Distributed Vault For Your Secrets

Related tags

Cryptography meta-secret-node
Overview

Meta Secret

https://meta-secret.github.io

Application Design

Activity Diagram

graph TD
    User --> |split password| MSS{MetaSecret}
    MSS --> |split| Hash1
    MSS --> |split| Hash2
    MSS --> |split| Hash3
    
    User --> |recover password| MSR{MetaSecret}
    MSR --> |read| HH1[Hash1]
    MSR --> |read| HH2[Hash2]
    HH1 --> RecoverAlgo[Meta Secret: Recovery Algorithm]
    HH2 --> RecoverAlgo
    RecoverAlgo --> RP[Recovered Password]

Sequence Diagram

sequenceDiagram
    note over User: Split to 3 shares
    User->>+MetaSecret: Split password
    
    MetaSecret->>User: show qr1 (of hash1)
    MetaSecret->>User: show qr2 (of hash2)
    MetaSecret->>-User: show qr3 (of hash3)
    User ->> World: save qr codes in different places

    note over User: Recover from 2 shares
    User ->> World: get qr1
    User ->> World: get qr3

    User ->> MetaSecret: recover password
    User -->> MetaSecret: provide qr1
    User -->> MetaSecret: provide qr3
    MetaSecret ->> MetaSecret: recover password
    MetaSecret ->> User: show password

Web Application

Meta Secret Web Cli is available on https://meta-secret.github.io

Command Line App

Split secrets:

You can split and restore your secrets by using meta-secret cli app in docker.
Imagine that we want to split top$ecret, then the command will be:

$ mkdir secrets
$ docker run -ti --rm -v "$(pwd)/secrets:/app/secrets" ghcr.io/meta-secret/cli:latest split --secret top$ecret

It will generate json/qr(jpg) files (shares of your secert) in the secrets directory.

Restore secrets:

When it comes to restore the secret, put json or qr files (shares of your secret) into the secrets directory. Then run in case of qr (if you want restore from json, just pass --from json ):

$ docker run -ti --rm -v "$(pwd)/secrets:/app/secrets" ghcr.io/meta-secret/cli:latest restore --from qr

Advice for VPS-users

If you don't want to use FileZilla to download QR-codes to see on your computer, you can see them in terminal.

Installation

$ brew install qrencode (MacOS)
$ apt-get install qrencode (Debian/Ubuntu)
$ dnf install qrencode (CentOS/Rocky/Alma)

Showing QR codes in terminal

$ qrencode -t ansiutf8 < meta-secret-1.json

Congrats! Save these codes in secure place!

Below is optional If you would like to extract data from QR's

  • Just take a phone to scan QR
  • or screenshot the terminal and upload it on this website: webqr.com

Comments
  • Distributed Vault - mobile version

    Distributed Vault - mobile version

    Implement a Distributed Vault.

    We need to have a mechanism that will force users to create their own clusters (distributed vaults) effortlessly. The idea is when a user downloads our application it asks what name the user wants to use. In the same way, as we have unique id-s in any social network, like https://github.com/metabynull or @metabynull @LLIo6oH In the best-case scenario, the nicknames and their public keys(pk) will be the only information stored on the server side.

    A sequence diagram of user experience (registration/cluster formation):

    sequenceDiagram
    user->>app store: download application
    user->>app: open app
    app->>local storage: get device id
    alt already registered
        local storage-->>app: provide {user_id: keypair}
    else not registered
        local storage-->>app: device not registered
        app->>ed25519: generate private/public key pair. Public key - pk
        app->>user: ask user to provide a nik name (user_id)
        user->>app: provide user_id
        app ->> meta-secret-server: ask if {user_id: pk} exists
        alt user doesn't exist
           meta-secret-server->>server-database: save {user_id:pk} 
           meta-secret-server->>app: user with {user_id: pk} has been created
        else user exists
            meta-secret-server->>app: would you like to join {user_id} cluster?
            app->>meta-secret-server: join {user_id} cluster (follow the protocol, provide pk)
            meta-secret-server->>server-database: add a new member into {user_id}
        end
    end
    user->>app: restore password with id: 123
    app-->>app: asking other apps to provide shares of pass_id 123
    app->>user: you password is: "freedom"

    Internal structures:

    • when the user runs the meta-secret app for the first time, it creates a vault inside. Usually "one device=one vault", at least in the current implementation.

    A vault is an abstraction that is used to keep multiple shares of different secrets on a local machine. Vault contains:

     {
  userId, 
  deviceId, 
  keypair: {publicKey, privateKey}
}

    A localStorage object would be:

    {
  vault: vaultObject,
  shares: [
      {password_id1, share1: ".... data"}, 
      {password_id2, share3: "....data"},
      {password_id3, share3: ".... data"}
  ] 
}
    opened by metabynull 3
  • Compile and release cli app for multiple platforms

    Compile and release cli app for multiple platforms

    • compile cli app for: mac, windows, Linux
    • provide releases for multiple platforms

    Releases doc: https://docs.github.com/en/repositories/releasing-projects-on-github/about-releases

    opened by metabynull 2
  • build(deps-dev): bump vitest from 0.24.5 to 0.26.2 in /web-cli/ui

    build(deps-dev): bump vitest from 0.24.5 to 0.26.2 in /web-cli/ui

    Bumps vitest from 0.24.5 to 0.26.2.

    Release notes

    Sourced from vitest's releases.

    v0.26.2

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.26.1

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.26.0

       🚨 Breaking Changes

    • vite-node: Rewrite how vite-node resolves id  -  by @​sheremet-va in vitest-dev/vitest#2463 (58ee8)
    • Correctly interop nested default for external and inlined modules  -  by @​sheremet-va in vitest-dev/vitest#2512 (084e9)
      • If your environment is node, Vitest will not resolve invalid named exports (exports that are on "default" property will not magically appear as named exports), unless deps.interopDefault is enabled, or dependency is in deps.inline. This change doesn't affect jsdom, happy-dom or edge environments.
    • web-worker: Make web-worker implementation more compatible with spec  -  by @​sheremet-va in vitest-dev/vitest#2431 (c3a63)
      • Messages are now cloned with structuredClone, if it's available, or fallbacks to a polyfill.
      • Added support for SharedWorker

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.8

       🚀 Features

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump cypress from 10.11.0 to 12.1.0 in /web-cli/ui

    build(deps-dev): bump cypress from 10.11.0 to 12.1.0 in /web-cli/ui

    Bumps cypress from 10.11.0 to 12.1.0.

    Release notes

    Sourced from cypress's releases.

    v12.1.0

    Changelog: https://docs.cypress.io/guides/references/changelog#12-1-0

    v12.0.2

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-2

    v12.0.1

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-1

    v12.0.0

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-0

    v11.2.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-2-0

    v11.1.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-1-0

    v11.0.1

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-1

    v11.0.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-0

    Commits
    • 7225c6b chore: bump version to 12.1.0 [skip ci] (#25119)
    • 8888cd9 fix: add column, line, and method check to integrity check (#25094)
    • 2062670 fix: recollect session data after validation is successful (#25112)
    • 7154fc8 feat: Improve CLOUD_PARALLEL_GROUP_PARAMS_MISMATCH error message (#24799)
    • eb76b57 docs(guides): add macOS code signing notes to building-release-artifacts (#24...
    • 6c37403 fix: run-all-specs opens in new tab rather than new browser (#25074)
    • 5c34841 chore: release @​cypress/webpack-preprocessor-v5.15.7
    • b668e4b chore: release @​cypress/grep-v3.1.2
    • 4e82100 fix: update custom-query on links to match custom-command syntax (#25092)
    • 910f912 fix: declare used babel dependencies (#24842)
    • Additional commits viewable in compare view
    Maintainer changes

    This version was pushed to npm by cypress-npm-publisher, a new releaser for cypress since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump vitest from 0.24.5 to 0.25.8 in /web-cli/ui

    build(deps-dev): bump vitest from 0.24.5 to 0.25.8 in /web-cli/ui

    Bumps vitest from 0.24.5 to 0.25.8.

    Release notes

    Sourced from vitest's releases.

    v0.25.8

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.7

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.6

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.5

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.4

       🚀 Features

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump vitest from 0.24.5 to 0.25.7 in /web-cli/ui

    build(deps-dev): bump vitest from 0.24.5 to 0.25.7 in /web-cli/ui

    Bumps vitest from 0.24.5 to 0.25.7.

    Release notes

    Sourced from vitest's releases.

    v0.25.7

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.6

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.5

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.4

       🚀 Features

       🐞 Bug Fixes

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump cypress from 10.11.0 to 12.0.2 in /web-cli/ui

    build(deps-dev): bump cypress from 10.11.0 to 12.0.2 in /web-cli/ui

    Bumps cypress from 10.11.0 to 12.0.2.

    Release notes

    Sourced from cypress's releases.

    v12.0.2

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-2

    v12.0.1

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-1

    v12.0.0

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-0

    v11.2.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-2-0

    v11.1.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-1-0

    v11.0.1

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-1

    v11.0.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-0

    Commits
    • 126b82c chore: bump version to 12.0.2 [skip ci] (#25071)
    • 8d04861 chore: release @​cypress/webpack-dev-server-v3.1.1
    • 4b16667 chore: release @​cypress/vite-dev-server-v5.0.1
    • f9541af fix: limit the number of globals defined due to the v8 snapshot (#25051)
    • c540284 fix: add v8 snapshot usage to cypress in cypress testing (#24860)
    • 79f743e fix: .contains() selects proper elements when inside a <form> (#25038)
    • 0e457b8 fix: .contains() properly respects multiple incoming subjects (run ci) (#25035)
    • 7565282 test: windows app integration tests scaffolding issues (#25032)
    • c8c72e7 fix: bump to 12.0.1 [ skip ci ] (#25017)
    • ca01e29 fix: re include document domain injections for spec-bridge and injection and ...
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump vitest from 0.24.5 to 0.25.3 in /web-cli/ui

    build(deps-dev): bump vitest from 0.24.5 to 0.25.3 in /web-cli/ui

    Bumps vitest from 0.24.5 to 0.25.3.

    Release notes

    Sourced from vitest's releases.

    v0.25.3

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.2

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.1

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.0

       ✅ Builtin TypeChecking

    In v0.25.0, Vitest allows you to write tests for your types, using expectTypeOf or assertType syntaxes. By default all tests inside *.test-d.ts files are considered type tests. Run vitest typecheck to run type tests.

    // my.test-d.ts
import { assertType, expectTypeOf } from 'vitest'
import { mount } from './mount.js'

    test('my types work properly', () => {
expectTypeOf(mount).toBeFunction()
expectTypeOf(mount).parameter(0).toMatchTypeOf<{ name: string }>()
</tr></table>

    ... (truncated)

    Commits
    • e13a64f chore: release v0.25.3
    • f789776 feat: test.each support string template (#2337)
    • c395177 fix: detect tests in folders starting with . (fix #2344) (#2359)
    • f7b27af fix: junit consistently puts "skipped" inside "testcase"
    • fc8667f chore: add license
    • 6ce3ed7 fix(cli): don't override config by setting cli options to undefined (#2330)
    • 4f5efdb chore: remove cross-env (#2346)
    • 8686461 chore(deps): update dependency mlly to v1 (#2356)
    • 609185b fix(mocker): clear automocked modules on unmock (#2353)
    • a2e9daf fix(coverage): env-replacer to add filenames into sourcemaps (#2338)
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump cypress from 10.11.0 to 11.2.0 in /web-cli/ui

    build(deps-dev): bump cypress from 10.11.0 to 11.2.0 in /web-cli/ui

    Bumps cypress from 10.11.0 to 11.2.0.

    Release notes

    Sourced from cypress's releases.

    v11.2.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-2-0

    v11.1.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-1-0

    v11.0.1

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-1

    v11.0.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-0

    Commits
    • a4e9642 chore: update package.json to 11.2.0 (#24780)
    • ec01774 fix: A docblock pointing to a non-existent online tool (#24771)
    • 4bbd78e feat: Re-introduce Run All specs for End to End under experimentalRunAllSpecs...
    • b9d053e docs: Updates schematic docs for new config file type (#24313)
    • bf6a52a feat: add cloud recommendation message to CI output (#24680)
    • e3435b6 chore: re-name dashboard references to Cypress Cloud (#24699)
    • ed90b14 refactor: move linting to each lib to enable caching (#24424)
    • 8d85c80 feat: add warned command state to use for recreated sessions (#24592)
    • 206fdd5 chore: move non-shared code from frontend-shared to app (#24674)
    • f73bb46 fix(sessions): correct when page is cleared in cy.session() (#24563)
    • Additional commits viewable in compare view
    Maintainer changes

    This version was pushed to npm by cypress-npm-publisher, a new releaser for cypress since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump vitest from 0.24.5 to 0.25.2 in /web-cli/ui

    build(deps-dev): bump vitest from 0.24.5 to 0.25.2 in /web-cli/ui

    Bumps vitest from 0.24.5 to 0.25.2.

    Release notes

    Sourced from vitest's releases.

    v0.25.2

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.1

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.25.0

       ✅ Builtin TypeChecking

    In v0.25.0, Vitest allows you to write tests for your types, using expectTypeOf or assertType syntaxes. By default all tests inside *.test-d.ts files are considered type tests. Run vitest typecheck to run type tests.

    // my.test-d.ts
import { assertType, expectTypeOf } from 'vitest'
import { mount } from './mount.js'

    test('my types work properly', () => {
expectTypeOf(mount).toBeFunction()
expectTypeOf(mount).parameter(0).toMatchTypeOf<{ name: string }>()
    

    // @​ts-expect-error name is a string
assertType(mount({ name: 42 }))
})

    Learn more at the documentation and this RFC

       🚨 Breaking Changes

       🚀 Features

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps-dev): bump webpack-cli from 4.10.0 to 5.0.0 in /web-cli/ui

    build(deps-dev): bump webpack-cli from 4.10.0 to 5.0.0 in /web-cli/ui

    Bumps webpack-cli from 4.10.0 to 5.0.0.

    Release notes

    Sourced from webpack-cli's releases.

    v5.0.0

    5.0.0 (2022-11-17)

    Bug Fixes

    • improve description of the --disable-interpret option (#3364) (bdb7e20)
    • remove the redundant utils export (#3343) (a9ce5d0)
    • respect NODE_PATH env variable (#3411) (83d1f58)
    • show all CLI specific flags in the minimum help output (#3354) (35843e8)

    Features

    • failOnWarnings option (#3317) (c48c848)
    • update commander to v9 (#3460) (6621c02)
    • added the --define-process-env-node-env option
    • update interpret to v3 and rechoir to v0.8
    • add an option for preventing interpret (#3329) (c737383)

    BREAKING CHANGES

    • the minimum supported webpack version is v5.0.0 (#3342) (b1af0dc), closes #3342
    • webpack-cli no longer supports webpack v4, the minimum supported version is webpack v5.0.0
    • webpack-cli no longer supports webpack-dev-server v3, the minimum supported version is webpack-dev-server v4.0.0
    • remove the migrate command (#3291) (56b43e4), closes #3291
    • remove the --prefetch option in favor the PrefetchPlugin plugin
    • remove the --node-env option in favor --define-process-env-node-env
    • remove the --hot option in favor of directly using the HotModuleReplacement plugin (only for build command, for serve it will work)
    • the behavior logic of the --entry option has been changed - previously it replaced your entries, now the option adds a specified entry, if you want to return the previous behavior please use webpack --entry-reset --entry './src/my-entry.js'
    Changelog

    Sourced from webpack-cli's changelog.

    5.0.0 (2022-11-17)

    Bug Fixes

    • improve description of the --disable-interpret option (#3364) (bdb7e20)
    • remove the redundant utils export (#3343) (a9ce5d0)
    • respect NODE_PATH env variable (#3411) (83d1f58)
    • show all CLI specific flags in the minimum help output (#3354) (35843e8)

    Features

    • failOnWarnings option (#3317) (c48c848)
    • update commander to v9 (#3460) (6621c02)
    • added the --define-process-env-node-env option
    • update interpret to v3 and rechoir to v0.8
    • add an option for preventing interpret (#3329) (c737383)

    BREAKING CHANGES

    • the minimum supported webpack version is v5.0.0 (#3342) (b1af0dc), closes #3342
    • webpack-cli no longer supports webpack v4, the minimum supported version is webpack v5.0.0
    • webpack-cli no longer supports webpack-dev-server v3, the minimum supported version is webpack-dev-server v4.0.0
    • remove the migrate command (#3291) (56b43e4), closes #3291
    • remove the --prefetch option in favor the PrefetchPlugin plugin
    • remove the --node-env option in favor --define-process-env-node-env
    • remove the --hot option in favor of directly using the HotModuleReplacement plugin (only for build command, for serve it will work)
    • the behavior logic of the --entry option has been changed - previously it replaced your entries, now the option adds a specified entry, if you want to return the previous behavior please use webpack --entry-reset --entry './src/my-entry.js'
    Commits
    • 1d6ada1 chore(release): 5.0.0 (#3492)
    • 24334d9 refactor: resolve TODO for devServer.stdin
    • 49b6aea chore: peer deps in root package
    • 636ba3e chore(deps-dev): bump cspell from 6.12.0 to 6.14.2 (#3488)
    • f3016a5 chore(deps-dev): bump eslint from 8.24.0 to 8.27.0 (#3487)
    • 5782242 chore(deps-dev): bump lerna from 6.0.1 to 6.0.3 (#3486)
    • 80eb8c8 chore(deps-dev): bump @​commitlint/config-conventional (#3485)
    • 8ea9020 chore(deps-dev): bump ts-jest from 29.0.1 to 29.0.3 (#3484)
    • 515971a chore(deps-dev): bump css-loader from 6.7.1 to 6.7.2 (#3481)
    • f106109 chore(deps-dev): bump @​typescript-eslint/eslint-plugin
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • build(deps): bump @heroicons/vue from 1.0.6 to 2.0.13 in /web-cli/ui

    build(deps): bump @heroicons/vue from 1.0.6 to 2.0.13 in /web-cli/ui

    Bumps @heroicons/vue from 1.0.6 to 2.0.13.

    Release notes

    Sourced from @​heroicons/vue's releases.

    v2.0.13

    Fixed

    • Fix minus icon alignment (0a88242)

    v2.0.12

    Fixed

    • Add title and titleId props to the React types (#814)
    • Fix information-circle icon alignment (#846)

    v2.0.11

    Added

    • Add new icons (bug-ant, eye-dropper, pause-circle, play-circle, power, rocket-launch, square-2-stack-3d, stop-circle, trophy, tv, viewfinder-circle, window) (#809)

    v2.0.10

    Fixed

    • Fix arrow-path direction and fix optical alignment of exclamation-triangle (#786)

    v2.0.9

    Added

    • Allow setting title via prop (#779)

    • Add new icons (arrow-small-down, arrow-small-left, arrow-small-right, arrow-small-up, battery-0, battery-100, battery-50, cube-transparent, currency-bangladeshi, minus-small, paint-brush, plus-small, variable, wallet, arrow-path-rounded-square) and fix optical alignment and appearance of icons (bookmark-slash, bookmark, exclamation-triangle, table-cells, view-columns, arrow-path) (#785)

    v2.0.8

    Fixed

    • Fix optical alignment and size of icons (heart, minus, pencil-square, user-plus, x-mark, hand-thumb-up, hand-thumb-down) (#767)
    • Fix size of icons (arrow-down-left, arrow-down-right, arrow-down, arrow-left, arrow-right, arrow-up-left, arrow-up-right, arrow-up) (#768)
    • Fix optical alignment and size of tag icon (#769)
    • Fix size of check icon (#770)

    Added

    • Add user-minus icon

    v2.0.7

    Fixed

    • Improve optical alignment and sizing of icons (hand-thumb-up, hand-thumb-down, plus, minus) (#746)

    v2.0.6

    Fixed

    • Fix size of icons (chevron-double-down, chevron-double-left, chevron-double-right, chevron-double-up, chevron-down, chevron-left, chevron-right, chevron-up, funnel, minus, plus) (#763)

    ... (truncated)

    Changelog

    Sourced from @​heroicons/vue's changelog.

    [2.0.13] - 2022-11-02

    Fixed

    • Fix minus icon alignment (0a88242)

    [2.0.12] - 2022-10-05

    Fixed

    • Add title and titleId props to the React types (#814)
    • Fix information-circle icon alignment (#846)

    [2.0.11] - 2022-09-12

    Added

    • Add new icons (bug-ant, eye-dropper, pause-circle, play-circle, power, rocket-launch, square-2-stack-3d, stop-circle, trophy, tv, viewfinder-circle, window) (#809)

    [2.0.10] - 2022-08-30

    Fixed

    • Fix arrow-path direction and fix optical alignment of exclamation-triangle (#786)

    [2.0.9] - 2022-08-30

    Added

    • Add new icons (arrow-small-down, arrow-small-left, arrow-small-right, arrow-small-up, battery-0, battery-100, battery-50, cube-transparent, currency-bangladeshi, minus-small, paint-brush, plus-small, variable, wallet, arrow-path-rounded-square) and fix optical alignment and appearance of icons (bookmark-slash, bookmark, exclamation-triangle, table-cells, view-columns, arrow-path) (#785)

    [2.0.8] - 2022-08-26

    Fixed

    • Fix optical alignment and size of icons (heart, minus, pencil-square, user-plus, x-mark, hand-thumb-up, hand-thumb-down) (#767)
    • Fix size of icons (arrow-down-left, arrow-down-right, arrow-down, arrow-left, arrow-right, arrow-up-left, arrow-up-right, arrow-up) (#768)
    • Fix optical alignment and size of tag icon (#769)
    • Fix size of check icon (#770)

    Added

    • Add user-minus icon

    [2.0.7] - 2022-08-25

    Fixed

    • Improve optical alignment and sizing of icons (hand-thumb-up, hand-thumb-down, plus, minus) (#746)

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 0
  • build(deps-dev): bump vitest from 0.24.5 to 0.26.3 in /web-cli/ui

    build(deps-dev): bump vitest from 0.24.5 to 0.26.3 in /web-cli/ui

    Bumps vitest from 0.24.5 to 0.26.3.

    Release notes

    Sourced from vitest's releases.

    v0.26.3

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.26.2

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.26.1

       🚀 Features

       🐞 Bug Fixes

        View changes on GitHub

    v0.26.0

       🚨 Breaking Changes

    • vite-node: Rewrite how vite-node resolves id  -  by @​sheremet-va in vitest-dev/vitest#2463 (58ee8)
    • Correctly interop nested default for external and inlined modules  -  by @​sheremet-va in vitest-dev/vitest#2512 (084e9)
      • If your environment is node, Vitest will not resolve invalid named exports (exports that are on "default" property will not magically appear as named exports), unless deps.interopDefault is enabled, or dependency is in deps.inline. This change doesn't affect jsdom, happy-dom or edge environments.
    • web-worker: Make web-worker implementation more compatible with spec  -  by @​sheremet-va in vitest-dev/vitest#2431 (c3a63)
      • Messages are now cloned with structuredClone, if it's available, or fallbacks to a polyfill.
      • Added support for SharedWorker

    ... (truncated)

    Commits
    • 8d64790 chore: release v0.26.3
    • dba1337 fix(coverage): env-replacer to remove query params from sourcemaps filenames ...
    • 32a577b fix: show list of tests when typechecking (#2585)
    • c479d9c fix: don't hang when mocking module with circular dependency (#2572)
    • 9f41edd fix: start tracking module resolution as soon as possible for easier tracking...
    • ef77dcc fix(api): make api parse error stacks and return sourcePos in onTaskUpdate (#...
    • 853eedd feat(mock): expose a importOriginal helper to the factory (#2551)
    • 07ef0f2 chore: release v0.26.2
    • f6b592a fix(cli): respect inline config dir (#2550)
    • 84f98e7 feat: project name
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 0
  • build(deps-dev): bump cypress from 10.11.0 to 12.2.0 in /web-cli/ui

    build(deps-dev): bump cypress from 10.11.0 to 12.2.0 in /web-cli/ui

    Bumps cypress from 10.11.0 to 12.2.0.

    Release notes

    Sourced from cypress's releases.

    v12.2.0

    Changelog: https://docs.cypress.io/guides/references/changelog#12-2-0

    v12.1.0

    Changelog: https://docs.cypress.io/guides/references/changelog#12-1-0

    v12.0.2

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-2

    v12.0.1

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-1

    v12.0.0

    Changelog: https://docs.cypress.io/guides/references/changelog#12-0-0

    v11.2.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-2-0

    v11.1.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-1-0

    v11.0.1

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-1

    v11.0.0

    Changelog: https://docs.cypress.io/guides/references/changelog#11-0-0

    Commits
    • 75141ec chore: bump version to 12.1.0 [skip ci] (#25238)
    • ebf57a8 test: change some skipped tests to use retries (#24124)
    • 0454caf chore: release @​cypress/webpack-preprocessor-v5.16.0
    • 9c1318c chore: release @​cypress/webpack-dev-server-v3.2.0
    • 0e14b9e chore: bump rollup & some vite deps (#25140)
    • 470b94b fix: log error on reject with string content (#25059)
    • 166b694 feat: create from React component (#25168)
    • fcc49b5 chore: Update v8 snapshot cache (#25130)
    • 331c1dc chore: correctly resolve url sass bundle in Angular CT (#25191)
    • cd4bc74 chore: release @​cypress/webpack-dev-server-v3.1.2
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 0
  • build(deps): bump rust from 1.65.0 to 1.66.0 in /cli

    build(deps): bump rust from 1.65.0 to 1.66.0 in /cli

    Bumps rust from 1.65.0 to 1.66.0.

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies docker 
    opened by dependabot[bot] 0
  • build(deps-dev): bump typescript from 4.8.4 to 4.9.4 in /web-cli/ui

    build(deps-dev): bump typescript from 4.8.4 to 4.9.4 in /web-cli/ui

    Bumps typescript from 4.8.4 to 4.9.4.

    Release notes

    Sourced from typescript's releases.

    TypeScript 4.9.4

    For release notes, check out the release announcement.

    For the complete list of fixed issues, check out the

    Downloads are available on:

    Changes:

    • e2868216f637e875a74c675845625eb15dcfe9a2 Bump version to 4.9.4 and LKG.
    • eb5419fc8d980859b98553586dfb5f40d811a745 Cherry-pick #51704 to release 4.9 (#51712)
    • b4d382b9b12460adf2da4cc0d1429cf19f8dc8be Cherry-pick changes for narrowing to tagged literal types.
    • e7a02f43fce47e1a39259ada5460bcc33c8e98b5 Port of #51626 and #51689 to release-4.9 (#51627)
    • 1727912f0437a7f367d90040fc4b0b4f3efd017a Cherry-pick fix around visitEachChild to release-4.9. (#51544)

    This list of changes was auto generated.

    TypeScript 4.9

    For release notes, check out the release announcement.

    Downloads are available on:

    Changes:

    • 93bd577458d55cd720b2677705feab5c91eb12ce Bump version to 4.9.3 and LKG.
    • 107f832b80df2dc97748021cb00af2b6813db75b Update LKG.
    • 31bee5682df130a14ffdd5742f994dbe7313dd0e Cherry-pick PR #50977 into release-4.9 (#51363) [ #50872 ]
    • 1e2fa7ae15f8530910fef8b916ec8a4ed0b59c45 Update version to 4.9.2-rc and LKG.
    • 7ab89e5c6e401d161f31f28a6c555a3ba530910e Merge remote-tracking branch 'origin/main' into release-4.9
    • e5cd686defb1a4cbdb36bd012357ba5bed28f371 Update package-lock.json
    • 8d40dc15d1b9945837e7860320fdccfe27c40cad Update package-lock.json
    • 5cfb3a2fe344a5350734305193e6cc99516285ca Only call return() for an abrupt completion in user code (#51297)
    • a7a9d158e817fcb0e94dc1c24e0a401b21be0cc9 Fix for broken baseline in yieldInForInInDownlevelGenerator (#51345)
    • 7f8426f4df0d0a7dd8b72079dafc3e60164a23b1 fix for-in enumeration containing yield in generator (#51295)
    • 3d2b4017eb6b9a2b94bc673291e56ae95e8beddd Fix assertion functions accessed via wildcard imports (#51324)
    • 64d0d5ae140b7b26a09e75114517b418d6bcaa9f fix(51301): Fixing an unused import at the end of a line removes the newline (#51320)
    • 754eeb2986bde30d5926e0fa99c87dda9266d01b Update CodeQL workflow and configuration, fix found bugs (#51263)
    • d8aad262006ad2d2c91aa7a0e4449b4b83c57f7b Update package-lock.json
    • d4f26c840b1db76c0b25a405c8e73830a2b45cbc fix(51245): Class with parameter decorator in arrow function causes "convert to default export" refactoring failure (#51256)
    • 16faf45682173ea437a50330feb4785578923d7f Update package-lock.json
    • 8b1ecdb701e2a2e19e9f8bcdd6b2beac087eabee fix(50654): "Move to a new file" breaks the declaration of referenced variable (#50681)
    • 170a17fad57eae619c5ef2b7bdb3ac00d6c32c47 Dom update 2022-10-25 (#51300)

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 0
  • build(deps-dev): bump webpack-cli from 4.10.0 to 5.0.1 in /web-cli/ui

    build(deps-dev): bump webpack-cli from 4.10.0 to 5.0.1 in /web-cli/ui

    Bumps webpack-cli from 4.10.0 to 5.0.1.

    Release notes

    Sourced from webpack-cli's releases.

    v5.0.1

    5.0.1 (2022-12-05)

    Bug Fixes

    • make define-process-env-node-env alias node-env (#3514) (346a518)

    v5.0.0

    5.0.0 (2022-11-17)

    Bug Fixes

    • improve description of the --disable-interpret option (#3364) (bdb7e20)
    • remove the redundant utils export (#3343) (a9ce5d0)
    • respect NODE_PATH env variable (#3411) (83d1f58)
    • show all CLI specific flags in the minimum help output (#3354) (35843e8)

    Features

    • failOnWarnings option (#3317) (c48c848)
    • update commander to v9 (#3460) (6621c02)
    • added the --define-process-env-node-env option
    • update interpret to v3 and rechoir to v0.8
    • add an option for preventing interpret (#3329) (c737383)

    BREAKING CHANGES

    • the minimum supported webpack version is v5.0.0 (#3342) (b1af0dc), closes #3342
    • webpack-cli no longer supports webpack v4, the minimum supported version is webpack v5.0.0
    • webpack-cli no longer supports webpack-dev-server v3, the minimum supported version is webpack-dev-server v4.0.0
    • remove the migrate command (#3291) (56b43e4), closes #3291
    • remove the --prefetch option in favor the PrefetchPlugin plugin
    • remove the --node-env option in favor --define-process-env-node-env
    • remove the --hot option in favor of directly using the HotModuleReplacement plugin (only for build command, for serve it will work)
    • the behavior logic of the --entry option has been changed - previously it replaced your entries, now the option adds a specified entry, if you want to return the previous behavior please use webpack --entry-reset --entry './src/my-entry.js'
    Changelog

    Sourced from webpack-cli's changelog.

    5.0.1 (2022-12-05)

    Bug Fixes

    • make define-process-env-node-env alias node-env (#3514) (346a518)

    5.0.0 (2022-11-17)

    Bug Fixes

    • improve description of the --disable-interpret option (#3364) (bdb7e20)
    • remove the redundant utils export (#3343) (a9ce5d0)
    • respect NODE_PATH env variable (#3411) (83d1f58)
    • show all CLI specific flags in the minimum help output (#3354) (35843e8)

    Features

    • failOnWarnings option (#3317) (c48c848)
    • update commander to v9 (#3460) (6621c02)
    • added the --define-process-env-node-env option
    • update interpret to v3 and rechoir to v0.8
    • add an option for preventing interpret (#3329) (c737383)

    BREAKING CHANGES

    • the minimum supported webpack version is v5.0.0 (#3342) (b1af0dc), closes #3342
    • webpack-cli no longer supports webpack v4, the minimum supported version is webpack v5.0.0
    • webpack-cli no longer supports webpack-dev-server v3, the minimum supported version is webpack-dev-server v4.0.0
    • remove the migrate command (#3291) (56b43e4), closes #3291
    • remove the --prefetch option in favor the PrefetchPlugin plugin
    • remove the --node-env option in favor --define-process-env-node-env
    • remove the --hot option in favor of directly using the HotModuleReplacement plugin (only for build command, for serve it will work)
    • the behavior logic of the --entry option has been changed - previously it replaced your entries, now the option adds a specified entry, if you want to return the previous behavior please use webpack --entry-reset --entry './src/my-entry.js'
    Commits
    • 4a0f893 chore(release): publish new version
    • 9de982c chore: fix cspell
    • 32d26c8 chore(deps-dev): bump cspell from 6.15.1 to 6.16.0 (#3517)
    • 2788bf9 chore(deps-dev): bump eslint from 8.28.0 to 8.29.0 (#3516)
    • ac88ee4 chore(deps-dev): bump lint-staged from 13.0.4 to 13.1.0 (#3515)
    • 346a518 fix: make define-process-env-node-env alias node-env (#3514)
    • 3ec7b16 chore(deps): bump yeoman-environment from 3.12.1 to 3.13.0 (#3508)
    • c8adfa6 chore(deps-dev): bump @​types/node from 18.11.9 to 18.11.10 (#3513)
    • 0ad8cc2 chore(deps-dev): bump cspell from 6.15.0 to 6.15.1 (#3512)
    • d30f261 chore(deps-dev): bump ts-loader from 9.4.1 to 9.4.2 (#3511)
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 0
Owner
Meta Secret
Meta Secret
GitHub https://meta-secret.github.io/
PolkaBTC Clients | Vault, Staked Relayer, Oracle, Faucet

PolkaBTC Clients Faucet, Oracle, Vault & Staked Relayer This project is currently under active development. Prerequisites Download and start Bitcoin C

Interlay 35 Dec 20, 2022
age-encrypted secrets for NixOS; drop-in replacement for agenix

ragenix ragenix provides age-encrypted secrets for NixOS systems which live in the Nix store and are decrypted on system activation. Using ragenix to

YAXI 91 Jan 8, 2023
Secure storage for cryptographic secrets in Rust

secrets secrets is a library to help Rust programmers safely held cryptographic secrets in memory. It is mostly an ergonomic wrapper around the memory

Stephen Touset 165 Dec 22, 2022
Kubernetes controller written in Rust for automatically generating and updating secrets

Kubernetes controller written in Rust for automatically generating and updating secrets

Loc Mai 6 Nov 8, 2022
Simple (not simplest) UST vault that integrate with Anchor Protocol

Simple (not simplest) UST Vault Building a simple UST Vault that generate yield from Anchor while also have UST reserved for lending, and etc. This co

Kiettiphong Manovisut 2 May 3, 2022
A mini CLI tool to detect secrets & credentials in source code

Fencer Fencer is a mini-CLI tool that can used to scan various kind of secrets/credentials that are hardcoded into a project source code files Feature

Naresh Balaji 17 Aug 23, 2022
An example re-entrancy attack on a flashloan vault.

CosmWasm re-entrancy Exploit Example The exploit example is located in contracts/liquidity_hub/vault-network/exploit_contract. A vault in contracts/li

null 11 Dec 29, 2022
A simple command-line application to securely store secrets using encryption

rust-secret-vault A simple yet robust command-line tool designed to safely encrypt and store your sensitive information. Harnessing the power of AES-2

Luis Soares 4 Nov 22, 2023
Hyperswitch Card Vault is an open-source sensitive information storage system built on Rust.

Tartarus - Rust Locker Overview The Hyperswitch Card Vault (Tartarus) is a highly performant and a secure vault to save sensitive data such as payment

Juspay Technologies 9 Nov 23, 2023
A distributed, cryptographically-verifiable blog / social network

FeoBlog FeoBlog is a distributed blogging platform. It takes a lot of its inspiration from Mastodon and Scuttlebutt. It aims to solve a couple of prob

Cody Casterline 71 Dec 11, 2022
FS-DKR: One Round Distributed Key Rotation

FS-DKR: One Round Distributed Key Rotation Intro In this note we aim to re-purpose the Fouque-Stern Distributed Key Generation (DKG) to support a secu

[ZenGo X] 28 Dec 18, 2022
End-to-end encryption and mutual authentication for distributed applications.

✨ Hands-on Introduction: Build end-to-end encrypted, mutually-authenticated, secure messaging in Rust ✨ Rust and Elixir libraries for end-to-end encry

Ockam | Trust for Data-in-Motion 2.8k Jan 2, 2023
This is an experiment in designing a distributed connected garden experience.

This is an experiment in designing a distributed connected garden experience. It started as an implementation of a blockchain, but has moved on to be a bit more than that. There is no proof of work like a cryptocurrency, but plays with the idea of a distributed consensus-building system.

Greg Tatum 4 Feb 28, 2022
The fly.io distributed systems challenges solved in Rust

The fly.io distributed systems challenges solved in Rust. Live-streamed in https://youtu.be/gboGyccRVXI License Licensed under either of Apache Licens

Jon Gjengset 162 Apr 19, 2023
Bitcoin Push Notification Service (BPNS) allows you to receive notifications of Bitcoin transactions of your non-custodial wallets on a provider of your choice, all while respecting your privacy

Bitcoin Push Notification Service (BPNS) Description Bitcoin Push Notification Service (BPNS) allows you to receive notifications of Bitcoin transacti

BPNS 1 May 2, 2022
deductive verification of Rust code. (semi) automatically prove your code satisfies your specifications!

Le marteau-pilon, forges et aciéries de Saint-Chamond, Joseph-Fortuné LAYRAUD, 1889 About Creusot is a tool for deductive verification of Rust code. I

Xavier Denis 609 Dec 28, 2022
Employ your built-in wetware pattern recognition and signal processing facilities to understand your network traffic

Nethoscope Employ your built-in wetware pattern recognition and signal processing facilities to understand your network traffic. Check video on how it

Vesa Vilhonen 86 Dec 5, 2022
a Solana program for granting friends permissions on your account without revealing your private key.

Delegatooooor Granting Permission: An account holder (the delegator) decides to grant permission to a delegate. They create and sign a transaction tha

0xGhostMac 3 Apr 3, 2024
Temporary edit external crates that your project depends on

rhack You want to quickly put a sneaky macro kind of like dbg! into external crates to find out how some internal data structure works? If so rhack is

Ryo Nakao 119 Nov 3, 2022