chore(deps): bump serialize-javascript from 6.0.0 to 6.0.2#7276
chore(deps): bump serialize-javascript from 6.0.0 to 6.0.2#7276dependabot[bot] wants to merge 1 commit intomainfrom
Conversation
dependabot
bot
added
dependencies
javascript
|
PR author is in the excluded authors list. |
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
https://github.com/open-condo-software/condo/blob/f71229fadd57fb54449072c7a4ba053dd67926c6/yarn.lock#L1354-L1356
This change drops the @app/pos-integration workspace block (and many other @app/* workspaces) from the monorepo lockfile while those apps are still part of the repository, so the committed yarn.lock becomes a partial/focused install snapshot rather than a full-repo lock. In CI or any full-repo setup that runs immutable installs, Yarn will need to regenerate these missing workspace entries and fail immutability checks, breaking installs for non-condo workspaces.
ℹ️ About Codex in GitHub
Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
f71229f to
c0b778b
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
c0b778b to
0e08756
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
0e08756 to
8839703
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
8839703 to
a6218fb
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
a6218fb to
ae6dcb8
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
ae6dcb8 to
d18adf8
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
d18adf8 to
03cf1c8
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
03cf1c8 to
c848aa9
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
c848aa9 to
9794eec
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
9794eec to
9fdf46b
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
9fdf46b to
7e1369c
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
7e1369c to
de71c88
Compare
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
de71c88 to
7bb1508
Compare
Bumps [serialize-javascript](https://github.com/yahoo/serialize-javascript) from 6.0.0 to 6.0.2. - [Release notes](https://github.com/yahoo/serialize-javascript/releases) - [Commits](yahoo/serialize-javascript@v6.0.0...v6.0.2) --- updated-dependencies: - dependency-name: serialize-javascript dependency-version: 6.0.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/serialize-javascript-6.0.2
branch
from
7bb1508 to
9abd674
Compare
|
Bumps serialize-javascript from 6.0.0 to 6.0.2.
Release notes
Sourced from serialize-javascript's releases.
Commits
b71ec236.0.2f27d65dfix: serialize URL string contents to prevent XSS (#173)02499c0Bump@babel/traversefrom 7.10.1 to 7.23.7 (#171)0d88527docs: update readme with URL support (#146)e2a3a91chore: update node version and lock file5a1fa64fix typo (#164)7139f92Release v6.0.1 (#157)7e23ae8Fix serialization issue for 0n. (#156)343abd9Bump json5 from 2.1.3 to 2.2.3 (#155)38d0e70Bump mocha from 10.1.0 to 10.2.0 (#153)