[Snyk] Upgrade yaml from 1.7.2 to 1.10.2

[floriandorau]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade yaml from 1.7.2 to 1.10.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 10 versions ahead of your current version.
• The recommended version was released 2 years ago, on 2021-03-13.

Release notes

Package name: yaml

• 1.10.2 - 2021-03-13
  
  • Allow for unindented comment after node props (prettier/prettier#10510)
• 1.10.1 - 2021-03-13
  

  This release backports the following non-breaking fixes made during the work on yaml@2 on top of [email protected]:

  • Support for __proto__ as mapping key & anchor identifier (#192)
  • Fix broken TS type for BigInt toggle
  • Dump long keys properly (#195)
  • When folding highly indented lines, require at least minContentWidth chars on the first line (#196)
  • Fix YAML.stringify() for certain null values (#197)
  • Do not break escaped chars with escaped newlines (#237, cdk8s-team/cdk8s#494)
  • Set type: "module" within browser/dist/ (#208)
  • Use CommonJS for the browser endpoints yaml/types & yaml/util (#208)
  • Always stringify non-Node object keys using explicit notation (#218)
  • Specify node type of Document.Parsed.contents (#221)
  • Add missing type for CST Node.rangeAsLinePos (#222)
  • Prefer literal over folded block scalar when lineWidth=0 is set (#232)
  • Allow for empty lines after node props (#242)
  • Update dev dependencies
• 1.10.0 - 2020-05-16
  

  This will probably be the last minor release of yaml@1. I'm aiming to release yaml@2 within a few months; prereleases of that will be published using the next dist-tag on npm. Patch releases for 1.10 may still happen, if necessary.

  New Features

  • Use Rollup for Node.js & browser builds (#165)
    • This removes most of the internal dist/ paths from the release. If you want/need to use a class or function that is no longer public, please file an issue and we can add it to the exports.
    • Drop dependency on @ babel/runtime. After this, the package has 0 runtime dependencies. 🎉
    • Add exports { Alias, Collection, Merge, Node } to 'yaml/types'
  • Document Schema.createPair() & make its ctx arg optional (#157)
  • Always indent top-level scalars with lines starting with document markers or % directives (#162)
  • Use double-space when forcing top-level block scalar indent, for clarity (#162)
  • Add getNodes(): string[] method to Anchors (#166)
  • Refactor Jest config, adding tests for compiled dist/ endpoints
  • Rename & refactor source files. This should have no effect on the results, but lots of stuff moved around

  Improved Errors & Warnings

  • Throw more helpful error when setting Pair.commentBefore incorrectly (#157)
  • Better errors for bad indents (#169)
  • Drop incorrect error for flow mapping keys with length > 1024 chars
  • Add errors for plain scalars that start with reserved indicators
  • Add more explicit errors for block scalar values with bad indents
  • Enable log prints during npm start debugging

  Improved TypeScript declarations

  • Fix/simplify export mapping of 'yaml/types' and 'yaml/util'
  • Fix types, dropping AST.{AstNode,ScalarNode,CollectionNode} (#160)
  • Add missing toString() methods to AST nodes (#159)
  • Add directivesEndMarker to Document type (#167)

  Bugfixes

  • Use CommonJS for top-level default-exporting browser endpoints (#163)
  • docs: Add note about simpleKeys for null values (#170)
  • Update dev & playground dependencies, including eslint 7 & jest 26
  • Update yaml-test-suite, fixing errors in remaining invalid-input tests
    • Add explicit error for block scalars with more-indented leading empty lines (S98Z)
    • Properly add error for tab-indented map values (4EJS)
    • Add error for multiline implicit flow sequence pair key (DK4H & ZXT5)
    • Require space after comma before comment in flow collections (CVW2)
    • Use mapAsMap: true for out.yaml tests (4FJ6)
• 1.9.2 - 2020-04-20
  
  • ts: Fix Node.toJSON() type (#154)
• 1.9.1 - 2020-04-18
  
  • Add onAnchor callback arg to doc.toJSON()
  • Use a Map for anchors in doc.toJSON()
  • Update dependencies
• 1.9.0 - 2020-04-17
  

  New Features

  • Add custom ES module exports for browsers (#145)
  • Drop __esModule markers from CJS transpilation (#145)
  • Support BigInt values (#146)
  • Add YAML.scalarOptions (#146)
  • Add indent option: number of spaces (default: 2) (#147)
  • Add indentSeq option: if false, consider - as indentation (default: true) (#147)
  • Add TypeScript typings, based on @ types/yaml by @ ikatyang, with contributions from @ ColinBradley and @ shirk3y (#153)

  Bugfixes

  • Only use named exports internally (#145)
  • Clean up & document warning silencing, also supporting process.env (Fixes #148)
  • Fix typo in flow collection parsing (Fixes #149)
  • Accept that multiple blank lines generate multiple nodes (Closes #150)
  • Use cross-env to enable building on Windows (#152 by @ shirk3y)
  • Specify Document.cstNode type
  • Add Pair.Type enum
  • Export YAMLError from 'yaml/util'
• 1.8.3 - 2020-03-21
• 1.8.2 - 2020-03-11
• 1.8.1 - 2020-03-11
• 1.8.0 - 2020-03-07
• 1.7.2 - 2019-10-15

from yaml GitHub release notes

Commit messages

Package name: yaml

• 4cdcde6 1.10.2
• 7c0e083 Allow for unindented comment after node props (#242)
• 8ef0157 1.10.1
• 6296dae Update links in docs
• b1d2b28 Allow for empty lines after node props (Fixes #242)
• 3e5a640 Satisfy Prettier
• bd031cb Update dev dependencies + switch to lockfileVersion 2
• 9c6e7d0 Use CommonJS for browser endpoints yaml/types & yaml/util (#208)
• 7ddb18b Prefer literal over folded block scalar when lineWidth=0 is set (#232)
• fd817be Update dev dependencies
• 90cee5f Specify node type of Document.Parsed.contents (#221)
• 1ff8db7 Add missing type for CST Node.rangeAsLinePos (Fixes #222)
• 55d7984 Update dev dependencies
• 94cb60e Always stringify non-Node object keys using explicit notation (#218)
• f9fa9c9 Set type: "module" within browser/dist/ (Fixes #208)
• 0fa01f8 Do not break escaped chars with escaped newlines (fail to include contour helm chart  cdk8s-team/cdk8s#494)
• 452b504 Update dev dependencies
• dd5c406 When folding highly indented lines, require at least minContentWidth chars on the first line (Fixes #196)
• f6f1393 Fix YAML.stringify() for certain null values (#197)
• 83b0e54 Dump long keys properly (#195)
• 54dac4f Drop obsolete Travis CI badge from README
• 4ad5ccf Stop trying to run BrowserStack tests automatically on PRs
• 44202ee Fix broken TS type for BigInt toggle
• dc61b13 Support for __proto__ as mapping key & anchor identifier (#192)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication