Joel Mut
c88cf3bd5c
Consolidate and update browser-echo-bot dependencies ( #4764 )
2024-10-08 09:01:32 -05:00
Joel Mut
e22bdfa98e
feat: Add TS 5.6 and ESNext target support ( #4763 )
...
* Add TS 5.6 and ESNext target support
* Fix compat
2024-10-03 10:09:36 -05:00
Joel Mut
5a3540230c
bump: [ #4684 ] Update multiple dependencies inside internal libraries to latest version ( #4752 )
...
* Update internal dependencies
* Fix minimatch
2024-09-18 16:00:12 -05:00
Cecilia Avila
2900d57094
Upgrade send dependency to latest ( #4749 )
2024-09-17 16:18:25 -05:00
Cecilia Avila
6203163864
Upgrade express dependency to latest ( #4747 )
2024-09-17 09:21:08 -05:00
dependabot[bot]
e28882ae53
chore(deps): bump express ( #4744 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.19.2 to 4.20.0.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.20.0 )
---
updated-dependencies:
- dependency-name: express
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-10 15:58:23 -05:00
Joel Mut
9e5e1bb9a2
fix: [ #4684 ] Update some dependencies to latest version ( #4737 )
...
* Fix remaining security issues
* Add semver resolution
* Fix missing webpack update
* Update yarn.lock
* Fix yarn.lock
2024-09-10 09:59:33 -05:00
dependabot[bot]
46fb7f4e99
chore(deps-dev): bump webpack ( #4736 )
...
Bumps [webpack](https://github.com/webpack/webpack ) from 5.92.0 to 5.94.0.
- [Release notes](https://github.com/webpack/webpack/releases )
- [Commits](https://github.com/webpack/webpack/compare/v5.92.0...v5.94.0 )
---
updated-dependencies:
- dependency-name: webpack
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-10 09:37:30 -05:00
Joel Mut
a3fc96eb38
bump: [ #4684 ] Update multiple dependencies inside public libraries to latest version ( #4739 )
...
* Update dependencies in libraries' projects
* Fix some issues in testing projects
* Update root package.json typescript and @types/node versions
* Fix @types/express problem in yarn.lock
* Fix pipelines
2024-09-10 08:51:24 -05:00
dependabot[bot]
bc0f4237ec
chore(deps): bump micromatch ( #4732 )
...
Bumps [micromatch](https://github.com/micromatch/micromatch ) from 4.0.7 to 4.0.8.
- [Release notes](https://github.com/micromatch/micromatch/releases )
- [Changelog](https://github.com/micromatch/micromatch/blob/4.0.8/CHANGELOG.md )
- [Commits](https://github.com/micromatch/micromatch/compare/4.0.7...4.0.8 )
---
updated-dependencies:
- dependency-name: micromatch
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-27 10:15:08 -05:00
dependabot[bot]
817532c653
chore(deps): bump axios from 1.7.2 to 1.7.4 ( #4730 )
...
Bumps [axios](https://github.com/axios/axios ) from 1.7.2 to 1.7.4.
- [Release notes](https://github.com/axios/axios/releases )
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md )
- [Commits](https://github.com/axios/axios/compare/v1.7.2...v1.7.4 )
---
updated-dependencies:
- dependency-name: axios
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-26 10:30:28 -05:00
Jhonatan Sandoval Velasco
5f5a2ff919
fix: CVE-2024-42460 vulnerability with elliptic ( #4729 )
...
* update elliptic version
* updated elliptic in browser-echo-bot
2024-08-26 09:57:47 -05:00
Joel Mut
604e190e73
bump: [ #4550 ] Add Node 18 and 20 support ( #4726 )
...
* Add Node 18 and 20 support
* Fix CI and functional pipelines
---------
Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2024-08-26 09:45:04 -05:00
Jhonatan Sandoval Velasco
0f1dd7e520
update css-loader and recognizers-text-number ( #4717 )
2024-07-31 07:55:37 -05:00
Joel Mut
38286e61a9
Remove unnecessary resolutions ( #4719 )
2024-07-26 09:10:32 -05:00
Joel Mut
1e6087d86f
fix: Remove CVE-2020-28469 vulnerability by updating the glob-parent package ( #4713 )
...
* Update glob-parent and remove it from resolutions
* Fix yarn.lock merge
2024-07-09 12:03:11 -05:00
Jhonatan Sandoval Velasco
88febbe47a
update restify to newest version ( #4707 )
2024-07-08 14:36:39 -05:00
Joel Mut
24da6c561e
Fix browser-functional project and pipeline, lodash.pick, sanitize-html, and jsonwebtoken ( #4706 )
2024-07-08 14:36:03 -05:00
Jhonatan Sandoval Velasco
e4e90df474
remove use of vulnerable versions of ansi-regex ( #4705 )
2024-07-02 14:43:47 -05:00
Joel Mut
59e4da3a29
fix: Remove CVE-2022-25881 vulnerability by updating the http-cache-semantics package ( #4703 )
...
* Update http-cache-semantics and remove bf-chatdown library
* Remove unnecessary comments
2024-07-02 10:40:54 -05:00
Jhonatan Sandoval Velasco
00d1a4c839
fix: Remove CVE-2024-4068 vulnerability ( #4696 )
...
* update chokidar and braces
* fix browser-echo-bot
2024-06-27 14:53:14 -05:00
Jhonatan Sandoval Velasco
69e0d2e54f
update mocha version ( #4687 )
2024-06-21 11:08:17 -05:00
Joel Mut
7868ad5603
Update ws package to latest non-vulnerable version ( #4683 )
2024-06-19 15:29:02 -05:00
Jhonatan Sandoval Velasco
1172f65d04
fix: [ #4657 ] bump the npm_and_yarn group across 2 directories with 20 updates ( #4663 )
...
* update dependencies
* remove useless updates
* revert zod update
2024-05-10 14:23:00 -05:00
dependabot[bot]
6782cddb33
chore(deps): bump express from 4.17.3 to 4.19.2 ( #4637 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.17.3 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.17.3...4.19.2 )
---
updated-dependencies:
- dependency-name: express
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 14:28:33 -05:00
dependabot[bot]
093d960528
chore(deps): bump express ( #4638 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.18.2 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.18.2...4.19.2 )
---
updated-dependencies:
- dependency-name: express
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 14:27:30 -05:00
dependabot[bot]
7e48ea893c
chore(deps): bump follow-redirects ( #4633 )
...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects ) from 1.15.5 to 1.15.6.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases )
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.5...v1.15.6 )
---
updated-dependencies:
- dependency-name: follow-redirects
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-19 09:00:42 -05:00
dependabot[bot]
d9abb83d60
chore(deps): bump ip in /testing/browser-functional/browser-echo-bot ( #4623 )
...
Bumps [ip](https://github.com/indutny/node-ip ) from 1.1.5 to 1.1.9.
- [Commits](https://github.com/indutny/node-ip/compare/v1.1.5...v1.1.9 )
---
updated-dependencies:
- dependency-name: ip
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-21 08:13:16 -06:00
Jhonatan Sandoval Velasco
cdd35083ec
bump: Update follow-redirects to ^1.15.4 ( #4617 )
...
* update follow-redirects to ^1.15.4
* add overrides to browser-echo
2024-02-13 08:24:30 -06:00
Jhonatan Sandoval Velasco
05ca65f627
bump: Update swagger-client to stop using lodash-compat ( #4604 )
...
* update swagger-client to stop using lodash-compat
* fix async methods
2024-01-24 08:43:34 -06:00
Jhonatan Sandoval Velasco
8a3076884b
fix: Add chromedriver binary in its updated version ( #4596 )
...
* add chromedriver binary
* remove chromedriver jobs in pipeline
* include binary information
2024-01-09 09:06:59 -06:00
Joel Mut
ecb77e1c67
fix: [ #4545 ] Please upgrade zod package - botbuilder ( #4561 )
...
* update zod in botbuilder
* change ts support in test consumer
* fix ts config
* simplify use of safeParse
* fix lint
---------
Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2023-11-09 06:27:50 -06:00
Joel Mut
6abfddf44b
fix: [ #4545 ] Please upgrade zod package - botbuilder-dialogs ( #4563 )
...
* remove zod in botbuilder-dialogs
* update support for TS
* update botbuilder api signature
* update bf-schema api signature
* set zod versions
* remove skip
* fix lint
---------
Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2023-11-08 19:57:45 -06:00
Joel Mut
0032ed713c
Update babel ( #4556 )
2023-10-31 14:56:49 -05:00
dependabot[bot]
663bc95305
chore(deps): bump browserify-sign ( #4554 )
...
Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign ) from 4.2.1 to 4.2.2.
- [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md )
- [Commits](https://github.com/crypto-browserify/browserify-sign/compare/v4.2.1...v4.2.2 )
---
updated-dependencies:
- dependency-name: browserify-sign
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-27 16:39:13 -05:00
dependabot[bot]
6583ddc643
chore(deps): bump @babel/traverse ( #4547 )
...
Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse ) from 7.12.1 to 7.23.2.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse )
---
updated-dependencies:
- dependency-name: "@babel/traverse"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-17 09:05:56 -05:00
Cecilia Avila
fff65b426d
fix: [ #2782 ] Migrate to MSAL from adal-node - Add MSAL support ( #4543 )
...
* Add MSAL support
* Remove support old TS versions 3.5, 3.6, 3.7
2023-10-10 09:02:03 -05:00
Cecilia Avila
e402ecabc1
fix: Remove request package from browser-functional ( #4512 )
...
* update nightwatch version
* upgrade nightwatch to stable version
---------
Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2023-08-01 08:15:50 -05:00
dependabot[bot]
f7f5edb240
chore(deps): bump word-wrap ( #4507 )
...
Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap ) from 1.2.3 to 1.2.4.
- [Release notes](https://github.com/jonschlinkert/word-wrap/releases )
- [Commits](https://github.com/jonschlinkert/word-wrap/compare/1.2.3...1.2.4 )
---
updated-dependencies:
- dependency-name: word-wrap
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-21 09:20:54 -05:00
dependabot[bot]
31f862b724
chore(deps): bump semver in /testing/browser-functional/browser-echo-bot ( #4499 )
...
Bumps [semver](https://github.com/npm/node-semver ) from 5.7.1 to 5.7.2.
- [Release notes](https://github.com/npm/node-semver/releases )
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md )
- [Commits](https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2 )
---
updated-dependencies:
- dependency-name: semver
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-14 10:48:07 -05:00
dependabot[bot]
ebb0e7e8b8
chore(deps): bump ua-parser-js ( #4422 )
...
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js ) from 0.7.31 to 0.7.33.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases )
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/changelog.md )
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.31...0.7.33 )
---
updated-dependencies:
- dependency-name: ua-parser-js
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-05 08:37:10 -05:00
dependabot[bot]
b91754db2b
chore(deps): bump json5 in /testing/browser-functional/browser-echo-bot ( #4402 )
...
Bumps [json5](https://github.com/json5/json5 ) from 1.0.1 to 1.0.2.
- [Release notes](https://github.com/json5/json5/releases )
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md )
- [Commits](https://github.com/json5/json5/compare/v1.0.1...v1.0.2 )
---
updated-dependencies:
- dependency-name: json5
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-05 08:34:51 -05:00
Cecilia Avila
79b1153b8b
fix: [ #4414 ] JS Linux Functional Test pipeline failing ( #4419 )
...
* Update Node version in Linux template
* Use S1 as default for botSku
2023-01-31 09:04:12 -06:00
dependabot[bot]
25338ee98d
chore(deps): bump minimatch ( #4391 )
...
Bumps [minimatch](https://github.com/isaacs/minimatch ) from 3.0.4 to 3.1.2.
- [Release notes](https://github.com/isaacs/minimatch/releases )
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md )
- [Commits](https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2 )
---
updated-dependencies:
- dependency-name: minimatch
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:40:12 -06:00
dependabot[bot]
bfe5fd740d
chore(deps): bump decode-uri-component ( #4386 )
...
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component ) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases )
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2 )
---
updated-dependencies:
- dependency-name: decode-uri-component
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:28:04 -06:00
dependabot[bot]
a4a1a3833e
chore(deps): bump express from 4.17.1 to 4.17.3 ( #4389 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.17.1 to 4.17.3.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.17.1...4.17.3 )
---
updated-dependencies:
- dependency-name: express
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:13:20 -06:00
dependabot[bot]
9285890604
chore(deps): bump express ( #4390 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.17.1 to 4.18.2.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.17.1...4.18.2 )
---
updated-dependencies:
- dependency-name: express
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:12:29 -06:00
BruceHaley
edd431aa1f
chore: Improve 'Get second latest chromedriver' logging ( #4373 )
...
* Tweak 'Get second latest chromedriver'
* Tweak
* Tweak 2
* Tweak 3
2022-11-29 21:00:09 -06:00
BruceHaley
fd45365d75
chore: Upgrade node to v 16 in JS pipelines ( #4372 )
...
* Use node 16.x
* Use node 16.x for build\yaml\botbuilder-js-daily.yml
2022-11-21 17:44:15 -06:00
dependabot[bot]
8f35990e32
chore(deps): bump loader-utils ( #4363 )
...
Bumps [loader-utils](https://github.com/webpack/loader-utils ) from 1.4.0 to 1.4.2.
- [Release notes](https://github.com/webpack/loader-utils/releases )
- [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md )
- [Commits](https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.2 )
---
updated-dependencies:
- dependency-name: loader-utils
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-15 09:12:30 -06:00