerSize` when [init](${mainSitePath}api.html#echarts.init). + +More specifically, ECharts will loop through different angles and different radii (within `opt.pointerSize`) around the mouse or touch position until it finds an element that intersects it. If found, the element is considered to be an interactive object. + + + + +That is, if an element is within the `opt.pointerSize` radius of the mouse or touch position, the closest interactable element is considered the interactive object. + +## Performance + +As for the implementation, we first judge the intersection between the mouse or touch position and the AABB bounding box of all interactable elements, so as to quickly eliminate most of the elements that is not interacting. Then, we perform an accurate path intersection judgment on the remaining elements. Therefore, from the perspective of user experience, there is hardly any perceivable performance loss. Review Comment: > As for the implementation, we first judge the intersection between the mouse or touch position and the AABB bounding box of all **_interactable_** elements, so as to quickly eliminate most of the elements that **_is_** not **_interacting_**. I think it should be > As for the implementation, we first judge the intersection between the mouse or touch position and the AABB bounding box of all **_interactive_** elements, so as to quickly eliminate most of the elements that **_are_** not **_intersecting_**. ## contents/en/how-to/interaction/coarse-pointer.md: ## @@ -0,0 +1,27 @@ +# Intelligent Pointer Snapping + +Some interactive elements may be relatively small in charts, so
[GitHub] [echarts-handbook] Ovilia opened a new pull request, #67: doc: add doc for coarse-pointer
Ovilia opened a new pull request, #67: URL: https://github.com/apache/echarts-handbook/pull/67 Add doc for coarse pointer https://github.com/apache/echarts/pull/17102 . -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] SethFalco commented on a diff in pull request #37: fix: typos on docs and comments
SethFalco commented on code in PR #37: URL: https://github.com/apache/echarts-www/pull/37#discussion_r958922876 ## builder/lib/transform-dev-bundle.js: ## @@ -47983,158 +47983,158 @@ module.exports = function (fromModel) { },{"./conversions":180}],183:[function(require,module,exports){ -'use strict' - -module.exports = { - "aliceblue": [240, 248, 255], - "antiquewhite": [250, 235, 215], - "aqua": [0, 255, 255], - "aquamarine": [127, 255, 212], - "azure": [240, 255, 255], - "beige": [245, 245, 220], - "bisque": [255, 228, 196], - "black": [0, 0, 0], - "blanchedalmond": [255, 235, 205], - "blue": [0, 0, 255], - "blueviolet": [138, 43, 226], - "brown": [165, 42, 42], - "burlywood": [222, 184, 135], - "cadetblue": [95, 158, 160], - "chartreuse": [127, 255, 0], - "chocolate": [210, 105, 30], - "coral": [255, 127, 80], - "cornflowerblue": [100, 149, 237], - "cornsilk": [255, 248, 220], - "crimson": [220, 20, 60], - "cyan": [0, 255, 255], - "darkblue": [0, 0, 139], - "darkcyan": [0, 139, 139], - "darkgoldenrod": [184, 134, 11], - "darkgray": [169, 169, 169], - "darkgreen": [0, 100, 0], - "darkgrey": [169, 169, 169], - "darkkhaki": [189, 183, 107], - "darkmagenta": [139, 0, 139], - "darkolivegreen": [85, 107, 47], - "darkorange": [255, 140, 0], - "darkorchid": [153, 50, 204], - "darkred": [139, 0, 0], - "darksalmon": [233, 150, 122], - "darkseagreen": [143, 188, 143], - "darkslateblue": [72, 61, 139], - "darkslategray": [47, 79, 79], - "darkslategrey": [47, 79, 79], - "darkturquoise": [0, 206, 209], - "darkviolet": [148, 0, 211], - "deeppink": [255, 20, 147], - "deepskyblue": [0, 191, 255], - "dimgray": [105, 105, 105], - "dimgrey": [105, 105, 105], - "dodgerblue": [30, 144, 255], - "firebrick": [178, 34, 34], - "floralwhite": [255, 250, 240], - "forestgreen": [34, 139, 34], - "fuchsia": [255, 0, 255], - "gainsboro": [220, 220, 220], - "ghostwhite": [248, 248, 255], - "gold": [255, 215, 0], - "goldenrod": [218, 165, 32], - "gray": [128, 128, 128], - "green": [0, 128, 0], - "greenyellow": [173, 255, 47], - "grey": [128, 128, 128], - "honeydew": [240, 255, 240], - "hotpink": [255, 105, 180], - "indianred": [205, 92, 92], - "indigo": [75, 0, 130], - "ivory": [255, 255, 240], - "khaki": [240, 230, 140], - "lavender": [230, 230, 250], - "lavenderblush": [255, 240, 245], - "lawngreen": [124, 252, 0], - "lemonchiffon": [255, 250, 205], - "lightblue": [173, 216, 230], - "lightcoral": [240, 128, 128], - "lightcyan": [224, 255, 255], - "lightgoldenrodyellow": [250, 250, 210], - "lightgray": [211, 211, 211], - "lightgreen": [144, 238, 144], - "lightgrey": [211, 211, 211], - "lightpink": [255, 182, 193], - "lightsalmon": [255, 160, 122], - "lightseagreen": [32, 178, 170], - "lightskyblue": [135, 206, 250], - "lightslategray": [119, 136, 153], - "lightslategrey": [119, 136, 153], - "lightsteelblue": [176, 196, 222], - "lightyellow": [255, 255, 224], - "lime": [0, 255, 0], - "limegreen": [50, 205, 50], - "linen": [250, 240, 230], - "magenta": [255, 0, 255], - "maroon": [128, 0, 0], - "mediumaquamarine": [102, 205, 170], - "mediumblue": [0, 0, 205], - "mediumorchid": [186, 85, 211], - "mediumpurple": [147, 112, 219], - "mediumseagreen": [60, 179, 113], - "mediumslateblue": [123, 104, 238], - "mediumspringgreen": [0, 250, 154], - "mediumturquoise": [72, 209, 204], - "mediumvioletred": [199, 21, 133], - "midnightblue": [25, 25, 112], - "mintcream": [245, 255, 250], - "mistyrose": [255, 228, 225], - "moccasin": [255, 228, 181], - "navajowhite": [255, 222, 173], - "navy": [0, 0, 128], - "oldlace": [253, 245, 230], - "olive": [128, 128, 0], - "olivedrab": [107, 142, 35], - "orange": [255, 165, 0], - "orangered": [255, 69, 0], - "orchid": [218, 112, 214], - "palegoldenrod": [238, 232, 170], - "palegreen": [152, 251, 152], - "paleturquoise": [175, 238, 238], - "palevioletred": [219, 112, 147], - "papayawhip": [255, 239, 213], - "peachpuff": [255, 218, 185], - "peru": [205, 133, 63], - "pink": [255, 192, 203], - "plum": [221, 160, 221], - "powderblue": [176, 224, 230], - "purple": [128, 0, 128], - "rebeccapurple": [102, 51, 153], - "red": [255, 0, 0], - "rosybrown": [188, 143, 143], - "royalblue": [65, 105, 225], - "saddlebrown": [139, 69, 19], - "salmon": [250, 128, 114], -
[GitHub] [echarts-www] SethFalco commented on a diff in pull request #37: fix: typos on docs and comments
SethFalco commented on code in PR #37: URL: https://github.com/apache/echarts-www/pull/37#discussion_r958922876 ## builder/lib/transform-dev-bundle.js: ## @@ -47983,158 +47983,158 @@ module.exports = function (fromModel) { },{"./conversions":180}],183:[function(require,module,exports){ -'use strict' - -module.exports = { - "aliceblue": [240, 248, 255], - "antiquewhite": [250, 235, 215], - "aqua": [0, 255, 255], - "aquamarine": [127, 255, 212], - "azure": [240, 255, 255], - "beige": [245, 245, 220], - "bisque": [255, 228, 196], - "black": [0, 0, 0], - "blanchedalmond": [255, 235, 205], - "blue": [0, 0, 255], - "blueviolet": [138, 43, 226], - "brown": [165, 42, 42], - "burlywood": [222, 184, 135], - "cadetblue": [95, 158, 160], - "chartreuse": [127, 255, 0], - "chocolate": [210, 105, 30], - "coral": [255, 127, 80], - "cornflowerblue": [100, 149, 237], - "cornsilk": [255, 248, 220], - "crimson": [220, 20, 60], - "cyan": [0, 255, 255], - "darkblue": [0, 0, 139], - "darkcyan": [0, 139, 139], - "darkgoldenrod": [184, 134, 11], - "darkgray": [169, 169, 169], - "darkgreen": [0, 100, 0], - "darkgrey": [169, 169, 169], - "darkkhaki": [189, 183, 107], - "darkmagenta": [139, 0, 139], - "darkolivegreen": [85, 107, 47], - "darkorange": [255, 140, 0], - "darkorchid": [153, 50, 204], - "darkred": [139, 0, 0], - "darksalmon": [233, 150, 122], - "darkseagreen": [143, 188, 143], - "darkslateblue": [72, 61, 139], - "darkslategray": [47, 79, 79], - "darkslategrey": [47, 79, 79], - "darkturquoise": [0, 206, 209], - "darkviolet": [148, 0, 211], - "deeppink": [255, 20, 147], - "deepskyblue": [0, 191, 255], - "dimgray": [105, 105, 105], - "dimgrey": [105, 105, 105], - "dodgerblue": [30, 144, 255], - "firebrick": [178, 34, 34], - "floralwhite": [255, 250, 240], - "forestgreen": [34, 139, 34], - "fuchsia": [255, 0, 255], - "gainsboro": [220, 220, 220], - "ghostwhite": [248, 248, 255], - "gold": [255, 215, 0], - "goldenrod": [218, 165, 32], - "gray": [128, 128, 128], - "green": [0, 128, 0], - "greenyellow": [173, 255, 47], - "grey": [128, 128, 128], - "honeydew": [240, 255, 240], - "hotpink": [255, 105, 180], - "indianred": [205, 92, 92], - "indigo": [75, 0, 130], - "ivory": [255, 255, 240], - "khaki": [240, 230, 140], - "lavender": [230, 230, 250], - "lavenderblush": [255, 240, 245], - "lawngreen": [124, 252, 0], - "lemonchiffon": [255, 250, 205], - "lightblue": [173, 216, 230], - "lightcoral": [240, 128, 128], - "lightcyan": [224, 255, 255], - "lightgoldenrodyellow": [250, 250, 210], - "lightgray": [211, 211, 211], - "lightgreen": [144, 238, 144], - "lightgrey": [211, 211, 211], - "lightpink": [255, 182, 193], - "lightsalmon": [255, 160, 122], - "lightseagreen": [32, 178, 170], - "lightskyblue": [135, 206, 250], - "lightslategray": [119, 136, 153], - "lightslategrey": [119, 136, 153], - "lightsteelblue": [176, 196, 222], - "lightyellow": [255, 255, 224], - "lime": [0, 255, 0], - "limegreen": [50, 205, 50], - "linen": [250, 240, 230], - "magenta": [255, 0, 255], - "maroon": [128, 0, 0], - "mediumaquamarine": [102, 205, 170], - "mediumblue": [0, 0, 205], - "mediumorchid": [186, 85, 211], - "mediumpurple": [147, 112, 219], - "mediumseagreen": [60, 179, 113], - "mediumslateblue": [123, 104, 238], - "mediumspringgreen": [0, 250, 154], - "mediumturquoise": [72, 209, 204], - "mediumvioletred": [199, 21, 133], - "midnightblue": [25, 25, 112], - "mintcream": [245, 255, 250], - "mistyrose": [255, 228, 225], - "moccasin": [255, 228, 181], - "navajowhite": [255, 222, 173], - "navy": [0, 0, 128], - "oldlace": [253, 245, 230], - "olive": [128, 128, 0], - "olivedrab": [107, 142, 35], - "orange": [255, 165, 0], - "orangered": [255, 69, 0], - "orchid": [218, 112, 214], - "palegoldenrod": [238, 232, 170], - "palegreen": [152, 251, 152], - "paleturquoise": [175, 238, 238], - "palevioletred": [219, 112, 147], - "papayawhip": [255, 239, 213], - "peachpuff": [255, 218, 185], - "peru": [205, 133, 63], - "pink": [255, 192, 203], - "plum": [221, 160, 221], - "powderblue": [176, 224, 230], - "purple": [128, 0, 128], - "rebeccapurple": [102, 51, 153], - "red": [255, 0, 0], - "rosybrown": [188, 143, 143], - "royalblue": [65, 105, 225], - "saddlebrown": [139, 69, 19], - "salmon": [250, 128, 114], -
[GitHub] [echarts-wordcloud-generator] dependabot[bot] opened a new pull request, #1: build(deps-dev): bump vite from 2.5.10 to 2.9.13
dependabot[bot] opened a new pull request, #1: URL: https://github.com/apache/echarts-wordcloud-generator/pull/1 Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 2.5.10 to 2.9.13. Release notes Sourced from https://github.com/vitejs/vite/releases;>vite's releases. create-vite@2.9.5 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.5/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.4 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.4/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.3 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.3/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.2 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.2/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.1 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.1/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. Changelog Sourced from https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md;>vite's changelog. 2.9.13 (2022-06-27) fix: /@fs/ dir traversal with escaped chars (fixes https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8498;>#8498) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8805;>#8805) (https://github.com/vitejs/vite/commit/e109d64;>e109d64), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8498;>#8498 https://github-redirect.dependabot.com/vitejs/vite/issues/8805;>#8805 fix(wasm): support decoding data URL in Node v16 (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8668;>#8668) (https://github.com/vitejs/vite/commit/1afc1c2;>1afc1c2), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8668;>#8668 2.9.12 (2022-06-10) fix: outdated optimized dep removed from module graph (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8534;>#8534) (https://github.com/vitejs/vite/commit/c0d6c60;>c0d6c60), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8534;>#8534 2.9.11 (2022-06-10) fix: respect server.headers in static middlewares (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8481;>#8481) (https://github.com/vitejs/vite/commit/ab7dc1c;>ab7dc1c), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8481;>#8481 fix(dev): avoid FOUC when swapping out link tag (fix https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/7973;>#7973) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8495;>#8495) (https://github.com/vitejs/vite/commit/01fa807;>01fa807), closes https://github-redirect.dependabot.com/vitejs/vite/issues/7973;>#7973 https://github-redirect.dependabot.com/vitejs/vite/issues/8495;>#8495 2.9.10 (2022-06-06) feat: treat Astro file scripts as TS (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8151;>#8151) (https://github.com/vitejs/vite/commit/9fdd0a3;>9fdd0a3), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8151;>#8151 feat: new hook configurePreviewServer (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/7658;>#7658) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8437;>#8437) (https://github.com/vitejs/vite/commit/7b972bc;>7b972bc), closes https://github-redirect.dependabot.com/vitejs/vite/issues/7658;>#7658 https://github-redirect.dependabot.com/vitejs/vite/issues/8437;>#8437 fix: remove empty chunk css imports when using esnext (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8345;>#8345) (https://github.com/vitejs/vite/commit/9fbc1a9;>9fbc1a9), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8345;>#8345 fix: EPERM error on Windows when processing dependencies (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8235;>#8235) (https://github.com/vitejs/vite/commit/dfe4307;>dfe4307), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8235;>#8235 fix(css): remove ?used hack (fixes https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/6421;>#6421, https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8245;>#8245) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8278;>#8278) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8471;>#8471) (https://github.com/vitejs/vite/commit/8d7bac4;>8d7bac4), closes https://github-redirect.dependabot.com/vitejs/vite/issues/6421;>#6421 https://github-redirect.dependabot.com/vitejs/vite/issues/8245;>#8245 https://github-redirect.dependabot.com/vitejs/vite/issues/8278;>#8278 https://github-redirect.dependabot.com/vitejs/vite/issues/8471;>#8471 chore(lint): sort for imports (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8113;>#8113)
[GitHub] [echarts-bar-racing] dependabot[bot] opened a new pull request, #1: chore(deps-dev): bump vite from 2.3.3 to 2.9.13
dependabot[bot] opened a new pull request, #1: URL: https://github.com/apache/echarts-bar-racing/pull/1 Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 2.3.3 to 2.9.13. Release notes Sourced from https://github.com/vitejs/vite/releases;>vite's releases. create-vite@2.9.5 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.5/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.4 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.4/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.3 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.3/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.2 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.2/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. create-vite@2.9.1 Please refer to https://github.com/vitejs/vite/blob/create-vite@2.9.1/packages/create-vite/CHANGELOG.md;>CHANGELOG.md for details. Changelog Sourced from https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md;>vite's changelog. 2.9.13 (2022-06-27) fix: /@fs/ dir traversal with escaped chars (fixes https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8498;>#8498) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8805;>#8805) (https://github.com/vitejs/vite/commit/e109d64;>e109d64), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8498;>#8498 https://github-redirect.dependabot.com/vitejs/vite/issues/8805;>#8805 fix(wasm): support decoding data URL in Node v16 (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8668;>#8668) (https://github.com/vitejs/vite/commit/1afc1c2;>1afc1c2), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8668;>#8668 2.9.12 (2022-06-10) fix: outdated optimized dep removed from module graph (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8534;>#8534) (https://github.com/vitejs/vite/commit/c0d6c60;>c0d6c60), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8534;>#8534 2.9.11 (2022-06-10) fix: respect server.headers in static middlewares (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8481;>#8481) (https://github.com/vitejs/vite/commit/ab7dc1c;>ab7dc1c), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8481;>#8481 fix(dev): avoid FOUC when swapping out link tag (fix https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/7973;>#7973) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8495;>#8495) (https://github.com/vitejs/vite/commit/01fa807;>01fa807), closes https://github-redirect.dependabot.com/vitejs/vite/issues/7973;>#7973 https://github-redirect.dependabot.com/vitejs/vite/issues/8495;>#8495 2.9.10 (2022-06-06) feat: treat Astro file scripts as TS (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8151;>#8151) (https://github.com/vitejs/vite/commit/9fdd0a3;>9fdd0a3), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8151;>#8151 feat: new hook configurePreviewServer (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/7658;>#7658) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8437;>#8437) (https://github.com/vitejs/vite/commit/7b972bc;>7b972bc), closes https://github-redirect.dependabot.com/vitejs/vite/issues/7658;>#7658 https://github-redirect.dependabot.com/vitejs/vite/issues/8437;>#8437 fix: remove empty chunk css imports when using esnext (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8345;>#8345) (https://github.com/vitejs/vite/commit/9fbc1a9;>9fbc1a9), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8345;>#8345 fix: EPERM error on Windows when processing dependencies (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8235;>#8235) (https://github.com/vitejs/vite/commit/dfe4307;>dfe4307), closes https://github-redirect.dependabot.com/vitejs/vite/issues/8235;>#8235 fix(css): remove ?used hack (fixes https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/6421;>#6421, https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8245;>#8245) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8278;>#8278) (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8471;>#8471) (https://github.com/vitejs/vite/commit/8d7bac4;>8d7bac4), closes https://github-redirect.dependabot.com/vitejs/vite/issues/6421;>#6421 https://github-redirect.dependabot.com/vitejs/vite/issues/8245;>#8245 https://github-redirect.dependabot.com/vitejs/vite/issues/8278;>#8278 https://github-redirect.dependabot.com/vitejs/vite/issues/8471;>#8471 chore(lint): sort for imports (https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/8113;>#8113)
[GitHub] [echarts-handbook] Ovilia merged pull request #66: Fix typo: `area-label` → `aria-label`
Ovilia merged PR #66: URL: https://github.com/apache/echarts-handbook/pull/66 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] Ovilia commented on a diff in pull request #37: fix: typos on docs and comments
Ovilia commented on code in PR #37: URL: https://github.com/apache/echarts-www/pull/37#discussion_r956923548 ## builder/lib/transform-dev-bundle.js: ## @@ -47983,158 +47983,158 @@ module.exports = function (fromModel) { },{"./conversions":180}],183:[function(require,module,exports){ -'use strict' - -module.exports = { - "aliceblue": [240, 248, 255], - "antiquewhite": [250, 235, 215], - "aqua": [0, 255, 255], - "aquamarine": [127, 255, 212], - "azure": [240, 255, 255], - "beige": [245, 245, 220], - "bisque": [255, 228, 196], - "black": [0, 0, 0], - "blanchedalmond": [255, 235, 205], - "blue": [0, 0, 255], - "blueviolet": [138, 43, 226], - "brown": [165, 42, 42], - "burlywood": [222, 184, 135], - "cadetblue": [95, 158, 160], - "chartreuse": [127, 255, 0], - "chocolate": [210, 105, 30], - "coral": [255, 127, 80], - "cornflowerblue": [100, 149, 237], - "cornsilk": [255, 248, 220], - "crimson": [220, 20, 60], - "cyan": [0, 255, 255], - "darkblue": [0, 0, 139], - "darkcyan": [0, 139, 139], - "darkgoldenrod": [184, 134, 11], - "darkgray": [169, 169, 169], - "darkgreen": [0, 100, 0], - "darkgrey": [169, 169, 169], - "darkkhaki": [189, 183, 107], - "darkmagenta": [139, 0, 139], - "darkolivegreen": [85, 107, 47], - "darkorange": [255, 140, 0], - "darkorchid": [153, 50, 204], - "darkred": [139, 0, 0], - "darksalmon": [233, 150, 122], - "darkseagreen": [143, 188, 143], - "darkslateblue": [72, 61, 139], - "darkslategray": [47, 79, 79], - "darkslategrey": [47, 79, 79], - "darkturquoise": [0, 206, 209], - "darkviolet": [148, 0, 211], - "deeppink": [255, 20, 147], - "deepskyblue": [0, 191, 255], - "dimgray": [105, 105, 105], - "dimgrey": [105, 105, 105], - "dodgerblue": [30, 144, 255], - "firebrick": [178, 34, 34], - "floralwhite": [255, 250, 240], - "forestgreen": [34, 139, 34], - "fuchsia": [255, 0, 255], - "gainsboro": [220, 220, 220], - "ghostwhite": [248, 248, 255], - "gold": [255, 215, 0], - "goldenrod": [218, 165, 32], - "gray": [128, 128, 128], - "green": [0, 128, 0], - "greenyellow": [173, 255, 47], - "grey": [128, 128, 128], - "honeydew": [240, 255, 240], - "hotpink": [255, 105, 180], - "indianred": [205, 92, 92], - "indigo": [75, 0, 130], - "ivory": [255, 255, 240], - "khaki": [240, 230, 140], - "lavender": [230, 230, 250], - "lavenderblush": [255, 240, 245], - "lawngreen": [124, 252, 0], - "lemonchiffon": [255, 250, 205], - "lightblue": [173, 216, 230], - "lightcoral": [240, 128, 128], - "lightcyan": [224, 255, 255], - "lightgoldenrodyellow": [250, 250, 210], - "lightgray": [211, 211, 211], - "lightgreen": [144, 238, 144], - "lightgrey": [211, 211, 211], - "lightpink": [255, 182, 193], - "lightsalmon": [255, 160, 122], - "lightseagreen": [32, 178, 170], - "lightskyblue": [135, 206, 250], - "lightslategray": [119, 136, 153], - "lightslategrey": [119, 136, 153], - "lightsteelblue": [176, 196, 222], - "lightyellow": [255, 255, 224], - "lime": [0, 255, 0], - "limegreen": [50, 205, 50], - "linen": [250, 240, 230], - "magenta": [255, 0, 255], - "maroon": [128, 0, 0], - "mediumaquamarine": [102, 205, 170], - "mediumblue": [0, 0, 205], - "mediumorchid": [186, 85, 211], - "mediumpurple": [147, 112, 219], - "mediumseagreen": [60, 179, 113], - "mediumslateblue": [123, 104, 238], - "mediumspringgreen": [0, 250, 154], - "mediumturquoise": [72, 209, 204], - "mediumvioletred": [199, 21, 133], - "midnightblue": [25, 25, 112], - "mintcream": [245, 255, 250], - "mistyrose": [255, 228, 225], - "moccasin": [255, 228, 181], - "navajowhite": [255, 222, 173], - "navy": [0, 0, 128], - "oldlace": [253, 245, 230], - "olive": [128, 128, 0], - "olivedrab": [107, 142, 35], - "orange": [255, 165, 0], - "orangered": [255, 69, 0], - "orchid": [218, 112, 214], - "palegoldenrod": [238, 232, 170], - "palegreen": [152, 251, 152], - "paleturquoise": [175, 238, 238], - "palevioletred": [219, 112, 147], - "papayawhip": [255, 239, 213], - "peachpuff": [255, 218, 185], - "peru": [205, 133, 63], - "pink": [255, 192, 203], - "plum": [221, 160, 221], - "powderblue": [176, 224, 230], - "purple": [128, 0, 128], - "rebeccapurple": [102, 51, 153], - "red": [255, 0, 0], - "rosybrown": [188, 143, 143], - "royalblue": [65, 105, 225], - "saddlebrown": [139, 69, 19], - "salmon": [250, 128, 114], -
[GitHub] [echarts-www] SethFalco opened a new pull request, #37: fix: typos on docs and comments
SethFalco opened a new pull request, #37: URL: https://github.com/apache/echarts-www/pull/37 Was just checking out the website and wanted to suggest a few small changes. * Github → GitHub (GitHub is a proper noun, capitalization should be preserved.) * `–` should be `--` for CLI args, I'm guessing a formatter of some kind changed it up. * "Pelease" would be written as "Please", regardless I actually removed the word because these are instructions, not requests. * Minor formatting changes for consistency I guess, not sure what's changing and why. 樂 I'm guessing if there was an EditorConfig file configured with the projects conventions that wouldn't have happened, looks like line endings changed? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] dependabot[bot] closed pull request #54: chore(deps-dev): bump marked from 0.3.19 to 4.0.10
dependabot[bot] closed pull request #54: chore(deps-dev): bump marked from 0.3.19 to 4.0.10 URL: https://github.com/apache/echarts-examples/pull/54 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] dependabot[bot] commented on pull request #54: chore(deps-dev): bump marked from 0.3.19 to 4.0.10
dependabot[bot] commented on PR #54: URL: https://github.com/apache/echarts-examples/pull/54#issuecomment-1203377118 Looks like marked is no longer a dependency, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] dependabot[bot] opened a new pull request, #54: chore(deps-dev): bump marked from 0.3.19 to 4.0.10
dependabot[bot] opened a new pull request, #54: URL: https://github.com/apache/echarts-examples/pull/54 Bumps [marked](https://github.com/markedjs/marked) from 0.3.19 to 4.0.10. Release notes Sourced from https://github.com/markedjs/marked/releases;>marked's releases. v4.0.10 https://github.com/markedjs/marked/compare/v4.0.9...v4.0.10;>4.0.10 (2022-01-13) Bug Fixes security: fix redos vulnerabilities (https://github.com/markedjs/marked/commit/8f806573a3f6c6b7a39b8cdb66ab5ebb8d55a5f5;>8f80657) v4.0.9 https://github.com/markedjs/marked/compare/v4.0.8...v4.0.9;>4.0.9 (2022-01-06) Bug Fixes retain line breaks in tokens properly (https://github-redirect.dependabot.com/markedjs/marked/issues/2341;>#2341) (https://github.com/markedjs/marked/commit/a9696e28989c0bea2077885bab1844525e18a031;>a9696e2) v4.0.8 https://github.com/markedjs/marked/compare/v4.0.7...v4.0.8;>4.0.8 (2021-12-19) Bug Fixes spaces on a newline after a table (https://github-redirect.dependabot.com/markedjs/marked/issues/2319;>#2319) (https://github.com/markedjs/marked/commit/f82ea2cf1be0a3ad3337bcafe1c4dd3182334bb9;>f82ea2c) v4.0.7 https://github.com/markedjs/marked/compare/v4.0.6...v4.0.7;>4.0.7 (2021-12-09) Bug Fixes Fix every third list item broken (https://github-redirect.dependabot.com/markedjs/marked/issues/2318;>#2318) (https://github.com/markedjs/marked/commit/346b162bb787d3b7fb1d4879c859f64155c6ca3c;>346b162), closes https://github-redirect.dependabot.com/markedjs/marked/issues/2314;>#2314 v4.0.6 https://github.com/markedjs/marked/compare/v4.0.5...v4.0.6;>4.0.6 (2021-12-02) Bug Fixes speed up parsing long lists (https://github-redirect.dependabot.com/markedjs/marked/issues/2302;>#2302) (https://github.com/markedjs/marked/commit/e0005d8232a08827f5e99b8b35b09728b2b07503;>e0005d8) v4.0.5 https://github.com/markedjs/marked/compare/v4.0.4...v4.0.5;>4.0.5 (2021-11-25) Bug Fixes table after paragraph without blank line (https://github-redirect.dependabot.com/markedjs/marked/issues/2298;>#2298) (https://github.com/markedjs/marked/commit/5714212afd4a9ee0864fff70bad034f7c0842a3c;>5714212) v4.0.4 https://github.com/markedjs/marked/compare/v4.0.3...v4.0.4;>4.0.4 (2021-11-19) ... (truncated) Commits https://github.com/markedjs/marked/commit/ae01170085e89ccd85c233547011eb88420a90cf;>ae01170 chore(release): 4.0.10 [skip ci] https://github.com/markedjs/marked/commit/fceda573673d7fb00a5e89476a0328d4ecdb7cb7;>fceda57 ️ build [skip ci] https://github.com/markedjs/marked/commit/8f806573a3f6c6b7a39b8cdb66ab5ebb8d55a5f5;>8f80657 fix(security): fix redos vulnerabilities https://github.com/markedjs/marked/commit/c4a3ccd344b6929afa8a1d50ac54a721e57012c0;>c4a3ccd Merge pull request from GHSA-rrrm-qjm4-v8hf https://github.com/markedjs/marked/commit/d7212a63841a581de54899c20943627f6aa5dbda;>d7212a6 chore(deps-dev): Bump jasmine from 4.0.0 to 4.0.1 (https://github-redirect.dependabot.com/markedjs/marked/issues/2352;>#2352) https://github.com/markedjs/marked/commit/5a84db5598030890052d27961cc4c8f5eb353df2;>5a84db5 chore(deps-dev): Bump rollup from 2.62.0 to 2.63.0 (https://github-redirect.dependabot.com/markedjs/marked/issues/2350;>#2350) https://github.com/markedjs/marked/commit/2bc67a528588b6dba4d716e6656e5d4ec55f;>2bc67a5 chore(deps-dev): Bump markdown-it from 12.3.0 to 12.3.2 (https://github-redirect.dependabot.com/markedjs/marked/issues/2351;>#2351) https://github.com/markedjs/marked/commit/98996b853c1b62ba6177c4453ee44f5de42619c9;>98996b8 chore(deps-dev): Bump @babel/preset-env from 7.16.5 to 7.16.7 (https://github-redirect.dependabot.com/markedjs/marked/issues/2353;>#2353) https://github.com/markedjs/marked/commit/ebc2c953e7e8bafb6fa7e2792142dcbfbe959f15;>ebc2c95 chore(deps-dev): Bump highlight.js from 11.3.1 to 11.4.0 (https://github-redirect.dependabot.com/markedjs/marked/issues/2354;>#2354) https://github.com/markedjs/marked/commit/e5171a996d8a8a581c756eefb03fde25f68ffb8f;>e5171a9 chore(release): 4.0.9 [skip ci] Additional commits viewable in https://github.com/markedjs/marked/compare/v0.3.19...v4.0.10;>compare view Maintainer changes This version was pushed to npm by https://www.npmjs.com/~tonybrix;>tonybrix, a new releaser for marked since your current version. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=marked=npm_and_yarn=0.3.19=4.0.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: #
[GitHub] [echarts-handbook] fuchunhui commented on pull request #33: Clean up 'Leveraging Color to Enhance Data Visualization'
fuchunhui commented on PR #33: URL: https://github.com/apache/echarts-handbook/pull/33#issuecomment-1202096578 > Sorry for missing your pull request. These images are not broken in fact, they can work after a compilation. There is a [edit guide](https://echarts.apache.org/handbook/en/meta/edit-guide/) for your reference. If you'd like to help improve the documentation further, you are welcome to do that. :) bravo -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart closed pull request #33: Clean up 'Leveraging Color to Enhance Data Visualization'
plainheart closed pull request #33: Clean up 'Leveraging Color to Enhance Data Visualization' URL: https://github.com/apache/echarts-handbook/pull/33 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart commented on pull request #33: Clean up 'Leveraging Color to Enhance Data Visualization'
plainheart commented on PR #33: URL: https://github.com/apache/echarts-handbook/pull/33#issuecomment-1202092323 Sorry for missing your pull request. These images are not broken in fact, they can work after a compilation. There is a [edit guide](https://echarts.apache.org/handbook/en/meta/edit-guide/) for your reference. If you'd like to help improve the documentation further, you are welcome to do that. :) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart closed pull request #34: Repair broken graphics in 'Basic bar chart' best practices guide
plainheart closed pull request #34: Repair broken graphics in 'Basic bar chart' best practices guide URL: https://github.com/apache/echarts-handbook/pull/34 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart closed pull request #8: Add parentheses
plainheart closed pull request #8: Add parentheses URL: https://github.com/apache/echarts-handbook/pull/8 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #64: fix: brief title
plainheart merged PR #64: URL: https://github.com/apache/echarts-handbook/pull/64 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] fuchunhui opened a new pull request, #64: fix: brief title
fuchunhui opened a new pull request, #64: URL: https://github.com/apache/echarts-handbook/pull/64 close #8 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] fuchunhui merged pull request #63: fix: a simple typo
fuchunhui merged PR #63: URL: https://github.com/apache/echarts-handbook/pull/63 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] fuchunhui opened a new pull request, #63: fix: a simple typo
fuchunhui opened a new pull request, #63: URL: https://github.com/apache/echarts-handbook/pull/63 ``` textLineHeight => lineHeight ``` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] fuchunhui merged pull request #43: Update v5-upgrade-guide.md
fuchunhui merged PR #43: URL: https://github.com/apache/echarts-handbook/pull/43 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] fuchunhui merged pull request #54: Bump shell-quote from 1.7.2 to 1.7.3
fuchunhui merged PR #54: URL: https://github.com/apache/echarts-handbook/pull/54 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] fuchunhui merged pull request #55: Bump node-fetch from 2.6.1 to 2.6.7
fuchunhui merged PR #55: URL: https://github.com/apache/echarts-handbook/pull/55 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] fuchunhui merged pull request #60: Bump nanoid from 3.1.23 to 3.3.4
fuchunhui merged PR #60: URL: https://github.com/apache/echarts-handbook/pull/60 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #62: Fix typo
plainheart merged PR #62: URL: https://github.com/apache/echarts-handbook/pull/62 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #61: add LineChart to echarts.use
plainheart merged PR #61: URL: https://github.com/apache/echarts-handbook/pull/61 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] Yechuanjie opened a new pull request, #61: add LineChart to echarts.use
Yechuanjie opened a new pull request, #61: URL: https://github.com/apache/echarts-handbook/pull/61 document fix -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] plainheart merged pull request #50: chore(deps-dev): bump sharp from 0.29.3 to 0.30.5
plainheart merged PR #50: URL: https://github.com/apache/echarts-examples/pull/50 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] dependabot[bot] opened a new pull request, #60: Bump nanoid from 3.1.23 to 3.3.4
dependabot[bot] opened a new pull request, #60: URL: https://github.com/apache/echarts-handbook/pull/60 Bumps [nanoid](https://github.com/ai/nanoid) from 3.1.23 to 3.3.4. Changelog Sourced from https://github.com/ai/nanoid/blob/main/CHANGELOG.md;>nanoid's changelog. 3.3.4 Fixed --help in CLI (by https://github.com/Lete114;>@Lete114). 3.3.3 Reduced size (by Anton Khlynovskiy). 3.3.2 Fixed enhanced-resolve support. 3.3.1 Reduced package size. 3.3 Added size argument to function from customAlphabet (by Stefan Sundin). 3.2 Added --size and --alphabet arguments to binary (by Vitaly Baev). 3.1.32 Reduced async exports size (by Artyom Arutyunyan). Moved from Jest to uvu (by Vitaly Baev). 3.1.31 Fixed collision vulnerability on object in size (by Artyom Arutyunyan). 3.1.30 Reduced size for project with brotli compression (by Anton Khlynovskiy). 3.1.29 Reduced npm package size. 3.1.28 Reduced npm package size. 3.1.27 Cleaned dependencies from development tools. 3.1.26 Improved performance (by Eitan Har-Shoshanim). Reduced npm package size. 3.1.25 Fixed browserify support. 3.1.24 Fixed browserify support (by Artur Paikin). Commits https://github.com/ai/nanoid/commit/fc5bd0dbba830b1e6f3e572da8e2bc9ddc1b4b44;>fc5bd0d Release 3.3.4 version https://github.com/ai/nanoid/commit/5ae2628e3b2ce10081cebc59a72f15dc4f459e0b;>5ae2628 Update dependencies https://github.com/ai/nanoid/commit/2f48e9c59399fa1e9aa8693be80ad9224aaec293;>2f48e9c Try to fix CI https://github.com/ai/nanoid/commit/85991e3e2a8254c9c55b6972051560f6f446b01b;>85991e3 fix: CLI help examples (https://github-redirect.dependabot.com/ai/nanoid/issues/361;>#361) https://github.com/ai/nanoid/commit/89d994cd30cac6e2cb465ea8baf3828668ad3c88;>89d994c Update dependencies https://github.com/ai/nanoid/commit/00547e79e9717e632264af4477076a4e90c23c20;>00547e7 Fix benchmark order https://github.com/ai/nanoid/commit/a8f4099263b8c1befffcbf983977aa8862866915;>a8f4099 bench: add back @napi-rs/uuid (https://github-redirect.dependabot.com/ai/nanoid/issues/360;>#360) https://github.com/ai/nanoid/commit/acd897f565719ada3f6f9e509e818932afe23bdb;>acd897f Added postgres extension to various README files (https://github-redirect.dependabot.com/ai/nanoid/issues/359;>#359) https://github.com/ai/nanoid/commit/772a61307d127f58c750d360d925a75b3061f5a1;>772a613 Update CI and dependencies https://github.com/ai/nanoid/commit/e7aeb0fb84efef026dd6d5c4105a08160febf205;>e7aeb0f Added zig-nanoid to readme. (https://github-redirect.dependabot.com/ai/nanoid/issues/357;>#357) Additional commits viewable in https://github.com/ai/nanoid/compare/3.1.23...3.3.4;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=nanoid=npm_and_yarn=3.1.23=3.3.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and
[GitHub] [echarts-handbook] plainheart merged pull request #58: Bump terser from 4.6.9 to 4.8.1
plainheart merged PR #58: URL: https://github.com/apache/echarts-handbook/pull/58 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #59: fix typo
plainheart merged PR #59: URL: https://github.com/apache/echarts-handbook/pull/59 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] plainheart merged pull request #52: chore(deps): bump terser from 4.8.0 to 4.8.1
plainheart merged PR #52: URL: https://github.com/apache/echarts-examples/pull/52 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] Ovilia merged pull request #53: remove an example containing map
Ovilia merged PR #53: URL: https://github.com/apache/echarts-examples/pull/53 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] dependabot[bot] opened a new pull request, #58: Bump terser from 4.6.9 to 4.8.1
dependabot[bot] opened a new pull request, #58: URL: https://github.com/apache/echarts-handbook/pull/58 Bumps [terser](https://github.com/terser/terser) from 4.6.9 to 4.8.1. Changelog Sourced from https://github.com/terser/terser/blob/master/CHANGELOG.md;>terser's changelog. v4.8.1 (backport) Security fix for RegExps that should not be evaluated (regexp DDOS) v4.8.0 Support for numeric separators (million = 1_000_000) was added. Assigning properties to a class is now assumed to be pure. Fixed bug where yield wasn't considered a valid property key in generators. v4.7.0 A bug was fixed where an arrow function would have the wrong size arguments object is now considered safe to retrieve properties from (useful for length, or 0) even when pure_getters is not set. Fixed erroneous const declarations without value (which is invalid) in some corner cases when using collapse_vars. v4.6.13 Fixed issue where ES5 object properties were being turned into ES6 object properties due to more lax unicode rules. Fixed parsing of BigInt with lowercase e in them. v4.6.12 Fixed subtree comparison code, making it see that [1,[2, 3]] is different from [1, 2, [3]] Printing of unicode identifiers has been improved v4.6.11 Read unused classes' properties and method keys, to figure out if they use other variables. Prevent inlining into block scopes when there are name collisions Functions are no longer inlined into parameter defaults, because they live in their own special scope. When inlining identity functions, take into account the fact they may be used to drop this in function calls. Nullish coalescing operator (x ?? y), plus basic optimization for it. Template literals in binary expressions such as + have been further optimized v4.6.10 Do not use reduce_vars when classes are present Commits See full diff in https://github.com/terser/terser/commits;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=terser=npm_and_yarn=4.6.9=4.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-handbook/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail:
[GitHub] [echarts-examples] dependabot[bot] opened a new pull request, #52: chore(deps): bump terser from 4.8.0 to 4.8.1
dependabot[bot] opened a new pull request, #52: URL: https://github.com/apache/echarts-examples/pull/52 Bumps [terser](https://github.com/terser/terser) from 4.8.0 to 4.8.1. Changelog Sourced from https://github.com/terser/terser/blob/master/CHANGELOG.md;>terser's changelog. v4.8.1 (backport) Security fix for RegExps that should not be evaluated (regexp DDOS) Commits See full diff in https://github.com/terser/terser/commits;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=terser=npm_and_yarn=4.8.0=4.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-examples/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] jiawulin001 merged pull request #36: update photo
jiawulin001 merged PR #36: URL: https://github.com/apache/echarts-www/pull/36 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] jiawulin001 opened a new pull request, #36: update photo
jiawulin001 opened a new pull request, #36: URL: https://github.com/apache/echarts-www/pull/36 Photo updated. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] Ovilia merged pull request #35: add PMC member
Ovilia merged PR #35: URL: https://github.com/apache/echarts-www/pull/35 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] jiawulin001 opened a new pull request, #35: add PMC member
jiawulin001 opened a new pull request, #35: URL: https://github.com/apache/echarts-www/pull/35 info of Hao He's info and a photo added to PMC member list -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] dependabot[bot] closed pull request #12: chore(deps): bump eventsource from 1.1.0 to 1.1.2
dependabot[bot] closed pull request #12: chore(deps): bump eventsource from 1.1.0 to 1.1.2 URL: https://github.com/apache/echarts-bot/pull/12 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] dependabot[bot] commented on pull request #12: chore(deps): bump eventsource from 1.1.0 to 1.1.2
dependabot[bot] commented on PR #12: URL: https://github.com/apache/echarts-bot/pull/12#issuecomment-1174551540 Looks like eventsource is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #57: typo corrected
plainheart merged PR #57: URL: https://github.com/apache/echarts-handbook/pull/57 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] omkar787 opened a new pull request, #57: typo corrected
omkar787 opened a new pull request, #57: URL: https://github.com/apache/echarts-handbook/pull/57 "stacked bar chart" should be "stacked line chart" -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #56: Fix: typo 那些 -> 哪些
plainheart merged PR #56: URL: https://github.com/apache/echarts-handbook/pull/56 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] jishen027 opened a new pull request, #56: Fix: typo 那些 -> 哪些
jishen027 opened a new pull request, #56: URL: https://github.com/apache/echarts-handbook/pull/56 fix Chinese typo : - before: 那些 - after: 哪些 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] dependabot[bot] opened a new pull request, #55: Bump node-fetch from 2.6.1 to 2.6.7
dependabot[bot] opened a new pull request, #55: URL: https://github.com/apache/echarts-handbook/pull/55 Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.1 to 2.6.7. Release notes Sourced from https://github.com/node-fetch/node-fetch/releases;>node-fetch's releases. v2.6.7 Security patch release Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred What's Changed fix: don't forward secure headers to 3th party by https://github.com/jimmywarting;>@jimmywarting in https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1453;>node-fetch/node-fetch#1453 Full Changelog: https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7;>https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7 v2.6.6 What's Changed fix(URL): prefer built in URL version when available and fallback to whatwg by https://github.com/jimmywarting;>@jimmywarting in https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1352;>node-fetch/node-fetch#1352 Full Changelog: https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6;>https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6 v2.6.2 fixed main path in package.json Commits https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35;>1ef4b56 backport of https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1449;>#1449 (https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1453;>#1453) https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009;>8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1310;>#1310) https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4;>f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (... https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea;>b5417ae fix: import whatwg-url in a way compatible with ESM Node (https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1303;>#1303) https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06;>18193c5 fix v2.6.3 that did not sending query params (https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1301;>#1301) https://github.com/node-fetch/node-fetch/commit/ace7536c96be742d9910566738630cc3c2a6;>ace7536 fix: properly encode url with unicode characters (https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1291;>#1291) https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6;>152214c Fix(package.json): Corrected main file path in package.json (https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1274;>#1274) See full diff in https://github.com/node-fetch/node-fetch/compare/v2.6.1...v2.6.7;>compare view Maintainer changes This version was pushed to npm by https://www.npmjs.com/~endless;>endless, a new releaser for node-fetch since your current version. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch=npm_and_yarn=2.6.1=2.6.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this
[GitHub] [echarts-handbook] dependabot[bot] opened a new pull request, #54: Bump shell-quote from 1.7.2 to 1.7.3
dependabot[bot] opened a new pull request, #54: URL: https://github.com/apache/echarts-handbook/pull/54 Bumps [shell-quote](https://github.com/substack/node-shell-quote) from 1.7.2 to 1.7.3. Changelog Sourced from https://github.com/substack/node-shell-quote/blob/master/CHANGELOG.md;>shell-quote's changelog. 1.7.3 Fix a security issue where the regex for windows drive letters allowed some shell meta-characters to escape the quoting rules. (CVE-2021-42740) Commits https://github.com/substack/node-shell-quote/commit/6a8a899c62a58a30fb128a7079f02826ed4faee0;>6a8a899 1.7.3 https://github.com/substack/node-shell-quote/commit/5799416ed454aa4ec9afafc895b4e31760ea1abe;>5799416 fix for security issue with windows drive letter regex https://github.com/substack/node-shell-quote/commit/c7de931fa4ed0975ea9756983c88334fe4b8cde5;>c7de931 Add security.md https://github.com/substack/node-shell-quote/commit/414853f1fd98553368ce7507cd26ebae88d71b46;>414853f Update readme.markdown (https://github-redirect.dependabot.com/substack/node-shell-quote/issues/43;>#43) https://github.com/substack/node-shell-quote/commit/0fc4a978131ab68cace9c9a57cee245b6b70e595;>0fc4a97 use Github Actions (https://github-redirect.dependabot.com/substack/node-shell-quote/issues/42;>#42) See full diff in https://github.com/substack/node-shell-quote/compare/v1.7.2...1.7.3;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=shell-quote=npm_and_yarn=1.7.2=1.7.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-handbook/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] dependabot[bot] closed pull request #11: chore(deps): bump eventsource from 1.1.0 to 1.1.1
dependabot[bot] closed pull request #11: chore(deps): bump eventsource from 1.1.0 to 1.1.1 URL: https://github.com/apache/echarts-bot/pull/11 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-bot] dependabot[bot] opened a new pull request, #12: chore(deps): bump eventsource from 1.1.0 to 1.1.2
dependabot[bot] opened a new pull request, #12: URL: https://github.com/apache/echarts-bot/pull/12 Bumps [eventsource](https://github.com/EventSource/eventsource) from 1.1.0 to 1.1.2. Changelog Sourced from https://github.com/EventSource/eventsource/blob/master/HISTORY.md;>eventsource's changelog. https://github.com/EventSource/eventsource/compare/v1.1.1...v1.1.2;>1.1.2 Inline origin resolution, drops original dependency (https://github-redirect.dependabot.com/EventSource/eventsource/pull/281;>#281 Espen Hovlandsdal) https://github.com/EventSource/eventsource/compare/v1.1.0...v1.1.1;>1.1.1 Do not include authorization and cookie headers on redirect to different origin (https://github-redirect.dependabot.com/EventSource/eventsource/pull/273;>#273 Espen Hovlandsdal) Commits https://github.com/EventSource/eventsource/commit/0a8b85b7d29e63b05893fd820a3cb909ca9f5b37;>0a8b85b 1.1.2 https://github.com/EventSource/eventsource/commit/f99ae666bc0436124aed35eaadb7422dc9a07cfe;>f99ae66 docs: update history for 1.1.2 https://github.com/EventSource/eventsource/commit/06c9721b47b327301a4aefe63e0a76a0b60a7585;>06c9721 chore: rebuild polyfill https://github.com/EventSource/eventsource/commit/9494642e9f4b39f927f3952e6caad07acff688f3;>9494642 fix: inline origin resolution, drop original dependency (https://github-redirect.dependabot.com/EventSource/eventsource/issues/281;>#281) https://github.com/EventSource/eventsource/commit/aa7a40843a978f42c0babdec125bf9e0a83bf515;>aa7a408 1.1.1 https://github.com/EventSource/eventsource/commit/56d489ef853a891deca121bbd463c732fee94dce;>56d489e chore: rebuild polyfill https://github.com/EventSource/eventsource/commit/4a951e58b04118c9c4d3da3d27d454972a1b4b8d;>4a951e5 docs: update history for 1.1.1 https://github.com/EventSource/eventsource/commit/f9f6416567bff62c1af2f4314be51d9870e94bc2;>f9f6416 fix: strip sensitive headers on redirect to different origin See full diff in https://github.com/EventSource/eventsource/compare/v1.1.0...v1.1.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eventsource=npm_and_yarn=1.1.0=1.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bot/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org -
[GitHub] [echarts-bot] dependabot[bot] commented on pull request #11: chore(deps): bump eventsource from 1.1.0 to 1.1.1
dependabot[bot] commented on PR #11: URL: https://github.com/apache/echarts-bot/pull/11#issuecomment-1159739426 Superseded by #12. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] thiyaga05 opened a new issue, #51: support for angular
thiyaga05 opened a new issue, #51: URL: https://github.com/apache/echarts-examples/issues/51 Does this **echart live data edit and preview** available in **_angular_** ? `please share some sample for implementation in angular project` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] plainheart merged pull request #53: docs: legend
plainheart merged PR #53: URL: https://github.com/apache/echarts-handbook/pull/53 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] plainheart merged pull request #34: add committer
plainheart merged PR #34: URL: https://github.com/apache/echarts-www/pull/34 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] lefex opened a new pull request, #34: add committer
lefex opened a new pull request, #34: URL: https://github.com/apache/echarts-www/pull/34 add committer wangsuyan -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-examples] dependabot[bot] opened a new pull request, #50: chore(deps-dev): bump sharp from 0.29.3 to 0.30.5
dependabot[bot] opened a new pull request, #50: URL: https://github.com/apache/echarts-examples/pull/50 Bumps [sharp](https://github.com/lovell/sharp) from 0.29.3 to 0.30.5. Changelog Sourced from https://github.com/lovell/sharp/blob/main/docs/changelog.md;>sharp's changelog. v0.30.5 - 23rd May 2022 Install: pass PKG_CONFIG_PATH via env rather than substitution. https://github.com/dwisiswant0;>@dwisiswant0 Add support for --libc flag to improve cross-platform installation. https://github-redirect.dependabot.com/lovell/sharp/pull/3160;>#3160 https://github.com/joonamo;>@joonamo Allow installation of prebuilt libvips binaries from filesystem. https://github-redirect.dependabot.com/lovell/sharp/pull/3196;>#3196 https://github.com/ankurparihar;>@ankurparihar Fix rotate-then-extract for EXIF orientation 2. https://github-redirect.dependabot.com/lovell/sharp/pull/3218;>#3218 https://github.com/jakob0fischl;>@jakob0fischl v0.30.4 - 18th April 2022 Increase control over sensitivity to invalid images via failOn, deprecate failOnError (equivalent to failOn: 'warning'). Ensure create input image has correct bit depth and colour space. https://github-redirect.dependabot.com/lovell/sharp/issues/3139;>#3139 Add support for TypedArray input with byteOffset and length. https://github-redirect.dependabot.com/lovell/sharp/pull/3146;>#3146 https://github.com/codepage949;>@codepage949 Improve error message when attempting to render SVG input greater than 32767x32767. https://github-redirect.dependabot.com/lovell/sharp/issues/3167;>#3167 Add missing file name to 'Input file is missing' error message. https://github-redirect.dependabot.com/lovell/sharp/pull/3178;>#3178 https://github.com/Brodan;>@Brodan v0.30.3 - 14th March 2022 Allow sharpen options to be provided more consistently as an Object. https://github-redirect.dependabot.com/lovell/sharp/issues/2561;>#2561 Expose x1, y2 and y3 parameters of sharpen operation. https://github-redirect.dependabot.com/lovell/sharp/issues/2935;>#2935 Prevent double unpremultiply with some composite blend modes (regression in 0.30.2). https://github-redirect.dependabot.com/lovell/sharp/issues/3118;>#3118 v0.30.2 - 2nd March 2022 Improve performance and accuracy when compositing multiple images. https://github-redirect.dependabot.com/lovell/sharp/issues/2286;>#2286 ... (truncated) Commits https://github.com/lovell/sharp/commit/db654de385e06ee6c56a05aa11a11a2e2f781b14;>db654de Release v0.30.5 https://github.com/lovell/sharp/commit/a6aeef612be50f5868a77481848b1de674216f0c;>a6aeef6 Install: pass PKG_CONFIG_PATH via env rather than substitution https://github.com/lovell/sharp/commit/7bf6cbd66973a4feedbf670aa20ff184f30553d1;>7bf6cbd Docs: correct links to libvips documentation https://github.com/lovell/sharp/commit/04c31b35a7e2d88931e1cb7cde0fe1720e4685b7;>04c31b3 Install: warn about filesystem owner running npm v8+ as root https://github.com/lovell/sharp/commit/ee9cdb65987735caca614eceb7098726ebe5fd3c;>ee9cdb6 Bump deps https://github.com/lovell/sharp/commit/8960eb8309629c1c97f06aa45e605dad8c97f0c1;>8960eb8 Docs: changelog entry for https://github-redirect.dependabot.com/lovell/sharp/issues/3218;>#3218 https://github.com/lovell/sharp/commit/54d9dc46f561aa1d841db27be801e323535dafe0;>54d9dc4 Fix rotate-then-extract for EXIF orientation 2 (https://github-redirect.dependabot.com/lovell/sharp/issues/3218;>#3218) https://github.com/lovell/sharp/commit/51b4a7c564f9798eb3acb3bac6e881f75156e017;>51b4a7c Add support for --libc flag to improve cross-platform install (https://github-redirect.dependabot.com/lovell/sharp/issues/3160;>#3160) https://github.com/lovell/sharp/commit/5b03579e5c29dc38e90b0c2bb685411ff89b570e;>5b03579 Docs: more details about concurrency, parallelism, threads https://github.com/lovell/sharp/commit/58c2af3251b984e801a37d42a3f82fd80935bfb7;>58c2af3 Docs: improve output format info for toBuffer Additional commits viewable in https://github.com/lovell/sharp/compare/v0.29.3...v0.30.5;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=sharp=npm_and_yarn=0.29.3=0.30.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by
[GitHub] [echarts-bot] dependabot[bot] opened a new pull request, #11: chore(deps): bump eventsource from 1.1.0 to 1.1.1
dependabot[bot] opened a new pull request, #11: URL: https://github.com/apache/echarts-bot/pull/11 Bumps [eventsource](https://github.com/EventSource/eventsource) from 1.1.0 to 1.1.1. Changelog Sourced from https://github.com/EventSource/eventsource/blob/master/HISTORY.md;>eventsource's changelog. https://github.com/EventSource/eventsource/compare/v1.1.0...v1.1.1;>1.1.1 Do not include authorization and cookie headers on redirect to different origin (https://github-redirect.dependabot.com/EventSource/eventsource/pull/273;>#273 Espen Hovlandsdal) Commits https://github.com/EventSource/eventsource/commit/aa7a40843a978f42c0babdec125bf9e0a83bf515;>aa7a408 1.1.1 https://github.com/EventSource/eventsource/commit/56d489ef853a891deca121bbd463c732fee94dce;>56d489e chore: rebuild polyfill https://github.com/EventSource/eventsource/commit/4a951e58b04118c9c4d3da3d27d454972a1b4b8d;>4a951e5 docs: update history for 1.1.1 https://github.com/EventSource/eventsource/commit/f9f6416567bff62c1af2f4314be51d9870e94bc2;>f9f6416 fix: strip sensitive headers on redirect to different origin See full diff in https://github.com/EventSource/eventsource/compare/v1.1.0...v1.1.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eventsource=npm_and_yarn=1.1.0=1.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/echarts-bot/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-www] pissang merged pull request #33: fix(cdn): use fastly CDN temporarily
pissang merged PR #33: URL: https://github.com/apache/echarts-www/pull/33 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org
[GitHub] [echarts-handbook] pissang merged pull request #52: fix(cdn): use fastly CDN temporarily
pissang merged PR #52: URL: https://github.com/apache/echarts-handbook/pull/52 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@echarts.apache.org For additional commands, e-mail: dev-h...@echarts.apache.org