Skip to content

Comments

Bump sharp from 0.28.3 to 0.30.4#408

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/sharp-0.30.4
Closed

Bump sharp from 0.28.3 to 0.30.4#408
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/sharp-0.30.4

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 19, 2022

Bumps sharp from 0.28.3 to 0.30.4.

Changelog

Sourced from sharp's changelog.

v0.30.4 - 18th April 2022

  • Increase control over sensitivity to invalid images via failOn, deprecate failOnError (equivalent to failOn: 'warning').

  • Ensure create input image has correct bit depth and colour space. #3139

  • Add support for TypedArray input with byteOffset and length. #3146 @​codepage949

  • Improve error message when attempting to render SVG input greater than 32767x32767. #3167

  • Add missing file name to 'Input file is missing' error message. #3178 @​Brodan

v0.30.3 - 14th March 2022

  • Allow sharpen options to be provided more consistently as an Object. #2561

  • Expose x1, y2 and y3 parameters of sharpen operation. #2935

  • Prevent double unpremultiply with some composite blend modes (regression in 0.30.2). #3118

v0.30.2 - 2nd March 2022

  • Improve performance and accuracy when compositing multiple images. #2286

  • Expand pkgconfig search path for wider BSD support. #3106

  • Ensure Windows C++ runtime is linked statically (regression in 0.30.0). #3110 @​kleisauke

  • Temporarily ignore greyscale ICC profiles to workaround lcms bug. #3112

v0.30.1 - 9th February 2022

  • Allow use of toBuffer and toFile on the same instance. #3044

  • Skip shrink-on-load for known libjpeg rounding errors.

... (truncated)

Commits
  • d396a4e Release v0.30.4
  • ae1dbcd Bump deps
  • 4c29368 Docs: EXIF metadata unsupported for TIFF output #3074
  • 36e5596 Docs: mention npm's foreground-scripts option to aid debugging
  • 985e881 Bump deps
  • 0b11671 Docs: changelog for #3178
  • 9deac83 Add missing file name to 'Input file is missing' error message (#3178)
  • 5d36f5f Improve error message for SVG render above limit #3167
  • 926572b Control sensitivity to invalid images via failOn
  • d0c8e95 Docs: expand info about use with worker threads
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump sharp from 0.28.3 to 0.30.4
af6768b 
Bumps [sharp](https://github.com/lovell/sharp) from 0.28.3 to 0.30.4.
- [Release notes](https://github.com/lovell/sharp/releases)
- [Changelog](https://github.com/lovell/sharp/blob/main/docs/changelog.md)
- [Commits](lovell/sharp@v0.28.3...v0.30.4)

---
updated-dependencies:
- dependency-name: sharp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 19, 2022
@dependabot dependabot bot requested a review from canyener April 19, 2022 03:01
@dependabot dependabot bot mentioned this pull request Apr 19, 2022
Closed
@sonarqubecloud
Copy link

sonarqubecloud bot commented Apr 19, 2022

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 24, 2022

Superseded by #424.

@dependabot dependabot bot closed this May 24, 2022
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/sharp-0.30.4 branch May 24, 2022 03:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@canyener canyener Awaiting requested review from canyener

Assignees

@canyener canyener

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@canyener