Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the combined-dependencies group with 4 updates #1597

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Bump the combined-dependencies group with 4 updates #1597

wants to merge 2 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 14, 2024

Bumps the combined-dependencies group with 4 updates: @sentry/browser, govuk-frontend, rails_admin and sass.

Updates @sentry/browser from 8.33.1 to 8.34.0

Release notes

Sourced from @​sentry/browser's releases.

8.34.0

Important Changes

  • ref(nextjs): Remove dead code (#13828)

Relevant for users of the @sentry/nextjs package: If you have previously configured a SENTRY_IGNORE_API_RESOLUTION_ERROR environment variable, it is now safe to unset it.

Other Changes

  • feat(cdn): Export getReplay in replay CDN bundles (#13881)
  • feat(replay): Clear fallback buffer when switching buffers (#13914)
  • feat(replay): Upgrade rrweb packages to 2.28.0 (#13732)
  • fix(docs): Correct supported browsers due to globalThis (#13788)
  • fix(nextjs): Adjust path to requestAsyncStorageShim.js template file (#13928)
  • fix(nextjs): Detect new locations for request async storage to support Next.js v15.0.0-canary.180 and higher (#13920)
  • fix(nextjs): Drop _not-found spans for all HTTP methods (#13906)
  • fix(nextjs): Fix resolution of request storage shim fallback (#13929)
  • fix(node): Ensure graphql options are correct when preloading (#13769)
  • fix(node): Local variables handle error (#13827)
  • fix(node): Remove dataloader instrumentation from default integrations (#13873)
  • fix(nuxt): Create declaration files for Nuxt module (#13909)
  • fix(replay): Ensure replay_id is removed from frozen DSC when stopped (#13893)
  • fix(replay): Try/catch sendBufferedReplayOrFlush to prevent cycles (#13900)
  • fix(sveltekit): Ensure trace meta tags are always injected (#13231)
  • fix(sveltekit): Update wrapServerRouteWithSentry to respect ParamMatchers (#13390)
  • fix(wasm): Integration wasm uncaught WebAssembly.Exception (#13787) (#13854)
  • ref(nextjs): Ignore sentry spans based on query param attribute (#13905)
  • ref(utils): Move vercelWaitUntil to utils (#13891)

Work in this release was contributed by @​trzeciak, @​gurpreetatwal, @​ykzts and @​lizhiyao. Thank you for your contributions!

Bundle size 📦

... (truncated)

Changelog

Sourced from @​sentry/browser's changelog.

8.34.0

Important Changes

  • ref(nextjs): Remove dead code (#13828)

Relevant for users of the @sentry/nextjs package: If you have previously configured a SENTRY_IGNORE_API_RESOLUTION_ERROR environment variable, it is now safe to unset it.

Other Changes

  • feat(cdn): Export getReplay in replay CDN bundles (#13881)
  • feat(replay): Clear fallback buffer when switching buffers (#13914)
  • feat(replay): Upgrade rrweb packages to 2.28.0 (#13732)
  • fix(docs): Correct supported browsers due to globalThis (#13788)
  • fix(nextjs): Adjust path to requestAsyncStorageShim.js template file (#13928)
  • fix(nextjs): Detect new locations for request async storage to support Next.js v15.0.0-canary.180 and higher (#13920)
  • fix(nextjs): Drop _not-found spans for all HTTP methods (#13906)
  • fix(nextjs): Fix resolution of request storage shim fallback (#13929)
  • fix(node): Ensure graphql options are correct when preloading (#13769)
  • fix(node): Local variables handle error (#13827)
  • fix(node): Remove dataloader instrumentation from default integrations (#13873)
  • fix(nuxt): Create declaration files for Nuxt module (#13909)
  • fix(replay): Ensure replay_id is removed from frozen DSC when stopped (#13893)
  • fix(replay): Try/catch sendBufferedReplayOrFlush to prevent cycles (#13900)
  • fix(sveltekit): Ensure trace meta tags are always injected (#13231)
  • fix(sveltekit): Update wrapServerRouteWithSentry to respect ParamMatchers (#13390)
  • fix(wasm): Integration wasm uncaught WebAssembly.Exception (#13787) (#13854)
  • ref(nextjs): Ignore sentry spans based on query param attribute (#13905)
  • ref(utils): Move vercelWaitUntil to utils (#13891)

Work in this release was contributed by @​trzeciak, @​gurpreetatwal, @​ykzts and @​lizhiyao. Thank you for your contributions!

Commits
  • d7749ae release: 8.34.0
  • 2a1dd9a Merge pull request #13941 from getsentry/prepare-release/8.34.0
  • 20914b0 meta(changelog): Update changelog for 8.34.0
  • 86c626e fix(nextjs): Fix resolution of request storage shim fallback (#13929)
  • fcc3d2b meta(ci): Don't fail CI run when codecov fails to upload (#13930)
  • 0b00605 ci(deps): bump peter-evans/create-pull-request from 6.1.0 to 7.0.5 (#13844)
  • 6b4401f fix(nextjs): Detect new locations for request async storage to support Next.j...
  • 0be3137 fix(nextjs): Adjust path to requestAsynStorageShim.js template file (#13928)
  • d7c33a2 feat(replay): Upgrade rrweb packages to 2.28.0 (#13732)
  • 37b45c1 feat(replay): Clear fallback buffer when switching buffers (#13914)
  • Additional commits viewable in compare view

Updates govuk-frontend from 5.6.0 to 5.7.1

Release notes

Sourced from govuk-frontend's releases.

GOV.UK Frontend v5.7.1

To install this version with npm, run npm install [email protected]. You can also find more information about how to stay up to date in our documentation.

Recommended changes

Stop setting a value for File upload components

The File upload component currently supports a value parameter, which populates the value HTML attribute of the input.

However, since no modern browser supports passing a value to a file input, we've made the decision to remove this parameter. It has been deprecated and will be removed in a future version of GOV.UK Frontend.

We introduced this change in [pull request #5330: Deprecate File upload component's value parameter](alphagov/govuk-frontend#5330).

Fixes

We've made fixes to GOV.UK Frontend in the following pull requests:

GOV.UK Frontend v5.7.0

To install this version with npm, run npm install [email protected]. You can also find more information about how to stay up to date in our documentation.

New features

The Royal Arms has been updated

The Royal Arms in the GOV.UK footer has been updated to reflect the version introduced by King Charles III.

If your service does not use the image directly from the Frontend package, you should ensure the new image is being copied to your service’s image assets folder. By default this folder is located at /assets/images.

If you’re using Nunjucks, the asset path may have been changed by the assetPath global variable or assetsPath parameter on the header component.

Copy the govuk-crest.svg file from /dist/assets/images into your assets folder.

You can safely delete the old image files, named govuk-crest.png and govuk-crest-2x.png.

We introduced this change in [pull request #5376: Update the Royal Arms graphic in footer (v5.x)](alphagov/govuk-frontend#5376).

Components will not longer initialise twice on the same element

GOV.UK Frontend components now throw an error if they've already been initialised on the DOM Element they're receiving for initialisation. This prevents components from being initialised more than once and therefore not working properly.

We introduced this change in [pull request #5272: Prevent multiple initialisations of a single component instance](alphagov/govuk-frontend#5272)

Respond to initialisation errors when using createAll and initAll

We've added a new onError option for createAll and initAll that lets you respond to initialisation errors. The functions will continue catching errors and initialising components further down the page if one component fails to initialise, but this option will let you react to a component failing to initialise. For example, to allow reporting to an error monitoring service.

... (truncated)

Changelog

Sourced from govuk-frontend's changelog.

v5.7.1 (Fix release)

To install this version with npm, run npm install [email protected]. You can also find more information about how to stay up to date in our documentation.

Recommended changes

Stop setting a value for File upload components

The File upload component currently supports a value parameter, which populates the value HTML attribute of the input.

However, since no modern browser supports passing a value to a file input, we've made the decision to remove this parameter. It has been deprecated and will be removed in a future version of GOV.UK Frontend.

We introduced this change in [pull request #5330: Deprecate File upload component's value parameter](alphagov/govuk-frontend#5330).

Fixes

We've made fixes to GOV.UK Frontend in the following pull requests:

v5.7.0 (Feature release)

To install this version with npm, run npm install [email protected]. You can also find more information about how to stay up to date in our documentation.

New features

The Royal Arms has been updated

The Royal Arms in the GOV.UK footer has been updated to reflect the version introduced by King Charles III.

If your service does not use the image directly from the Frontend package, you should ensure the new image is being copied to your service’s image assets folder. By default this folder is located at /assets/images.

If you’re using Nunjucks, the asset path may have been changed by the assetPath global variable or assetsPath parameter on the header component.

Copy the govuk-crest.svg file from /dist/assets/images into your assets folder.

You can safely delete the old image files, named govuk-crest.png and govuk-crest-2x.png.

We introduced this change in [pull request #5376: Update the Royal Arms graphic in footer (v5.x)](alphagov/govuk-frontend#5376).

Components will not longer initialise twice on the same element

GOV.UK Frontend components now throw an error if they've already been initialised on the DOM Element they're receiving for initialisation. This prevents components from being initialised more than once and therefore not working properly.

We introduced this change in [pull request #5272: Prevent multiple initialisations of a single component instance](alphagov/govuk-frontend#5272)

Respond to initialisation errors when using createAll and initAll

We've added a new onError option for createAll and initAll that lets you respond to initialisation errors.

... (truncated)

Commits
  • 77521fc Merge pull request #5400 from alphagov/release-5.7.1
  • 23569ac Release v5.7.1
  • 782fba5 Merge pull request #5330 from alphagov/file-upload-deprecate-value-param
  • 8a95be4 Mark file upload ‘value’ parameter as deprecated
  • 4e1ccea Merge pull request #5396 from alphagov/update-organisation-colours-oct-2024
  • 617ef04 Update for Scotland and Wales office rebrands
  • 1bc77e1 Update DCMS, Defra, DSIT and FCDO brand colours
  • 6805620 Merge pull request #5390 from alphagov/component-options-this-root
  • 663748a Merge pull request #5394 from alphagov/release-5.7.0
  • 9fb4b89 Release v5.7.0
  • Additional commits viewable in compare view

Updates rails_admin from 3.2.0 to 3.2.1

Changelog

Sourced from rails_admin's changelog.

Commits
  • b09f770 Version 3.2.1
  • f54a102 Disable Turbo's prefetch, which became default in turbo-rails 2.x
  • 44579f0 Install ImageMagick as it's no longer included in 24.04 image
  • ca232e7 Avoid newer turbo-rails for Ruby 2.6 build
  • 586db0c Avoid turbo-rails versions that are incompatible with Ruby 2.6
  • 10bf495 Add specs for non-nullable boolean field
  • 195ef0b Unlock vite/vite-plugin-ruby dependency to fix the vite build
  • See full diff in compare view

Updates sass from 1.79.4 to 1.79.5

Release notes

Sourced from sass's releases.

Dart Sass 1.79.5

To install Sass 1.79.5, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • Changes to how selector.unify() and @extend combine selectors:

    • The relative order of pseudo-classes (like :hover) and pseudo-elements (like ::before) within each original selector is now preserved when they're combined.

    • Pseudo selectors are now consistently placed at the end of the combined selector, regardless of which selector they came from. Previously, this reordering only applied to pseudo-selectors in the second selector.

  • Tweak the color transformation matrices for OKLab and OKLCH to match the newer, more accurate values in the CSS spec.

  • Fix a slight inaccuracy case when converting to srgb-linear and display-p3.

  • Potentially breaking bug fix: math.unit() now wraps multiple denominator units in parentheses. For example, px/(em*em) instead of px/em*em.

Command-Line Interface

  • Use @parcel/watcher to watch the filesystem when running from JavaScript and not using --poll. This should mitigate more frequent failures users have been seeing since version 4.0.0 of Chokidar, our previous watching tool, was released.

JS API

  • Fix SassColor.interpolate() to allow an undefined options parameter, as the types indicate.

Embedded Sass

  • Properly pass missing color channel values to and from custom functions.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.79.5

  • Changes to how selector.unify() and @extend combine selectors:

    • The relative order of pseudo-classes (like :hover) and pseudo-elements (like ::before) within each original selector is now preserved when they're combined.

    • Pseudo selectors are now consistently placed at the end of the combined selector, regardless of which selector they came from. Previously, this reordering only applied to pseudo-selectors in the second selector.

  • Tweak the color transformation matrices for OKLab and OKLCH to match the newer, more accurate values in the CSS spec.

  • Fix a slight inaccuracy case when converting to srgb-linear and display-p3.

  • Potentially breaking bug fix: math.unit() now wraps multiple denominator units in parentheses. For example, px/(em*em) instead of px/em*em.

Command-Line Interface

  • Use @parcel/watcher to watch the filesystem when running from JavaScript and not using --poll. This should mitigate more frequent failures users have been seeing since version 4.0.0 of Chokidar, our previous watching tool, was released.

JS API

  • Fix SassColor.interpolate() to allow an undefined options parameter, as the types indicate.

Embedded Sass

  • Properly pass missing color channel values to and from custom functions.
Commits
  • 7290399 Partially replace chokidar with @​parcel/watcher (#2379)
  • 85b467b Update LMS matrices (#2374)
  • 2c5f1e9 Use correct notation for multiple denominator units (#2375)
  • d58e219 Add sass-parser support for for the @supports rule (#2378)
  • 5535d1f Fix srgb to linear (#2372)
  • 5acae8a Fix JS API color.interpolate(color2) without options (#2369)
  • 4890989 Add support for missing color channels to the protofier (#2366)
  • 67fecff unifyComound() and unifyComplex() no longer move pseudo-classes across pseudo...
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the combined-dependencies group with 4 updates
00748e1 
Bumps the combined-dependencies group with 4 updates: [@sentry/browser](https://github.com/getsentry/sentry-javascript), [govuk-frontend](https://github.com/alphagov/govuk-frontend), [rails_admin](https://github.com/railsadminteam/rails_admin) and [sass](https://github.com/sass/dart-sass).


Updates `@sentry/browser` from 8.33.1 to 8.34.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md)
- [Commits](getsentry/sentry-javascript@8.33.1...8.34.0)

Updates `govuk-frontend` from 5.6.0 to 5.7.1
- [Release notes](https://github.com/alphagov/govuk-frontend/releases)
- [Changelog](https://github.com/alphagov/govuk-frontend/blob/main/CHANGELOG.md)
- [Commits](alphagov/govuk-frontend@v5.6.0...v5.7.1)

Updates `rails_admin` from 3.2.0 to 3.2.1
- [Changelog](https://github.com/railsadminteam/rails_admin/blob/master/CHANGELOG.md)
- [Commits](railsadminteam/rails_admin@v3.2.0...v3.2.1)

Updates `sass` from 1.79.4 to 1.79.5
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.79.4...1.79.5)

---
updated-dependencies:
- dependency-name: "@sentry/browser"
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: combined-dependencies
- dependency-name: govuk-frontend
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: combined-dependencies
- dependency-name: rails_admin
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: combined-dependencies
- dependency-name: sass
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: combined-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner October 14, 2024 06:17
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Oct 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@willc-work