Skip to content

Bump gulp-sourcemaps from 2.6.5 to 3.0.0#342

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/gulp-sourcemaps-3.0.0
Open

Bump gulp-sourcemaps from 2.6.5 to 3.0.0#342
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/gulp-sourcemaps-3.0.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Oct 27, 2022

Copy link
Copy Markdown
Contributor

Bumps gulp-sourcemaps from 2.6.5 to 3.0.0.

Release notes

Sourced from gulp-sourcemaps's releases.

Security Fixes

Nothing changed to the overall API.

However the following security fixes lead to the following:

Commits
  • 2bcfcbb 3.0.0
  • d8bed0c Merge pull request #373 from adrian3d/update/doc-gulp-4
  • 5686db3 Merge pull request #380 from kennyr87/gh-378/upgrade-css
  • 2c66b2c Depdenency: Upgrade css to v3.0.0
  • 9a9289b Breaking: Drop Node <6 support & upgrade identity-map which uses changes CSS ...
  • 11d1e31 Update doc to gulp 4
  • bd0aeb0 Docs: Temporarily point at phated/gulp-sourcemaps for AppVeyor badge
  • 7e69e97 Build: Ensure tests pass on Windows
  • 404eb5b Docs: Update badges
  • 8a22ecc Scaffold: Convert repository to use gulp patterns (closes #357) (#367)
  • See full diff in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Oct 27, 2022
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/gulp-sourcemaps-3.0.0 branch 14 times, most recently from 77f1f6a to 2fede85 Compare November 8, 2022 14:23
Bumps [gulp-sourcemaps](https://github.com/gulp-sourcemaps/gulp-sourcemaps) from 2.6.5 to 3.0.0.
- [Release notes](https://github.com/gulp-sourcemaps/gulp-sourcemaps/releases)
- [Commits](gulp-sourcemaps/gulp-sourcemaps@v2.6.5...v3.0.0)

---
updated-dependencies:
- dependency-name: gulp-sourcemaps
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/gulp-sourcemaps-3.0.0 branch from 2fede85 to b649c39 Compare December 19, 2022 16:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants