Sourced from minimist's changelog.

v1.2.7 - 2022-10-10

Commits

• [meta] add auto-changelog 0ebf4eb
• [actions] add reusable workflows e115b63
• [eslint] add eslint; rules to enable later are warnings f58745b
• [Dev Deps] switch from covert to nyc ab03356
• [readme] rename and add badges 236f4a0
• [meta] create FUNDING.yml; add funding in package.json 783a49b
• [meta] use npmignore to autogenerate an npmignore file f81ece6
• Only apps should have lockfiles 56cad44
• [Dev Deps] update covert, tape; remove unnecessary tap 49c5f9f
• [Tests] add aud in posttest 228ae93
• [meta] add safe-publish-latest 01fc23f
• [meta] update repo URLs 6b164c7

v1.2.6 - 2022-03-21

Commits

• test from prototype pollution PR bc8ecee
• isConstructorOrProto adapted from PR c2b9819
• security notice for additional prototype pollution issue ef88b93

v1.2.5 - 2020-03-12

v1.2.4 - 2020-03-11

Commits

• security notice 4cf1354
• additional test for constructor prototype pollution 1043d21

v1.2.3 - 2020-03-10

Commits

• more failing proto pollution tests 13c01a5
• even more aggressive checks for protocol pollution 38a4d1c

v1.2.2 - 2020-03-10

Commits

• failing test for protocol pollution 0efed03
• cleanup 67d3722
• console.dir -> console.log 47acf72
• don't assign onto proto 63e7ed0

... (truncated)

• c590d75 v1.2.7
• 0ebf4eb [meta] add auto-changelog
• e115b63 [actions] add reusable workflows
• 01fc23f [meta] add safe-publish-latest
• f58745b [eslint] add eslint; rules to enable later are warnings
• 228ae93 [Tests] add aud in posttest
• 236f4a0 [readme] rename and add badges
• ab03356 [Dev Deps] switch from covert to nyc
• 49c5f9f [Dev Deps] update covert, tape; remove unnecessary tap
• 783a49b [meta] create FUNDING.yml; add funding in package.json
• Additional commits viewable in compare view

This version was pushed to npm by ljharb, a new releaser for minimist since your current version.

Sourced from minimist's changelog.

v1.2.7 - 2022-10-10

Commits

• [meta] add auto-changelog 0ebf4eb
• [actions] add reusable workflows e115b63
• [eslint] add eslint; rules to enable later are warnings f58745b
• [Dev Deps] switch from covert to nyc ab03356
• [readme] rename and add badges 236f4a0
• [meta] create FUNDING.yml; add funding in package.json 783a49b
• [meta] use npmignore to autogenerate an npmignore file f81ece6
• Only apps should have lockfiles 56cad44
• [Dev Deps] update covert, tape; remove unnecessary tap 49c5f9f
• [Tests] add aud in posttest 228ae93
• [meta] add safe-publish-latest 01fc23f
• [meta] update repo URLs 6b164c7

v1.2.6 - 2022-03-21

Commits

• test from prototype pollution PR bc8ecee
• isConstructorOrProto adapted from PR c2b9819
• security notice for additional prototype pollution issue ef88b93

v1.2.5 - 2020-03-12

v1.2.4 - 2020-03-11

Commits

• security notice 4cf1354
• additional test for constructor prototype pollution 1043d21

v1.2.3 - 2020-03-10

Commits

• more failing proto pollution tests 13c01a5
• even more aggressive checks for protocol pollution 38a4d1c

v1.2.2 - 2020-03-10

Commits

• failing test for protocol pollution 0efed03
• cleanup 67d3722
• console.dir -> console.log 47acf72
• don't assign onto proto 63e7ed0

... (truncated)

• c590d75 v1.2.7
• 0ebf4eb [meta] add auto-changelog
• e115b63 [actions] add reusable workflows
• 01fc23f [meta] add safe-publish-latest
• f58745b [eslint] add eslint; rules to enable later are warnings
• 228ae93 [Tests] add aud in posttest
• 236f4a0 [readme] rename and add badges
• ab03356 [Dev Deps] switch from covert to nyc
• 49c5f9f [Dev Deps] update covert, tape; remove unnecessary tap
• 783a49b [meta] create FUNDING.yml; add funding in package.json
• Additional commits viewable in compare view

This version was pushed to npm by ljharb, a new releaser for minimist since your current version.

• d784e70 0.5.3
• d612c5d add files list so this package isn't a monster
• b2e7ba0 0.5.2
• c5b97d1 bump minimist to 1.2 to fix security issue
• f2003bb test: add v4 and v5 to travis
• b8629ff tools: update tap + mock-fs. Fix broken test
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• 9a6faa0 4.4.19
• 70ef812 drop dirCache for symlink on all platforms
• 3e35515 4.4.18
• 52b09e3 fix: prevent path escape using drive-relative paths
• bb93ba2 fix: reserve paths properly for unicode, windows
• 2f1bca0 fix: prune dirCache properly for unicode, windows
• 9bf70a8 4.4.17
• 6aafff0 fix: skip extract if linkpath is stripped entirely
• 5c5059a fix: reserve paths case-insensitively
• fd6accb 4.4.16
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from gulp-sass's releases.

v5.1.0

Huge shout out to @​XhmikosR for putting a ton of effort into this release 🎉

What's Changed

• Document usage in ESM modules by @​mxmason in dlmanning/gulp-sass#805
• Typo @ README.md by @​radimvaculik in dlmanning/gulp-sass#807
• package.json: specify the files to include by @​XhmikosR in dlmanning/gulp-sass#817
• Enforce LF by @​XhmikosR in dlmanning/gulp-sass#814
• Update dependencies by @​XhmikosR in dlmanning/gulp-sass#816
• Switch to GitHub Actions CI by @​XhmikosR in dlmanning/gulp-sass#813
• Replace lodash with the lodash.clonedeep package by @​XhmikosR in dlmanning/gulp-sass#818
• Tweak README.md by @​XhmikosR in dlmanning/gulp-sass#821
• Move eslint to npm scripts by @​XhmikosR in dlmanning/gulp-sass#819
• Minor lint tweaks by @​XhmikosR in dlmanning/gulp-sass#820
• Fix fix script by @​XhmikosR in dlmanning/gulp-sass#823
• Minor tweaks and cleanup by @​XhmikosR in dlmanning/gulp-sass#822
• Update devDependencies and switch to Node.js 16/npm 7+ by @​XhmikosR in dlmanning/gulp-sass#829
• Update devDependencies by @​XhmikosR in dlmanning/gulp-sass#835
• Update README.md by @​XhmikosR in dlmanning/gulp-sass#832
• Clean up return statements by @​XhmikosR in dlmanning/gulp-sass#836
• CI: use lts/* for the lint job by @​XhmikosR in dlmanning/gulp-sass#839
• Replace chalk with picocolors by @​XhmikosR in dlmanning/gulp-sass#833
• Reword missing compiler message by @​XhmikosR in dlmanning/gulp-sass#834
• Remove should by @​XhmikosR in dlmanning/gulp-sass#841
• Remove transfob package by @​XhmikosR in dlmanning/gulp-sass#840
• Update CHANGELOG.md by @​XhmikosR in dlmanning/gulp-sass#831
• Add sass tests too by @​XhmikosR in dlmanning/gulp-sass#842

New Contributors

• @​radimvaculik made their first contribution in dlmanning/gulp-sass#807
• @​XhmikosR made their first contribution in dlmanning/gulp-sass#817

Full Changelog: https://github.com/dlmanning/gulp-sass/compare/v5.0.0...v5.1.0

v5.0.0

First and foremost a huge shout out to @​mxmason for making this long awaited release possible <3

Breaking changes

• Require Node >= 12
• Require Gulp 4
• Drop dependency on the deprecate node-sass
• Remove hardcoded default Sass compiler

Upgrading to v5

It is now required to explicitly install a Sass compiler.

npm install gulp-sass sass
</tr></table> 

... (truncated)

Sourced from gulp-sass's changelog.

gulp-sass Changelog

v5.0.0

June 25, 2021

https://github.com/dlmanning/gulp-sass/releases/tag/v5.0.0

v4.1.1

June 24, 2021

https://github.com/dlmanning/gulp-sass/releases/tag/v4.1.1

v4.1.0

April 23, 2020

https://github.com/dlmanning/gulp-sass/releases/tag/v4.1.0

• c04bb67 5.1.0
• 835d6f3 Add sass tests too (#842)
• 4e8c5de Update CHANGELOG.md (#831)
• d68d15b Remove transfob package (#840)
• 0011378 Remove should (#841)
• 9ac63f0 Reword missing compiler message (#834)
• c65a478 Replace chalk with picocolors (#833)
• 45becae CI: use lts/* for the lint job (#839)
• 18f57f0 Clean up return statements (#836)
• 57428f9 Update README.md (#832)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from gulp-sass's releases.

v5.1.0

Huge shout out to @​XhmikosR for putting a ton of effort into this release 🎉

What's Changed

• Document usage in ESM modules by @​mxmason in dlmanning/gulp-sass#805
• Typo @ README.md by @​radimvaculik in dlmanning/gulp-sass#807
• package.json: specify the files to include by @​XhmikosR in dlmanning/gulp-sass#817
• Enforce LF by @​XhmikosR in dlmanning/gulp-sass#814
• Update dependencies by @​XhmikosR in dlmanning/gulp-sass#816
• Switch to GitHub Actions CI by @​XhmikosR in dlmanning/gulp-sass#813
• Replace lodash with the lodash.clonedeep package by @​XhmikosR in dlmanning/gulp-sass#818
• Tweak README.md by @​XhmikosR in dlmanning/gulp-sass#821
• Move eslint to npm scripts by @​XhmikosR in dlmanning/gulp-sass#819
• Minor lint tweaks by @​XhmikosR in dlmanning/gulp-sass#820
• Fix fix script by @​XhmikosR in dlmanning/gulp-sass#823
• Minor tweaks and cleanup by @​XhmikosR in dlmanning/gulp-sass#822
• Update devDependencies and switch to Node.js 16/npm 7+ by @​XhmikosR in dlmanning/gulp-sass#829
• Update devDependencies by @​XhmikosR in dlmanning/gulp-sass#835
• Update README.md by @​XhmikosR in dlmanning/gulp-sass#832
• Clean up return statements by @​XhmikosR in dlmanning/gulp-sass#836
• CI: use lts/* for the lint job by @​XhmikosR in dlmanning/gulp-sass#839
• Replace chalk with picocolors by @​XhmikosR in dlmanning/gulp-sass#833
• Reword missing compiler message by @​XhmikosR in dlmanning/gulp-sass#834
• Remove should by @​XhmikosR in dlmanning/gulp-sass#841
• Remove transfob package by @​XhmikosR in dlmanning/gulp-sass#840
• Update CHANGELOG.md by @​XhmikosR in dlmanning/gulp-sass#831
• Add sass tests too by @​XhmikosR in dlmanning/gulp-sass#842

New Contributors

• @​radimvaculik made their first contribution in dlmanning/gulp-sass#807
• @​XhmikosR made their first contribution in dlmanning/gulp-sass#817

Full Changelog: https://github.com/dlmanning/gulp-sass/compare/v5.0.0...v5.1.0

v5.0.0

First and foremost a huge shout out to @​mxmason for making this long awaited release possible <3

Breaking changes

• Require Node >= 12
• Require Gulp 4
• Drop dependency on the deprecate node-sass
• Remove hardcoded default Sass compiler

Upgrading to v5

It is now required to explicitly install a Sass compiler.

npm install gulp-sass sass
</tr></table> 

... (truncated)

Sourced from gulp-sass's changelog.

gulp-sass Changelog

v5.0.0

June 25, 2021

https://github.com/dlmanning/gulp-sass/releases/tag/v5.0.0

v4.1.1

June 24, 2021

https://github.com/dlmanning/gulp-sass/releases/tag/v4.1.1

v4.1.0

April 23, 2020

https://github.com/dlmanning/gulp-sass/releases/tag/v4.1.0

• c04bb67 5.1.0
• 835d6f3 Add sass tests too (#842)
• 4e8c5de Update CHANGELOG.md (#831)
• d68d15b Remove transfob package (#840)
• 0011378 Remove should (#841)
• 9ac63f0 Reword missing compiler message (#834)
• c65a478 Replace chalk with picocolors (#833)
• 45becae CI: use lts/* for the lint job (#839)
• 18f57f0 Clean up return statements (#836)
• 57428f9 Update README.md (#832)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• f6f6a3b Use a little more robust method of checking instances
• ef60987 Update version
• b62f1da Protect against constructor modification, #84
• fb427cd Link to json-schema-org repository in addition to site, fixes #54
• 22f1461 Don't allow proto property to be used for schema default/coerce, fixes #84
• c52a27c Get basic test to pass
• b3f42b3 Add security policy
• 3b0cec3 Update version
• c28470f Update readme to acknowledge the state of the package
• 7dff9cd Merge pull request #81 from hodovani/patch-1
• Additional commits viewable in compare view

Sourced from jsprim's changelog.

v1.4.2 (2021-11-29)

• #35 Backport json-schema 0.4.0 to version 1.4.x

• 5c8475f joyent/node-jsprim#35 Backport json-schema 0.4.0 to version 1.4.x
• See full diff in compare view

This version was pushed to npm by bahamat, a new releaser for jsprim since your current version.

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• 782c264 3.0.8
• 6ade2da fix: trim pattern
• a6f52b0 3.0.7
• e4cd434 fix: treat nocase:true as always having magic
• e6bbe1c publishConfig for 3.0
• 5b7cd33 3.0.6
• 20b4b56 [fix] revert all breaking syntax changes
• 2ff0388 document, expose, and test 'partial:true' option
• 5dbd6a7 ci: tests and makework
• dbda065 full test coverage, adding tests, deleting dead code
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from decode-uri-component's releases.

v0.2.2

• Prevent overwriting previously decoded tokens 980e0bf

https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2

v0.2.1

• Switch to GitHub workflows 76abc93
• Fix issue where decode throws - fixes #6 746ca5d
• Update license (#1) 486d7e2
• Tidelift tasks a650457
• Meta tweaks 66e1c28

https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1

• a0eea46 0.2.2
• 980e0bf Prevent overwriting previously decoded tokens
• 3c8a373 0.2.1
• 76abc93 Switch to GitHub workflows
• 746ca5d Fix issue where decode throws - fixes #6
• 486d7e2 Update license (#1)
• a650457 Tidelift tasks
• 66e1c28 Meta tweaks
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from copy-props's releases.

2.0.5

Fix

• Avoids prototype pollution (#7)

Doc

• Update license years.
• Transfer ownership to Gulp Team (#6)

Build

• Update dependencies: each-props (>=1.3.2), is-plain-object (>=5.0.0).

Test

• Expand test versions to v11〜v14.

Sourced from copy-props's changelog.

Changelog

3.0.1 (2021-10-31)

Bug Fixes

• ci: Rename prettierignore typo & avoid formatting web (192badf)
• Update dependencies (ba8a51c)

3.0.0 (2021-09-25)

⚠ BREAKING CHANGES

• Normalize repository, dropping node <10.13 support (#8)

Miscellaneous Chores

• Normalize repository, dropping node <10.13 support (#8) (85b1165)

• 40b7974 2.0.5
• 2c738f5 Fix: Avoids prototype pollution (#7)
• 4cac863 Merge: Transfer ownership to Gulp Team (#6)
• 54a791d Doc: Transfer ownership to Gulp Team
• 196fc9e Merge: Update dependencies and expand ci test versions (#5)
• e89907f Test: Update npm to v4 when nodejs is v5 because of npm install error.
• e970322 Test: Run coveralls when nodejs >= 6 because of its supports
• 063e534 Test: Add nodejs v11-v14 into ci test versions
• 72270af Doc: Update license years
• f60b928 Build: Update versions of dependencies
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from ajv's releases.

v6.12.6

Fix performance issue of "url" format.

v6.12.5

Fix uri scheme validation (@​ChALkeR). Fix boolean schemas with strictKeywords option (#1270)

v6.12.4

Fix: coercion of one-item arrays to scalar that should fail validation (failing example).

v6.12.3

Pass schema object to processCode function Option for strictNumbers (@​issacgerges, #1128) Fixed vulnerability related to untrusted schemas (CVE-2020-15366)

v6.12.2

Removed post-install script

v6.12.1

Docs and dependency updates

v6.12.0

Improved hostname validation (@​sambauers, #1143) Option keywords to add custom keywords (@​franciscomorais, #1137) Types fixes (@​boenrobot, @​MattiAstedrone) Docs:

• error logging example (@​RadiationSickness)
• TypeScript usage notes (@​thetric)

• fe59143 6.12.6
• d580d3e Merge pull request #1298 from ajv-validator/fix-url
• fd36389 fix: regular expression for "url" format
• 490e34c docs: link to v7-beta branch
• 9cd93a1 docs: note about v7 in readme
• 877d286 Merge pull request #1262 from b4h0-c4t/refactor-opt-object-type
• f1c8e45 6.12.5
• 764035e Merge branch 'ChALkeR-chalker/fix-comma'
• 3798160 Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...
• a3c7eba Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from postcss's releases.

7.0.36

• Backport ReDoS vulnerabilities from PostCSS 8.

7.0.35

• Add migration guide link to PostCSS 8 error text.

7.0.34

• Fix compatibility with postcss-scss 2.

7.0.33

• Add error message for PostCSS 8 plugins.

7.0.32

• Fix error message (by @​admosity).

7.0.31

• Use only the latest source map annotation (by @​emzoumpo).

7.0.30

• Fix TypeScript definition (by @​nex3)

7.0.29

• Update Processor#version.

7.0.28

• Fix TypeScript definition (by @​nex3).

7.0.27

• Fix TypeScript definition (by @​nex3).

Sourced from postcss's changelog.

7.0.36

• Backport ReDoS vulnerabilities from PostCSS 8.

7.0.35

• Add migration guide link to PostCSS 8 error text.

7.0.34

• Fix compatibility with postcss-scss 2.

7.0.33

• Add error message for PostCSS 8 plugins.

7.0.36

• Backport ReDoS vulnerabilities from PostCSS 8.

7.0.35

• Add migration guide link to PostCSS 8 error text.

7.0.34

• Fix compatibility with postcss-scss 2.

7.0.33

• Add error message for PostCSS 8 plugins.

7.0.32

• Fix error message (by @​admosity).

7.0.31

• Use only the latest source map annotation (by Emmanouil Zoumpoulakis).

7.0.30

• Fix TypeScript definition (by Natalie Weizenbaum).

7.0.29

• Update Processor#version.

7.0.28

• Fix TypeScript definition (by Natalie Weizenbaum).

7.0.27

• Fix TypeScript definition (by Natalie Weizenbaum).

• 67e3d7b Release 7.0.36 version
• 54cbf3c Backport ReDoS vulnerabilities from PostCSS 8
• 12832f3 Release 7.0.35 version
• 4455ef6 Use OpenCollective in funding
• e867c79 Add migration guide to PostCSS 8 error
• 32a22a9 Release 7.0.34 version
• 2293982 Lock build targets
• 2c3a111 Release 7.0.33 version
• 4105f21 Use yaspeller instead of yaspeller-ci
• c8d02a0 Revert yaspeller-ci removal
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.