Граф коммитов

93 Коммитов

Автор SHA1 Сообщение Дата
Joel Mut c88cf3bd5c
Consolidate and update browser-echo-bot dependencies (#4764) 2024-10-08 09:01:32 -05:00
Joel Mut e22bdfa98e
feat: Add TS 5.6 and ESNext target support (#4763)
* Add TS 5.6 and ESNext target support

* Fix compat
2024-10-03 10:09:36 -05:00
Joel Mut 5a3540230c
bump: [#4684] Update multiple dependencies inside internal libraries to latest version (#4752)
* Update internal dependencies

* Fix minimatch
2024-09-18 16:00:12 -05:00
Cecilia Avila 2900d57094
Upgrade send dependency to latest (#4749) 2024-09-17 16:18:25 -05:00
Cecilia Avila 6203163864
Upgrade express dependency to latest (#4747) 2024-09-17 09:21:08 -05:00
dependabot[bot] e28882ae53
chore(deps): bump express (#4744)
Bumps [express](https://github.com/expressjs/express) from 4.19.2 to 4.20.0.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.20.0)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-10 15:58:23 -05:00
Joel Mut 9e5e1bb9a2
fix: [#4684] Update some dependencies to latest version (#4737)
* Fix remaining security issues

* Add semver resolution

* Fix missing webpack update

* Update yarn.lock

* Fix yarn.lock
2024-09-10 09:59:33 -05:00
dependabot[bot] 46fb7f4e99
chore(deps-dev): bump webpack (#4736)
Bumps [webpack](https://github.com/webpack/webpack) from 5.92.0 to 5.94.0.
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](https://github.com/webpack/webpack/compare/v5.92.0...v5.94.0)

---
updated-dependencies:
- dependency-name: webpack
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-10 09:37:30 -05:00
Joel Mut a3fc96eb38
bump: [#4684] Update multiple dependencies inside public libraries to latest version (#4739)
* Update dependencies in libraries' projects

* Fix some issues in testing projects

* Update root package.json typescript and @types/node versions

* Fix @types/express problem in yarn.lock

* Fix pipelines
2024-09-10 08:51:24 -05:00
dependabot[bot] bc0f4237ec
chore(deps): bump micromatch (#4732)
Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.7 to 4.0.8.
- [Release notes](https://github.com/micromatch/micromatch/releases)
- [Changelog](https://github.com/micromatch/micromatch/blob/4.0.8/CHANGELOG.md)
- [Commits](https://github.com/micromatch/micromatch/compare/4.0.7...4.0.8)

---
updated-dependencies:
- dependency-name: micromatch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-27 10:15:08 -05:00
dependabot[bot] 817532c653
chore(deps): bump axios from 1.7.2 to 1.7.4 (#4730)
Bumps [axios](https://github.com/axios/axios) from 1.7.2 to 1.7.4.
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](https://github.com/axios/axios/compare/v1.7.2...v1.7.4)

---
updated-dependencies:
- dependency-name: axios
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-26 10:30:28 -05:00
Jhonatan Sandoval Velasco 5f5a2ff919
fix: CVE-2024-42460 vulnerability with elliptic (#4729)
* update elliptic version

* updated elliptic in browser-echo-bot
2024-08-26 09:57:47 -05:00
Joel Mut 604e190e73
bump: [#4550] Add Node 18 and 20 support (#4726)
* Add Node 18 and 20 support

* Fix CI and functional pipelines

---------

Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2024-08-26 09:45:04 -05:00
Jhonatan Sandoval Velasco 0f1dd7e520
update css-loader and recognizers-text-number (#4717) 2024-07-31 07:55:37 -05:00
Joel Mut 38286e61a9
Remove unnecessary resolutions (#4719) 2024-07-26 09:10:32 -05:00
Joel Mut 1e6087d86f
fix: Remove CVE-2020-28469 vulnerability by updating the glob-parent package (#4713)
* Update glob-parent and remove it from resolutions

* Fix yarn.lock merge
2024-07-09 12:03:11 -05:00
Jhonatan Sandoval Velasco 88febbe47a
update restify to newest version (#4707) 2024-07-08 14:36:39 -05:00
Joel Mut 24da6c561e
Fix browser-functional project and pipeline, lodash.pick, sanitize-html, and jsonwebtoken (#4706) 2024-07-08 14:36:03 -05:00
Jhonatan Sandoval Velasco e4e90df474
remove use of vulnerable versions of ansi-regex (#4705) 2024-07-02 14:43:47 -05:00
Joel Mut 59e4da3a29
fix: Remove CVE-2022-25881 vulnerability by updating the http-cache-semantics package (#4703)
* Update http-cache-semantics and remove bf-chatdown library

* Remove unnecessary comments
2024-07-02 10:40:54 -05:00
Jhonatan Sandoval Velasco 00d1a4c839
fix: Remove CVE-2024-4068 vulnerability (#4696)
* update chokidar and braces

* fix browser-echo-bot
2024-06-27 14:53:14 -05:00
Jhonatan Sandoval Velasco 69e0d2e54f
update mocha version (#4687) 2024-06-21 11:08:17 -05:00
Joel Mut 7868ad5603
Update ws package to latest non-vulnerable version (#4683) 2024-06-19 15:29:02 -05:00
Jhonatan Sandoval Velasco 1172f65d04
fix: [#4657] bump the npm_and_yarn group across 2 directories with 20 updates (#4663)
* update dependencies

* remove useless updates

* revert zod update
2024-05-10 14:23:00 -05:00
dependabot[bot] 6782cddb33
chore(deps): bump express from 4.17.3 to 4.19.2 (#4637)
Bumps [express](https://github.com/expressjs/express) from 4.17.3 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.3...4.19.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 14:28:33 -05:00
dependabot[bot] 093d960528
chore(deps): bump express (#4638)
Bumps [express](https://github.com/expressjs/express) from 4.18.2 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.18.2...4.19.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 14:27:30 -05:00
dependabot[bot] 7e48ea893c
chore(deps): bump follow-redirects (#4633)
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.5 to 1.15.6.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.5...v1.15.6)

---
updated-dependencies:
- dependency-name: follow-redirects
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-19 09:00:42 -05:00
dependabot[bot] d9abb83d60
chore(deps): bump ip in /testing/browser-functional/browser-echo-bot (#4623)
Bumps [ip](https://github.com/indutny/node-ip) from 1.1.5 to 1.1.9.
- [Commits](https://github.com/indutny/node-ip/compare/v1.1.5...v1.1.9)

---
updated-dependencies:
- dependency-name: ip
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-21 08:13:16 -06:00
Jhonatan Sandoval Velasco cdd35083ec
bump: Update follow-redirects to ^1.15.4 (#4617)
* update follow-redirects to ^1.15.4

* add overrides to browser-echo
2024-02-13 08:24:30 -06:00
Jhonatan Sandoval Velasco 05ca65f627
bump: Update swagger-client to stop using lodash-compat (#4604)
* update swagger-client to stop using lodash-compat

* fix async methods
2024-01-24 08:43:34 -06:00
Jhonatan Sandoval Velasco 8a3076884b
fix: Add chromedriver binary in its updated version (#4596)
* add chromedriver binary

* remove chromedriver jobs in pipeline

* include binary information
2024-01-09 09:06:59 -06:00
Joel Mut ecb77e1c67
fix: [#4545] Please upgrade zod package - botbuilder (#4561)
* update zod in botbuilder

* change ts support in test consumer

* fix ts config

* simplify use of safeParse

* fix lint

---------

Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2023-11-09 06:27:50 -06:00
Joel Mut 6abfddf44b
fix: [#4545] Please upgrade zod package - botbuilder-dialogs (#4563)
* remove zod in botbuilder-dialogs

* update support for TS

* update botbuilder api signature

* update bf-schema api signature

* set zod versions

* remove skip

* fix lint

---------

Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2023-11-08 19:57:45 -06:00
Joel Mut 0032ed713c
Update babel (#4556) 2023-10-31 14:56:49 -05:00
dependabot[bot] 663bc95305
chore(deps): bump browserify-sign (#4554)
Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign) from 4.2.1 to 4.2.2.
- [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md)
- [Commits](https://github.com/crypto-browserify/browserify-sign/compare/v4.2.1...v4.2.2)

---
updated-dependencies:
- dependency-name: browserify-sign
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-27 16:39:13 -05:00
dependabot[bot] 6583ddc643
chore(deps): bump @babel/traverse (#4547)
Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.12.1 to 7.23.2.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse)

---
updated-dependencies:
- dependency-name: "@babel/traverse"
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-17 09:05:56 -05:00
Cecilia Avila fff65b426d
fix: [#2782] Migrate to MSAL from adal-node - Add MSAL support (#4543)
* Add MSAL support

* Remove support old TS versions 3.5, 3.6, 3.7
2023-10-10 09:02:03 -05:00
Cecilia Avila e402ecabc1
fix: Remove request package from browser-functional (#4512)
* update nightwatch version

* upgrade nightwatch to stable version

---------

Co-authored-by: JhontSouth <jhonatan.sandoval@southworks.com>
2023-08-01 08:15:50 -05:00
dependabot[bot] f7f5edb240
chore(deps): bump word-wrap (#4507)
Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap) from 1.2.3 to 1.2.4.
- [Release notes](https://github.com/jonschlinkert/word-wrap/releases)
- [Commits](https://github.com/jonschlinkert/word-wrap/compare/1.2.3...1.2.4)

---
updated-dependencies:
- dependency-name: word-wrap
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-21 09:20:54 -05:00
dependabot[bot] 31f862b724
chore(deps): bump semver in /testing/browser-functional/browser-echo-bot (#4499)
Bumps [semver](https://github.com/npm/node-semver) from 5.7.1 to 5.7.2.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2)

---
updated-dependencies:
- dependency-name: semver
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-14 10:48:07 -05:00
dependabot[bot] ebb0e7e8b8
chore(deps): bump ua-parser-js (#4422)
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.31 to 0.7.33.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/changelog.md)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.31...0.7.33)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-05 08:37:10 -05:00
dependabot[bot] b91754db2b
chore(deps): bump json5 in /testing/browser-functional/browser-echo-bot (#4402)
Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2.
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v1.0.1...v1.0.2)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-05 08:34:51 -05:00
Cecilia Avila 79b1153b8b
fix: [#4414] JS Linux Functional Test pipeline failing (#4419)
* Update Node version in Linux template

* Use S1 as default for botSku
2023-01-31 09:04:12 -06:00
dependabot[bot] 25338ee98d
chore(deps): bump minimatch (#4391)
Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2.
- [Release notes](https://github.com/isaacs/minimatch/releases)
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:40:12 -06:00
dependabot[bot] bfe5fd740d
chore(deps): bump decode-uri-component (#4386)
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2)

---
updated-dependencies:
- dependency-name: decode-uri-component
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:28:04 -06:00
dependabot[bot] a4a1a3833e
chore(deps): bump express from 4.17.1 to 4.17.3 (#4389)
Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.17.3.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.1...4.17.3)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:13:20 -06:00
dependabot[bot] 9285890604
chore(deps): bump express (#4390)
Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.18.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.1...4.18.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 12:12:29 -06:00
BruceHaley edd431aa1f
chore: Improve 'Get second latest chromedriver' logging (#4373)
* Tweak 'Get second latest chromedriver'

* Tweak

* Tweak 2

* Tweak 3
2022-11-29 21:00:09 -06:00
BruceHaley fd45365d75
chore: Upgrade node to v 16 in JS pipelines (#4372)
* Use node 16.x

* Use node 16.x for build\yaml\botbuilder-js-daily.yml
2022-11-21 17:44:15 -06:00
dependabot[bot] 8f35990e32
chore(deps): bump loader-utils (#4363)
Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.4.0 to 1.4.2.
- [Release notes](https://github.com/webpack/loader-utils/releases)
- [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md)
- [Commits](https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.2)

---
updated-dependencies:
- dependency-name: loader-utils
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-15 09:12:30 -06:00