`<https://github.com/Disfactory/DisfactoryMonthlyReport/commit/fa6a63c597362ecf208514a26e71c140db3d226c|fa6a63c5>` - chore: autopublish 2022-06-01T01:27:09Z
`<https://github.com/Disfactory/DisfactoryMonthlyReport/commit/fa6a63c597362ecf208514a26e71c140db3d226c|fa6a63c5>` - chore: autopublish 2022-06-01T01:27:09Z
`<https://github.com/Disfactory/DisfactoryMonthlyReport/commit/fa6a63c597362ecf208514a26e71c140db3d226c|fa6a63c5>` - chore: autopublish 2022-06-01T01:27:09Z
Bumps <https://github.com/EventSource/eventsource|eventsource> from 1.0.7 to 1.1.1. Changelog _Sourced from <https://github.com/EventSource/eventsource/blob/master/HISTORY.md|eventsource's changelog>._ > *<https://github.com/EventSource/eventsource/compare/v1.1.0...v1.1.1|1.1.1>* > > • Do not include authorization and cookie headers on redirect to different origin (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/273|#273> Espen Hovlandsdal) > > *<https://github.com/EventSource/eventsource/compare/v1.0.7...v1.1.0|1.1.0>* > > • Improve performance for large messages across many chunks (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/130|#130> Trent Willis) > • Add `createConnection` option for http or https requests (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/120|#120> Vasily Lavrov) > • Support HTTP 302 redirects (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/116|#116> Ryan Bonte) > • Prevent sequential errors from attempting multiple reconnections (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/125|#125> David Patty) > • Add `new` to correct test (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/101|#111> Stéphane Alnet) > • Fix reconnections attempts now happen more than once (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/136|#136> Icy Fish) Commits • <https://github.com/EventSource/eventsource/commit/aa7a40843a978f42c0babdec125bf9e0a83bf515|`aa7a408`> 1.1.1 • <https://github.com/EventSource/eventsource/commit/56d489ef853a891deca121bbd463c732fee94dce|`56d489e`> chore: rebuild polyfill • <https://github.com/EventSource/eventsource/commit/4a951e58b04118c9c4d3da3d27d454972a1b4b8d|`4a951e5`> docs: update history for 1.1.1 • <https://github.com/EventSource/eventsource/commit/f9f6416567bff62c1af2f4314be51d9870e94bc2|`f9f6416`> fix: strip sensitive headers on redirect to different origin • <https://github.com/EventSource/eventsource/commit/9dd06876ab43af37c3313c679fbdc7f722293a0d|`9dd0687`> 1.1.0 • <https://github.com/EventSource/eventsource/commit/49497ba7107a7a94d7dbc73b6e5cc0117f8606e8|`49497ba`> Update history for 1.1.0 (<https://github-redirect.dependabot.com/EventSource/eventsource/issues/146|#146>) • <https://github.com/EventSource/eventsource/commit/3a3853793f63eb5dab9d863504817a9d37b992e6|`3a38537`> Update history for <https://github-redirect.dependabot.com/EventSource/eventsource/issues/136|#136> • <https://github.com/EventSource/eventsource/commit/46fe04e03e54f4129a28bf75b3a1e5f4ab68b52a|`46fe04e`> Merge pull request <https://github-redirect.dependabot.com/EventSource/eventsource/issues/136|#136> from icy-fish/master • <https://github.com/EventSource/eventsource/commit/9a4190f65e761ee672d786a6d01c60392950064b|`9a4190f`> Fix issue: reconnection only happends for 1 time after connection drops • <https://github.com/EventSource/eventsource/commit/61e1b19c8616aa151835a4ae599b299afb574ebf|`61e1b19`> test: destroy both proxied request and response on close • Additional commits viewable in <https://github.com/EventSource/eventsource/compare/v1.0.7...v1.1.1|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/license.disfactory.tw/network/alerts|Security Alerts page>.
Bumps <https://github.com/EventSource/eventsource|eventsource> from 1.0.7 to 1.1.1. Changelog _Sourced from <https://github.com/EventSource/eventsource/blob/master/HISTORY.md|eventsource's changelog>._ > *<https://github.com/EventSource/eventsource/compare/v1.1.0...v1.1.1|1.1.1>* > > • Do not include authorization and cookie headers on redirect to different origin (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/273|#273> Espen Hovlandsdal) > > *<https://github.com/EventSource/eventsource/compare/v1.0.7...v1.1.0|1.1.0>* > > • Improve performance for large messages across many chunks (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/130|#130> Trent Willis) > • Add `createConnection` option for http or https requests (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/120|#120> Vasily Lavrov) > • Support HTTP 302 redirects (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/116|#116> Ryan Bonte) > • Prevent sequential errors from attempting multiple reconnections (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/125|#125> David Patty) > • Add `new` to correct test (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/101|#111> Stéphane Alnet) > • Fix reconnections attempts now happen more than once (<https://github-redirect.dependabot.com/EventSource/eventsource/pull/136|#136> Icy Fish) Commits • <https://github.com/EventSource/eventsource/commit/aa7a40843a978f42c0babdec125bf9e0a83bf515|`aa7a408`> 1.1.1 • <https://github.com/EventSource/eventsource/commit/56d489ef853a891deca121bbd463c732fee94dce|`56d489e`> chore: rebuild polyfill • <https://github.com/EventSource/eventsource/commit/4a951e58b04118c9c4d3da3d27d454972a1b4b8d|`4a951e5`> docs: update history for 1.1.1 • <https://github.com/EventSource/eventsource/commit/f9f6416567bff62c1af2f4314be51d9870e94bc2|`f9f6416`> fix: strip sensitive headers on redirect to different origin • <https://github.com/EventSource/eventsource/commit/9dd06876ab43af37c3313c679fbdc7f722293a0d|`9dd0687`> 1.1.0 • <https://github.com/EventSource/eventsource/commit/49497ba7107a7a94d7dbc73b6e5cc0117f8606e8|`49497ba`> Update history for 1.1.0 (<https://github-redirect.dependabot.com/EventSource/eventsource/issues/146|#146>) • <https://github.com/EventSource/eventsource/commit/3a3853793f63eb5dab9d863504817a9d37b992e6|`3a38537`> Update history for <https://github-redirect.dependabot.com/EventSource/eventsource/issues/136|#136> • <https://github.com/EventSource/eventsource/commit/46fe04e03e54f4129a28bf75b3a1e5f4ab68b52a|`46fe04e`> Merge pull request <https://github-redirect.dependabot.com/EventSource/eventsource/issues/136|#136> from icy-fish/master • <https://github.com/EventSource/eventsource/commit/9a4190f65e761ee672d786a6d01c60392950064b|`9a4190f`> Fix issue: reconnection only happends for 1 time after connection drops • <https://github.com/EventSource/eventsource/commit/61e1b19c8616aa151835a4ae599b299afb574ebf|`61e1b19`> test: destroy both proxied request and response on close • Additional commits viewable in <https://github.com/EventSource/eventsource/compare/v1.0.7...v1.1.1|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/license.disfactory.tw/network/alerts|Security Alerts page>.
`<https://github.com/Disfactory/about.disfactory.tw/commit/5b088f69b154433e22c82db0620588b85b8c97fc|5b088f69>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/5b088f69b154433e22c82db0620588b85b8c97fc|5b088f69>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/d76dfc40bdf2162ad3522d0652d22fa6b518fe3e|d76dfc40>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/d76dfc40bdf2162ad3522d0652d22fa6b518fe3e|d76dfc40>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/9523a953569223e56da2a028015ccd2f148f87e9|9523a953>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/9523a953569223e56da2a028015ccd2f148f87e9|9523a953>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/0c0a41af5b2d934b336ed7414e53d759f85b4bfa|0c0a41af>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/0c0a41af5b2d934b336ed7414e53d759f85b4bfa|0c0a41af>` - feat: update the OG images & og-imgs-cache.json
<https://github.com/Disfactory/findTaiwanLegislator/issues/2|#2 Re-elected legislator>
「陳柏惟」該改成「林靜儀」了XD
<https://github.com/Disfactory/findTaiwanLegislator/issues/2|#2 Re-elected legislator>
「陳柏惟」該改成「林靜儀」了XD
`<https://github.com/Disfactory/DisfactoryMonthlyReport/commit/62cb5fee20ce8f0e564e7e4addeafdabec243bf3|62cb5fee>` - chore: autopublish 2022-06-07T08:56:44Z
`<https://github.com/Disfactory/DisfactoryMonthlyReport/commit/62cb5fee20ce8f0e564e7e4addeafdabec243bf3|62cb5fee>` - chore: autopublish 2022-06-07T08:56:44Z
`<https://github.com/Disfactory/about.disfactory.tw/commit/cb196d2bd820749e0f3c7651ac8446f882262e03|cb196d2b>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/cb196d2bd820749e0f3c7651ac8446f882262e03|cb196d2b>` - feat: update the OG images & og-imgs-cache.json
<https://github.com/Disfactory/Disfactory/issues/604|#604 同一個工廠被分成許多factory上傳>
*Is your feature request related to a problem? Please describe.* 同一個工廠被分成許多factory上傳 導致user誤以為自己回報的位置一直沒被檢舉,但實際上是因為同個位置有多個人上傳,我們只依據某個點的證據做成檢舉公文,進度因此只更新在該點上 *Describe the solution you'd like* 新上傳點位會先確認db裡是否有相同地號 若有,就直接在相同地號中 1)已有資料 2)無資料中最大display number 的factory新增reportrecord 若無,才新增一個新的factory *Describe alternatives you've considered* 和 <https://github.com/Disfactory/Disfactory/issues/558|#558> 彼此有關聯,因為都是「合併實際上同一個位置的工廠的資料」相關的issue *Additional context* 做好後再來考慮既有上傳點位合併。
<https://github.com/Disfactory/Disfactory/issues/604|#604 同一個工廠被分成許多factory上傳>
*Is your feature request related to a problem? Please describe.* 同一個工廠被分成許多factory上傳 導致user誤以為自己回報的位置一直沒被檢舉,但實際上是因為同個位置有多個人上傳,我們只依據某個點的證據做成檢舉公文,進度因此只更新在該點上 *Describe the solution you'd like* 新上傳點位會先確認db裡是否有相同地號 若有,就直接在相同地號中 1)已有資料 2)無資料中最大display number 的factory新增reportrecord 若無,才新增一個新的factory *Describe alternatives you've considered* 和 <https://github.com/Disfactory/Disfactory/issues/558|#558> 彼此有關聯,因為都是「合併實際上同一個位置的工廠的資料」相關的issue *Additional context* 做好後再來考慮既有上傳點位合併。
<https://github.com/Disfactory/about.disfactory.tw/issues/85|#85 新增倡議成果到 about page>
目前似乎只有回報數字,沒有整體倡議進度,畢竟已經做快三年了
<https://github.com/Disfactory/about.disfactory.tw/issues/85|#85 新增倡議成果到 about page>
目前似乎只有回報數字,沒有整體倡議進度,畢竟已經做快三年了
`<https://github.com/Disfactory/about.disfactory.tw/commit/0940edefda28f0fd291e78bd2fdfb500a8002628|0940edef>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/0940edefda28f0fd291e78bd2fdfb500a8002628|0940edef>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/6da4414e128e0fc10e1dd019976615577b44fb1f|6da4414e>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/6da4414e128e0fc10e1dd019976615577b44fb1f|6da4414e>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/d3b47163c498d6ceadfeed2d3c223f4afbffaed6|d3b47163>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/d3b47163c498d6ceadfeed2d3c223f4afbffaed6|d3b47163>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/b2aa9142e6917348f2d43e57b21c04dd4417218c|b2aa9142>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/b2aa9142e6917348f2d43e57b21c04dd4417218c|b2aa9142>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/2d0dbef1d0f79fdc662c378cf4add63953357531|2d0dbef1>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/2d0dbef1d0f79fdc662c378cf4add63953357531|2d0dbef1>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/5c5f3bee5bca4b2a04a4c61cd23f7cf94f87fd37|5c5f3bee>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/5c5f3bee5bca4b2a04a4c61cd23f7cf94f87fd37|5c5f3bee>` - feat: update the OG images & og-imgs-cache.json
<https://github.com/Disfactory/SpotDiffFrontend/issues/115|#115 添加「跳過教學」的按鈕>
*Is your feature request related to a problem? Please describe.* 目前只要重開一次SpotDiff頁面,就必須重新經歷一次教學,想要添加一個「跳過教學」的按鈕 *Describe the solution you'd like* 想要在教學頁面上新增一個「跳過教學」的按鈕
<https://github.com/Disfactory/SpotDiffFrontend/issues/115|#115 添加「跳過教學」的按鈕>
*Is your feature request related to a problem? Please describe.* 目前只要重開一次SpotDiff頁面,就必須重新經歷一次教學,想要添加一個「跳過教學」的按鈕 *Describe the solution you'd like* 想要在教學頁面上新增一個「跳過教學」的按鈕
Refer to <https://github.com/Disfactory/frontend/issues/148|#148> <https://user-images.githubusercontent.com/31992185/174474424-fb376b1a-06f4-4048-87ee-78d9f22bc4bc.gif|demo>
Refer to <https://github.com/Disfactory/frontend/issues/148|#148> <https://user-images.githubusercontent.com/31992185/174474424-fb376b1a-06f4-4048-87ee-78d9f22bc4bc.gif|demo>
Refer to <https://github.com/Disfactory/frontend/issues/148|#148> <https://user-images.githubusercontent.com/31992185/174474424-fb376b1a-06f4-4048-87ee-78d9f22bc4bc.gif|demo>
Refer to <https://github.com/Disfactory/frontend/issues/148|#148> <https://user-images.githubusercontent.com/31992185/174474424-fb376b1a-06f4-4048-87ee-78d9f22bc4bc.gif|demo>
`<https://github.com/Disfactory/about.disfactory.tw/commit/a89e171688b41a3f36c0d8a566d65bab81a4b20d|a89e1716>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/a89e171688b41a3f36c0d8a566d65bab81a4b20d|a89e1716>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/ml-crawler/commit/924c6837ae64649f52d151a4af410d36e8fa9faf|924c6837>` - first commit
`<https://github.com/Disfactory/ml-crawler/commit/924c6837ae64649f52d151a4af410d36e8fa9faf|924c6837>` - first commit
Bumps <https://github.com/caolan/async|async> from 3.2.0 to 3.2.4. Changelog _Sourced from <https://github.com/caolan/async/blob/master/CHANGELOG.md|async's changelog>._ > *v3.2.4* > > • Fix a bug in `priorityQueue` where it didn't wait for the result. (<https://github-redirect.dependabot.com/caolan/async/issues/1725|#1725>) > • Fix a bug where `unshiftAsync` was included in `priorityQueue`. (<https://github-redirect.dependabot.com/caolan/async/issues/1790|#1790>) > > *v3.2.3* > > • Fix bugs in comment parsing in `autoInject`. (<https://github-redirect.dependabot.com/caolan/async/issues/1767|#1767>, <https://github-redirect.dependabot.com/caolan/async/issues/1780|#1780>) > > *v3.2.2* > > • Fix potential prototype pollution exploit > > *v3.2.1* > > • Use `queueMicrotask` if available to the environment (<https://github-redirect.dependabot.com/caolan/async/issues/1761|#1761>) > • Minor perf improvement in `priorityQueue` (<https://github-redirect.dependabot.com/caolan/async/issues/1727|#1727>) > • More examples in documentation (<https://github-redirect.dependabot.com/caolan/async/issues/1726|#1726>) > • Various doc fixes (<https://github-redirect.dependabot.com/caolan/async/issues/1708|#1708>, <https://github-redirect.dependabot.com/caolan/async/issues/1712|#1712>, <https://github-redirect.dependabot.com/caolan/async/issues/1717|#1717>, <https://github-redirect.dependabot.com/caolan/async/issues/1740|#1740>, <https://github-redirect.dependabot.com/caolan/async/issues/1739|#1739>, <https://github-redirect.dependabot.com/caolan/async/issues/1749|#1749>, <https://github-redirect.dependabot.com/caolan/async/issues/1756|#1756>) > • Improved test coverage (<https://github-redirect.dependabot.com/caolan/async/issues/1754|#1754>) Commits • <https://github.com/caolan/async/commit/f3ab51af76ca87ebe3ec67b3dd6dec4959e04816|`f3ab51a`> Version 3.2.4 • <https://github.com/caolan/async/commit/7ea2cec7398b33a15daf5c3bd9bda6ae78caf297|`7ea2cec`> Update built files • <https://github.com/caolan/async/commit/bef7befc734e4b712ab6ffc82463cc40c1037056|`bef7bef`> update changelog • <https://github.com/caolan/async/commit/03eeab36ae5a0454bbf67b881f087692e0b7c7e4|`03eeab3`> Bump yargs from 17.4.1 to 17.5.1 (<https://github-redirect.dependabot.com/caolan/async/issues/1843|#1843>) • <https://github.com/caolan/async/commit/387efcf80f5b2c454effd2a64c75ff3c634ec3bd|`387efcf`> Bump eslint from 8.14.0 to 8.17.0 (<https://github-redirect.dependabot.com/caolan/async/issues/1849|#1849>) • <https://github.com/caolan/async/commit/131225a8c82fda93010b8b82da46e9a23b6b1816|`131225a`> Bump karma from 6.3.19 to 6.3.20 (<https://github-redirect.dependabot.com/caolan/async/issues/1844|#1844>) • <https://github.com/caolan/async/commit/4cfa89cb240d9748d5bfee0656fbed08cf80cc10|`4cfa89c`> Bump eslint from 8.14.0 to 8.16.0 (<https://github-redirect.dependabot.com/caolan/async/issues/1845|#1845>) • <https://github.com/caolan/async/commit/90e940cbb5a051db7c2a28169769f97eef99fdd6|`90e940c`> Bump rollup from 2.71.1 to 2.75.5 (<https://github-redirect.dependabot.com/caolan/async/issues/1846|#1846>) • <https://github.com/caolan/async/commit/dd72cf5f614bcf2b08ae2678f6e8ffbd28136804|`dd72cf5`> Bump `@babel/eslint-parser` from 7.17.0 to 7.18.2 (<https://github-redirect.dependabot.com/caolan/async/issues/1847|#1847>) • <https://github.com/caolan/async/commit/4ae026e8da11f817f274f264dd3a9ec7ef3307c5|`4ae026e`> Bump babel-minify from 0.5.1 to 0.5.2 (<https://github-redirect.dependabot.com/caolan/async/issues/1848|#1848>) • Additional commits viewable in <https://github.com/caolan/async/compare/v3.2.0...v3.2.4|compare view> Maintainer changes This version was pushed to npm by <https://www.npmjs.com/~hargasinski|hargasinski>, a new releaser for async since your current version. <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/about.disfactory.tw/network/alerts|Security Alerts page>.
Bumps <https://github.com/caolan/async|async> from 3.2.0 to 3.2.4. Changelog _Sourced from <https://github.com/caolan/async/blob/master/CHANGELOG.md|async's changelog>._ > *v3.2.4* > > • Fix a bug in `priorityQueue` where it didn't wait for the result. (<https://github-redirect.dependabot.com/caolan/async/issues/1725|#1725>) > • Fix a bug where `unshiftAsync` was included in `priorityQueue`. (<https://github-redirect.dependabot.com/caolan/async/issues/1790|#1790>) > > *v3.2.3* > > • Fix bugs in comment parsing in `autoInject`. (<https://github-redirect.dependabot.com/caolan/async/issues/1767|#1767>, <https://github-redirect.dependabot.com/caolan/async/issues/1780|#1780>) > > *v3.2.2* > > • Fix potential prototype pollution exploit > > *v3.2.1* > > • Use `queueMicrotask` if available to the environment (<https://github-redirect.dependabot.com/caolan/async/issues/1761|#1761>) > • Minor perf improvement in `priorityQueue` (<https://github-redirect.dependabot.com/caolan/async/issues/1727|#1727>) > • More examples in documentation (<https://github-redirect.dependabot.com/caolan/async/issues/1726|#1726>) > • Various doc fixes (<https://github-redirect.dependabot.com/caolan/async/issues/1708|#1708>, <https://github-redirect.dependabot.com/caolan/async/issues/1712|#1712>, <https://github-redirect.dependabot.com/caolan/async/issues/1717|#1717>, <https://github-redirect.dependabot.com/caolan/async/issues/1740|#1740>, <https://github-redirect.dependabot.com/caolan/async/issues/1739|#1739>, <https://github-redirect.dependabot.com/caolan/async/issues/1749|#1749>, <https://github-redirect.dependabot.com/caolan/async/issues/1756|#1756>) > • Improved test coverage (<https://github-redirect.dependabot.com/caolan/async/issues/1754|#1754>) Commits • <https://github.com/caolan/async/commit/f3ab51af76ca87ebe3ec67b3dd6dec4959e04816|`f3ab51a`> Version 3.2.4 • <https://github.com/caolan/async/commit/7ea2cec7398b33a15daf5c3bd9bda6ae78caf297|`7ea2cec`> Update built files • <https://github.com/caolan/async/commit/bef7befc734e4b712ab6ffc82463cc40c1037056|`bef7bef`> update changelog • <https://github.com/caolan/async/commit/03eeab36ae5a0454bbf67b881f087692e0b7c7e4|`03eeab3`> Bump yargs from 17.4.1 to 17.5.1 (<https://github-redirect.dependabot.com/caolan/async/issues/1843|#1843>) • <https://github.com/caolan/async/commit/387efcf80f5b2c454effd2a64c75ff3c634ec3bd|`387efcf`> Bump eslint from 8.14.0 to 8.17.0 (<https://github-redirect.dependabot.com/caolan/async/issues/1849|#1849>) • <https://github.com/caolan/async/commit/131225a8c82fda93010b8b82da46e9a23b6b1816|`131225a`> Bump karma from 6.3.19 to 6.3.20 (<https://github-redirect.dependabot.com/caolan/async/issues/1844|#1844>) • <https://github.com/caolan/async/commit/4cfa89cb240d9748d5bfee0656fbed08cf80cc10|`4cfa89c`> Bump eslint from 8.14.0 to 8.16.0 (<https://github-redirect.dependabot.com/caolan/async/issues/1845|#1845>) • <https://github.com/caolan/async/commit/90e940cbb5a051db7c2a28169769f97eef99fdd6|`90e940c`> Bump rollup from 2.71.1 to 2.75.5 (<https://github-redirect.dependabot.com/caolan/async/issues/1846|#1846>) • <https://github.com/caolan/async/commit/dd72cf5f614bcf2b08ae2678f6e8ffbd28136804|`dd72cf5`> Bump `@babel/eslint-parser` from 7.17.0 to 7.18.2 (<https://github-redirect.dependabot.com/caolan/async/issues/1847|#1847>) • <https://github.com/caolan/async/commit/4ae026e8da11f817f274f264dd3a9ec7ef3307c5|`4ae026e`> Bump babel-minify from 0.5.1 to 0.5.2 (<https://github-redirect.dependabot.com/caolan/async/issues/1848|#1848>) • Additional commits viewable in <https://github.com/caolan/async/compare/v3.2.0...v3.2.4|compare view> Maintainer changes This version was pushed to npm by <https://www.npmjs.com/~hargasinski|hargasinski>, a new releaser for async since your current version. <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/about.disfactory.tw/network/alerts|Security Alerts page>.
`<https://github.com/Disfactory/about.disfactory.tw/commit/26f4a42ca41a6b90310e068f93563ed92fbc0c35|26f4a42c>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/26f4a42ca41a6b90310e068f93563ed92fbc0c35|26f4a42c>` - feat: update the OG images & og-imgs-cache.json
Bumps <https://github.com/substack/node-shell-quote|shell-quote> from 1.7.2 to 1.7.3. Changelog _Sourced from <https://github.com/substack/node-shell-quote/blob/master/CHANGELOG.md|shell-quote's changelog>._ > *1.7.3* > > • Fix a security issue where the regex for windows drive letters allowed some shell meta-characters to escape the quoting rules. (<https://github.com/advisories/GHSA-g4rg-993r-mgx7|CVE-2021-42740>) Commits • <https://github.com/substack/node-shell-quote/commit/6a8a899c62a58a30fb128a7079f02826ed4faee0|`6a8a899`> 1.7.3 • <https://github.com/substack/node-shell-quote/commit/5799416ed454aa4ec9afafc895b4e31760ea1abe|`5799416`> fix for security issue with windows drive letter regex • <https://github.com/substack/node-shell-quote/commit/c7de931fa4ed0975ea9756983c88334fe4b8cde5|`c7de931`> Add security.md • <https://github.com/substack/node-shell-quote/commit/414853f1fd98553368ce7507cd26ebae88d71b46|`414853f`> Update readme.markdown (<https://github-redirect.dependabot.com/substack/node-shell-quote/issues/43|#43>) • <https://github.com/substack/node-shell-quote/commit/0fc4a978131ab68cace9c9a57cee245b6b70e595|`0fc4a97`> use Github Actions (<https://github-redirect.dependabot.com/substack/node-shell-quote/issues/42|#42>) • See full diff in <https://github.com/substack/node-shell-quote/compare/v1.7.2...1.7.3|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/about.disfactory.tw/network/alerts|Security Alerts page>.
Bumps <https://github.com/substack/node-shell-quote|shell-quote> from 1.7.2 to 1.7.3. Changelog _Sourced from <https://github.com/substack/node-shell-quote/blob/master/CHANGELOG.md|shell-quote's changelog>._ > *1.7.3* > > • Fix a security issue where the regex for windows drive letters allowed some shell meta-characters to escape the quoting rules. (<https://github.com/advisories/GHSA-g4rg-993r-mgx7|CVE-2021-42740>) Commits • <https://github.com/substack/node-shell-quote/commit/6a8a899c62a58a30fb128a7079f02826ed4faee0|`6a8a899`> 1.7.3 • <https://github.com/substack/node-shell-quote/commit/5799416ed454aa4ec9afafc895b4e31760ea1abe|`5799416`> fix for security issue with windows drive letter regex • <https://github.com/substack/node-shell-quote/commit/c7de931fa4ed0975ea9756983c88334fe4b8cde5|`c7de931`> Add security.md • <https://github.com/substack/node-shell-quote/commit/414853f1fd98553368ce7507cd26ebae88d71b46|`414853f`> Update readme.markdown (<https://github-redirect.dependabot.com/substack/node-shell-quote/issues/43|#43>) • <https://github.com/substack/node-shell-quote/commit/0fc4a978131ab68cace9c9a57cee245b6b70e595|`0fc4a97`> use Github Actions (<https://github-redirect.dependabot.com/substack/node-shell-quote/issues/42|#42>) • See full diff in <https://github.com/substack/node-shell-quote/compare/v1.7.2...1.7.3|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/about.disfactory.tw/network/alerts|Security Alerts page>.
`<https://github.com/Disfactory/about.disfactory.tw/commit/930a23e2e6eaa5908a7c9d85ead9c031dfaa6109|930a23e2>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/930a23e2e6eaa5908a7c9d85ead9c031dfaa6109|930a23e2>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/e784790a08aa3fcd755f08de49418ba3dc4cf303|e784790a>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/e784790a08aa3fcd755f08de49418ba3dc4cf303|e784790a>` - feat: update the OG images & og-imgs-cache.json
<https://github.com/Disfactory/TaiwanLegislatorData/pull/5|#5 Bump node-fetch from 2.6.0 to 2.6.7>
Bumps <https://github.com/node-fetch/node-fetch|node-fetch> from 2.6.0 to 2.6.7. Release notes _Sourced from <https://github.com/node-fetch/node-fetch/releases|node-fetch's releases>._ > *v2.6.7* > *Security patch release* > > Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred > > *What's Changed* > > • fix: don't forward secure headers to 3th party by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1453|node-fetch/node-fetch#1453> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7|node-fetch/node-fetch@v2.6.6...v2.6.7> > > *v2.6.6* > *What's Changed* > > • fix(URL): prefer built in URL version when available and fallback to whatwg by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1352|node-fetch/node-fetch#1352> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6|node-fetch/node-fetch@v2.6.5...v2.6.6> > > *v2.6.2* > > fixed main path in package.json > > *v2.6.1* > > *This is an important security release. It is strongly recommended to update as soon as possible.* > > See <https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md#v261|CHANGELOG> for details. Commits • <https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35|`1ef4b56`> backport of <https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1449|#1449> (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1453|#1453>) • <https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009|`8fe5c4e`> 2.x: Specify encoding as an optional peer dependency in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1310|#1310>) • <https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4|`f56b0c6`> fix(URL): prefer built in URL version when available and fallback to whatwg (... • <https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea|`b5417ae`> fix: import whatwg-url in a way compatible with ESM Node (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1303|#1303>) • <https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06|`18193c5`> fix v2.6.3 that did not sending query params (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1301|#1301>) • <https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6|`ace7536`> fix: properly encode url with unicode characters (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1291|#1291>) • <https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6|`152214c`> Fix(package.json): Corrected main file path in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1274|#1274>) • <https://github.com/node-fetch/node-fetch/commit/b5e2e41b2b50bf2997720d6125accaf0dd68c0ab|`b5e2e41`> update version number • <https://github.com/node-fetch/node-fetch/commit/2358a6c2563d1730a0cdaccc197c611949f6a334|`2358a6c`> Honor the `size` option after following a redirect and revert data uri support • <https://github.com/node-fetch/node-fetch/commit/8c197f8982a238b3c345c64b17bfa92e16b4f7c4|`8c197f8`> docs: Fix typos and grammatical errors in README.md (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/686|#686>) • Additional commits viewable in <https://github.com/node-fetch/node-fetch/compare/v2.6.0...v2.6.7|compare view> Maintainer changes This version was pushed to npm by <https://www.npmjs.com/~endless|endless>, a new releaser for node-fetch since your current version. <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/TaiwanLegislatorData/network/alerts|Security Alerts page>.
<https://github.com/Disfactory/TaiwanLegislatorData/pull/5|#5 Bump node-fetch from 2.6.0 to 2.6.7>
Bumps <https://github.com/node-fetch/node-fetch|node-fetch> from 2.6.0 to 2.6.7. Release notes _Sourced from <https://github.com/node-fetch/node-fetch/releases|node-fetch's releases>._ > *v2.6.7* > *Security patch release* > > Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred > > *What's Changed* > > • fix: don't forward secure headers to 3th party by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1453|node-fetch/node-fetch#1453> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7|node-fetch/node-fetch@v2.6.6...v2.6.7> > > *v2.6.6* > *What's Changed* > > • fix(URL): prefer built in URL version when available and fallback to whatwg by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1352|node-fetch/node-fetch#1352> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6|node-fetch/node-fetch@v2.6.5...v2.6.6> > > *v2.6.2* > > fixed main path in package.json > > *v2.6.1* > > *This is an important security release. It is strongly recommended to update as soon as possible.* > > See <https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md#v261|CHANGELOG> for details. Commits • <https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35|`1ef4b56`> backport of <https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1449|#1449> (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1453|#1453>) • <https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009|`8fe5c4e`> 2.x: Specify encoding as an optional peer dependency in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1310|#1310>) • <https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4|`f56b0c6`> fix(URL): prefer built in URL version when available and fallback to whatwg (... • <https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea|`b5417ae`> fix: import whatwg-url in a way compatible with ESM Node (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1303|#1303>) • <https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06|`18193c5`> fix v2.6.3 that did not sending query params (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1301|#1301>) • <https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6|`ace7536`> fix: properly encode url with unicode characters (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1291|#1291>) • <https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6|`152214c`> Fix(package.json): Corrected main file path in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1274|#1274>) • <https://github.com/node-fetch/node-fetch/commit/b5e2e41b2b50bf2997720d6125accaf0dd68c0ab|`b5e2e41`> update version number • <https://github.com/node-fetch/node-fetch/commit/2358a6c2563d1730a0cdaccc197c611949f6a334|`2358a6c`> Honor the `size` option after following a redirect and revert data uri support • <https://github.com/node-fetch/node-fetch/commit/8c197f8982a238b3c345c64b17bfa92e16b4f7c4|`8c197f8`> docs: Fix typos and grammatical errors in README.md (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/686|#686>) • Additional commits viewable in <https://github.com/node-fetch/node-fetch/compare/v2.6.0...v2.6.7|compare view> Maintainer changes This version was pushed to npm by <https://www.npmjs.com/~endless|endless>, a new releaser for node-fetch since your current version. <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/TaiwanLegislatorData/network/alerts|Security Alerts page>.
Bumps <https://github.com/node-fetch/node-fetch|node-fetch> from 2.6.1 to 2.6.7. Release notes _Sourced from <https://github.com/node-fetch/node-fetch/releases|node-fetch's releases>._ > *v2.6.7* > *Security patch release* > > Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred > > *What's Changed* > > • fix: don't forward secure headers to 3th party by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1453|node-fetch/node-fetch#1453> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7|node-fetch/node-fetch@v2.6.6...v2.6.7> > > *v2.6.6* > *What's Changed* > > • fix(URL): prefer built in URL version when available and fallback to whatwg by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1352|node-fetch/node-fetch#1352> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6|node-fetch/node-fetch@v2.6.5...v2.6.6> > > *v2.6.2* > > fixed main path in package.json Commits • <https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35|`1ef4b56`> backport of <https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1449|#1449> (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1453|#1453>) • <https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009|`8fe5c4e`> 2.x: Specify encoding as an optional peer dependency in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1310|#1310>) • <https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4|`f56b0c6`> fix(URL): prefer built in URL version when available and fallback to whatwg (... • <https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea|`b5417ae`> fix: import whatwg-url in a way compatible with ESM Node (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1303|#1303>) • <https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06|`18193c5`> fix v2.6.3 that did not sending query params (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1301|#1301>) • <https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6|`ace7536`> fix: properly encode url with unicode characters (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1291|#1291>) • <https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6|`152214c`> Fix(package.json): Corrected main file path in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1274|#1274>) • See full diff in <https://github.com/node-fetch/node-fetch/compare/v2.6.1...v2.6.7|compare view> Maintainer changes This version was pushed to npm by <https://www.npmjs.com/~endless|endless>, a new releaser for node-fetch since your current version. <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/about.disfactory.tw/network/alerts|Security Alerts page>.
Bumps <https://github.com/node-fetch/node-fetch|node-fetch> from 2.6.1 to 2.6.7. Release notes _Sourced from <https://github.com/node-fetch/node-fetch/releases|node-fetch's releases>._ > *v2.6.7* > *Security patch release* > > Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred > > *What's Changed* > > • fix: don't forward secure headers to 3th party by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1453|node-fetch/node-fetch#1453> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7|node-fetch/node-fetch@v2.6.6...v2.6.7> > > *v2.6.6* > *What's Changed* > > • fix(URL): prefer built in URL version when available and fallback to whatwg by <https://github.com/jimmywarting|`@jimmywarting`> in <https://github-redirect.dependabot.com/node-fetch/node-fetch/pull/1352|node-fetch/node-fetch#1352> > > *Full Changelog*: <https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6|node-fetch/node-fetch@v2.6.5...v2.6.6> > > *v2.6.2* > > fixed main path in package.json Commits • <https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35|`1ef4b56`> backport of <https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1449|#1449> (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1453|#1453>) • <https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009|`8fe5c4e`> 2.x: Specify encoding as an optional peer dependency in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1310|#1310>) • <https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4|`f56b0c6`> fix(URL): prefer built in URL version when available and fallback to whatwg (... • <https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea|`b5417ae`> fix: import whatwg-url in a way compatible with ESM Node (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1303|#1303>) • <https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06|`18193c5`> fix v2.6.3 that did not sending query params (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1301|#1301>) • <https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6|`ace7536`> fix: properly encode url with unicode characters (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1291|#1291>) • <https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6|`152214c`> Fix(package.json): Corrected main file path in package.json (<https://github-redirect.dependabot.com/node-fetch/node-fetch/issues/1274|#1274>) • See full diff in <https://github.com/node-fetch/node-fetch/compare/v2.6.1...v2.6.7|compare view> Maintainer changes This version was pushed to npm by <https://www.npmjs.com/~endless|endless>, a new releaser for node-fetch since your current version. <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/Disfactory/about.disfactory.tw/network/alerts|Security Alerts page>.
`<https://github.com/Disfactory/ml-crawler/commit/d7554fa499e0a17ef797d8eb7b09a485514ea6ba|d7554fa4>` - use selenium to click and remove reference labels
`<https://github.com/Disfactory/ml-crawler/commit/d7554fa499e0a17ef797d8eb7b09a485514ea6ba|d7554fa4>` - use selenium to click and remove reference labels
`<https://github.com/Disfactory/about.disfactory.tw/commit/d388ef98b86f64d90077b250165524934aa4b758|d388ef98>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/d388ef98b86f64d90077b250165524934aa4b758|d388ef98>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/aa5925c39091950d63a8d411fdf777c3c1a94d45|aa5925c3>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/aa5925c39091950d63a8d411fdf777c3c1a94d45|aa5925c3>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/69525ae24444a6f07e788e3545c227f74e4cbc45|69525ae2>` - feat: update the OG images & og-imgs-cache.json
`<https://github.com/Disfactory/about.disfactory.tw/commit/69525ae24444a6f07e788e3545c227f74e4cbc45|69525ae2>` - feat: update the OG images & og-imgs-cache.json