[Snyk] Security upgrade yeoman-generator from 7.0.0 to 7.2.0#2554
Open
ashleynolan wants to merge 1969 commits intomasterfrom
Open
[Snyk] Security upgrade yeoman-generator from 7.0.0 to 7.2.0#2554ashleynolan wants to merge 1969 commits intomasterfrom
ashleynolan wants to merge 1969 commits intomasterfrom
Conversation
…e dependencies (#2056) * Update to node 16 compatible dependencies * Update devDep for f-mega-modal in f-searchbox
…sted / analysed by Bundlewatch (#2057) * Ensure dependants are built / served / tested * Update storybook version * Add comments to turborepo commands
…ble deps (#2061) * Update f-account-info to have node 16 compatible deps * Update yarn.lock
…ES6 (#2060) * Fix generator and MFA tests * Update generator changelog * Update date on changelog
…le version of f-services #trival #globalconfig (#2062) * Update DSV team components to use Node 16 compatible deps * Update Changelog * Update bundlewatch maxSize * Refactor f-user-messge to use new f-services * Add changelog and version bump
…ompatible. (#2066) * Update f-takeawaypay-activation to node 16 compatible dependencies * Update yarn.lock
…le. (#2065) * Update f-restaurant-card to use node 16 compatible dependencies * Update yarn.lock * Update date in changelog
* Added the new mfa template and applied the required css as per the figma design + Add in GB translations + fixed-up/prepared unit tests * Extended wait time from 10 to 30 + wrapped content * Made some ccs tweak and inc. the correct icon * Updated deps * Update ver * Update CHANGELOG.md * f-mfa@0.3.0 - PR comments and match designs more closely * f-mfa@0.3.0 - Replace v-html with component interpolation * Minor: PR comment Co-authored-by: billy.oliver <billy.oliver@just-eat.com> Co-authored-by: Xander Marjoram <xander.marjoram@outlook.com>
…e with Node 16 (#2068) * Update more deps to be compatible with Node 16 * Import CSS from deps to fix broken CSS
* Added Api provider for call to AccountWeb (`PostChallenge()`) * Renamed the api provider Post method so it aligns with the endpoint name Co-authored-by: billy.oliver <billy.oliver@just-eat.com>
…#2064) * Update f-registration to use node 16 compatible dependencies * Update f-card peerDependency * Update yarn.lock * Add new generated icons * Update jest snapshots * Add linebreaks
…muddle up over versions (#2074) * f-content-cards@v8.0.0-alpha.1 (#1747) * Adding Image component to start the new Content cards sub components that will begin to make up the body of a card component * change to version number and changelog * fixing a style lint error on the image component * f-content-cards@v8.0.0-alpha.2 - Adding Content card Body component (#1771) * adding content card body and change to some file anmes * adding box shadow variable in * fixing style lint issues * fixing style lint issues * adding version number * changing index name * f-content-cards@v8.0.0 alpha.3 - Adding container element (#1783) * adding the content card container component * changes to version number * change to unit tests * f-content-cards@v8.0.0-alpha.4 - Adding Voucher code component (#1788) * adding in voucher code component and tests * voucher code component * change to class names * change to how classes were evaluated * changes to style names * f-content-cards@v8.0.0-alpha.5 - Promotion Card Two (#1796) * adding in the new promotion card and unit tests for it * changes to promotion card name * package json version number change * changes to make controls work * change card type in story file * f-content-cards@v8.0.0-alpha.6 - Adding in the new Voucher Card (#1801) * adding voucher card bits * adding new voucher card * storybook update * adding promotion card 1 (#1812) * f-content-cards@v8.0.0-alpha.8 - Exporting new cards & updating card body (#1826) * adding chnages to export new cards plus some minor layout changes and an update to the voucher card * increasing size for bundlewatch until we remove the old cards * updating to beta to pull into offers page (#1844) * f-content-cards@v8.0.0-beta.2 - removing unnecessary height value (#1871) * removing unnecessary height value * adding changelog * f-content-cards@v8.0.0-beta.4 - adding in min height on image with object cover (#1878) * f-content-cards@v8.0.0-alpha.5 - Promotion Card Two (#1796) * adding in the new promotion card and unit tests for it * changes to promotion card name * package json version number change * changes to make controls work * change card type in story file * style changes to account for different image sizes * yarn lock fix * changes to fix errors * Update new content cards to use correct fozzie import * Fix sass * Add f-button as a new dependency * fixing missing padding Co-authored-by: Ben Siggery <bensiggery28@gmail.com>
…bility (#2067) * Update components for node 16 compatibility * Update bundlewatch maxSize * Tag f-content-cards as beta and explicitly state version * Fix merge conflicts * Update changelog * Update changelog * Bundlewatch bump
* f-mfa@0.5.0 - Error handling * f-mfa@0.5.0 - Update maxBundleSize * f-mfa@0.5.0 - Update error message text * f-mfa@0.5.0 - Add some test coverage
* version bump * Add chromedriver to changelog * Move circleci chrome install step
* Added - Validation of the input data (querystring) + Error page * Added methods for validating the querystring + unit tests * updated the README.md * Add some more unit tests * Typo * Added some error message translations for en-gb * Update packages/components/pages/f-mfa/src/components/_tests/Mfa.test.js Co-authored-by: Xander Marjoram <xander.marjoram@outlook.com> * Update packages/components/pages/f-mfa/src/components/_tests/Mfa.test.js Co-authored-by: Xander Marjoram <xander.marjoram@outlook.com> * fixed up review comments * Fixed up review comments Co-authored-by: billy.oliver <billy.oliver@just-eat.com> Co-authored-by: Xander Marjoram <xander.marjoram@outlook.com>
…#2083) * Instead of reading the querystring for our values they are now being supplied as properties * Updated the README.md * Update packages/components/pages/f-mfa/README.md Co-authored-by: Xander Marjoram <xander.marjoram@outlook.com> Co-authored-by: billy.oliver <billy.oliver@just-eat.com> Co-authored-by: Xander Marjoram <xander.marjoram@outlook.com>
* f-mfa@0.7.0 - Initial help page with button logic and reading copy from i18n * f-mfa@0.7.0 - Provide link to login page * f-mfa@0.8.0 - Remove duplicated styles * f-mfa@0.8.0 - Unit tests
…tions (#2086) * Prepared the storybook story to handle changing of the properties and simulating the different api responses * Update story.helper.js * Refactored warning logs, added missing 'await', fixed up tests, fixed up story mocks Co-authored-by: billy.oliver <billy.oliver@just-eat.com>
…ying Storybook (#2082) * Create base Github action config * Update config * Remove container * Add build job * Add build job * Add caching * Refactor CI * Add flag to get node_modules from cache * Prefer offline in install step * Yarn Cache + node_modules cache * Improve node caching + cache turbo * Update cache key * Add external package to vite config to fix CI * Add Storybook Deploy step * Fix turborepo caching * Fix env vars * Fix env vars * Fix env vars * Add restore step for storybook static files * Always run build regardless of turbo cache * change deploy code * Add changelogs * Fix changelog * Fix branch trigger * Fix branch trigger
* #trivial - Add gulp docs. * Update stories/guides/fozzie/fozzie-migration-guide.stories.mdx Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com> * Update stories/guides/fozzie/fozzie-migration-guide.stories.mdx Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com> * Update stories/guides/fozzie/fozzie-migration-guide.stories.mdx Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com> * Update stories/guides/fozzie/fozzie-migration-guide.stories.mdx Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com> * Update stories/guides/fozzie/fozzie-migration-guide.stories.mdx Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com> * Update stories/guides/fozzie/fozzie-migration-guide.stories.mdx Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com> * PR comments. Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com>
* some minor copy changes / fixes * changelog and version number update Co-authored-by: Xander Marjoram <xander.marjoram@outlook.com>
…m smartGatewayBaseUrl (#2088) * f-mfa@0.9.0 - Expect complete validateUrl rather than building up from smartGatewayBaseUrl * f-mfa@0.9.0 - Fix storybook action * f-mfa@0.9.0 - Update help link
* f-mfa@0.9.1 - Update code regex * f-mfa@0.9.1 - Update default code in story
) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-POSTCSS-5926692 Co-authored-by: snyk-bot <snyk-bot@snyk.io>
…e vulnerabilities (#2396) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908 - https://snyk.io/vuln/SNYK-JS-BABELTRAVERSE-5962463 - https://snyk.io/vuln/SNYK-JS-BROWSERSLIST-1090194 Co-authored-by: snyk-bot <snyk-bot@snyk.io>
* Prop changes * Version update * Removed console.log * fix(f-checkout): issue with jest transpiling axios * Changed prop authToken value for required to true * Updated prop table --------- Co-authored-by: Ben Siggery <bensiggery28@gmail.com>
…hen in error state #trivial (#2420) * Added f-spinner component to hide form before form is loaded * Updated version * Changed prop name and removed f-spinner * Removed unused import * Changed variable name and entry in changelog * Self Exclusion design changes * Changelog updated * Self Exclusion fine tunings --------- Co-authored-by: Panayot Tolev <panayot.tolev@justeattakeaway.com>
* Added navigation * Increment version --------- Co-authored-by: Panayot Tolev <panayot.tolev@justeattakeaway.com>
* f-checkout@4.12.0 - Add address alert * f-checkout@4.12.0 - Add new prop
Co-authored-by: jatin.gundabathula <jatin.gundabathula@justeattakeaway.com>
…arn v3.5.0 #globalconfig (#2370) * Update Supported Node engines (incl. v16 and v18) * Minor CHANGELOG update * Minor Volta update with Node 18 * Revert back Node 14 support * Fix build issues * Minor comment update * Minor comments corrected * Legacy open ssl provider for browser tests atoms * Fix Axios Unit test transforms Lockfile update * Changelog update * Volta pin Yarn latest * Fix vulnerabilities with Yeoman component generator * Changelog update * Component generator Version and Changelog update * Updating to use Yarn berry * Modified tests * updated package.json * removed interactive tools yarn * testing workflow change * updated workflow * resolved build errors * testing openssl for tests * removing node-sass * resolved failing tests * resolved braze tests * resolved build issue * small refactorings * updated snyk vulnerabilities * removed axios bump * investigating bundlewatch sizes * increased bundlewatch size * replaced bili with rollup * updated axios package in f-http * updated axios package in f-http * reverted axios change * small fix in package.json * updated package.json * updated yarn.lock --------- Co-authored-by: zlatin.ivanov <zlatin.ivanov@justeattakeaway.com> Co-authored-by: Ashley Watson-Nolan <nolly00@gmail.com> Co-authored-by: Lizzie Turney <49618712+LTurns@users.noreply.github.com> Co-authored-by: Lizzie Turney <lizzie.turney@justeattakeaway.com>
* Update: rating fixed point value * Update: fixed tests * Update: update review number * Update: improve tests
…ssues. #trivial (#2503)
… pie-design-tokens (#2512) * version bump of pie-design-tokens * added hoistingLimits * reverted error message change * yarn.lock update * updated snapshots * yarn.lock update --------- Co-authored-by: Lizzie Turney <lizzie.turney@justeattakeaway.com>
…threshold (#2511) * Update: add prop * Update: add more unit tests * Update: improve tests * Update: improve test names * update: fix linting * Update: add plus sign to test names * Update: change the prop name * Update: fix tests --------- Co-authored-by: Ben Siggery <14013357+siggerzz@users.noreply.github.com>
* Snyk package updates * Versioning and changelogs * Update jest * More version and changelog updates * Update test transform * Change window to global.window in searchbox tests * Undo changes * Try again * Mock JSON * Use JSON instead of window.JSON * Try jsdom statement * logging * Remove logging and set item in test * Improve localStorage mocking in checkout tests * Update chromedriver
…ook) (#2517) * fozzie-components@7.56.2 - Update vue plugin versions * Update @vue/cli-service * Update storybook to v6.5.16 * Storybook version bump * More storybook version bumps * Yarn lock update
* fozzie-components@7.56.2 - More package updates * Package updates
* fozzie-components@7.57.0 - Update babel to latest versions * Version updates
…dding Slovakia country (#2529) * Remove PT, RO, and NZ support in f-header component * bumb * Support Slovakia * update icon imports
…rom twitter to X platform (#2530) * Fix failed f-footer tests * remove unused flags * address comment * address comment * Update CHANGELOG.md * WCP-944: update test snapshot * WCP-944: remove nz tenant files
… has expired (#2515) * Handling of cases where the exclusion period has expired * Update packages/components/pages/f-self-exclusion/src/components/SelfExclusion.vue Co-authored-by: Xander Marjoram <xander.marjoram@justeattakeaway.com> * Addressed comments * Removed unused value --------- Co-authored-by: Maxim Vasilev <maxim.vasilev@justeattakeaway.com> Co-authored-by: Xander Marjoram <xander.marjoram@justeattakeaway.com>
* f-header@10.21.0 - Add support for tracking contexts * f-header@10.21.0 - Use mixin to provide prop * Add storybook controls and update READMEs * Use latest f-trak
Co-authored-by: zlatin.ivanov <zlatin.ivanov@justeattakeaway.com>
…abilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-EJS-6689533
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
20 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to fix 1 vulnerabilities in the yarn dependencies of this project.
Snyk changed the following file(s):
packages/tools/generator-component/package.jsonNote for zero-installs users
If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the
.yarn/cache/directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to runyarnto update the contents of the./yarn/cachedirectory.If you are not using zero-install you can ignore this as your flow should likely be unchanged.
Vulnerabilities that will be fixed with an upgrade:
SNYK-JS-EJS-6689533
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Improper Control of Dynamically-Managed Code Resources