Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump axios and n8n-core in /n8n #57

Merged
merged 2 commits into from
Feb 20, 2024
Merged

Bump axios and n8n-core in /n8n #57

merged 2 commits into from
Feb 20, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 20, 2024

Bumps axios to 1.6.7 and updates ancestor dependency n8n-core. These dependencies need to be updated together.

Updates axios from 0.21.4 to 1.6.7

Release notes

Sourced from axios's releases.

Release v1.6.7

Release notes:

Bug Fixes

  • capture async stack only for rejections with native error objects; (#6203) (1a08f90)

Contributors to this release

Release v1.6.6

Release notes:

Bug Fixes

  • fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
  • wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

Release v1.6.5

Release notes:

Bug Fixes

  • ci: refactor notify action as a job of publish action; (#6176) (0736f95)
  • dns: fixed lookup error handling; (#6175) (f4f2b03)

Contributors to this release

Release v1.6.4

Release notes:

Bug Fixes

  • security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)
  • security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)

Contributors to this release

Release v1.6.3

Release notes:

... (truncated)

Changelog

Sourced from axios's changelog.

1.6.7 (2024-01-25)

Bug Fixes

  • capture async stack only for rejections with native error objects; (#6203) (1a08f90)

Contributors to this release

1.6.6 (2024-01-24)

Bug Fixes

  • fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
  • wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

1.6.5 (2024-01-05)

Bug Fixes

  • ci: refactor notify action as a job of publish action; (#6176) (0736f95)
  • dns: fixed lookup error handling; (#6175) (f4f2b03)

Contributors to this release

1.6.4 (2024-01-03)

Bug Fixes

  • security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)
  • security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)

Contributors to this release

... (truncated)

Commits

Updates n8n-core from 1.14.0 to 1.29.1

Changelog

Sourced from n8n-core's changelog.

1.29.1 (2024-02-16)

Bug Fixes

  • Extract From File Node: Make binary data work with any backend (#8647) (cc7761e)
  • GraphQL Node: Fix request format JSON error (#8646) (1e0370c)

1.29.0 (2024-02-15)

Bug Fixes

  • core: Custom workflow tool tweaks (#8561) (ccc0ad5)
  • core: Give better error message if executions.process is still used in the configs (#8618) (cd8ca84)
  • core: Improve the startup error when EXECUTIONS_PROCESS is set (#8630) (a2a3ca1)
  • core: Upgrade @n8n/typeorm to address postgres timestamp issues (#8627) (68498cb)
  • core: Upgrade rudderstack sdk to address npm postInstall issues (#8568) (5750e8e)
  • editor: Debounce expression changes (#8629) (9c7e026)
  • Execute Workflow Node: Passing the workflow that is supposed to be executed as a paramter (#8614) (b54488a)
  • Fix resolving of expressions of deeply nested sub-nodes (#8612) (f527430)
  • FTP Node: Fix issue with connections not closing properly (#8619) (e597fbc)
  • FTP Node: Fix issue with paireditems not always working (#8613) (d38a822)
  • Google Sheets Trigger Node: First non-header row is ignored when using on row added event (#8580) (2db8231)
  • HTTP Request Node: Errorneous binary object without content-disposition response header (#8583) (e28b374)
  • HTTP Request Node: Handle special characters in pagination expressions + improve hint text (#8576) (3b2078c)
  • Jira Software Node: Fix issue with not all issue types being supported (#8571) (a6211c9)
  • Merge Node: Fixing how paired items are handled in the merge node, when choosing a branch and selecting to return an empty object (#8479) (a3bed97)
  • Microsoft Outlook Node: Download executes more than once per incoming item (#8566) (053fb5f)
  • Notion Node: Block with text results in a body validation error (#8622) (6bc1c3d)
  • RSS Feed Trigger Node: Save last item's date instead of last execution date (#8572) (a822588)
  • Wait Node: Account for workflow timezone in Wait node datetime (#8578) (1116a28)

Features

  • Add support for AI log streaming (#8526) (7501ad8)
  • Add telemetry event when users click on templates link (#8625) (bf4f896)
  • API: Add tag support to public API (#8588) (a743a40)
  • Convert to File Node: Operation to convert a string in a plain text file, option to format JSON when creating file (#8620) (d18cba3)
  • core: Migrate to n8n's typeorm fork (#8590) (8e392cf)
  • editor: Use website as the main templates repository (#8591) (79b09fd)
  • HTML Extract Node: Better text extraction, option to specify selectors to skip, option to clean up text data (#8586) (32281d1)
  • OpenAI Node: Overhaul (#8335) (941278d)
  • Upgrade typeorm, sqlite3, and pg/pg-promise (#8579) (7826bd8)

... (truncated)

Commits
  • 689796d 🚀 Release 1.29.1 (#8653)
  • f424f7b fix(OpenAI Node): Always show jsonOutput toggle for OpenAI message operation ...
  • cc7761e fix(Extract From File Node): Make binary data work with any backend (#8647)
  • 5931a60 ci: Disable flaky 38-custom-template-repository.cy.ts (no-changelog) (#8648)
  • 1e0370c fix(GraphQL Node): Fix request format JSON error (#8646)
  • c4e259b 🚀 Release 1.29.0 (#8643)
  • 540a80e test: Fix broken workflow tag tests (#8641)
  • bf729aa refactor(editor): Do not use CodeNodeEditor anywhere except the Code node (no...
  • 941278d feat(OpenAI Node): Overhaul (#8335)
  • 2b9391a fix(core): Improve handling of wrapped errors (no-changelog) (#8631)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump axios and n8n-core in /n8n
742dd11 
Bumps [axios](https://github.com/axios/axios) to 1.6.7 and updates ancestor dependency [n8n-core](https://github.com/n8n-io/n8n). These dependencies need to be updated together.


Updates `axios` from 0.21.4 to 1.6.7
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v0.21.4...v1.6.7)

Updates `n8n-core` from 1.14.0 to 1.29.1
- [Release notes](https://github.com/n8n-io/n8n/releases)
- [Changelog](https://github.com/n8n-io/n8n/blob/[email protected]/CHANGELOG.md)
- [Commits](https://github.com/n8n-io/n8n/compare/[email protected]@1.29.1)

---
updated-dependencies:
- dependency-name: axios
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
- dependency-name: n8n-core
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 20, 2024
@xuanyu66 xuanyu66 merged commit 5c2013d into main Feb 20, 2024
3 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/n8n/npm_and_yarn-security-group-3312c6f4c4 branch February 20, 2024 09:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@xuanyu66 xuanyu66 xuanyu66 approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@xuanyu66