Skip to content
This repository was archived by the owner on May 28, 2026. It is now read-only.

Bump the npm_and_yarn group group with 2 updates#116

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm_and_yarn-security-group-19b7e14380
Open

Bump the npm_and_yarn group group with 2 updates#116
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm_and_yarn-security-group-19b7e14380

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jan 3, 2024

Copy link
Copy Markdown
Contributor

Bumps the npm_and_yarn group group with 2 updates: crypto-js and pdfmake.

Updates crypto-js from 3.3.0 to 4.2.0

Commits

Updates pdfmake from 0.1.65 to 0.1.72

Release notes

Sourced from pdfmake's releases.

0.1.72

  • Introduced new build-vfs.js script to build virtual file system for fonts (see documentation).
  • Updated pdfkit (version 0.12.1).

0.1.71

  • update pdfkit (version 0.12.0)
  • update Roboto font (version 3.004)
  • fix performance problem for pageBreakBefore in large documents

0.1.70

  • fixed compatibility with Internet Explorer

0.1.69

  • superscript and subscript support (see bpampuch/pdfmake#2128)
  • support cover for image element (see bpampuch/pdfmake#2148)
  • migrated from uglifyjs to terser minifier. This fix issues with minified version.
  • fix auto page height for table and vectors

0.1.68

  • fixed error window is not defined in Node.js

0.1.67

  • fixed include Promise polyfill
  • experimental SVG: rewrited SVG parsing
  • client-side: images file loading via url address (https:// or http:// protocol) in "images" dictionary Example of usage:
var dd = {
	content: [
		{
			image: 'testImage'
		}
	],
	images: {
		testImage: 'https://picsum.photos/seed/picsum/200/300',
	}
};

This is not supported: { image: 'https://picsum.photos/seed/picsum/200/300' }

0.1.66

Commits
  • 1b2e72d 0.1.72
  • 4034619 new build-vfs.js file
  • 4ef7f8d Revert "github actions - add nodejs 16"
  • a1a3d73 github actions - add nodejs 16
  • 1df1373 Revert "GitHub Actions - add prerelease Node.js 15"
  • 8ec5e7a Revert "Node.js 15 - require mocha 8"
  • beff509 Revert "fix mocha 8 installation"
  • a737413 fix mocha 8 installation
  • 418dd49 Node.js 15 - require mocha 8
  • b71cf50 remove dead travis
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the npm_and_yarn group group with 2 updates: [crypto-js](https://github.com/brix/crypto-js) and [pdfmake](https://github.com/bpampuch/pdfmake).


Updates `crypto-js` from 3.3.0 to 4.2.0
- [Commits](brix/crypto-js@3.3.0...4.2.0)

Updates `pdfmake` from 0.1.65 to 0.1.72
- [Release notes](https://github.com/bpampuch/pdfmake/releases)
- [Changelog](https://github.com/bpampuch/pdfmake/blob/master/CHANGELOG.md)
- [Commits](bpampuch/pdfmake@0.1.65...0.1.72)

---
updated-dependencies:
- dependency-name: crypto-js
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: pdfmake
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 3, 2024
@dependabot dependabot Bot mentioned this pull request Jan 3, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants