[Snyk] Upgrade qs from 6.5.1 to 6.10.3 #1

snyk-bot · 2022-03-11T12:25:18Z

Snyk has created this PR to upgrade qs from 6.5.1 to 6.10.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 24 versions ahead of your current version.
The recommended version was released 2 months ago, on 2022-01-11.

Release notes

Package name: qs

6.10.3 - 2022-01-11
- [Fix] parse: ignore __proto__ keys (#428)
- [Robustness] stringify: avoid relying on a global undefined (#427)
- [actions] reuse common workflows
- [Dev Deps] update eslint, @ ljharb/eslint-config, object-inspect, tape
6.10.2 - 2021-12-06
v6.10.2
6.10.1 - 2021-03-22
6.10.0 - 2021-03-18
6.9.7 - 2022-01-11
- [Fix] parse: ignore __proto__ keys (#428)
- [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)
- [Robustness] stringify: avoid relying on a global undefined (#427)
- [readme] remove travis badge; add github actions/codecov badges; update URLs
- [Docs] add note and links for coercing primitive values (#408)
- [Tests] clean up stringify tests slightly
- [meta] fix README.md (#399)
- Revert "[meta] ignore eclint transitive audit warning"
- [actions] backport actions from main
- [Dev Deps] backport updates from main
6.9.6 - 2021-01-14
6.9.5 - 2021-01-13
6.9.4 - 2020-05-03
6.9.3 - 2020-03-25
6.9.2 - 2020-03-22
6.9.1 - 2019-11-08
6.9.0 - 2019-09-21
6.8.3 - 2022-01-11
- [Fix] parse: ignore __proto__ keys (#428)
- [Robustness] stringify: avoid relying on a global undefined (#427)
- [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)
- [readme] remove travis badge; add github actions/codecov badges; update URLs
- [Tests] clean up stringify tests slightly
- [Docs] add note and links for coercing primitive values (#408)
- [meta] fix README.md (#399)
- [actions] backport actions from main
- [Dev Deps] backport updates from main
- [Refactor] stringify: reduce branching
- [meta] do not publish workflow files
6.8.2 - 2020-03-25
6.8.1 - 2020-03-24
6.8.0 - 2019-08-17
6.7.3 - 2022-01-11
- [Fix] parse: ignore __proto__ keys (#428)
- [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (#424)
- [Robustness] stringify: avoid relying on a global undefined (#427)
- [readme] remove travis badge; add github actions/codecov badges; update URLs
- [Docs] add note and links for coercing primitive values (#408)
- [meta] fix README.md (#399)
- [meta] do not publish workflow files
- [actions] backport actions from main
- [Dev Deps] backport updates from main
- [Tests] use nyc for coverage
- [Tests] clean up stringify tests slightly
6.7.2 - 2020-03-25
6.7.1 - 2020-03-24
6.7.0 - 2019-03-22
6.6.1 - 2022-01-11
- [Fix] parse: ignore __proto__ keys (#428)
- [Fix] fix for an impossible situation: when the formatter is called with a non-string value
- [Fix] utils.merge: avoid a crash with a null target and an array source
- [Fix] utils.merge: avoid a crash with a null target and a truthy non-array source
- [Fix] correctly parse nested arrays
- [Robustness] stringify: avoid relying on a global undefined (#427)
- [Robustness] stringify: cache Object.prototype.hasOwnProperty
- [Refactor] formats: tiny bit of cleanup.
- [Refactor] utils: isBuffer: small tweak; add tests
- [Refactor]: stringify/utils: cache Array.isArray
- [Refactor] utils: reduce observable [[Get]]s
- [Refactor] use cached Array.isArray
- [Refactor] parse/stringify: make a function to normalize the options
- [readme] remove travis badge; add github actions/codecov badges; update URLs
- [Docs] Clarify the need for "arrayLimit" option
- [meta] fix README.md (#399)
- [meta] do not publish workflow files
- [meta] Clean up license text so it’s properly detected as BSD-3-Clause
- [meta] add FUNDING.yml
- [meta] Fixes typo in CHANGELOG.md
- [actions] backport actions from main
- [Tests] fix Buffer tests to work in node < 4.5 and node < 5.10
- [Tests] always use String(x) over x.toString()
- [Dev Deps] backport from main
6.6.0 - 2018-11-25
6.5.3 - 2022-01-11
- [Fix] parse: ignore __proto__ keys (#428)
- [Fix] utils.merge`: avoid a crash with a null target and a truthy non-array source
- [Fix] correctly parse nested arrays
- [Fix] stringify: fix a crash with strictNullHandling and a custom filter/serializeDate (#279)
- [Fix] utils: merge: fix crash when source is a truthy primitive & no options are provided
- [Fix] when parseArrays is false, properly handle keys ending in []
- [Fix] fix for an impossible situation: when the formatter is called with a non-string value
- [Fix] utils.merge: avoid a crash with a null target and an array source
- [Refactor] utils: reduce observable [[Get]]s
- [Refactor] use cached Array.isArray
- [Refactor] stringify: Avoid arr = arr.concat(...), push to the existing instance (#269)
- [Refactor] parse: only need to reassign the var once
- [Robustness] stringify: avoid relying on a global undefined (#427)
- [readme] remove travis badge; add github actions/codecov badges; update URLs
- [Docs] Clean up license text so it’s properly detected as BSD-3-Clause
- [Docs] Clarify the need for "arrayLimit" option
- [meta] fix README.md (#399)
- [meta] add FUNDING.yml
- [actions] backport actions from main
- [Tests] always use String(x) over x.toString()
- [Tests] remove nonexistent tape option
- [Dev Deps] backport from main
6.5.2 - 2018-05-04
6.5.1 - 2017-09-09

from qs GitHub release notes

Commit messages

Package name: qs

f92ddb5 v6.10.3
d9e9529 [Dev Deps] update `eslint`
8b4cc14 [Fix] `parse`: ignore `__proto__` keys
ad63d36 [actions] reuse common workflows
c028385 [Dev Deps] update `eslint`, `@ ljharb/eslint-config`, `object-inspect`, `tape`
0a1d3e8 [Robustness] `stringify`: avoid relying on a global `undefined`
408ff95 v6.10.2
3cea04d [Dev Deps] update `@ ljharb/eslint-config`
28fba8f [Dev Deps] update `eslint`, `@ ljharb/eslint-config`, `tape`
9aee773 [Fix] `stringify`: actually fix cyclic references
24c19cc [Dev Deps] update `eslint`, `@ ljharb/eslint-config`, `safe-publish-latest`
5dbeeb4 [Fix] `stringify`: avoid encoding arrayformat comma when `encodeValuesOnly = true`
e2fd364 [actions] update codecov uploader
651b884 [Dev Deps] update `eslint`, `@ ljharb/eslint-config`, `aud`, `object-inspect`, `tape`
e4a81e0 [readme] remove travis badge; add github actions/codecov badges; update URLs
e9877e3 [actions] update workflows
bd9e375 [Tests] clean up stringify tests slightly
c2ae487 [Docs] add note and links for coercing primitive values
dd0f954 v6.10.1
e77ca2c [Fix] `stringify`: avoid exception on repeated object values
7c1fcc5 v6.10.0
a20cfbd [Dev Deps] update `eslint`, `has-symbols`, `tape`
63766c2 [New] `stringify`: throw on cycles, instead of an infinite loop
586f029 [Tests] fix tests on node v0.6

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade qs from 6.5.1 to 6.10.3. See this package in npm: https://www.npmjs.com/package/qs See this project in Snyk: https://app.snyk.io/org/thewindsweptdev/project/c7544f26-f146-4229-bd27-cb67d4786aaa?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Snyk] Upgrade qs from 6.5.1 to 6.10.3 #1

[Snyk] Upgrade qs from 6.5.1 to 6.10.3 #1

Uh oh!

snyk-bot commented Mar 11, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

[Snyk] Upgrade qs from 6.5.1 to 6.10.3 #1

Are you sure you want to change the base?

[Snyk] Upgrade qs from 6.5.1 to 6.10.3 #1

Uh oh!

Conversation

snyk-bot commented Mar 11, 2022

Snyk has created this PR to upgrade qs from 6.5.1 to 6.10.3.

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants