github/meteor
1
1
Fork 0
mirror of https://github.com/meteor/meteor.git synced 2026-05-02 03:01:46 -04:00
Code Issues Packages Projects Releases Wiki Activity
37,747 Commits 1,974 Branches 1,623 Tags
e01befe34baf574a18fc6ecf63bf3ec021ace607
Commit Graph

60 Commits

Author SHA1 Message Date
Nacho Codoñer
b0ea679d0d fix conflict 2024-06-11 17:00:26 +02:00
Nacho Codoñer
b73f8ef6c4 Security Updates RC.3 (#13187) 
* Bump json5 from 2.2.0 to 2.2.3 in /npm-packages/meteor-babel

Bumps [json5](https://github.com/json5/json5) from 2.2.0 to 2.2.3.
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v2.2.0...v2.2.3)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump moment from 2.29.1 to 2.29.4 in /tools/tests/apps/dynamic-import

Bumps [moment](https://github.com/moment/moment) from 2.29.1 to 2.29.4.
- [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/moment/moment/compare/2.29.1...2.29.4)

---
updated-dependencies:
- dependency-name: moment
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump lodash-es from 4.17.15 to 4.17.21 in /tools/tests/apps/modules

Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.21)

---
updated-dependencies:
- dependency-name: lodash-es
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump lodash from 4.17.15 to 4.17.21 in /tools/tests/apps/modules

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.21)

---
updated-dependencies:
- dependency-name: lodash
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ua-parser-js from 0.7.28 to 0.7.38 in /tools/tests/apps/modules

Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.28 to 0.7.38.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/0.7.38/changelog.md)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.28...0.7.38)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump minimatch in /tools/tests/apps/ecmascript-regression

Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2.
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ansi-regex in /npm-packages/cordova-plugin-meteor-webapp

Bumps [ansi-regex](https://github.com/chalk/ansi-regex) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/chalk/ansi-regex/releases)
- [Commits](https://github.com/chalk/ansi-regex/compare/v3.0.0...v3.0.1)

---
updated-dependencies:
- dependency-name: ansi-regex
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump qs and stripe in /tools/tests/apps/modules

Bumps [qs](https://github.com/ljharb/qs) to 6.12.1 and updates ancestor dependency [stripe](https://github.com/stripe/stripe-node). These dependencies need to be updated together.


Updates `qs` from 6.0.4 to 6.12.1
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/compare/v6.0.4...v6.12.1)

Updates `stripe` from 4.25.0 to 15.10.0
- [Release notes](https://github.com/stripe/stripe-node/releases)
- [Changelog](https://github.com/stripe/stripe-node/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stripe/stripe-node/compare/v4.25.0...v15.10.0)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
- dependency-name: stripe
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* upgrade meteor-ignore package.lock file

* update app deps to ensure dependabot can act on .lock files

* update package-lock.json

* Bump semver in /npm-packages/babel-preset-meteor/babel-presets-meteor

Bumps [semver](https://github.com/npm/node-semver) from 6.3.0 to 6.3.1.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v6.3.1/CHANGELOG.md)
- [Commits](https://github.com/npm/node-semver/compare/v6.3.0...v6.3.1)

---
updated-dependencies:
- dependency-name: semver
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix test

* Bump ua-parser-js from 0.7.28 to 0.7.38 in /tools/tests/apps/modules

Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.28 to 0.7.38.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/0.7.38/changelog.md)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.28...0.7.38)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump qs and stripe in /tools/tests/apps/modules

Bumps [qs](https://github.com/ljharb/qs) to 6.12.1 and updates ancestor dependency [stripe](https://github.com/stripe/stripe-node). These dependencies need to be updated together.

Updates `qs` from 6.0.4 to 6.12.1
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/compare/v6.0.4...v6.12.1)

Updates `stripe` from 4.25.0 to 15.10.0
- [Release notes](https://github.com/stripe/stripe-node/releases)
- [Changelog](https://github.com/stripe/stripe-node/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stripe/stripe-node/compare/v4.25.0...v15.10.0)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
- dependency-name: stripe
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
# Conflicts:
#	tools/tests/apps/modules/package-lock.json

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-11 13:46:07 +02:00
dependabot[bot]
576ec91b4b Bump minimist from 1.2.0 to 1.2.8 in /tools/tests/apps/modules 
Bumps [minimist](https://github.com/minimistjs/minimist) from 1.2.0 to 1.2.8.
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](https://github.com/minimistjs/minimist/compare/v1.2.0...v1.2.8)

---
updated-dependencies:
- dependency-name: minimist
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-09 14:43:49 +00:00
dependabot[bot]
18bca91a01 Bump ua-parser-js from 0.7.20 to 0.7.28 in /tools/tests/apps/modules 
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.20 to 0.7.28.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.20...0.7.28)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-05-08 11:53:48 +00:00
filipenevola
1d7601c70e Updates jquery to 3.5.1 on test apps 2020-12-09 09:49:56 -04:00
filipenevola
123730bfa9 Updates puppeteer to 2.1.1 on test apps 2020-12-09 09:44:16 -04:00
Ben Newman
b6320119d4 Update @babel/* dependencies of modules test app. 2020-02-19 11:07:29 -05:00
Ben Newman
33bcb04d68 Update modules test app to Meteor 1.9. 2020-01-08 22:35:53 -05:00
Ben Newman
6b646c6a8f Merge branch 'release-1.8.3' into release-1.9 2019-12-18 16:23:31 -05:00
Ben Newman
5758aaa30d Add jquery npm package to modules test app. 2019-12-18 14:53:16 -05:00
Ben Newman
c90246d55b Merge branch 'devel' into release-1.9 2019-11-26 15:46:38 -05:00
Ben Newman
0af5c64bd1 Update modules test app to Meteor 1.8.2. 2019-11-14 17:21:02 -05:00
Ben Newman
53fd2a1f4a Merge branch 'release-1.8.2' into release-1.9 2019-07-04 17:27:51 -04:00
Ben Newman
146e6ba1d4 Update @babel/{runtime,...} dependencies of modules test app. 2019-07-04 16:04:33 -04:00
Ben Newman
a68dc6d977 Merge branch 'release-1.8.2' into release-1.9 2019-07-03 13:30:44 -04:00
Ben Newman
e195440442 Fall back to package.json "main" field if "module" cannot be resolved. 
The meteor/tools/isobuild/resolver.js changes are the static half of the
puzzle. The runtime half was implemented in install@0.13.0 with this
commit: 233aa75ce3
 2019-07-03 12:25:05 -04:00
Ben Newman
2fa761bbfc Test that ESM modules can be imported from npm packages. 
With appropriate meteor.nodeModules.recompile configuration, that is.
 2019-07-02 11:50:51 -04:00
Ben Newman
108144c3d5 Update @babel/* dependencies of modules test app. 2019-07-02 11:41:39 -04:00
Ben Newman
2dae9be561 Regression test that the graphql package can be imported. 2019-06-25 14:25:23 -04:00
Ben Newman
2e309f5639 Merge branch 'release-1.8.2' into release-1.9 2019-06-24 15:48:15 -04:00
Ben Newman
88004d4649 Add a basic regression test of issue #10563. 2019-06-20 12:11:29 -04:00
Ben Newman
9b68eb7af2 Merge branch 'release-1.8.2' into release-1.9 2019-05-06 12:27:44 -04:00
Ben Newman
9a4fa16db9 Merge branch 'devel' into release-1.8.2 2019-05-03 14:29:48 -04:00
Ben Newman
f166f226d8 Support the "module" field of package.json for client code. (#10541) 
Supporting "module" in package.json for server code is not advisable
because Node.js will be adopting the "type":"module" convention instead,
and in the meantime we need to maintain consistency with Node's module
resolution rules, which only currently pay attention to "main":
https://medium.com/@nodejs/announcing-a-new-experimental-modules-1be8d2d6c2ff
 2019-05-02 18:30:13 -04:00
Ben Newman
9171b568a4 Remove long-deprecated idle-gc dependency from modules test app. 
https://circleci.com/gh/meteor/meteor/32476
 2019-04-12 18:43:12 -04:00
Ben Newman
07815583f1 Update modules test app to Meteor 1.8.1 and meteor-node-stubs@1.0.0. 2019-04-10 19:18:36 -04:00
Ben Newman
dea96ecac6 Fix #10409 by ignoring self-referential browser aliases in package.json. 2019-01-10 11:31:49 -05:00
Ben Newman
18762f97a2 Update modules test app to Meteor 1.8. 2018-10-13 19:32:10 -04:00
Ben Newman
defbf6d6eb Merge branch 'devel' into release-1.7.1 2018-08-07 13:30:16 -04:00
Ben Newman
228688cb8c Update vulnerable moment dependency of modules test app. 2018-08-07 12:28:44 -04:00
Ben Newman
619a8b6924 Merge branch 'master' into devel 2018-08-07 11:49:34 -04:00
Ben Newman
7593c74a7b Pin test app @babel/... dependencies to version 7.0.0-beta.55. 
Also updated the dynamic-import test app to Meteor 1.7.0.3.
 2018-08-06 12:35:23 -04:00
Ben Newman
818022dd02 Update moment dependency of modules test app to appease npm audit. 2018-08-06 11:15:28 -04:00
Ben Newman
bcaeed676e Move puppeteer back to dependencies for test applications. 
This should fix test failures, because apparently it's important that
puppeteer not be installed in devDependencies.
 2018-08-04 14:49:55 -04:00
Ben Newman
b23b1213f4 Update @babel/... dependencies of modules test app to 7.0.0-beta.56. 
Also moving puppeteer to devDependencies.
 2018-08-04 14:27:38 -04:00
Ben Newman
a756af487b Merge branch 'devel' into release-1.7.1 2018-07-18 12:42:01 -04:00
Ben Newman
8b04c25390 Emit multiple meteorInstall calls for distinct meteorInstallOptions. 
I recently noticed a bug whereby modules transferred from the application
bundle to the modules bundle would lose their application-specific import
extensions, since all modules installed in the modules bundle have only
.js and .json as import extensions, matching default Node behavior.

This commit fixes that bug by emitting one meteorInstall call per distinct
meteorInstallOptions object. This logic would work if every module had a
different meteorInstallOptions object, but in practice the modules bundle
should end up with exactly two meteorInstall calls, because a single
options object is shared among all modules from the same source batch.
 2018-06-28 18:07:34 -04:00
Toine van Kampen
499bb7ea25 Merge remote-tracking branch 'meteor/devel' into devel 
Rebaseline
 2018-06-06 20:28:03 +10:00
Ben Newman
0fcf29eaee Update modules test app to Meteor 1.7. 2018-05-27 20:38:01 -04:00
Ben Newman
b7579ad100 Update modules test app to Meteor 1.7-rc.5. 2018-05-09 19:12:13 -04:00
Ben Newman
81248867aa Update meteor-node-stubs to version 0.4.1. 
This only affects newly created applications for now, but developers can
update to the latest meteor-node-stubs by running

  meteor npm install meteor-node-stubs@latest

https://github.com/meteor/node-stubs/issues/15
 2018-05-08 12:56:03 -04:00
Toine van Kampen
f666568e40 Merge remote-tracking branch 'meteor/devel' into devel 
Rebaseline
 2018-05-01 06:31:00 +10:00
Ben Newman
986b47d1c4 Update meteor-babel to version 7.0.0-beta.46. (#9840) 2018-04-25 18:15:29 -04:00
Toine van Kampen
4bbc204bb0 Remove PhantomJS from App-Config 
Remove PhantomJS from App-Config, Dynamic Import and Modules.
Explicitly end page before browser to ensure both are null.
 2018-04-16 06:40:31 +10:00
Ben Newman
e6a0e9089d Merge branch 'master' into devel 2018-04-02 13:08:43 -04:00
Ben Newman
4c0e583249 Update meteor-babel to version 7.0.0-beta.42. 
https://github.com/babel/babel/releases/tag/v7.0.0-beta.41
https://github.com/babel/babel/releases/tag/v7.0.0-beta.42

Also updated various @babel/... plugin versions in package.json files.
 2018-03-31 13:10:12 -04:00
Ben Newman
9401f0d572 Add tests of selective node_modules compilation using symlinks. 2018-03-26 14:51:51 -04:00
Ben Newman
41b0b309c6 Bump @babel/runtime to latest version in various package[-lock].json files. 2018-03-20 21:13:52 -04:00
Ben Newman
7c96a70692 Update meteor-babel to latest version, 7.0.0-beta.40-1. 2018-02-13 14:08:05 -05:00
Ben Newman
6ae14731a2 Avoid hiding errors due to missing dependencies of custom Babel plugins. 
As illustrated by #9554, if a custom .babelrc plugin such as
@babel/plugin-proposal-optional-chaining imports a missing dependency such
as @babel/core, that failure causes inputFile.require to throw an
exception that looks a lot like @babel/plugin-proposal-optional-chaining
itself is missing, which can be confusing.

This change does not fix the underlying problem (the @babel/core package
still needs to be installed), but it does expose the exception so that the
developer can do something about it, rather than merely leaving the ?.
syntax uncompiled.

Here's the offending line of code:
47ce7e71c9/packages/babel-plugin-proposal-optional-chaining/src/index.js (L2)

Unfortunately, depending directly on @babel/core seems to be the policy
for Babel plugins, per this PR: https://github.com/babel/babel/pull/6778
 2018-01-19 18:19:31 -05:00