Skip to content

0.3.1

Latest
Latest
Compare
Choose a tag to compare
@github-actions github-actions released this 18 Nov 22:54
v0.3.1
9141d67
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Merged PRs

dolt-workbench

  • 299: .github,docker: Fix logo image, docker platforms
  • 298: build(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /web
    Bumps cross-spawn from 7.0.3 to 7.0.6.
    Changelog

    Sourced from cross-spawn's changelog.

    7.0.6 (2024-11-18)

    Bug Fixes

    • update cross-spawn version to 7.0.5 in package-lock.json (f700743)

    7.0.5 (2024-11-07)

    Bug Fixes

    • fix escaping bug introduced by backtracking (640d391)

    7.0.4 (2024-11-07)

    Bug Fixes

    Commits
    • 77cd97f chore(release): 7.0.6
    • 6717de4 chore: upgrade standard-version
    • f700743 fix: update cross-spawn version to 7.0.5 in package-lock.json
    • 9a7e3b2 chore: fix build status badge
    • 0852683 chore(release): 7.0.5
    • 640d391 fix: fix escaping bug introduced by backtracking
    • bff0c87 chore: remove codecov
    • a7c6abc chore: replace travis with github workflows
    • 9b9246e chore(release): 7.0.4
    • 5ff3a07 fix: disable regexp backtracking (#160)
    • Additional commits viewable in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cross-spawn&package-manager=npm_and_yarn&previous-version=7.0.3&new-version=7.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dolthub/dolt-workbench/network/alerts).
  • 297: .github: Fix arm
  • 296: build(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /graphql-server
    Bumps cross-spawn from 7.0.3 to 7.0.6.
    Changelog

    Sourced from cross-spawn's changelog.

    7.0.6 (2024-11-18)

    Bug Fixes

    • update cross-spawn version to 7.0.5 in package-lock.json (f700743)

    7.0.5 (2024-11-07)

    Bug Fixes

    • fix escaping bug introduced by backtracking (640d391)

    7.0.4 (2024-11-07)

    Bug Fixes

    Commits
    • 77cd97f chore(release): 7.0.6
    • 6717de4 chore: upgrade standard-version
    • f700743 fix: update cross-spawn version to 7.0.5 in package-lock.json
    • 9a7e3b2 chore: fix build status badge
    • 0852683 chore(release): 7.0.5
    • 640d391 fix: fix escaping bug introduced by backtracking
    • bff0c87 chore: remove codecov
    • a7c6abc chore: replace travis with github workflows
    • 9b9246e chore(release): 7.0.4
    • 5ff3a07 fix: disable regexp backtracking (#160)
    • Additional commits viewable in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cross-spawn&package-manager=npm_and_yarn&previous-version=7.0.3&new-version=7.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dolthub/dolt-workbench/network/alerts).
  • 295: web: Use up to date npm-run-all package
  • 294: .github: Support linux/x86_64, linux/arm64 for docker images
  • 293: Web: add commit overview to commit logs and commit graph
  • 290: web: Database page improvements
  • 289: web: Bump webpack
  • 288: .github: Web CI should run for all of web/
  • 287: build(deps): bump @nestjs/platform-express from 10.4.5 to 10.4.6 in /graphql-server
    Bumps @nestjs/platform-express from 10.4.5 to 10.4.6.
    Commits

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@nestjs/platform-express&package-manager=npm_and_yarn&previous-version=10.4.5&new-version=10.4.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 286: build(deps): bump @apollo/server from 4.11.0 to 4.11.2 in /graphql-server
    Bumps @apollo/server from 4.11.0 to 4.11.2.
    Release notes

    Sourced from @​apollo/server's releases.

    @​apollo/server-integration-testsuite@​4.11.2

    Patch Changes

    @​apollo/server@​4.11.2

    (No change; there is a change to the @apollo/server-integration-testsuite used to test integrations, and the two packages always have matching versions.)

    @​apollo/server-integration-testsuite@​4.11.1

    Patch Changes

    • #7952 bb81b2c Thanks @​glasser! - Upgrade dependencies so that automated scans don't detect a vulnerability.

      @apollo/server depends on express which depends on cookie. Versions of express older than v4.21.1 depend on a version of cookie vulnerable to CVE-2024-47764. Users of older express versions who call res.cookie() or res.clearCookie() may be vulnerable to this issue.

      However, Apollo Server does not call this function directly, and it does not expose any object to user code that allows TypeScript users to call this function without an unsafe cast.

      The only way that this direct dependency can cause a vulnerability for users of Apollo Server is if you call startStandaloneServer with a context function that calls Express-specific methods such as res.cookie() or res.clearCookies() on the response object, which is a violation of the TypeScript types provided by startStandaloneServer (which only promise that the response object is a core Node.js http.ServerResponse rather than the Express-specific subclass). So this vulnerability can only affect Apollo Server users who use unsafe JavaScript or unsafe as typecasts in TypeScript.

      However, this upgrade will at least prevent vulnerability scanners from alerting you to this dependency, and we encourage all Express users to upgrade their project's own express dependency to v4.21.1 or newer.

    • Updated dependencies [bb81b2c]:

      • @​apollo/server@​4.11.1

    @​apollo/server@​4.11.1

    Patch Changes

    • #7952 bb81b2c Thanks @​glasser! - Upgrade dependencies so that automated scans don't detect a vulnerability.

      @apollo/server depends on express which depends on cookie. Versions of express older than v4.21.1 depend on a version of cookie vulnerable to CVE-2024-47764. Users of older express versions who call res.cookie() or res.clearCookie() may be vulnerable to this issue.

      However, Apollo Server does not call this function directly, and it does not expose any object to user code that allows TypeScript users to call this function without an unsafe cast.

      The only way that this direct dependency can cause a vulnerability for users of Apollo Server is if you call startStandaloneServer with a context function that calls Express-specific methods such as res.cookie() or res.clearCookies() on the response object, which is a violation of the TypeScript types provided by startStandaloneServer (which only promise that the response object is a core Node.js http.ServerResponse rather than the Express-specific subclass). So this vulnerability can only affect Apollo Server users who use unsafe JavaScript or unsafe as typecasts in TypeScript.

      However, this upgrade will at least prevent vulnerability scanners from alerting you to this dependency, and we encourage all Express users to upgrade their project's own express dependency to v4.21.1 or newer.

    Changelog

    Sourced from @​apollo/server's changelog.

    4.11.2

    (No change; there is a change to the @apollo/server-integration-testsuite used to test integrations, and the two packages always have matching versions.)

    4.11.1

    Patch Changes

    • #7952 bb81b2c Thanks @​glasser! - Upgrade dependencies so that automated scans don't detect a vulnerability.

      @apollo/server depends on express which depends on cookie. Versions of express older than v4.21.1 depend on a version of cookie vulnerable to CVE-2024-47764. Users of older express versions who call res.cookie() or res.clearCookie() may be vulnerable to this issue.

      However, Apollo Server does not call this function directly, and it does not expose any object to user code that allows TypeScript users to call this function without an unsafe cast.

      The only way that this direct dependency can cause a vulnerability for users of Apollo Server is if you call startStandaloneServer with a context function that calls Express-specific methods such as res.cookie() or res.clearCookies() on the response object, which is a violation of the TypeScript types provided by startStandaloneServer (which only promise that the response object is a core Node.js http.ServerResponse rather than the Express-specific subclass). So this vulnerability can only affect Apollo Server users who use unsafe JavaScript or unsafe as typecasts in TypeScript.

      However, this upgrade will at least prevent vulnerability scanners from alerting you to this dependency, and we encourage all Express users to upgrade their project's own express dependency to v4.21.1 or newer.

    Commits

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@apollo/server&package-manager=npm_and_yarn&previous-version=4.11.0&new-version=4.11.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 285: build(deps): bump pg from 8.12.0 to 8.13.1 in /graphql-server
    Bumps pg from 8.12.0 to 8.13.1.
    Changelog

    Sourced from pg's changelog.

    All major and minor releases are briefly explained below.

    For richer information consult the commit log on github with referenced pull requests.

    We do not include break-fix version release in this file.

    [email protected]

    Commits

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pg&package-manager=npm_and_yarn&previous-version=8.12.0&new-version=8.13.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 284: build(deps): bump @nestjs/common from 10.4.5 to 10.4.6 in /graphql-server
    Bumps @nestjs/common from 10.4.5 to 10.4.6.
    Commits

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@nestjs/common&package-manager=npm_and_yarn&previous-version=10.4.5&new-version=10.4.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 282: build(deps-dev): bump @typescript-eslint/parser from 7.18.0 to 8.12.2 in /web
    Bumps @typescript-eslint/parser from 7.18.0 to 8.12.2.
    Release notes

    Sourced from @​typescript-eslint/parser's releases.

    v8.12.2

    8.12.2 (2024-10-29)

    🩹 Fixes

    • eslint-plugin: [switch-exhaustiveness-check] invert considerDefaultExhaustiveForUnions (#10223)

    ❤️ Thank You

    You can read about our versioning strategy and releases on our website.

    v8.12.1

    8.12.1 (2024-10-28)

    🚀 Features

    • eslint-plugin: [prefer-nullish-coalescing] add support for assignment expressions (#10152)
    • eslint-plugin: [consistent-indexed-object-style] report mapped types (#10160)
    • eslint-plugin: [switch-exhaustiveness-check] add considerDefaultExhaustiveForUnions option (#9954)
    • eslint-plugin: [no-base-to-string] handle String() (#10005)
    • typescript-eslint: improve undefined extension handling (#10177)

    🩹 Fixes

    • eslint-plugin: [no-unsafe-return] don't reiterate through all type parts for each part (#10203)
    • website: enable noImplicitAny (#10175)
    • rule-tester: use cwd option to set base path for tests with file name (#10201)

    ❤️ Thank You

    You can read about our versioning strategy and releases on our website.

    v8.12.0

    See https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.12.1

    v8.11.0

    8.11.0 (2024-10-21)

    🚀 Features

    ... (truncated)

    Changelog

    Sourced from @​typescript-eslint/parser's changelog.

    8.12.2 (2024-10-29)

    This was a version bump only for parser to align it with other projects, there were no code changes.

    You can read about our versioning strategy and releases on our website.

    8.12.1 (2024-10-28)

    This was a version bump only for parser to align it with other projects, there were no code changes.

    You can read about our versioning strategy and releases on our website.

    8.12.0 (2024-10-28)

    This was a version bump only for parser to align it with other projects, there were no code changes.

    You can read about our versioning strategy and releases on our website.

    8.11.0 (2024-10-21)

    This was a version bump only for parser to align it with other projects, there were no code changes.

    You can read about our versioning strategy and releases on our website.

    8.10.0 (2024-10-17)

    🚀 Features

    • support TypeScript 5.6 (#9972)

    ❤️ Thank You

    • Josh Goldberg ✨

    You can read about our versioning strategy and releases on our website.

    8.9.0 (2024-10-14)

    This was a version bump only for parser to align it with other projects, there were no code changes.

    You can read about our versioning strategy and releases on our website.

    8.8.1 (2024-10-07)

    This was a version bump only for parser to align it with other projects, there were no code changes.

    You can read about our versioning strategy and releases on our website.

    8.8.0 (2024-09-30)

    ... (truncated)

    Commits
    • 4af866a chore(release): publish 8.12.2
    • 1edec1d chore(release): publish 8.12.1
    • 3413a2d chore(release): publish 8.12.0
    • 79c27a8 chore(release): publish 8.11.0
    • 8d35958 chore: enable eslint-plugin-perfectionist on typescript-estree package (#9852)
    • 7effdea chore(release): publish 8.10.0
    • f9c49e3 feat: support TypeScript 5.6 (#9972)
    • 4666ed4 chore(release): publish 8.9.0
    • f898248 chore(release): publish 8.8.1
    • 2055cfb chore(release): publish 8.8.0
    • Additional commits viewable in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=7.18.0&new-version=8.12.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

  • 281: build(deps-dev): bump cssnano from 6.1.2 to 7.0.6 in /web
    //: # (dependabot-start)
    ⚠️ Dependabot is rebasing this PR ⚠️
    Rebasing might not happen immediately, so don't worry if this takes some time.
    Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

    Bumps cssnano from 6.1.2 to 7.0.6.
    Release notes

    Sourced from cssnano's releases.

    v7.0.6

    What's Changed

    Full Changelog: https://github.com/cssnano/cssnano/compare/[email protected]@7.0.6

    v7.0.5

    Bug Fixes

    v7.0.4

    Bug fixes

    v7.0.3

    Bug Fixes

    • cssnano-preset-default: preserve SVG viewbox and title by default
    • postcss-convert-values: preserve percent sign in arguments of color functions when needed
    • postcss-ordered-values: preserve correct order in animation property
    • postcss-minify-selectors: preserve quotes when escaping selector is required
    • postcss-discard-comments: do not remove strings that only look like comments in selectors

    Thanks to @​ota-meshi and @​seiyab for their contributions to this release.

    v7.0.2

    Bug Fixes

    • fix invalid output in some cases where selectors contain comments

    v7.0.1

    Patch changes

    Update postcss-calc dependency to latest version

    v7.0.0

    Breaking changes

    This release drops official support for unmaintained long term support Node.js releases 14 and 16. It also drops support for non-long term support releases 19 and 21 and add support for Node.js 22. Only the package.json engines field has been updated. The code should otherwise be identical to the previous 6.1.2 release.

    Ensuring support for older Node.js had become difficult as the GitHub actions runners are not available for the latest MacOS and recent pnpm also could not run on CI any more.

    Commits
    • 26c83f5 Publish cssnano 7.0.6
    • e43f9bf chore: update development dependencies
    • 34bdcb8 chore: add changeset
    • a4e2c51 fix(postcss-convert-values): convert 0ms to 0s (#1665)
    • 7e86cfd chore: update Node type definitions
    • 1d65a10 fix: update postcss-selector-parser
    • 024ddef fix(cssnano-preset-default): update postcss-calc
    • 842b7f3 chore: update development dependencies
    • 104c303 docs: Update website for release
    • a7855c1 Publish cssnano 7.0.5
    • Additional commits viewable in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cssnano&package-manager=npm_and_yarn&previous-version=6.1.2&new-version=7.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 280: build(deps-dev): bump @graphql-codegen/typescript-operations from 4.3.0 to 4.3.1 in /web
    Bumps @graphql-codegen/typescript-operations from 4.3.0 to 4.3.1.
    Release notes

    Sourced from @​graphql-codegen/typescript-operations's releases.

    Release 2022-08-04T13:12:01.667Z

    @​graphql-codegen/graphql-modules-preset@​2.5.0

    Minor Changes

    Release 2022-08-04T13:05:23.977Z

    No release notes provided.

    Release 2022-08-04T13:02:57.827Z

    No release notes provided.

    Changelog

    Sourced from @​graphql-codegen/typescript-operations's changelog.

    4.3.1

    Patch Changes

    • Updated dependencies [55a1e9e, a235051]:
      • @​graphql-codegen/visitor-plugin-common@​5.5.0
      • @​graphql-codegen/plugin-helpers@​5.1.0
      • @​graphql-codegen/typescript@​4.1.1
    Commits

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@graphql-codegen/typescript-operations&package-manager=npm_and_yarn&previous-version=4.3.0&new-version=4.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 279: build(deps-dev): bump eslint-plugin-react-hooks from 4.6.2 to 5.0.0 in /web
    Bumps eslint-plugin-react-hooks from 4.6.2 to 5.0.0.
    Release notes

    Sourced from eslint-plugin-react-hooks's releases.

    [email protected] (Oct 11, 2024)

    This release only contains eslint-plugin-react-hooks. Notably, new violations and support for ESLint v9 were added.

    eslint-plugin-react-hooks

    • New Violations: Component names now need to start with an uppercase letter instead of a non-lowercase letter. This means _Button or _component are no longer valid. (@​kassens) in #25162 For example, in 
      function _Component() {
useState()
^^^^^^^^ A React Hook "useState" is called in function "_Component" which is neither a Component nor a custom React Hook function.
}
      _Component should be renamed to Component.
    Changelog

    Sourced from eslint-plugin-react-hooks's changelog.

    5.0.0

    • New Violations: Component names now need to start with an uppercase letter instead of a non-lowercase letter. This means _Button or _component are no longer valid. (@​kassens) in #25162

    4.6.0

    4.5.0

    4.4.0

    • No changes, this was an automated release together with React 18.

    4.3.0

    4.2.0

    • No changes, this was an automated release together with React 17.

    4.1.2

    4.1.1

    4.1.0

    ... (truncated)

    Commits
    Maintainer changes

    This version was pushed to npm by eps1lon, a new releaser for eslint-plugin-react-hooks since your current version.


    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eslint-plugin-react-hooks&package-manager=npm_and_yarn&previous-version=4.6.2&new-version=5.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 278: build(deps-dev): bump eslint-plugin-react from 7.37.1 to 7.37.2 in /web
    Bumps eslint-plugin-react from 7.37.1 to 7.37.2.
    Release notes

    Sourced from eslint-plugin-react's releases.

    v7.37.2

    Fixed

    • [destructuring-assignment]: fix false negative when using typeof props.a (#3835[] @​golopot)

    Changed

    • [Refactor] [destructuring-assignment]: use getParentStatelessComponent (#3835[] @​golopot)

    #3835: jsx-eslint/eslint-plugin-react#3835 [destructuring-assignment]: docs/rules/destructuring-assignment.md

    Changelog

    Sourced from eslint-plugin-react's changelog.

    7.37.2 - 2024.10.22

    Fixed

    • [destructuring-assignment]: fix false negative when using typeof props.a (#3835[] @​golopot)

    Changed

    • [Refactor] [destructuring-assignment]: use getParentStatelessComponent (#3835[] @​golopot)

    #3835: jsx-eslint/eslint-plugin-react#3835

    Commits
    • 256cf74 Update CHANGELOG and bump version
    • 33db656 [Deps] update es-iterator-helpers
    • 5696f99 [Dev Deps] update @babel/core, @babel/eslint-parser, `@babel/plugin-synta...
    • 5c23573 [Dev Deps] update @babel/core, @​babel/eslint-parser, @​babel/plugin-syntax...
    • c47fa56 [types] [Fix] ensure the index types are generated
    • 63aceff [Fix] destructuring-assignment: fix false negative when using typeof props.a
    • 96d46d5 [Refactor] destructuring-assignment: use getParentStatelessComponent
    • See full diff in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eslint-plugin-react&package-manager=npm_and_yarn&previous-version=7.37.1&new-version=7.37.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • 277: web,graphql: File upload fixes, add restore all tables button
  • 276: Update README.md - add download from Releases
    add download from Releases
  • 273: Update README.md, Windows link
  • 271: web, graphql: Apply desktop app updates, restructure project and adjust configurations
    This PR applies structural and configuration changes to support the integration of the desktop app.
    Changes:
    • File Structure: Moved the contents of web to web/renderer and added a web/main folder for Electron-related scripts.
    • Configuration Updates: Adjusted configurations for Next.js, TailwindCSS, TypeScript, ESLint, and Jest to align with the new file structure.
    • Electron Build: Added Electron Builder configuration in package.json for the desktop app build process.
    • GraphQL Server: Conditionally store path of store.json and schema.gql for Electron.
    • Docker: Updated file paths in Docker build configurations.
  • 270: web,graphql: Fix table definition highlight, parse commit id response
  • 269: liuliu/windows 0.3.0 release
  • 268: Update docker README
  • 266: liuliu/windows desktop app download link

Closed Issues

  • 143: Error reported after configuring Doltgresql connection
  • 264: the dolt-workbench can not be used in windows?
Assets 2
Loading