ayan.poddar/eShopOnContainers
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
4,151 Commits 36 Branches 19 Tags 655 MiB
Commit Graph

62 Commits

Author SHA1 Message Date
Tarun Jain
9c655ff9f0 commit to fix WebSPA build error 2023-02-25 16:58:51 +05:30
Tarun Jain
5ca9c997b7 commit to update vulnerable versions of minimist - Prototype Pollution in minimist 2023-02-24 15:20:06 +05:30
Tarun Jain
a04b214705 Commit to resolve minimatch ReDoS vulnerability 2023-02-24 15:13:05 +05:30
Tarun Jain
5ccbce36b5 commit to resolve vulnerable versions of @angular/core via node_modules/codelyzer 2023-02-24 13:34:46 +05:30
Tarun Jain
47f9559de0 Commit to migrate angular version to latest '15.x' 2023-02-23 16:20:31 +05:30
Tarun Jain
d9d0bd2302 commit to migrate angular version to '14.x' 2023-02-23 16:15:24 +05:30
Tarun Jain
0fd7b932fc commit to migrate angualr version to @angular 13.3.10 2023-02-23 16:01:05 +05:30
Tarun Jain
2a26c4be10 fixes with some package updates 2023-02-23 15:15:05 +05:30
Tarun Jain
042d6ce621 commit to migrate to 12.2.18 2023-02-23 13:17:19 +05:30
Tarun Jain
3e991acc50
Merge pull request #2019 from dotnet-architecture/dependabot/npm_and_yarn/src/Web/WebSPA/Client/express-4.18.2 
Bump express from 4.17.2 to 4.18.2 in /src/Web/WebSPA/Client
 2023-02-07 13:19:19 +05:30
Tarun Jain
fa9e955a2b
Merge pull request #2016 from dotnet-architecture/dependabot/npm_and_yarn/src/Web/WebSPA/Client/decode-uri-component-0.2.2 
Bump decode-uri-component from 0.2.0 to 0.2.2 in /src/Web/WebSPA/Client
 2023-02-06 18:36:42 +05:30
Tarun Jain
50d945a395
Merge pull request #2043 from dotnet-architecture/dependabot/npm_and_yarn/src/Web/WebSPA/Client/jszip-3.10.1 
Bump jszip from 3.7.1 to 3.10.1 in /src/Web/WebSPA/Client
 2023-02-06 18:34:49 +05:30
dependabot[bot]
e3715d0213
Bump qs from 6.5.2 to 6.5.3 in /src/Web/WebSPA/Client 
Bumps [qs](https://github.com/ljharb/qs) from 6.5.2 to 6.5.3.
- [Release notes](https://github.com/ljharb/qs/releases)
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/compare/v6.5.2...v6.5.3)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-06 12:51:58 +00:00
Tarun Jain
678c80cf98
Merge pull request #2029 from dotnet-architecture/dependabot/npm_and_yarn/src/Web/WebSPA/Client/json5-1.0.2 
Bump json5 from 1.0.1 to 1.0.2 in /src/Web/WebSPA/Client
 2023-02-06 18:20:27 +05:30
Tarun Jain
676d138962
Merge pull request #2039 from dotnet-architecture/dependabot/npm_and_yarn/src/Web/WebSPA/Client/ua-parser-js-0.7.33 
Bump ua-parser-js from 0.7.31 to 0.7.33 in /src/Web/WebSPA/Client
 2023-02-06 18:18:23 +05:30
dependabot[bot]
72cf029258
Bump http-cache-semantics from 4.1.0 to 4.1.1 in /src/Web/WebSPA/Client 
Bumps [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/kornelski/http-cache-semantics/releases)
- [Commits](https://github.com/kornelski/http-cache-semantics/compare/v4.1.0...v4.1.1)

---
updated-dependencies:
- dependency-name: http-cache-semantics
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-03 09:06:39 +00:00
dependabot[bot]
79c4d06747
Bump jszip from 3.7.1 to 3.10.1 in /src/Web/WebSPA/Client 
Bumps [jszip](https://github.com/Stuk/jszip) from 3.7.1 to 3.10.1.
- [Release notes](https://github.com/Stuk/jszip/releases)
- [Changelog](https://github.com/Stuk/jszip/blob/main/CHANGES.md)
- [Commits](https://github.com/Stuk/jszip/compare/v3.7.1...v3.10.1)

---
updated-dependencies:
- dependency-name: jszip
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-02 18:34:10 +00:00
dependabot[bot]
29241ec3d2
Bump ua-parser-js from 0.7.31 to 0.7.33 in /src/Web/WebSPA/Client 
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.31 to 0.7.33.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/changelog.md)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.31...0.7.33)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-27 10:08:16 +00:00
dependabot[bot]
dd18f8df55
Bump json5 from 1.0.1 to 1.0.2 in /src/Web/WebSPA/Client 
Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2.
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v1.0.1...v1.0.2)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-07 19:26:34 +00:00
dependabot[bot]
8bfb1bd06b
Bump express from 4.17.2 to 4.18.2 in /src/Web/WebSPA/Client 
Bumps [express](https://github.com/expressjs/express) from 4.17.2 to 4.18.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.2...4.18.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-15 18:49:44 +00:00
dependabot[bot]
6a00e8bb9b
Bump decode-uri-component from 0.2.0 to 0.2.2 in /src/Web/WebSPA/Client 
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2)

---
updated-dependencies:
- dependency-name: decode-uri-component
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-07 16:24:16 +00:00
dependabot[bot]
2e7f6823ab
Bump engine.io and socket.io in /src/Web/WebSPA/Client 
Bumps [engine.io](https://github.com/socketio/engine.io) and [socket.io](https://github.com/socketio/socket.io). These dependencies needed to be updated together.

Updates `engine.io` from 6.1.2 to 6.2.1
- [Release notes](https://github.com/socketio/engine.io/releases)
- [Changelog](https://github.com/socketio/engine.io/blob/main/CHANGELOG.md)
- [Commits](https://github.com/socketio/engine.io/compare/6.1.2...6.2.1)

Updates `socket.io` from 4.4.1 to 4.5.3
- [Release notes](https://github.com/socketio/socket.io/releases)
- [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md)
- [Commits](https://github.com/socketio/socket.io/compare/4.4.1...4.5.3)

---
updated-dependencies:
- dependency-name: engine.io
  dependency-type: indirect
- dependency-name: socket.io
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-22 15:43:35 +00:00
Tarun Jain
2f2cf83167
Merge pull request #1999 from dotnet-architecture/dependabot/npm_and_yarn/src/Web/WebSPA/Client/loader-utils-1.4.2 
Bump loader-utils from 1.1.0 to 1.4.2 in /src/Web/WebSPA/Client
 2022-11-22 21:07:52 +05:30
dependabot[bot]
970f63cbe1
Bump loader-utils from 1.1.0 to 1.4.2 in /src/Web/WebSPA/Client 
Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.1.0 to 1.4.2.
- [Release notes](https://github.com/webpack/loader-utils/releases)
- [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md)
- [Commits](https://github.com/webpack/loader-utils/compare/v1.1.0...v1.4.2)

---
updated-dependencies:
- dependency-name: loader-utils
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-11 07:51:32 +00:00
dependabot[bot]
956f80a4ce
Bump socket.io-parser from 4.0.4 to 4.0.5 in /src/Web/WebSPA/Client 
Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser) from 4.0.4 to 4.0.5.
- [Release notes](https://github.com/socketio/socket.io-parser/releases)
- [Changelog](https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md)
- [Commits](https://github.com/socketio/socket.io-parser/compare/4.0.4...4.0.5)

---
updated-dependencies:
- dependency-name: socket.io-parser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-09 22:37:39 +00:00
dependabot[bot]
8c1de99091
Bump terser from 4.8.0 to 4.8.1 in /src/Web/WebSPA/Client 
Bumps [terser](https://github.com/terser/terser) from 4.8.0 to 4.8.1.
- [Release notes](https://github.com/terser/terser/releases)
- [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md)
- [Commits](https://github.com/terser/terser/commits)

---
updated-dependencies:
- dependency-name: terser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-07-20 07:26:37 +00:00
Tarun Jain
c863b143d7
Update package-json to resolve dependabot alert due to got (npm) version (#1932) 
* Update package-json to resolve dependabot alert due to got version

* update yarn.lock

Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-06-30 19:02:25 +05:30
Tarun Jain
d835809dc4
Commit to resolve dependabot alerts for eventsource (#1918) 
Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-06-06 21:04:34 +05:30
dependabot[bot]
7252faaff0
Bump async from 2.6.3 to 2.6.4 in /src/Web/WebSPA/Client 
Bumps [async](https://github.com/caolan/async) from 2.6.3 to 2.6.4.
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md)
- [Commits](https://github.com/caolan/async/compare/v2.6.3...v2.6.4)

---
updated-dependencies:
- dependency-name: async
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-04-29 17:00:19 +00:00
Tarun Jain
3f7a2faae8
Commit to fix dependabot alerts - bump node-forge, minimist (#1886) 
Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-03-31 18:07:51 +05:30
Tarun Jain
231da1c10b
update node-forge and glob-parent version (#1874) 2022-03-14 12:33:32 +05:30
Tarun Jain
2170f23bd1
Fix/dependabot alerts10 (#1872) 
* update saa-lint version

* update after npm install

* commit

* Revert "commit"

This reverts commit e1c1408635f3e34f85eeaaefe018a6dd15c9a8ec.

* Revert "update after npm install"

This reverts commit a861324c752e10c286bb0ad74acd7f737198bc48.

* update sass-lint and eslint

* fix dependabot alerts - update shelljs

* update integrity

* update webpack-dev-server

* update minimist and merge dependencies

Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-03-10 17:55:20 +05:30
Tarun Jain
548a0ecaf2
commit to fix dependabot alerts (#1870) 
* commit to fix dependabot alerts

* Commit to fix dependabot alerts - update webpack-dev-server

* commit to fix dependabot alerts

Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-03-09 15:26:56 +05:30
dependabot[bot]
48dbb225d7
Bump karma from 6.3.14 to 6.3.16 in /src/Web/WebSPA/Client (#1868) 
Bumps [karma](https://github.com/karma-runner/karma) from 6.3.14 to 6.3.16.
- [Release notes](https://github.com/karma-runner/karma/releases)
- [Changelog](https://github.com/karma-runner/karma/blob/master/CHANGELOG.md)
- [Commits](https://github.com/karma-runner/karma/compare/v6.3.14...v6.3.16)

---
updated-dependencies:
- dependency-name: karma
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-03-03 16:37:36 +05:30
Tarun Jain
8ed7a0066f
commit to update dependabot alerts using npm audit fix (#1863) 
Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-02-23 17:04:20 +05:30
dependabot[bot]
57bc496879
Bump url-parse from 1.5.2 to 1.5.9 in /src/Web/WebSPA/Client (#1861) 
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.5.2 to 1.5.9.
- [Release notes](https://github.com/unshiftio/url-parse/releases)
- [Commits](https://github.com/unshiftio/url-parse/compare/1.5.2...1.5.9)

---
updated-dependencies:
- dependency-name: url-parse
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-02-21 16:51:29 +05:30
Tarun Jain
97550d5f19
Commit to fix dependabot alert - Inefficient Regular Expression Complexity in marked (#1858) 
Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-02-21 15:52:49 +05:30
dependabot[bot]
73cc967879
Bump follow-redirects from 1.14.7 to 1.14.8 in /src/Web/WebSPA/Client 
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.7 to 1.14.8.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.14.7...v1.14.8)

---
updated-dependencies:
- dependency-name: follow-redirects
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-02-16 16:04:04 +00:00
Tarun Jain
a254b1f8a9
Merge pull request #1854 from dotnet-architecture/dependabot/npm_and_yarn/src/Web/WebSPA/Client/karma-6.3.14 
Bump karma from 6.3.6 to 6.3.14 in /src/Web/WebSPA/Client
 2022-02-16 21:32:21 +05:30
dependabot[bot]
c1cf5a1d84
Bump karma from 6.3.6 to 6.3.14 in /src/Web/WebSPA/Client 
Bumps [karma](https://github.com/karma-runner/karma) from 6.3.6 to 6.3.14.
- [Release notes](https://github.com/karma-runner/karma/releases)
- [Changelog](https://github.com/karma-runner/karma/blob/master/CHANGELOG.md)
- [Commits](https://github.com/karma-runner/karma/compare/v6.3.6...v6.3.14)

---
updated-dependencies:
- dependency-name: karma
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-02-11 12:35:42 +00:00
dependabot[bot]
79863be51e
Bump undefsafe from 2.0.2 to 2.0.5 in /src/Web/WebSPA/Client 
Bumps [undefsafe](https://github.com/remy/undefsafe) from 2.0.2 to 2.0.5.
- [Release notes](https://github.com/remy/undefsafe/releases)
- [Commits](https://github.com/remy/undefsafe/compare/v2.0.2...v2.0.5)

---
updated-dependencies:
- dependency-name: undefsafe
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-02-10 13:01:49 +00:00
Tarun Jain
a8c7b746d1
Commit to fix dependabot alerts Bump jszip from 3.2.0 to 3.7.1 (#1847) 
Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-02-08 17:02:33 +05:30
Tarun Jain
d7d288831b
Commit to update the changes for depedabot alerts - Bump jszip from 3.2.0 to 3.7.1 in /src/Web/WebSPA/Client (#1840) 
Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-02-01 17:03:20 +05:30
Tarun Jain
5270d3de35
Fix Dependabot alerts - Bump dns-packet from 1.3.1 to 1.3.4 in /src/Web/WebSPA/Client (#1837) 2022-01-31 12:07:20 +05:30
Tarun Jain
5f17aec741
Fix dependabot alerts - Update yarn.lock and package-lock.json in WebSPA project (#1833) 
Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-01-27 15:06:41 +05:30
Tarun Jain
7185809ab8
Update jsonpointer version 5.0.0, ansi-html version to 0.0.8 and webp… (#1822) 
* Update jsonpointer version 5.0.0, ansi-html version to 0.0.8 and webpack-dev-server  to webpack-dev-server version 3.11.2 was using ansi-html which is depreciated but in latest version 3.11.3 it's changed to ansi-html-community version 0.0.8

* Fix integrity issue in PR #1822

Co-authored-by: Tarun Jain <v-tjain@microsoft.com>
 2022-01-25 17:04:34 +05:30
dependabot[bot]
99f15a13b2
Bump ua-parser-js from 0.7.21 to 0.7.30 in /src/Web/WebSPA/Client (#1782) 
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.21 to 0.7.30.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.21...0.7.30)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-10-26 17:57:34 +05:30
Wenjie Yu(MSFT)
c357aeac63
Update ServiceBus sdk from t1 to t2 (#1698) 
* Update ServiceBus to the new SDKs.

* resolve errors

* resolve errors

* update codes

* update codes

* add a call in constructor

* remove changes

* add Dispose() menthod in interface

* Update codes

* update the method to get topicName

* Remove invalid changes

* resolve the errors in service

* fix issue

* fix issue

* update code

Co-authored-by: zedy <zedy@wicresoft.com>
 2021-10-26 15:09:15 +05:30
dependabot[bot]
46219957ef
Bump nth-check from 1.0.2 to 2.0.1 in /src/Web/WebSPA/Client (#1762) 
Bumps [nth-check](https://github.com/fb55/nth-check) from 1.0.2 to 2.0.1.
- [Release notes](https://github.com/fb55/nth-check/releases)
- [Commits](https://github.com/fb55/nth-check/compare/v1.0.2...v2.0.1)

---
updated-dependencies:
- dependency-name: nth-check
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-09-23 19:37:08 +05:30
Sumit Ghosh
2cf8fa7ce1
Updated set-value package to 4.0.1 (#1759) 2021-09-20 12:36:58 +05:30