Skip to content
This repository has been archived by the owner on Mar 5, 2022. It is now read-only.

Bump yup from 0.32.9 to 0.32.10 #72

Closed
wants to merge 1 commit into from
Closed

Bump yup from 0.32.9 to 0.32.10 #72

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 12, 2021

Bumps yup from 0.32.9 to 0.32.10.

Changelog

Sourced from yup's changelog.

0.32.10 (2021-10-11)

Bug Fixes

  • carry over excluded edges when concating objects (5334349), closes #1423
  • fix the typo for the array length validation (#1287) (4c17508)
  • missing transforms on concat (f3056f2), closes #1260
  • oneOf, notOneOf swallowing multiple errors (#1434) (7842afb)
  • prevent unhandled Promise rejection when returning rejected Promise inside test function (#1327) (5eda549)
  • SchemaOf<>'s treatment of Date objects. (#1305) (91ace1e), closes #1243 #1302
  • update lodash/lodash-es to fix CVEs flagged in 4.17.20 (#1334) (70d0b67)
  • utils: use named functions for default exports (#1329) (acbb8b4)

Features

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump yup from 0.32.9 to 0.32.10
177943f 
Bumps [yup](https://github.com/jquense/yup) from 0.32.9 to 0.32.10.
- [Release notes](https://github.com/jquense/yup/releases)
- [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md)
- [Commits](jquense/yup@v0.32.9...v0.32.10)

---
updated-dependencies:
- dependency-name: yup
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Oct 12, 2021
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 13, 2021

Superseded by #74.

@dependabot dependabot bot closed this Oct 13, 2021
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/yup-0.32.10 branch October 13, 2021 11:16
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants