jackrabbit

jackrabbit copied to clipboard

Bumps [debug](https://github.com/debug-js/debug) to 2.6.9 and updates ancestor dependency [mocha](https://github.com/mochajs/mocha). These dependencies need to be updated together. Updates `debug` from 2.2.0 to 2.6.9 Release notes Sourced from debug's releases. 2.6.9 Patches...

dependabot[bot]

Bumps [debug](https://github.com/debug-js/debug) to 4.3.4 and updates ancestor dependencies [debug](https://github.com/debug-js/debug), [mocha](https://github.com/mochajs/mocha) and [release-it](https://github.com/release-it/release-it). These dependencies need to be updated together. Updates `debug` from 2.2.0 to 4.3.4 Release notes Sourced from debug's...

dependabot[bot]

Bumps [ms](https://github.com/vercel/ms) to 2.0.0 and updates ancestor dependencies [ms](https://github.com/vercel/ms), [mocha](https://github.com/mochajs/mocha) and [debug](https://github.com/debug-js/debug). These dependencies need to be updated together. Updates `ms` from 0.7.1 to 2.0.0 Release notes Sourced from ms's...

dependabot[bot]

Removes [json5](https://github.com/json5/json5). It's no longer used after updating ancestor dependency [release-it](https://github.com/release-it/release-it). These dependencies need to be updated together. Removes `json5` Updates `release-it` from 7.4.7 to 15.6.0 Release notes Sourced from...

dependabot[bot]

Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...

dependabot[bot]

Bumps [minimatch](https://github.com/isaacs/minimatch) to 5.0.1 and updates ancestor dependency [mocha](https://github.com/mochajs/mocha). These dependencies need to be updated together. Updates `minimatch` from 0.3.0 to 5.0.1 Commits 9f49616 5.0.1 cdc3188 don't load the whole...

dependabot[bot]

Fix memory leak: delete pending reply callback after reply

3

The exchange has a memory leak that's only noticeable in high volume traffic. We append a callback function to `pendingReplies` but never remove it once it's called. Here are some...

kyh

Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.1.2 to 2.6.7. Release notes Sourced from node-fetch's releases. v2.6.7 Security patch release Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th...

dependabot[bot]

Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.5 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

i fix it with change new Buffer to Buffer.from, because this error deprecationWarning: Buffer() is deprecated due to security and usability issues. Please use the Buffer.alloc(), Buffer.allocUnsafe(), or Buffer.from() methods...

kevinyay945