New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Dependencies updated by Dependabot #155

Closed

ghost wants to merge 12 commits into npm:latest from unknown repository

Commits on Feb 9, 2019

Bump npm-registry-fetch from 3.8.0 to 3.9.0

Bumps [npm-registry-fetch](https://github.com/npm/registry-fetch) from 3.8.0 to 3.9.0.
- [Release notes](https://github.com/npm/registry-fetch/releases)
- [Changelog](https://github.com/npm/npm-registry-fetch/blob/latest/CHANGELOG.md)
- [Commits](npm/npm-registry-fetch@v3.8.0...v3.9.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>

dependabot-support committed Feb 9, 2019

[Security] Bump lodash from 4.17.10 to 4.17.11

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.10 to 4.17.11. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Changelog](https://github.com/lodash/lodash/blob/master/CHANGELOG)
- [Commits](lodash/lodash@4.17.10...4.17.11)

Signed-off-by: dependabot[bot] <support@dependabot.com>

dependabot-support committed Feb 9, 2019

Bump tacks from 1.2.7 to 1.3.0

Bumps [tacks](https://github.com/iarna/tacks) from 1.2.7 to 1.3.0.
- [Release notes](https://github.com/iarna/tacks/releases)
- [Changelog](https://github.com/iarna/tacks/blob/master/CHANGES.md)
- [Commits](iarna/tacks@v1.2.7...v1.3.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>

dependabot-support committed Feb 9, 2019

Bump npm-packlist from 1.2.0 to 1.3.0
```
Bumps [npm-packlist](https://github.com/npm/npm-packlist) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/npm/npm-packlist/releases)
- [Commits](npm/npm-packlist@v1.2.0...v1.3.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>
```
dependabot-support committed Feb 9, 2019
Configuration menu
View commit details

Copy full SHA for 8791cee

Browse repository at this point
Copy the full SHA

8791cee View commit details

Browse the repository at this point in the history

Bump normalize-package-data from 2.4.0 to 2.5.0

Bumps [normalize-package-data](https://github.com/npm/normalize-package-data) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/npm/normalize-package-data/releases)
- [Commits](npm/normalize-package-data@v2.4.0...v2.5.0)

Signed-off-by: dependabot[bot] <support@dependabot.com>

dependabot-support committed Feb 9, 2019

Bump lru-cache from 4.1.5 to 5.1.1

Bumps [lru-cache](https://github.com/isaacs/node-lru-cache) from 4.1.5 to 5.1.1.
- [Release notes](https://github.com/isaacs/node-lru-cache/releases)
- [Commits](isaacs/node-lru-cache@v4.1.5...v5.1.1)

Signed-off-by: dependabot[bot] <support@dependabot.com>

dependabot-support committed Feb 9, 2019

Merge pull request #6 from pjclutterbuck/dependabot/npm_and_yarn/lru-…
```
…cache-5.1.1

Bump lru-cache from 4.1.5 to 5.1.1
```
Paul Clutterbuck authored Feb 9, 2019
Configuration menu
View commit details

Copy full SHA for bbc00e9

Browse repository at this point
Copy the full SHA

bbc00e9 View commit details

Browse the repository at this point in the history
Merge pull request #5 from pjclutterbuck/dependabot/npm_and_yarn/norm…
```
…alize-package-data-2.5.0

Bump normalize-package-data from 2.4.0 to 2.5.0
```
Paul Clutterbuck authored Feb 9, 2019
Configuration menu
View commit details

Copy full SHA for 95594ce

Browse repository at this point
Copy the full SHA

95594ce View commit details

Browse the repository at this point in the history
Merge pull request #4 from pjclutterbuck/dependabot/npm_and_yarn/npm-…
```
…packlist-1.3.0

Bump npm-packlist from 1.2.0 to 1.3.0
```
Paul Clutterbuck authored Feb 9, 2019
Configuration menu
View commit details

Copy full SHA for ac6ba86

Browse repository at this point
Copy the full SHA

ac6ba86 View commit details

Browse the repository at this point in the history
Merge pull request #3 from pjclutterbuck/dependabot/npm_and_yarn/tack…
```
…s-1.3.0

Bump tacks from 1.2.7 to 1.3.0
```
Paul Clutterbuck authored Feb 9, 2019
Configuration menu
View commit details

Copy full SHA for f4f01f7

Browse repository at this point
Copy the full SHA

f4f01f7 View commit details

Browse the repository at this point in the history
Merge pull request #2 from pjclutterbuck/dependabot/npm_and_yarn/loda…
```
…sh-4.17.11

[Security] Bump lodash from 4.17.10 to 4.17.11
```
Paul Clutterbuck authored Feb 9, 2019
Configuration menu
View commit details

Copy full SHA for e8c6c96

Browse repository at this point
Copy the full SHA

e8c6c96 View commit details

Browse the repository at this point in the history
Merge pull request #1 from pjclutterbuck/dependabot/npm_and_yarn/npm-…
```
…registry-fetch-3.9.0

Bump npm-registry-fetch from 3.8.0 to 3.9.0
```
Paul Clutterbuck authored Feb 9, 2019
Configuration menu
View commit details

Copy full SHA for 1b666a0

Browse repository at this point
Copy the full SHA

1b666a0 View commit details

Browse the repository at this point in the history