Skip to content
This repository has been archived by the owner on Jul 24, 2024. It is now read-only.

build(deps): bump mysql2 from 2.3.3 to 3.10.1 in /server #2497

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 16, 2024

Bumps mysql2 from 2.3.3 to 3.10.1.

Release notes

Sourced from mysql2's releases.

v3.10.1

3.10.1 (2024-06-13)

Bug Fixes

v3.10.0

3.10.0 (2024-05-30)

Features

Bug Fixes

  • stream: reads should emit the dataset number for each dataset (#2496, #2628) (4dab4ca)

v3.9.9

3.9.9 (2024-05-29)

Bug Fixes

  • connection config: remove keepAliveInitialDelay default value (#2712) (688ebab)

v3.9.8

3.9.8 (2024-05-26)

Bug Fixes

  • security: sanitize fields and tables when using nestTables (#2702) (efe3db5)
  • support deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (#2704) (2e03694)
  • typings: typo from jonServerPublicKey to onServerPublicKey (#2699) (8b5f691)

v3.9.7

3.9.7 (2024-04-21)

Bug Fixes

  • security: sanitize timezone parameter value to prevent code injection - report by zhaoyudi (Nebulalab) (#2608) (7d4b098)

v3.9.6

3.9.6 (2024-04-18)

... (truncated)

Changelog

Sourced from mysql2's changelog.

3.10.1 (2024-06-13)

Bug Fixes

3.10.0 (2024-05-30)

Features

Bug Fixes

  • stream: reads should emit the dataset number for each dataset (#2628) (4dab4ca)

3.9.9 (2024-05-29)

Bug Fixes

  • connection config: remove keepAliveInitialDelay default value (#2712) (688ebab)

3.9.8 (2024-05-26)

Bug Fixes

  • security: sanitize fields and tables when using nestTables (#2702) (efe3db5)
  • support deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (#2704) (2e03694)
  • typings: typo from jonServerPublicKey to onServerPublicKey (#2699) (8b5f691)

3.9.7 (2024-04-21)

Bug Fixes

  • security: sanitize timezone parameter value to prevent code injection (#2608) (7d4b098)

3.9.6 (2024-04-18)

Bug Fixes

  • binary parser sometimes reads out of packet bounds when results contain null and typecast is false (#2601) (705835d)

3.9.5 (2024-04-17)

... (truncated)

Commits
  • 7de393f chore(master): release 3.10.1 (#2774)
  • aa8604a fix: setMaxParserCache throws TypeError (#2757)
  • b924c5a ci(coverage): disable Codecov patch (#2674)
  • 91852e7 build(deps-dev): bump tsx from 4.15.2 to 4.15.4 in /website (#2773)
  • 4578c11 build(deps): bump sass from 1.77.4 to 1.77.5 in /website (#2772)
  • e97d934 build(deps-dev): bump poku from 1.15.0 to 1.15.1 in /website (#2771)
  • bf68fda build(deps-dev): bump c8 from 10.1.1 to 10.1.2 (#2770)
  • 07225b6 build(deps-dev): bump lint-staged from 15.2.6 to 15.2.7 (#2768)
  • 26989c6 build(deps-dev): bump poku from 1.15.0 to 1.15.1 (#2769)
  • 8187429 build(deps-dev): bump @​typescript-eslint/parser in /website (#2763)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [mysql2](https://github.com/sidorares/node-mysql2) from 2.3.3 to 3.10.1.
- [Release notes](https://github.com/sidorares/node-mysql2/releases)
- [Changelog](https://github.com/sidorares/node-mysql2/blob/master/Changelog.md)
- [Commits](sidorares/node-mysql2@v2.3.3...v3.10.1)

---
updated-dependencies:
- dependency-name: mysql2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jun 16, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants