certify-app merge requestshttps://gitlab.mpcdf.mpg.de/mpdl-bloxberg/certify-app/-/merge_requests2021-01-20T11:26:06Zhttps://gitlab.mpcdf.mpg.de/mpdl-bloxberg/certify-app/-/merge_requests/2Bump webpack-bundle-analyzer from 2.13.1 to 3.3.22021-01-20T11:26:06ZJames LawtonBump webpack-bundle-analyzer from 2.13.1 to 3.3.2*Created by: dependabot[bot]*
Bumps [webpack-bundle-analyzer](https://github.com/webpack-contrib/webpack-bundle-analyzer) from 2.13.1 to 3.3.2.
<details>
<summary>Release notes</summary>
*Sourced from [webpack-bundle-analyzer's release...*Created by: dependabot[bot]*
Bumps [webpack-bundle-analyzer](https://github.com/webpack-contrib/webpack-bundle-analyzer) from 2.13.1 to 3.3.2.
<details>
<summary>Release notes</summary>
*Sourced from [webpack-bundle-analyzer's releases](https://github.com/webpack-contrib/webpack-bundle-analyzer/releases).*
> ## First test with Lerna monorepo
> [th0r/webpack-bundle-analyzer#98](https://github-redirect.dependabot.com/th0r/webpack-bundle-analyzer/pull/98)
</details>
<details>
<summary>Changelog</summary>
*Sourced from [webpack-bundle-analyzer's changelog](https://github.com/webpack-contrib/webpack-bundle-analyzer/blob/master/CHANGELOG.md).*
> ## 3.3.2
>
> * **Bug Fix**
> * Fix regression with escaping internal assets ([#264](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/264), fixes [#263](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/issues/263))
>
> ## 3.3.1
>
> * **Improvements**
> * Use relative links for serving internal assets ([#261](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/261), fixes [#254](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/issues/254))
> * Properly escape embedded JS/JSON ([#262](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/262))
>
> * **Bug Fix**
> * Fix showing help message on `-h` flag ([#260](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/260), fixes [#239](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/issues/239))
>
> ## 3.3.0
>
> * **New Feature**
> * Show/hide chunks using context menu ([#246](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/246), [@​bregenspan](https://github.com/bregenspan))
>
> * **Internal**
> * Updated dev dependencies
>
> ## 3.2.0
>
> * **Improvements**
> * Add support for .mjs output files ([#252](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/252), [@​jlopezxs](https://github.com/jlopezxs))
>
> ## 3.1.0
>
> * **Bug Fix**
> * Properly determine the size of the modules containing special characters ([#223](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/223), [@​hulkish](https://github.com/hulkish))
> * Update acorn to v6 ([#248](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/248), [@​realityking](https://github.com/realityking))
>
> ## 3.0.4
>
> * **Bug Fix**
> * Make webpack's done hook wait until analyzer writes report or stat file ([#247](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/247), [@​mareolan](https://github.com/mareolan))
>
> ## 3.0.3
>
> * **Bug Fix**
> * Disable viewer websocket connection when report is generated in `static` mode ([#215](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/215), [@​sebastianhaeni](https://github.com/sebastianhaeni))
>
> ## 3.0.2
>
> * **Improvements**
> * Drop `@babel/runtime` dependency ([#209](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/209), [@​realityking](https://github.com/realityking))
> * Properly specify minimal Node.js version in `.babelrc` ([#209](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/pull/209), [@​realityking](https://github.com/realityking))
>
> * **Bug Fix**
></tr></table> ... (truncated)
</details>
<details>
<summary>Commits</summary>
- [`345c3f5`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/345c3f5c2cc8cd1a450f155ea989859b110944a0) v3.3.2
- [`a615815`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/a615815d6c6fd276c41198a4351c9d5a9d63e945) Merge pull request [#264](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/issues/264) from webpack-contrib/fix-escape-regression
- [`20f2b4c`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/20f2b4c553ee343f491faf63e39427fba9908c7c) Fix regression with escaping internal assets
- [`9836649`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/9836649e870ef2e0a19da1ad4b17bf92c645e536) v3.3.1
- [`d1db526`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/d1db52631d0716fa4a600f4bdd2ad1cea3edfb74) Remove outdated item from troubleshooting section
- [`ca34279`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/ca342796b9685cb515e364b62c445ebbe1d86c70) Merge pull request [#261](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/issues/261) from webpack-contrib/relative-links-to-assets
- [`99818f9`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/99818f9238a5f97a63f604bacd13bcd4a1738cc4) Fix changelog
- [`21722d2`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/21722d28183314c88ca414f2b5c21179adc86875) Add changelog entry
- [`ed99c32`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/ed99c3237f5d1d9d67a2e0a12f72e3f55a47f080) Use relative links for serving internal assets
- [`3ce1b8c`](https://github.com/webpack-contrib/webpack-bundle-analyzer/commit/3ce1b8c3533fb479155a9cdd6a3338b834fde7d6) Merge pull request [#262](https://github-redirect.dependabot.com/webpack-contrib/webpack-bundle-analyzer/issues/262) from webpack-contrib/proper-js-escape
- Additional commits viewable in [compare view](https://github.com/webpack-contrib/webpack-bundle-analyzer/compare/v2.13.1...v3.3.2)
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=webpack-bundle-analyzer&package-manager=npm_and_yarn&previous-version=2.13.1&new-version=3.3.2)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bloxberg-org/certify-app/network/alerts).
</details>https://gitlab.mpcdf.mpg.de/mpdl-bloxberg/certify-app/-/merge_requests/3Bump morgan from 1.9.0 to 1.9.12021-01-20T11:25:54ZJames LawtonBump morgan from 1.9.0 to 1.9.1*Created by: dependabot[bot]*
Bumps [morgan](https://github.com/expressjs/morgan) from 1.9.0 to 1.9.1.
<details>
<summary>Release notes</summary>
*Sourced from [morgan's releases](https://github.com/expressjs/morgan/releases).*
> ## 1...*Created by: dependabot[bot]*
Bumps [morgan](https://github.com/expressjs/morgan) from 1.9.0 to 1.9.1.
<details>
<summary>Release notes</summary>
*Sourced from [morgan's releases](https://github.com/expressjs/morgan/releases).*
> ## 1.9.1
> * Fix using special characters in format
> * deps: depd@~1.1.2
> - perf: remove argument reassignment
</details>
<details>
<summary>Changelog</summary>
*Sourced from [morgan's changelog](https://github.com/expressjs/morgan/blob/master/HISTORY.md).*
> 1.9.1 / 2018-09-10
> ==================
>
> * Fix using special characters in format
> * deps: depd@~1.1.2
> - perf: remove argument reassignment
</details>
<details>
<summary>Commits</summary>
- [`572dd93`](https://github.com/expressjs/morgan/commit/572dd937f26d486babc709228c98fd15dd807408) 1.9.1
- [`e02de38`](https://github.com/expressjs/morgan/commit/e02de384bd27c6131c516e05d6499845a6793707) lint: apply standard 12 style
- [`e329663`](https://github.com/expressjs/morgan/commit/e329663836809de4be557b200a5b983ab8b4e6c2) Fix using special characters in format
- [`eb1968a`](https://github.com/expressjs/morgan/commit/eb1968ac69a3d1ad98bacd06b738e9125630c3d3) tests: use strict equality checks
- [`310b206`](https://github.com/expressjs/morgan/commit/310b2069de0143c958db341141cbc429bc0e2cd2) build: use yaml eslint configuration
- [`5810937`](https://github.com/expressjs/morgan/commit/581093770cc2c323a39fd306034e9e859cb0ffb2) build: Node.js@9.11
- [`f60afd5`](https://github.com/expressjs/morgan/commit/f60afd502f5be3ebc916f10dab84fdb818a1c494) build: Node.js@8.11
- [`5295b0c`](https://github.com/expressjs/morgan/commit/5295b0cff959201aa06186f999d8d48f8f3c8384) build: eslint-plugin-standard@3.1.0
- [`178daaf`](https://github.com/expressjs/morgan/commit/178daaf25c4edebc9daddd5a847d40cd69594705) build: eslint-plugin-promise@3.8.0
- [`7b08641`](https://github.com/expressjs/morgan/commit/7b08641f7d96472bd959b11f07cfaef94f6818ba) build: eslint-plugin-import@2.12.0
- Additional commits viewable in [compare view](https://github.com/expressjs/morgan/compare/1.9.0...1.9.1)
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=morgan&package-manager=npm_and_yarn&previous-version=1.9.0&new-version=1.9.1)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bloxberg-org/certify-app/network/alerts).
</details>https://gitlab.mpcdf.mpg.de/mpdl-bloxberg/certify-app/-/merge_requests/4Bump mongoose from 4.6.5 to 5.7.52021-01-20T11:26:06ZJames LawtonBump mongoose from 4.6.5 to 5.7.5*Created by: dependabot[bot]*
Bumps [mongoose](https://github.com/Automattic/mongoose) from 4.6.5 to 5.7.5.
<details>
<summary>Changelog</summary>
*Sourced from [mongoose's changelog](https://github.com/Automattic/mongoose/blob/master/...*Created by: dependabot[bot]*
Bumps [mongoose](https://github.com/Automattic/mongoose) from 4.6.5 to 5.7.5.
<details>
<summary>Changelog</summary>
*Sourced from [mongoose's changelog](https://github.com/Automattic/mongoose/blob/master/History.md).*
> 5.7.5 / 2019-10-14
> ==================
> * fix(query): delete top-level `_bsontype` property in queries to prevent silent empty queries [#8222](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8222)
> * fix(update): handle subdocument pre('validate') errors in update validation [#7187](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7187)
> * fix(subdocument): make subdocument#isModified use parent document's isModified [#8223](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8223)
> * docs(index): add favicon to home page [#8226](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8226)
> * docs: add schema options to API docs [#8012](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8012)
> * docs(middleware): add note about accessing the document being updated in pre('findOneAndUpdate') [#8218](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8218)
> * refactor: remove redundant code in ValidationError [#8244](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8244) [AbdelrahmanHafez](https://github.com/AbdelrahmanHafez)
>
> 5.7.4 / 2019-10-09
> ==================
> * fix(schema): handle `required: null` and `required: undefined` as `required: false` [#8219](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8219)
> * fix(update): support updating array embedded discriminator props if discriminator key in $elemMatch [#8063](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8063)
> * fix(populate): allow accessing populate virtual prop underneath array when virtual defined on top level [#8198](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8198)
> * fix(model): support passing `options` to `Model.remove()` [#8211](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8211)
> * fix(document): handle `Document#set()` merge option when setting underneath single nested schema [#8201](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8201)
> * fix: use options constructor class for all schematypes [#8012](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8012)
>
> 5.7.3 / 2019-09-30
> ==================
> * fix: make CoreMongooseArray#includes() handle `fromIndex` parameter [#8203](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8203)
> * fix(update): cast right hand side of `$pull` as a query instead of an update for document arrays [#8166](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8166)
> * fix(populate): handle virtual populate of an embedded discriminator nested path [#8173](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8173)
> * docs(validation): remove deprecated `isAsync` from validation docs in favor of emphasizing promises [#8184](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8184)
> * docs(documents): add overwriting section [#8178](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8178)
> * docs(promises): add note about queries being thenable [#8110](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8110)
> * perf: avoid update validators going into Mixed types [#8192](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8192) [birdofpreyru](https://github.com/birdofpreyru)
> * refactor: remove async as a prod dependency [#8073](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8073)
>
> 5.7.2 / 2019-09-23
> ==================
> * fix(mongoose): support `mongoose.set('autoIndex', false)` [#8158](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8158)
> * fix(discriminator): support `tiedValue` parameter for embedded discriminators analagous to top-level discriminators [#8164](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8164)
> * fix(query): handle `toConstructor()` with entries-style sort syntax [#8159](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8159)
> * fix(populate): avoid converting mixed paths into arrays if populating an object path under `Mixed` [#8157](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8157)
> * fix: use $wrapCallback when using promises for mongoose-async-hooks
> * fix: handle queries with setter that converts value to Number instance [#8150](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8150)
> * docs: add mongoosejs-cli to readme [#8142](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8142)
> * docs: fix example typo for Schema.prototype.plugin() [#8175](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8175) [anaethoss](https://github.com/anaethoss)
>
> 5.7.1 / 2019-09-13
> ==================
> * fix(query): fix TypeError when calling `findOneAndUpdate()` with `runValidators` [#8151](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8151) [fernandolguevara](https://github.com/fernandolguevara)
> * fix(document): throw strict mode error if setting an immutable path with strict mode: false [#8149](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8149)
> * fix(mongoose): support passing options object to Mongoose constructor [#8144](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8144)
> * fix(model): make syncIndexes() handle changes in index key order [#8135](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8135)
> * fix(error): export StrictModeError as a static property of MongooseError [#8148](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8148) [ouyuran](https://github.com/ouyuran)
> * docs(connection+mongoose): add `useUnifiedTopology` option to `connect()` and `openUri()` docs [#8146](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8146)
>
></tr></table> ... (truncated)
</details>
<details>
<summary>Commits</summary>
- [`40a879b`](https://github.com/Automattic/mongoose/commit/40a879b455145c11480493f79790dcf1286306bf) chore: release 5.7.5
- [`159457d`](https://github.com/Automattic/mongoose/commit/159457db97e55fb59d0c632be59ef5d97fa06459) chore: add vpn black friday as sponsor
- [`e6285ea`](https://github.com/Automattic/mongoose/commit/e6285ea00082d8f4877a504c4a33c4ffa960ea6c) Merge pull request [#8244](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8244) from AbdelrahmanHafez/master
- [`d9163f5`](https://github.com/Automattic/mongoose/commit/d9163f561311642e36c79be4d40d396efe3f40af) fix: correct order for declaration
- [`cec9dda`](https://github.com/Automattic/mongoose/commit/cec9ddaf4a1180b0b9730e5351b285a18d873768) Minor refactor to ValidationError
- [`13ae085`](https://github.com/Automattic/mongoose/commit/13ae085a9878b4fce67cede1b2e3fddd84768b8a) docs(index): add favicon to home page
- [`96ce0eb`](https://github.com/Automattic/mongoose/commit/96ce0eb009a2309fc04f1ec0617dc0c49468ca05) style: fix lint
- [`973b1e0`](https://github.com/Automattic/mongoose/commit/973b1e07014950b5c7d3f8af5ea9a61f485e1711) docs: add schema options to API docs
- [`cdfb507`](https://github.com/Automattic/mongoose/commit/cdfb507be166e6f047b2a621403e63d93a58d418) chore: add useUnifiedTopology for tests re: [#8212](https://github-redirect.dependabot.com/Automattic/mongoose/issues/8212)
- [`936ddfb`](https://github.com/Automattic/mongoose/commit/936ddfb9c68edb44c76fc36cf251415c0828d266) fix(update): handle subdocument pre('validate') errors in update validation
- Additional commits viewable in [compare view](https://github.com/Automattic/mongoose/compare/4.6.5...5.7.5)
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mongoose&package-manager=npm_and_yarn&previous-version=4.6.5&new-version=5.7.5)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bloxberg-org/certify-app/network/alerts).
</details>https://gitlab.mpcdf.mpg.de/mpdl-bloxberg/certify-app/-/merge_requests/6Bump express-jwt from 5.3.0 to 6.0.02021-01-20T11:25:55ZJames LawtonBump express-jwt from 5.3.0 to 6.0.0*Created by: dependabot[bot]*
Bumps [express-jwt](https://github.com/auth0/express-jwt) from 5.3.0 to 6.0.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/auth0/express-jwt/commit/678f3b0e812d86b399b925f06910...*Created by: dependabot[bot]*
Bumps [express-jwt](https://github.com/auth0/express-jwt) from 5.3.0 to 6.0.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/auth0/express-jwt/commit/678f3b0e812d86b399b925f069105fc37eecde5b"><code>678f3b0</code></a> 6.0.0</li>
<li><a href="https://github.com/auth0/express-jwt/commit/7ecab5f8f0cab5297c2b863596566eb0c019cdef"><code>7ecab5f</code></a> Merge pull request from GHSA-6g6m-m6h5-w9gf</li>
<li><a href="https://github.com/auth0/express-jwt/commit/304a1c5968aed7c4c520035426fc09142156669d"><code>304a1c5</code></a> Made algorithms mandatory</li>
<li><a href="https://github.com/auth0/express-jwt/commit/e9ed6d240d945fca8f8911c1f1d743dfe3f1f8e3"><code>e9ed6d2</code></a> 5.3.3</li>
<li><a href="https://github.com/auth0/express-jwt/commit/8662579f1af7ba1d8b6a35718243bd719600a23f"><code>8662579</code></a> Make clearer sections in the Readme</li>
<li><a href="https://github.com/auth0/express-jwt/commit/d3e86bffb6f0c629cbb95e9b27432e4860d8bc5a"><code>d3e86bf</code></a> Update README.md</li>
<li><a href="https://github.com/auth0/express-jwt/commit/c5d841966b70584fa51f766d7cb2b17ae1db6681"><code>c5d8419</code></a> Add a note about OAuth2 bearer tokens</li>
<li><a href="https://github.com/auth0/express-jwt/commit/888f0e9d2cb3026a50b2812a0eebe7a5d5011744"><code>888f0e9</code></a> Update Readme and use a consistent JS style for code examples</li>
<li><a href="https://github.com/auth0/express-jwt/commit/659101493f1d8abe06467c00431f49ba9e761f35"><code>6591014</code></a> 5.3.2</li>
<li><a href="https://github.com/auth0/express-jwt/commit/f4f4d1d6bf78d498688f1b1936551546715d01e9"><code>f4f4d1d</code></a> fix license field</li>
<li>Additional commits viewable in <a href="https://github.com/auth0/express-jwt/compare/v5.3.0...v6.0.0">compare view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a href="https://www.npmjs.com/~yacine-b">yacine-b</a>, a new releaser for express-jwt since your current version.</p>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=express-jwt&package-manager=npm_and_yarn&previous-version=5.3.0&new-version=6.0.0)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bloxberg-org/certify-app/network/alerts).
</details>https://gitlab.mpcdf.mpg.de/mpdl-bloxberg/certify-app/-/merge_requests/7Bump axios from 0.18.0 to 0.21.12021-01-20T11:25:56ZJames LawtonBump axios from 0.18.0 to 0.21.1*Created by: dependabot[bot]*
Bumps [axios](https://github.com/axios/axios) from 0.18.0 to 0.21.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/axios/axios/releases">axios's releases</a>.</e...*Created by: dependabot[bot]*
Bumps [axios](https://github.com/axios/axios) from 0.18.0 to 0.21.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/axios/axios/releases">axios's releases</a>.</em></p>
<blockquote>
<h2>v0.21.1</h2>
<h3>0.21.1 (December 21, 2020)</h3>
<p>Fixes and Functionality:</p>
<ul>
<li>Hotfix: Prevent SSRF (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3410">#3410</a>)</li>
<li>Protocol not parsed when setting proxy config from env vars (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3070">#3070</a>)</li>
<li>Updating axios in types to be lower case (<a href="https://github-redirect.dependabot.com/axios/axios/issues/2797">#2797</a>)</li>
<li>Adding a type guard for <code>AxiosError</code> (<a href="https://github-redirect.dependabot.com/axios/axios/issues/2949">#2949</a>)</li>
</ul>
<p>Internal and Tests:</p>
<ul>
<li>Remove the skipping of the <code>socket</code> http test (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3364">#3364</a>)</li>
<li>Use different socket for Win32 test (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3375">#3375</a>)</li>
</ul>
<p>Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:</p>
<ul>
<li>Daniel Lopretto <a href="mailto:timemachine3030@users.noreply.github.com">timemachine3030@users.noreply.github.com</a></li>
<li>Jason Kwok <a href="mailto:JasonHK@users.noreply.github.com">JasonHK@users.noreply.github.com</a></li>
<li>Jay <a href="mailto:jasonsaayman@gmail.com">jasonsaayman@gmail.com</a></li>
<li>Jonathan Foster <a href="mailto:jonathan@jonathanfoster.io">jonathan@jonathanfoster.io</a></li>
<li>Remco Haszing <a href="mailto:remcohaszing@gmail.com">remcohaszing@gmail.com</a></li>
<li>Xianming Zhong <a href="mailto:chinesedfan@qq.com">chinesedfan@qq.com</a></li>
</ul>
<h2>v0.21.0</h2>
<h3>0.21.0 (October 23, 2020)</h3>
<p>Fixes and Functionality:</p>
<ul>
<li>Fixing requestHeaders.Authorization (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3287">#3287</a>)</li>
<li>Fixing node types (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3237">#3237</a>)</li>
<li>Fixing axios.delete ignores config.data (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3282">#3282</a>)</li>
<li>Revert "Fixing overwrite Blob/File type as Content-Type in browser. (<a href="https://github-redirect.dependabot.com/axios/axios/issues/1773">#1773</a>)" (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3289">#3289</a>)</li>
<li>Fixing an issue that type 'null' and 'undefined' is not assignable to validateStatus when typescript strict option is enabled (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3200">#3200</a>)</li>
</ul>
<p>Internal and Tests:</p>
<ul>
<li>Lock travis to not use node v15 (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3361">#3361</a>)</li>
</ul>
<p>Documentation:</p>
<ul>
<li>Fixing simple typo, existant -> existent (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3252">#3252</a>)</li>
<li>Fixing typos (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3309">#3309</a>)</li>
</ul>
<p>Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:</p>
<ul>
<li>Allan Cruz <a href="mailto:57270969+Allanbcruz@users.noreply.github.com">57270969+Allanbcruz@users.noreply.github.com</a></li>
<li>George Cheng <a href="mailto:Gerhut@GMail.com">Gerhut@GMail.com</a></li>
<li>Jay <a href="mailto:jasonsaayman@gmail.com">jasonsaayman@gmail.com</a></li>
<li>Kevin Kirsche <a href="mailto:Kev.Kirsche+GitHub@gmail.com">Kev.Kirsche+GitHub@gmail.com</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/axios/axios/blob/v0.21.1/CHANGELOG.md">axios's changelog</a>.</em></p>
<blockquote>
<h3>0.21.1 (December 21, 2020)</h3>
<p>Fixes and Functionality:</p>
<ul>
<li>Hotfix: Prevent SSRF (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3410">#3410</a>)</li>
<li>Protocol not parsed when setting proxy config from env vars (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3070">#3070</a>)</li>
<li>Updating axios in types to be lower case (<a href="https://github-redirect.dependabot.com/axios/axios/issues/2797">#2797</a>)</li>
<li>Adding a type guard for <code>AxiosError</code> (<a href="https://github-redirect.dependabot.com/axios/axios/issues/2949">#2949</a>)</li>
</ul>
<p>Internal and Tests:</p>
<ul>
<li>Remove the skipping of the <code>socket</code> http test (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3364">#3364</a>)</li>
<li>Use different socket for Win32 test (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3375">#3375</a>)</li>
</ul>
<p>Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:</p>
<ul>
<li>Daniel Lopretto <a href="mailto:timemachine3030@users.noreply.github.com">timemachine3030@users.noreply.github.com</a></li>
<li>Jason Kwok <a href="mailto:JasonHK@users.noreply.github.com">JasonHK@users.noreply.github.com</a></li>
<li>Jay <a href="mailto:jasonsaayman@gmail.com">jasonsaayman@gmail.com</a></li>
<li>Jonathan Foster <a href="mailto:jonathan@jonathanfoster.io">jonathan@jonathanfoster.io</a></li>
<li>Remco Haszing <a href="mailto:remcohaszing@gmail.com">remcohaszing@gmail.com</a></li>
<li>Xianming Zhong <a href="mailto:chinesedfan@qq.com">chinesedfan@qq.com</a></li>
</ul>
<h3>0.21.0 (October 23, 2020)</h3>
<p>Fixes and Functionality:</p>
<ul>
<li>Fixing requestHeaders.Authorization (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3287">#3287</a>)</li>
<li>Fixing node types (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3237">#3237</a>)</li>
<li>Fixing axios.delete ignores config.data (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3282">#3282</a>)</li>
<li>Revert "Fixing overwrite Blob/File type as Content-Type in browser. (<a href="https://github-redirect.dependabot.com/axios/axios/issues/1773">#1773</a>)" (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3289">#3289</a>)</li>
<li>Fixing an issue that type 'null' and 'undefined' is not assignable to validateStatus when typescript strict option is enabled (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3200">#3200</a>)</li>
</ul>
<p>Internal and Tests:</p>
<ul>
<li>Lock travis to not use node v15 (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3361">#3361</a>)</li>
</ul>
<p>Documentation:</p>
<ul>
<li>Fixing simple typo, existant -> existent (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3252">#3252</a>)</li>
<li>Fixing typos (<a href="https://github-redirect.dependabot.com/axios/axios/pull/3309">#3309</a>)</li>
</ul>
<p>Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:</p>
<ul>
<li>Allan Cruz <a href="mailto:57270969+Allanbcruz@users.noreply.github.com">57270969+Allanbcruz@users.noreply.github.com</a></li>
<li>George Cheng <a href="mailto:Gerhut@GMail.com">Gerhut@GMail.com</a></li>
<li>Jay <a href="mailto:jasonsaayman@gmail.com">jasonsaayman@gmail.com</a></li>
<li>Kevin Kirsche <a href="mailto:Kev.Kirsche+GitHub@gmail.com">Kev.Kirsche+GitHub@gmail.com</a></li>
<li>Remco Haszing <a href="mailto:remcohaszing@gmail.com">remcohaszing@gmail.com</a></li>
<li>Taemin Shin <a href="mailto:cprayer13@gmail.com">cprayer13@gmail.com</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/axios/axios/commit/a64050a6cfbcc708a55a7dc8030d85b1c78cdf38"><code>a64050a</code></a> Releasing 0.21.1</li>
<li><a href="https://github.com/axios/axios/commit/d57cd976f3cc0f1c5bb1f0681660e50004781db5"><code>d57cd97</code></a> Updating changelog for 0.21.1 release</li>
<li><a href="https://github.com/axios/axios/commit/8b0f373df0574b7cb3c6b531b4092cd670dac6e3"><code>8b0f373</code></a> Use different socket for Win32 test (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3375">#3375</a>)</li>
<li><a href="https://github.com/axios/axios/commit/e426910be7c417bdbcde9c18cb184ead826fc0e1"><code>e426910</code></a> Protocol not parsed when setting proxy config from env vars (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3070">#3070</a>)</li>
<li><a href="https://github.com/axios/axios/commit/c7329fefc890050edd51e40e469a154d0117fc55"><code>c7329fe</code></a> Hotfix: Prevent SSRF (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3410">#3410</a>)</li>
<li><a href="https://github.com/axios/axios/commit/f472e5da5fe76c72db703d6a0f5190e4ad31e642"><code>f472e5d</code></a> Adding a type guard for <code>AxiosError</code> (<a href="https://github-redirect.dependabot.com/axios/axios/issues/2949">#2949</a>)</li>
<li><a href="https://github.com/axios/axios/commit/768825589fd0d36b64a66717ca6df2efd8fb7844"><code>7688255</code></a> Remove the skipping of the <code>socket</code> http test (<a href="https://github-redirect.dependabot.com/axios/axios/issues/3364">#3364</a>)</li>
<li><a href="https://github.com/axios/axios/commit/820fe6e41a96f05fb4781673ce07486f1b37515d"><code>820fe6e</code></a> Updating axios in types to be lower case (<a href="https://github-redirect.dependabot.com/axios/axios/issues/2797">#2797</a>)</li>
<li><a href="https://github.com/axios/axios/commit/94ca24b5b23f343769a15f325693246e07c177d2"><code>94ca24b</code></a> Releasing 0.21.0</li>
<li><a href="https://github.com/axios/axios/commit/2130a0c8acc588c72b53dfef31a11442043ffb06"><code>2130a0c</code></a> Updating changelog for 0.21.0 release</li>
<li>Additional commits viewable in <a href="https://github.com/axios/axios/compare/v0.18.0...v0.21.1">compare view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a href="https://www.npmjs.com/~emilyemorehouse">emilyemorehouse</a>, a new releaser for axios since your current version.</p>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=axios&package-manager=npm_and_yarn&previous-version=0.18.0&new-version=0.21.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bloxberg-org/certify-app/network/alerts).
</details>https://gitlab.mpcdf.mpg.de/mpdl-bloxberg/certify-app/-/merge_requests/8Bump jspdf from 1.5.3 to 2.3.12021-03-12T21:49:46ZJames LawtonBump jspdf from 1.5.3 to 2.3.1*Created by: dependabot[bot]*
Bumps [jspdf](https://github.com/MrRio/jsPDF) from 1.5.3 to 2.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/MrRio/jsPDF/releases">jspdf's releases</a>.</em>...*Created by: dependabot[bot]*
Bumps [jspdf](https://github.com/MrRio/jsPDF) from 1.5.3 to 2.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/MrRio/jsPDF/releases">jspdf's releases</a>.</em></p>
<blockquote>
<h2>v2.3.1</h2>
<p>Small bugfixes. Thanks to all contributors!</p>
<ul>
<li><a href="https://github.com/MrRio/jsPDF/issues/3073">#3073</a>: fix HTMLAnchorElement is not defined in file saver</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3078">#3078</a>: fix exception in <code>getTextDimensions()</code> with <code>maxWidth</code> set</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3087">#3087</a>: fix typings of <code>table()</code> function</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3091">#3091</a>: fix ReDos vulnerability in <code>addImage</code> function</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3099">#3099</a>: improve documentation of <code>output</code> function</li>
</ul>
<h2>v2.3.0</h2>
<p>A couple of bugfixes, improved font handling and faster compression.</p>
<ul>
<li><a href="https://github.com/MrRio/jsPDF/issues/3026">#3026</a>: Fix alignment of links created with <code>textWithLink</code></li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3032">#3032</a>: Fix alignment of table headers</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3062">#3062</a>: Fix a bug where the <code>options.flags</code> parameter was ignored by the <code>text</code> method and consequently had the wrong defaults. This lead to garbled characters sometimes and was a regression to 1.5.3.</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3014">#3014</a>: Add typings for internal events API</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3036">#3036</a>: Support for numeric font weights and separation of font weight and font style</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3040">#3040</a>: New <code>fontFaces</code> option for the <code>html</code> method that allows to add fonts similar CSS <code>@font-face</code> rules (no <code>addFont</code> calls required anymore). When supplied, fonts are resolved using the CSS 3 font loading algorithm.</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3054">#3054</a>: replace pako library with fflate leading to faster compression and smaller bundle sizes.</li>
</ul>
<h2>v2.2.0</h2>
<p>Incorporates many of the awesome contributions in context of the <a href="https://hacktoberfest.digitalocean.com/">Hacktoberfest</a>. Thanks to all the contributors!</p>
<ul>
<li><a href="https://github.com/MrRio/jsPDF/issues/2944">#2944</a>: Fix PDF compression. Special thanks to <a href="https://github.com/markotaht"><code>@markotaht</code></a>!</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2959">#2959</a>: Add support for PDF encryption. Special thanks to <a href="https://github.com/owenl131"><code>@owenl131</code></a>!</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3018">#3018</a>: Fix font name escaping</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3017">#3017</a>: Fix dependencies in bower.json</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/3014">#3014</a>: Added typings for the events API</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2982">#2982</a>: Bump dompurify version to fix cve-2020-7691</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2981">#2981</a>: Fix Canvg import</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2946">#2946</a>: Remove API, that was removed in the 2.0.0 release, also from the typings</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2943">#2943</a>: Fix links on pages with different size than the first page</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2942">#2942</a>: Fix multiline texts in combination with the <code>maxWidth</code> text option</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2933">#2933</a>, <a href="https://github.com/MrRio/jsPDF/issues/3021">#3021</a>: Fix typings of exported types like <code>ImageCompression</code></li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2915">#2915</a>: Fix documentation of <code>text</code> method</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2906">#2906</a>: Fix <code>"Could not load <module>"</code> error messages</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2905">#2905</a>: Fix usages of atob/btoa in Internet Explorer and "old Edge"</li>
</ul>
<h2>v2.1.1</h2>
<ul>
<li><a href="https://github.com/MrRio/jsPDF/issues/2893">#2893</a>, <a href="https://github.com/MrRio/jsPDF/issues/2880">#2880</a>: Fixed <code>html()</code> typings and JSDoc documentation</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2884">#2884</a>: Fix type of <code>events</code> in typings</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2881">#2881</a>: Fix building jsPDF with Parcel v2</li>
</ul>
<h2>v2.1.0</h2>
<ul>
<li><a href="https://github.com/MrRio/jsPDF/issues/2865">#2865</a>: Fix "Critical dependency: the request of a dependency is an expression" warning and loading of optional dependencies</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2872">#2872</a>: Add support for numbers in cell module</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2866">#2866</a>: Fix XREF table generation</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2855">#2855</a>: Fix PdfJS output filename</li>
<li><a href="https://github.com/MrRio/jsPDF/issues/2848">#2848</a>: Fix getTextDimensions typings</li>
<li>Updated readme</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/MrRio/jsPDF/commit/9b8f1e962cbf0e886cdead7cf8a9d614943838eb"><code>9b8f1e9</code></a> 2.3.1</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/20f271a482ba63846f424204a69477b7da8588c7"><code>20f271a</code></a> Docs: improve output documentation (<a href="https://github.com/MrRio/jsPDF/issues/3099">#3099</a>)</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/d8bb3b39efcd129994f7a3b01b632164144ec43e"><code>d8bb3b3</code></a> fix ReDoS-vulnerable regexp in addImage (<a href="https://github.com/MrRio/jsPDF/issues/3091">#3091</a>)</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/c91995de97c598deaf6fda7109ea886a50f50109"><code>c91995d</code></a> Fix: Wrong TypeScript type in jsPDF.table (<a href="https://github.com/MrRio/jsPDF/issues/3086">#3086</a>) (<a href="https://github.com/MrRio/jsPDF/issues/3087">#3087</a>)</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/3592fc22320f942886f96d384db2997bac5b4879"><code>3592fc2</code></a> fix: scope is not defined in getTextDimensions (<a href="https://github.com/MrRio/jsPDF/issues/3078">#3078</a>)</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/ef70f923f7f13ea7e86ae672c693938bf4c176f9"><code>ef70f92</code></a> fix(FileSaver): HTMLAnchorElement is not defined (<a href="https://github.com/MrRio/jsPDF/issues/3073">#3073</a>)</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/63f89d47d1cd60091e62d6d51570f78f27d01a23"><code>63f89d4</code></a> update package-lock.json (<a href="https://github.com/MrRio/jsPDF/issues/3065">#3065</a>)</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/53ca33bdfd0d7194aa07bc3bd5ed595a0725b5c9"><code>53ca33b</code></a> 2.3.0</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/102f370e98e587d78bc8b285c2222099cad69236"><code>102f370</code></a> Merge pull request <a href="https://github.com/MrRio/jsPDF/issues/3062">#3062</a> from HackbrettXXX/fix-text-encoding-flags</li>
<li><a href="https://github.com/MrRio/jsPDF/commit/b686db770f55910ad1c4982b9a09e51f041a7e71"><code>b686db7</code></a> fix text encoding flags</li>
<li>Additional commits viewable in <a href="https://github.com/MrRio/jsPDF/compare/v1.5.3...v2.3.1">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jspdf&package-manager=npm_and_yarn&previous-version=1.5.3&new-version=2.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bloxberg-org/certify-app/network/alerts).
</details>