Skip to content

Bump url-parse and unsplash-js#11

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-e77d473c41
Open

Bump url-parse and unsplash-js#11
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-e77d473c41

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot bot commented on behalf of github Feb 3, 2026

Bumps url-parse to 1.5.10 and updates ancestor dependency unsplash-js. These dependencies need to be updated together.

Updates url-parse from 1.4.7 to 1.5.10

Commits

Updates unsplash-js from 6.0.0 to 7.0.20

Release notes

Sourced from unsplash-js's releases.

v7.0.18

unsplash/unsplash-js@v7.0.17...v7.0.18

v7.0.17

unsplash/unsplash-js@v7.0.16...v7.0.17

v7.0.16

unsplash/unsplash-js@v7.0.15...v7.0.16

v7.0.15

unsplash/unsplash-js@v7.0.14...v7.0.15

v7.0.14

  • Allow 0 params 9036e50
  • Merge pull request #181 from moonrise-tk/master 23f561f
  • Updated docs 4e89783
  • Added Orientation Params to Random Params d788e47
  • Added topics to random photo query 440680a

unsplash/unsplash-js@v7.0.13...v7.0.14

v7.0.13

  • Merge pull request #180 from unsplash/maintenance/export-topics 9771a96
  • Export topic methods e4dd476
  • Add void params 02a891b

unsplash/unsplash-js@v7.0.12...v7.0.13

v7.0.12

  • Merge pull request #178 from unsplash/get-pathname 7029133
  • Create Endpoint type 43845af
  • Inline 405ded0
  • Add missing getPathnames 5dd244f
  • Remove createRequestGenerator for consistency af15af8
  • Correct naming 4795b9e
  • Named params eee2b25
  • Add getPathname functions b173245
  • Extract d53d99d
  • Merge pull request #177 from dcolonv/fix-readme-example 87ab6c7
  • Update Readme example to correct variable name mismatch 9a96523
  • Document 6bc23e3

unsplash/unsplash-js@v7.0.11...v7.0.12

... (truncated)

Changelog

Sourced from unsplash-js's changelog.

Changelog

7.0.3

  • Adds response types to all endpoints.

7.0.0

This version includes a total TypeScript rewrite of the library, with many breaking changes. If upgrading from a previous version, read carefully. You will not be able to upgrade to v7 without making the necessary adjustments.

Breaking Changes

  • Replaces the Unsplash class with a named createApi function:
// before
import Unsplash from 'unsplash-js';
const unsplash = new Unsplash({ accessKey: 'MY_ACCESS_KEY' });
// after
import { createApi } from 'unsplash-js';
const unsplash = createApi({ accessKey: 'MY_ACCESS_KEY' });
// or
import Unsplash from 'unsplash-js';
const unsplash = Unsplash.createApi({ accessKey: 'MY_ACCESS_KEY' });

  • Removes user authentication features from the library. This means that the createApi function does not recieve secret, callbackUrl or bearerToken.

  • Removes the following API methods (primarily due to removal of user authentication):

    • photos:
      • likePhoto
      • unlikePhoto
      • downloadPhoto (deprecated in 6.3, replaced with trackDownload)
    • users:
      • statistics
    • collections:
      • createCollection
      • updateCollection
      • deleteCollection
      • addPhotoToCollection
      • removePhotoFromCollection
    • auth:
      • getAuthenticationUrl
      • userAuthentication
      • setBearerToken
    • currentUser:
      • profile
      • updateProfile

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump url-parse and unsplash-js
914d7c2 
Bumps [url-parse](https://github.com/unshiftio/url-parse) to 1.5.10 and updates ancestor dependency [unsplash-js](https://github.com/unsplash/unsplash-js). These dependencies need to be updated together.


Updates `url-parse` from 1.4.7 to 1.5.10
- [Commits](unshiftio/url-parse@1.4.7...1.5.10)

Updates `unsplash-js` from 6.0.0 to 7.0.20
- [Release notes](https://github.com/unsplash/unsplash-js/releases)
- [Changelog](https://github.com/unsplash/unsplash-js/blob/master/CHANGELOG.md)
- [Commits](https://github.com/unsplash/unsplash-js/commits)

---
updated-dependencies:
- dependency-name: url-parse
  dependency-version: 1.5.10
  dependency-type: indirect
- dependency-name: unsplash-js
  dependency-version: 7.0.20
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 3, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants