Skip to content

chore(deps): bump koa, @module-federation/node, @nx/angular and @nx/webpack #67

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 4 commits into
base: main
Choose a base branch
from
Open

chore(deps): bump koa, @module-federation/node, @nx/angular and @nx/webpack #67

dependabot wants to merge 4 commits into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 14, 2025
edited
Loading

Bumps koa to 2.15.4 and updates ancestor dependencies koa, @module-federation/node, @nx/angular and @nx/webpack. These dependencies need to be updated together.

Updates koa from 2.15.3 to 2.15.4

Release notes

Sourced from koa's releases.

2.15.4

Full Changelog: koajs/koa@2.15.3...2.15.4

Fix: avoid redos on host and protocol getter, see GHSA-593f-38f6-jp5m

Changelog

Sourced from koa's changelog.

2.15.4 / 2025-02-11

fix: avoid redos on host and protocol getter

Commits

Updates @module-federation/node from 2.5.9 to 2.6.28

Changelog

Sourced from @​module-federation/node's changelog.

2.6.28

Patch Changes

  • Updated dependencies [0f71cbc]
  • Updated dependencies [22fcccd]
    • @​module-federation/sdk@​0.10.0
    • @​module-federation/enhanced@​0.10.0
    • @​module-federation/runtime@​0.10.0
    • @​module-federation/utilities@​3.1.46

2.6.27

Patch Changes

  • Updated dependencies [35d925b]
  • Updated dependencies [35d925b]
  • Updated dependencies [8acd217]
    • @​module-federation/sdk@​0.9.1
    • @​module-federation/enhanced@​0.9.1
    • @​module-federation/runtime@​0.9.1
    • @​module-federation/utilities@​3.1.45

2.6.26

Patch Changes

  • @​module-federation/enhanced@​0.9.0
  • @​module-federation/runtime@​0.9.0
  • @​module-federation/sdk@​0.9.0
  • @​module-federation/utilities@​3.1.44

2.6.25

Patch Changes

  • Updated dependencies [9062cee]
    • @​module-federation/enhanced@​0.8.12
    • @​module-federation/runtime@​0.8.12
    • @​module-federation/sdk@​0.8.12
    • @​module-federation/utilities@​3.1.43

2.6.24

Patch Changes

  • @​module-federation/runtime@​0.8.11
  • @​module-federation/enhanced@​0.8.11
  • @​module-federation/sdk@​0.8.11
  • @​module-federation/utilities@​3.1.42

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by shawzhou, a new releaser for @​module-federation/node since your current version.


Updates @nx/angular from 19.8.2 to 20.5.0

Release notes

Sourced from @​nx/angular's releases.

20.5.0 (2025-03-06)

🚀 Features

  • angular: add release option to angular publishable libraries (#29869)
  • angular: support angular 19.2.0 (#30088)
  • angular: update angular eslint packages (#30245)
  • bundling: support rollup.config.ts (#29983)
  • core: lock graph creation when running in another process (#29408)
  • core: add prefixColor property to @nx:run-commands (#29348)
  • core: add sync generators option to target defaults in nx-schema (#29441)
  • core: show link to migrate detail page in --interactive mode (#29874)
  • core: update CNW defaults so they generate a useful workspace by default (#29915)
  • core: add multi hash fn (#29935)
  • core: support bun's new text-based lockfile and use bun publish within nx release (#30064)
  • core: display perpetual version information in nx report for powerpack (#30110)
  • graph: update graph lib to latest nx graph (#29768)
  • js: upgrade verdaccio to 6 (#30015)
  • js: add typecheck task to generated ci workflow file when using the ts solution setup (#30219)
  • linter: add runtimeHelpers option to @nx/dependency-checks rule (#29954)
  • misc: replace ts-jest transformer with @swc/jest for ts solution setup (#29763)
  • module-federation: add NxModuleFederationPlugin for inferred usage (#30003)
  • module-federation: Update to the latest version of @​module-federation (#30147)
  • nx-dev: refactor and improve style of video-player (#29749)
  • nx-dev: add ability to add labels to video-player (3e3c466d47)
  • nx-dev: allow callout component to be expanded by default (#29806)
  • nx-dev: add epic nx release course (#29777)
  • nx-dev: show alt text as label below markdown images (a4f07dbb64)
  • nx-dev: conformance rule for blog post description (3d0b15ef10)
  • nx-dev: allow link-card components to take an image URL (2f1b6f9f72)
  • nx-dev: add quote component for enterprise articles (13b9c23e3b)
  • nx-dev: add metrics and related blogs section (541acf536b)
  • nx-dev: webinar page (#29913)
  • nx-dev: add company video (c8072fa20e)
  • nx-dev: add Faro for observability (#30021)
  • nx-dev: expose docs embedding search via endpoint (#30050)
  • nx-dev: allow sampling rate to be configured through env var (#30193)
  • nx-dev: update workspace conformance rule to check md files in general (d428eec060)
  • react: Update react-router-dom to latest (#29919)
  • release: configure when all branches should be checked for a matching releaseTagPattern (#30044)
  • rspack: improve plugin createNodes performance (#29876)
  • rspack: use ts-checker-rspack-plugin instead of fork-ts-checker-webpack-plugin (#30121)
  • testing: support vitest 3 (#29908)
  • testing: disable jest runtime by default when inferring targets (#29917)
  • testing: add type annotation for Jest configuration export (#30059)
  • vite: add support for vite 6 (#29871)
  • vue: add release option to vue publishable libraries (#29867)
  • webpack: add option to opt out of watching buildable dependencies (#29984)
  • webpack: use sass-embedded and modern-compiler for sass (#29999)

... (truncated)

Commits
  • ada8be4 fix(misc): fix misc issues in project generators for the ts solution setup (#...
  • bf10eae fix(angular): correct nx angular migration requirement for 19.2 (#30234)
  • 61ff25f feat(angular): update angular eslint packages (#30245)
  • 8b11d8b docs(core): add migrations docs for 20.x (#30186)
  • 811bac5 feat(angular): support angular 19.2.0 (#30088)
  • 09ebf5f fix(eslint): ensure that packages in the same group as updated together (#30187)
  • c02719d feat(module-federation): Update to the latest version of @​module-federation (...
  • 4f70cdb feat(angular): add release option to angular publishable libraries (#29869)
  • 9e204f9 feat(webpack): add option to opt out of watching buildable dependencies (#29984)
  • c1ebcb9 feat(vite): add support for vite 6 (#29871)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by jameshenry, a new releaser for @​nx/angular since your current version.


Updates @nx/webpack from 19.8.2 to 20.5.0

Release notes

Sourced from @​nx/webpack's releases.

20.5.0 (2025-03-06)

🚀 Features

  • angular: add release option to angular publishable libraries (#29869)
  • angular: support angular 19.2.0 (#30088)
  • angular: update angular eslint packages (#30245)
  • bundling: support rollup.config.ts (#29983)
  • core: lock graph creation when running in another process (#29408)
  • core: add prefixColor property to @nx:run-commands (#29348)
  • core: add sync generators option to target defaults in nx-schema (#29441)
  • core: show link to migrate detail page in --interactive mode (#29874)
  • core: update CNW defaults so they generate a useful workspace by default (#29915)
  • core: add multi hash fn (#29935)
  • core: support bun's new text-based lockfile and use bun publish within nx release (#30064)
  • core: display perpetual version information in nx report for powerpack (#30110)
  • graph: update graph lib to latest nx graph (#29768)
  • js: upgrade verdaccio to 6 (#30015)
  • js: add typecheck task to generated ci workflow file when using the ts solution setup (#30219)
  • linter: add runtimeHelpers option to @nx/dependency-checks rule (#29954)
  • misc: replace ts-jest transformer with @swc/jest for ts solution setup (#29763)
  • module-federation: add NxModuleFederationPlugin for inferred usage (#30003)
  • module-federation: Update to the latest version of @​module-federation (#30147)
  • nx-dev: refactor and improve style of video-player (#29749)
  • nx-dev: add ability to add labels to video-player (3e3c466d47)
  • nx-dev: allow callout component to be expanded by default (#29806)
  • nx-dev: add epic nx release course (#29777)
  • nx-dev: show alt text as label below markdown images (a4f07dbb64)
  • nx-dev: conformance rule for blog post description (3d0b15ef10)
  • nx-dev: allow link-card components to take an image URL (2f1b6f9f72)
  • nx-dev: add quote component for enterprise articles (13b9c23e3b)
  • nx-dev: add metrics and related blogs section (541acf536b)
  • nx-dev: webinar page (#29913)
  • nx-dev: add company video (c8072fa20e)
  • nx-dev: add Faro for observability (#30021)
  • nx-dev: expose docs embedding search via endpoint (#30050)
  • nx-dev: allow sampling rate to be configured through env var (#30193)
  • nx-dev: update workspace conformance rule to check md files in general (d428eec060)
  • react: Update react-router-dom to latest (#29919)
  • release: configure when all branches should be checked for a matching releaseTagPattern (#30044)
  • rspack: improve plugin createNodes performance (#29876)
  • rspack: use ts-checker-rspack-plugin instead of fork-ts-checker-webpack-plugin (#30121)
  • testing: support vitest 3 (#29908)
  • testing: disable jest runtime by default when inferring targets (#29917)
  • testing: add type annotation for Jest configuration export (#30059)
  • vite: add support for vite 6 (#29871)
  • vue: add release option to vue publishable libraries (#29867)
  • webpack: add option to opt out of watching buildable dependencies (#29984)
  • webpack: use sass-embedded and modern-compiler for sass (#29999)

... (truncated)

Commits
  • ada8be4 fix(misc): fix misc issues in project generators for the ts solution setup (#...
  • 648129f fix(bundling): remove migration always adding sass-embedded (#30276)
  • 5382c8a fix(core): ensure daemon enabled check is unchanged (#30228)
  • 82169ac feat(webpack): use sass-embedded and modern-compiler for sass (#29999)
  • c2e89f8 feat(core): add multi hash fn (#29935)
  • 9e204f9 feat(webpack): add option to opt out of watching buildable dependencies (#29984)
  • 7524356 feat(webpack, rspack): support multiple configurations (#29691)
  • 0ae8665 feat(js): infer build-deps and watch-deps targets for incremental builds (#29...
  • 726c07d fix(webpack): Add useTsconfigPaths to app-webpack-plugin (#29291)
  • 89ab887 fix(core): Update bundlers to not typecheck if using new TS solution setup (#...
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by jameshenry, a new releaser for @​nx/webpack since your current version.


You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 14, 2025
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/multi-5395be8d45 branch 2 times, most recently from 869cea0 to ca22a79 Compare March 20, 2025 16:26
@dependabot
chore(deps): bump koa, @module-federation/node, @nx/angular and @nx/w…
6265c88 
…ebpack

Bumps [koa](https://github.com/koajs/koa) to 2.15.4 and updates ancestor dependencies [koa](https://github.com/koajs/koa), [@module-federation/node](https://github.com/module-federation/core/tree/HEAD/packages/node), [@nx/angular](https://github.com/nrwl/nx/tree/HEAD/packages/angular) and [@nx/webpack](https://github.com/nrwl/nx/tree/HEAD/packages/webpack). These dependencies need to be updated together.


Updates `koa` from 2.15.3 to 2.15.4
- [Release notes](https://github.com/koajs/koa/releases)
- [Changelog](https://github.com/koajs/koa/blob/2.15.4/History.md)
- [Commits](koajs/koa@2.15.3...2.15.4)

Updates `@module-federation/node` from 2.5.9 to 2.6.28
- [Release notes](https://github.com/module-federation/core/releases)
- [Changelog](https://github.com/module-federation/core/blob/main/packages/node/CHANGELOG.md)
- [Commits](https://github.com/module-federation/core/commits/HEAD/packages/node)

Updates `@nx/angular` from 19.8.2 to 20.5.0
- [Release notes](https://github.com/nrwl/nx/releases)
- [Commits](https://github.com/nrwl/nx/commits/20.5.0/packages/angular)

Updates `@nx/webpack` from 19.8.2 to 20.5.0
- [Release notes](https://github.com/nrwl/nx/releases)
- [Commits](https://github.com/nrwl/nx/commits/20.5.0/packages/webpack)

---
updated-dependencies:
- dependency-name: koa
  dependency-type: indirect
- dependency-name: "@module-federation/node"
  dependency-type: direct:production
- dependency-name: "@nx/angular"
  dependency-type: direct:production
- dependency-name: "@nx/webpack"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/multi-5395be8d45 branch from ca22a79 to 6265c88 Compare March 20, 2025 19:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@danemesis