Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump axios from 1.5.1 to 1.6.0 #674

Merged
merged 1 commit into from
Jan 3, 2024
Merged

chore(deps): bump axios from 1.5.1 to 1.6.0 #674

merged 1 commit into from
Jan 3, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 10, 2023
edited
Loading

Bumps axios from 1.5.1 to 1.6.0.

Release notes

Sourced from axios's releases.

Release v1.6.0

Release notes:

Bug Fixes

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

Contributors to this release

Changelog

Sourced from axios's changelog.

1.6.0 (2023-10-26)

Bug Fixes

PRs

  • CVE 2023 45857 ( #6028 )

⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459

Contributors to this release

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 10, 2023
@vercel Vercel
Copy link

vercel bot commented Nov 10, 2023
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
instill-form-playground ✅ Ready (Inspect) Visit Preview 💬 Add feedback Nov 24, 2023 0:30am

@github-actions GitHub Actions
Copy link

📦 Next.js Bundle Analysis for instillai-console

This analysis was generated by the Next.js Bundle Analysis action. 🤖

🎉 Global Bundle Size Decreased

Page Size (compressed)
global 1.61 MB (-16 B)
Details

The global bundle is the javascript bundle that loads alongside every page. It is in its own category because its impact is much higher - an increase to its size means that every page on your website loads slower, and a decrease means every page loads faster.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

If you want further insight into what is behind the changes, give @next/bundle-analyzer a try!

Eleven Pages Changed Size

The following pages changed size from the code in this PR compared to its base branch:

Page Size (compressed) First Load
/[entity]/connectors 811 B (🟢 -2 B) 1.61 MB
/[entity]/connectors/[id] 814 B (🟢 -3 B) 1.61 MB
/[entity]/dashboard 797 B (🟢 -2 B) 1.61 MB
/[entity]/dashboard/pipeline/[id] 826 B (🟢 -2 B) 1.61 MB
/[entity]/model-hub 803 B (🟢 -2 B) 1.61 MB
/[entity]/model-hub/[id] 929 B (🟢 -3 B) 1.61 MB
/[entity]/model-hub/create 827 B (🟢 -4 B) 1.61 MB
/[entity]/pipelines 802 B (🟢 -2 B) 1.61 MB
/[entity]/pipelines/[id] 805 B (🟢 -1 B) 1.61 MB
/login 1.15 KB (🟢 -2 B) 1.61 MB
/settings 845 B (🟢 -2 B) 1.61 MB
Details

Only the gzipped size is provided here based on an expert tip.

First Load is the size of the global bundle plus the bundle for the individual page. If a user were to show up to your website and land on a given page, the first load size represents the amount of javascript that user would need to download. If next/link is used, subsequent page loads would only need to download that page's bundle (the number in the "Size" column), since the global bundle has already been downloaded.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

Next to the size is how much the size has increased or decreased compared with the base branch of this PR. If this percentage has increased by undefined% or more, there will be a red status indicator applied, indicating that special attention should be given to this.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/axios-1.6.0 branch from e376c2a to 9c319ae Compare November 20, 2023 12:59
@github-actions GitHub Actions
Copy link

📦 Next.js Bundle Analysis for instillai-console

This analysis was generated by the Next.js Bundle Analysis action. 🤖

⚠️ Global Bundle Size Increased

Page Size (compressed)
global 1.74 MB (🟢 238 B)
Details

The global bundle is the javascript bundle that loads alongside every page. It is in its own category because its impact is much higher - an increase to its size means that every page on your website loads slower, and a decrease means every page loads faster.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

If you want further insight into what is behind the changes, give @next/bundle-analyzer a try!

Eleven Pages Changed Size

The following pages changed size from the code in this PR compared to its base branch:

Page Size (compressed) First Load
/[entity]/connectors 811 B (🟢 -2 B) 1.74 MB
/[entity]/connectors/[id] 814 B (🟢 -3 B) 1.74 MB
/[entity]/dashboard 797 B (🟢 -2 B) 1.74 MB
/[entity]/dashboard/pipeline/[id] 826 B (🟢 -2 B) 1.74 MB
/[entity]/model-hub 803 B (🟢 -2 B) 1.74 MB
/[entity]/model-hub/[id] 929 B (🟢 -3 B) 1.74 MB
/[entity]/model-hub/create 827 B (🟢 -4 B) 1.74 MB
/[entity]/pipelines 802 B (🟢 -2 B) 1.74 MB
/[entity]/pipelines/[id] 805 B (🟢 -1 B) 1.74 MB
/login 1.15 KB (🟢 -2 B) 1.74 MB
/settings 845 B (🟢 -2 B) 1.74 MB
Details

Only the gzipped size is provided here based on an expert tip.

First Load is the size of the global bundle plus the bundle for the individual page. If a user were to show up to your website and land on a given page, the first load size represents the amount of javascript that user would need to download. If next/link is used, subsequent page loads would only need to download that page's bundle (the number in the "Size" column), since the global bundle has already been downloaded.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

Next to the size is how much the size has increased or decreased compared with the base branch of this PR. If this percentage has increased by undefined% or more, there will be a red status indicator applied, indicating that special attention should be given to this.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/axios-1.6.0 branch from 9c319ae to 212eb2b Compare November 23, 2023 06:39
@github-actions GitHub Actions
Copy link

📦 Next.js Bundle Analysis for instillai-console

This analysis was generated by the Next.js Bundle Analysis action. 🤖

🎉 Global Bundle Size Decreased

Page Size (compressed)
global 1.75 MB (-24 B)
Details

The global bundle is the javascript bundle that loads alongside every page. It is in its own category because its impact is much higher - an increase to its size means that every page on your website loads slower, and a decrease means every page loads faster.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

If you want further insight into what is behind the changes, give @next/bundle-analyzer a try!

Thirteen Pages Changed Size

The following pages changed size from the code in this PR compared to its base branch:

Page Size (compressed) First Load
/ 562 B (🟢 -3 B) 1.75 MB
/[entity]/connectors 811 B (🟢 -3 B) 1.75 MB
/[entity]/connectors/[id] 814 B (🟢 -6 B) 1.75 MB
/[entity]/dashboard 797 B (🟢 -4 B) 1.75 MB
/[entity]/dashboard/pipeline/[id] 826 B (🟢 -4 B) 1.75 MB
/[entity]/model-hub 803 B (🟢 -4 B) 1.75 MB
/[entity]/model-hub/[id] 929 B (🟢 -4 B) 1.75 MB
/[entity]/model-hub/create 827 B (🟢 -5 B) 1.75 MB
/[entity]/pipelines 802 B (🟢 -4 B) 1.75 MB
/[entity]/pipelines/[id] 805 B (🟢 -2 B) 1.75 MB
/login 1.15 KB (🟢 -2 B) 1.75 MB
/onboarding 493 B (🟢 -1 B) 1.75 MB
/settings 845 B (🟢 -2 B) 1.75 MB
Details

Only the gzipped size is provided here based on an expert tip.

First Load is the size of the global bundle plus the bundle for the individual page. If a user were to show up to your website and land on a given page, the first load size represents the amount of javascript that user would need to download. If next/link is used, subsequent page loads would only need to download that page's bundle (the number in the "Size" column), since the global bundle has already been downloaded.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

Next to the size is how much the size has increased or decreased compared with the base branch of this PR. If this percentage has increased by undefined% or more, there will be a red status indicator applied, indicating that special attention should be given to this.

@dependabot
chore(deps): bump axios from 1.5.1 to 1.6.0
ce4aee3 
Bumps [axios](https://github.com/axios/axios) from 1.5.1 to 1.6.0.
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.5.1...v1.6.0)

---
updated-dependencies:
- dependency-name: axios
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/axios-1.6.0 branch from 212eb2b to ce4aee3 Compare November 24, 2023 12:25
@github-actions GitHub Actions
Copy link

📦 Next.js Bundle Analysis for instillai-console

This analysis was generated by the Next.js Bundle Analysis action. 🤖

🎉 Global Bundle Size Decreased

Page Size (compressed)
global 1.94 MB (🟢 -482 B)
Details

The global bundle is the javascript bundle that loads alongside every page. It is in its own category because its impact is much higher - an increase to its size means that every page on your website loads slower, and a decrease means every page loads faster.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

If you want further insight into what is behind the changes, give @next/bundle-analyzer a try!

Thirteen Pages Changed Size

The following pages changed size from the code in this PR compared to its base branch:

Page Size (compressed) First Load
/ 562 B (🟢 -3 B) 1.94 MB
/[entity]/connectors 811 B (🟢 -3 B) 1.94 MB
/[entity]/connectors/[id] 814 B (🟢 -6 B) 1.94 MB
/[entity]/dashboard 797 B (🟢 -4 B) 1.94 MB
/[entity]/dashboard/pipeline/[id] 826 B (🟢 -4 B) 1.94 MB
/[entity]/model-hub 803 B (🟢 -4 B) 1.94 MB
/[entity]/model-hub/[id] 929 B (🟢 -4 B) 1.94 MB
/[entity]/model-hub/create 827 B (🟢 -5 B) 1.94 MB
/[entity]/pipelines 802 B (🟢 -4 B) 1.94 MB
/[entity]/pipelines/[id] 805 B (🟢 -2 B) 1.94 MB
/login 1.15 KB (🟢 -2 B) 1.94 MB
/onboarding 493 B (🟢 -1 B) 1.94 MB
/settings 845 B (🟢 -2 B) 1.94 MB
Details

Only the gzipped size is provided here based on an expert tip.

First Load is the size of the global bundle plus the bundle for the individual page. If a user were to show up to your website and land on a given page, the first load size represents the amount of javascript that user would need to download. If next/link is used, subsequent page loads would only need to download that page's bundle (the number in the "Size" column), since the global bundle has already been downloaded.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

Next to the size is how much the size has increased or decreased compared with the base branch of this PR. If this percentage has increased by undefined% or more, there will be a red status indicator applied, indicating that special attention should be given to this.

@EiffelFly EiffelFly merged commit 44d868b into main Jan 3, 2024
11 checks passed
@EiffelFly EiffelFly deleted the dependabot/npm_and_yarn/axios-1.6.0 branch January 3, 2024 08:51
@droplet-bot droplet-bot mentioned this pull request Jan 3, 2024
Merged
EiffelFly pushed a commit that referenced this pull request Jan 15, 2024
@droplet-bot
chore: release main (#855)
d80b97d 
🤖 I have created a release *beep* *boop*
---


<details><summary>0.36.0-beta</summary>

##
[0.36.0-beta](v0.35.1-beta...v0.36.0-beta)
(2024-01-15)


### Features

* adapt the new icon path for operators and connectors
([#867](#867))
([7311370](7311370))
* add loading state into pipelines/pid page to increase ux
([#875](#875))
([badf238](badf238))
* add the placeholder for the pipeline description editor
([#872](#872))
([511a520](511a520))
* improve the namespace hint when clone the pipeline
([#884](#884))
([822d36e](822d36e))
* **pipeline-builder:** improve the connector is not specified warning
on the pipeline-builder component
([#879](#879))
([cf8494d](cf8494d))
* **pipeline-builder:** support new ${} reference syntax
([#868](#868))
([9a6b005](9a6b005))
* **user:** implement image crop for rectangle user portrait
([#880](#880))
([e14af3f](e14af3f))


### Bug Fixes

* fix console fetch the wrong model readme namespace
([#863](#863))
([85ce0a8](85ce0a8))
* fix duplicate pipeline didnt carry over pipeline brief
([#876](#876))
([54752ee](54752ee))
* fix font not consistent on dashboard and improve the font optimization
([#873](#873))
([18fc2c3](18fc2c3))
* fix markdown editor of pipeline description can not show ol and ul
([#871](#871))
([fb0da5a](fb0da5a))
* **auto-form:** fix instillUIMultiline attribute is not working within
auto-form ([#854](#854))
([8aa47bf](8aa47bf))
* fix anchor tag overflow in the component formatted output
([#881](#881))
([1f15663](1f15663))
* fix log in to clone not correctly redirect user to login
([#877](#877))
([b547470](b547470))
* fix markdown editor of pipeline description can not show ol and ul
([#871](#871))
([fb0da5a](fb0da5a))
* fix start operator json input not working in /pipelines/pid page
([#858](#858))
([3341248](3341248))
* fix the drift of the loading state of /pipelines/pid page
([#882](#882))
([bbf5de9](bbf5de9))
* fix the wrong state in ResourceTable cause the wrong behavior of
delete resource dialog
([#869](#869))
([e048116](e048116))
* fix wrongly wrapped line of namespace in create and clone pipeline
dialog ([#862](#862))
([6ccdac0](6ccdac0))
* **hub:** filter out logged in user private pipeline on hub
([#865](#865))
([5b50808](5b50808))
* improve namespace hint of pipeline creation process
([#883](#883))
([544e22b](544e22b))
* **pipeline-builder:** fix can not reference comp output and form the
edges ([#866](#866))
([2a8fd68](2a8fd68))
* **pipeline-builder:** fix can't correctly pour in instill-model enum
for connector ([#885](#885))
([59366ea](59366ea))
* **pipeline-builder:** fix pipeline builder not correctly handle deep
nested object referenced link
([#857](#857))
([edab862](edab862))
* **pipeline-builder:** fix the component output not react to the
selected task ([#874](#874))
([c8a1473](c8a1473))
* **pipeline-builder:** fix wrongly position component when there only
have start and end operator
([#870](#870))
([f59b25b](f59b25b))


### Miscellaneous

* add Marketing into InstillUserRoles
([#861](#861))
([785a0b0](785a0b0))
* **deps:** bump axios from 1.5.1 to 1.6.0
([#674](#674))
([44d868b](44d868b))
* increase the duration of error toast notification
([#878](#878))
([539c349](539c349))
* make creating private pipeline as default option
([#859](#859))
([e078b57](e078b57))
* remove the expire data in the API token table
([#864](#864))
([2cbf9f2](2cbf9f2))
* replace "clone" with "Log in to Clone" when the user is not logged in
([#860](#860))
([871114a](871114a))
* **user-profile:** user profile update pipeline query
([#856](#856))
([f655d92](f655d92))
</details>

<details><summary>@instill-ai/design-system: 0.61.1</summary>

##
[0.61.1](https://github.com/instill-ai/console/compare/@instill-ai/design-system-v0.61.0...@instill-ai/design-system-v0.61.1)
(2024-01-15)


### Miscellaneous

* make creating private pipeline as default option
([#859](#859))
([e078b57](e078b57))
</details>

<details><summary>@instill-ai/eslint-config-cortex: 0.7.2</summary>

##
[0.7.2](https://github.com/instill-ai/console/compare/@instill-ai/eslint-config-cortex-v0.7.1...@instill-ai/eslint-config-cortex-v0.7.2)
(2024-01-15)


### Miscellaneous

* make creating private pipeline as default option
([#859](#859))
([e078b57](e078b57))
</details>

<details><summary>@instill-ai/toolkit: 0.78.0</summary>

##
[0.78.0](https://github.com/instill-ai/console/compare/@instill-ai/toolkit-v0.77.3...@instill-ai/toolkit-v0.78.0)
(2024-01-15)


### Features

* adapt the new icon path for operators and connectors
([#867](#867))
([7311370](7311370))
* add loading state into pipelines/pid page to increase ux
([#875](#875))
([badf238](badf238))
* add the placeholder for the pipeline description editor
([#872](#872))
([511a520](511a520))
* improve the namespace hint when clone the pipeline
([#884](#884))
([822d36e](822d36e))
* **pipeline-builder:** improve the connector is not specified warning
on the pipeline-builder component
([#879](#879))
([cf8494d](cf8494d))
* **pipeline-builder:** support new ${} reference syntax
([#868](#868))
([9a6b005](9a6b005))
* **user:** implement image crop for rectangle user portrait
([#880](#880))
([e14af3f](e14af3f))


### Bug Fixes

* **auto-form:** fix instillUIMultiline attribute is not working within
auto-form ([#854](#854))
([8aa47bf](8aa47bf))
* fix anchor tag overflow in the component formatted output
([#881](#881))
([1f15663](1f15663))
* fix console fetch the wrong model readme namespace
([#863](#863))
([85ce0a8](85ce0a8))
* fix duplicate pipeline didnt carry over pipeline brief
([#876](#876))
([54752ee](54752ee))
* fix font not consistent on dashboard and improve the font optimization
([#873](#873))
([18fc2c3](18fc2c3))
* fix log in to clone not correctly redirect user to login
([#877](#877))
([b547470](b547470))
* fix markdown editor of pipeline description can not show ol and ul
([#871](#871))
([fb0da5a](fb0da5a))
* fix start operator json input not working in /pipelines/pid page
([#858](#858))
([3341248](3341248))
* fix the drift of the loading state of /pipelines/pid page
([#882](#882))
([bbf5de9](bbf5de9))
* fix the wrong state in ResourceTable cause the wrong behavior of
delete resource dialog
([#869](#869))
([e048116](e048116))
* fix wrongly wrapped line of namespace in create and clone pipeline
dialog ([#862](#862))
([6ccdac0](6ccdac0))
* **hub:** filter out logged in user private pipeline on hub
([#865](#865))
([5b50808](5b50808))
* improve namespace hint of pipeline creation process
([#883](#883))
([544e22b](544e22b))
* **pipeline-builder:** fix can not reference comp output and form the
edges ([#866](#866))
([2a8fd68](2a8fd68))
* **pipeline-builder:** fix can't correctly pour in instill-model enum
for connector ([#885](#885))
([59366ea](59366ea))
* **pipeline-builder:** fix pipeline builder not correctly handle deep
nested object referenced link
([#857](#857))
([edab862](edab862))
* **pipeline-builder:** fix the component output not react to the
selected task ([#874](#874))
([c8a1473](c8a1473))
* **pipeline-builder:** fix wrongly position component when there only
have start and end operator
([#870](#870))
([f59b25b](f59b25b))


### Miscellaneous

* add Marketing into InstillUserRoles
([#861](#861))
([785a0b0](785a0b0))
* **deps:** bump axios from 1.5.1 to 1.6.0
([#674](#674))
([44d868b](44d868b))
* increase the duration of error toast notification
([#878](#878))
([539c349](539c349))
* make creating private pipeline as default option
([#859](#859))
([e078b57](e078b57))
* remove the expire data in the API token table
([#864](#864))
([2cbf9f2](2cbf9f2))
* replace "clone" with "Log in to Clone" when the user is not logged in
([#860](#860))
([871114a](871114a))
* **user-profile:** user profile update pipeline query
([#856](#856))
([f655d92](f655d92))
</details>

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@EiffelFly EiffelFly Awaiting requested review from EiffelFly EiffelFly is a code owner

@pinglin pinglin Awaiting requested review from pinglin pinglin is a code owner

@xiaofei-du xiaofei-du Awaiting requested review from xiaofei-du xiaofei-du is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@EiffelFly