From 5bd4c9ab0e078432eceba8d002fac83989c3f100 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 4 Aug 2023 17:47:34 +0000 Subject: [PATCH 1/8] Bump word-wrap from 1.2.3 to 1.2.5 in /nodejs/react-yarn Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap) from 1.2.3 to 1.2.5. - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](https://github.com/jonschlinkert/word-wrap/compare/1.2.3...1.2.5) --- updated-dependencies: - dependency-name: word-wrap dependency-type: indirect ... Signed-off-by: dependabot[bot] --- nodejs/react-yarn/yarn.lock | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/nodejs/react-yarn/yarn.lock b/nodejs/react-yarn/yarn.lock index 30a5e40a..a1f2ea11 100644 --- a/nodejs/react-yarn/yarn.lock +++ b/nodejs/react-yarn/yarn.lock @@ -8424,9 +8424,9 @@ which@^2.0.1: isexe "^2.0.0" word-wrap@^1.2.3, word-wrap@~1.2.3: - version "1.2.3" - resolved "https://registry.yarnpkg.com/word-wrap/-/word-wrap-1.2.3.tgz#610636f6b1f703891bd34771ccb17fb93b47079c" - integrity sha512-Hz/mrNwitNRh/HUAtM/VT/5VH+ygD6DV7mYKZAtHOrbs8U7lvPS6xf7EJKMF0uW1KJCl0H701g3ZGus+muE5vQ== + version "1.2.5" + resolved "https://registry.yarnpkg.com/word-wrap/-/word-wrap-1.2.5.tgz#d2c45c6dd4fbce621a66f136cbe328afd0410b34" + integrity sha512-BN22B5eaMMI9UMtjrGd5g5eCYPpCPDUy0FJXbYsaT5zYxjFOckS53SQDE3pWkVoWpHXVb3BrYcEN4Twa55B5cA== workbox-background-sync@6.5.3: version "6.5.3" From 15d1cc6070fbd8ceb228bb078ecfdfb660d830f0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 14 Nov 2023 08:42:47 -0500 Subject: [PATCH 2/8] Bump io.spring.dependency-management in /java/dist-zip (#651) Bumps [io.spring.dependency-management](https://github.com/spring-gradle-plugins/dependency-management-plugin) from 1.1.3 to 1.1.4. - [Release notes](https://github.com/spring-gradle-plugins/dependency-management-plugin/releases) - [Commits](https://github.com/spring-gradle-plugins/dependency-management-plugin/compare/v1.1.3...v1.1.4) --- updated-dependencies: - dependency-name: io.spring.dependency-management dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- java/dist-zip/build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/java/dist-zip/build.gradle b/java/dist-zip/build.gradle index 91de9d16..3deb641c 100644 --- a/java/dist-zip/build.gradle +++ b/java/dist-zip/build.gradle @@ -1,7 +1,7 @@ plugins { id 'java' id 'org.springframework.boot' version '3.1.5' - id 'io.spring.dependency-management' version '1.1.3' + id 'io.spring.dependency-management' version '1.1.4' id 'application' } From 39368e1cf761dba62f61cb165b0ac32f16a9dd8c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 14 Nov 2023 09:02:57 -0500 Subject: [PATCH 3/8] Bump io.spring.dependency-management from 1.1.3 to 1.1.4 in /java/gradle (#652) Bumps [io.spring.dependency-management](https://github.com/spring-gradle-plugins/dependency-management-plugin) from 1.1.3 to 1.1.4. - [Release notes](https://github.com/spring-gradle-plugins/dependency-management-plugin/releases) - [Commits](https://github.com/spring-gradle-plugins/dependency-management-plugin/compare/v1.1.3...v1.1.4) --- updated-dependencies: - dependency-name: io.spring.dependency-management dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Daniel Mikusa --- java/gradle/build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/java/gradle/build.gradle b/java/gradle/build.gradle index 0e842c76..99a2b0d6 100644 --- a/java/gradle/build.gradle +++ b/java/gradle/build.gradle @@ -1,7 +1,7 @@ plugins { id 'java' id 'org.springframework.boot' version '3.1.5' - id 'io.spring.dependency-management' version '1.1.3' + id 'io.spring.dependency-management' version '1.1.4' } group = 'io.paketo' From 4afe489fc86eff2f66d45833c713ce9c235dfd4d Mon Sep 17 00:00:00 2001 From: Forest Eckhardt Date: Tue, 14 Nov 2023 09:11:49 -0500 Subject: [PATCH 4/8] Update buildpack.toml to supported buildpack API version (#647) * Update buildpack.toml to supported buildpack API version * Update buildpack.toml --------- Co-authored-by: Daniel Mikusa --- ca-certificates/ca-certificates-sample/buildpack/buildpack.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ca-certificates/ca-certificates-sample/buildpack/buildpack.toml b/ca-certificates/ca-certificates-sample/buildpack/buildpack.toml index a5e825be..bbdad8df 100644 --- a/ca-certificates/ca-certificates-sample/buildpack/buildpack.toml +++ b/ca-certificates/ca-certificates-sample/buildpack/buildpack.toml @@ -1,4 +1,4 @@ -api = "0.4" +api = "0.7" [buildpack] id = "paketo-buildpacks/samples-ca-certficates" From 2270a45f2624e594b2bf092add904ea66aab5459 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 14 Nov 2023 09:18:01 -0500 Subject: [PATCH 5/8] Bump postcss from 8.4.22 to 8.4.31 in /java/java-node/maven-yarn (#628) Bumps [postcss](https://github.com/postcss/postcss) from 8.4.22 to 8.4.31. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.4.22...8.4.31) --- updated-dependencies: - dependency-name: postcss dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Daniel Mikusa --- java/java-node/maven-yarn/yarn.lock | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/java/java-node/maven-yarn/yarn.lock b/java/java-node/maven-yarn/yarn.lock index 2f93a681..e753017c 100644 --- a/java/java-node/maven-yarn/yarn.lock +++ b/java/java-node/maven-yarn/yarn.lock @@ -185,9 +185,9 @@ picocolors@^1.0.0: integrity sha512-1fygroTLlHu66zi26VoTDv8yRgm0Fccecssto+MhsZ0D/DGW2sm8E8AjW7NU5VVTRt5GxbeZ5qBuJr+HyLYkjQ== postcss@^8.4.21: - version "8.4.22" - resolved "https://registry.yarnpkg.com/postcss/-/postcss-8.4.22.tgz#c29e6776b60ab3af602d4b513d5bd2ff9aa85dc1" - integrity sha512-XseknLAfRHzVWjCEtdviapiBtfLdgyzExD50Rg2ePaucEesyh8Wv4VPdW0nbyDa1ydbrAxV19jvMT4+LFmcNUA== + version "8.4.31" + resolved "https://registry.yarnpkg.com/postcss/-/postcss-8.4.31.tgz#92b451050a9f914da6755af352bdc0192508656d" + integrity sha512-PS08Iboia9mts/2ygV3eLpY5ghnUcfLV/EXTOW1E2qYxJKGGBUtNjN76FYHnMs36RmARn41bC0AZmn+rR0OVpQ== dependencies: nanoid "^3.3.6" picocolors "^1.0.0" From 7936b81d5694671f6cb3c5d05467d4a7f38d2b78 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 14 Nov 2023 09:22:53 -0500 Subject: [PATCH 6/8] Bump postcss in /java/java-node/gradle-node/frontend (#627) Bumps [postcss](https://github.com/postcss/postcss) from 8.4.22 to 8.4.31. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.4.22...8.4.31) --- updated-dependencies: - dependency-name: postcss dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Daniel Mikusa --- java/java-node/gradle-node/frontend/package-lock.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/java/java-node/gradle-node/frontend/package-lock.json b/java/java-node/gradle-node/frontend/package-lock.json index da24a4e7..19540695 100644 --- a/java/java-node/gradle-node/frontend/package-lock.json +++ b/java/java-node/gradle-node/frontend/package-lock.json @@ -483,9 +483,9 @@ "dev": true }, "node_modules/postcss": { - "version": "8.4.22", - "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.22.tgz", - "integrity": "sha512-XseknLAfRHzVWjCEtdviapiBtfLdgyzExD50Rg2ePaucEesyh8Wv4VPdW0nbyDa1ydbrAxV19jvMT4+LFmcNUA==", + "version": "8.4.31", + "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.31.tgz", + "integrity": "sha512-PS08Iboia9mts/2ygV3eLpY5ghnUcfLV/EXTOW1E2qYxJKGGBUtNjN76FYHnMs36RmARn41bC0AZmn+rR0OVpQ==", "dev": true, "funding": [ { From 3cc61d851c261bbc80b55e90845158707704eef6 Mon Sep 17 00:00:00 2001 From: paketo-bot Date: Wed, 8 Nov 2023 00:31:23 +0000 Subject: [PATCH 7/8] Updating tools --- scripts/.util/tools.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scripts/.util/tools.json b/scripts/.util/tools.json index db001d1a..c93c7f70 100644 --- a/scripts/.util/tools.json +++ b/scripts/.util/tools.json @@ -1,3 +1,3 @@ { - "pack": "v0.31.0" + "pack": "v0.32.0" } From 45e98653466ab966ecf93b123c6dc90cc220dc54 Mon Sep 17 00:00:00 2001 From: paketo-bot Date: Wed, 15 Nov 2023 00:32:04 +0000 Subject: [PATCH 8/8] Updating tools --- scripts/.util/tools.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scripts/.util/tools.json b/scripts/.util/tools.json index c93c7f70..393cbc7b 100644 --- a/scripts/.util/tools.json +++ b/scripts/.util/tools.json @@ -1,3 +1,3 @@ { - "pack": "v0.32.0" + "pack": "v0.32.1" }