docker/quay
1
0
Fork 0
mirror of https://github.com/quay/quay.git synced 2026-01-26 06:21:37 +03:00
Code Activity
12,546 Commits 2,636 Branches 136 Tags
a7d01d052d7eaee058feb60bda302cc700c41734
Commit Graph

39 Commits

Author SHA1 Message Date
Demetrius
8d96c8f51c deps: update sha.js to 2.4.12 (PROJQUAY-9332) (#4216) 
update sha.js to 2.4.12
 2025-08-26 18:25:14 +00:00
Antonio Carlos Royo
d2947906fe deps: update cipher-base to version 1.0.6 (PROJQUAY-9333) (#4214) 
* Update cipher-base to version 1.0.6

* update web package-lock.json

---------

Co-authored-by: Antonio Carlos Royo <aroyo@aroyo-thinkpadp1gen7.rmtco.csb>
 2025-08-26 16:54:11 +00:00
Marcus Kok
03abd7c5bd dockerfile: update to nodejs-22 (PROJQUAY-9279) (#4192) 
update to nodejs-22
 2025-08-11 13:37:21 -04:00
Shubhra Deshpande
148db8e4db deps: removing unused raven dependencies (PROJQUAY-9198) (#4179) 
* removing unused raven dependencies

* moving fake sentry initialization before the main script

---------

Co-authored-by: shudeshp <shudeshp@redhat.com>
 2025-08-08 12:09:46 -04:00
Shubhra Deshpande
22290c9812 deps: updated raven dependency to be compatible with python 3.12 (PROJQUAY-9198) (#4169) 
* Updated raven dependency to be compatible with python 3.12

---------

Co-authored-by: shudeshp <shudeshp@redhat.com>
 2025-08-07 15:58:59 -04:00
Demetrius
92cc27f163 cve: bumping cross-spawn to 6.0.6 and 7.0.6 (PROJQUAY-8210) (#3932) 
deps: update cross-spawn from 6.0.x to 6.0.6
deps: update cross-spawn from 7.0.x to 7.0.6
 2025-05-20 14:28:15 -03:00
Brandon Caton
8e9ee56749 deps: updating angular to 1.6.4 (PROJQUAY-8781) (#3872) 2025-05-12 10:09:10 -04:00
Brandon Caton
37d65f77c8 deps: updating jquery to 3.5.0 (PROJQUAY-8522) (#3629) 
updating jquery to 3.5.0
 2025-02-04 14:26:32 -05:00
Shubhra Deshpande
831319e3b4 dep: adding fallback for process/browser as dependency of axios update (PROJQUAY-7657) (#3499) 
dep: adding fallback for process/browser as dependency of axios update

Co-authored-by: shudeshp <shudeshp@redhat.com>
 2024-12-11 14:10:23 -05:00
Shubhra Deshpande
c32841ea9a cve: updated async version and dependencies to 3.5.6 (PROJQUAY-7469) (#3446) 
cve: updated async version and dependencies to 3.5.6

Co-authored-by: shudeshp <shudeshp@redhat.com>
 2024-12-04 13:44:22 -05:00
Shubhra Deshpande
85fa6fc501 cve: upgrade elliptic version to 6.5.7 (PROJQUAY-7595) (#3437) 
* cve: upgrade elliptic version to 6.5.7 (PROJQUAY-7595)

* added package-lock with karma-webpack update

---------

Co-authored-by: shudeshp <shudeshp@redhat.com>
 2024-12-03 17:07:50 -05:00
dependabot[bot]
52bae0cfc5 build(deps): bump body-parser and express (#3208) 
Bumps [body-parser](https://github.com/expressjs/body-parser) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.

Updates `body-parser` from 1.17.2 to 1.20.3
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](https://github.com/expressjs/body-parser/compare/1.17.2...1.20.3)

Updates `express` from 4.19.2 to 4.20.0
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.20.0)

---
updated-dependencies:
- dependency-name: body-parser
  dependency-type: indirect
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-10-02 14:46:02 -04:00
dependabot[bot]
e2ca92c4e8 build(deps): bump socket.io-parser and karma (#3257) 
Bumps [socket.io-parser](https://github.com/Automattic/socket.io-parser) to 4.2.4 and updates ancestor dependency [karma](https://github.com/karma-runner/karma). These dependencies need to be updated together.


Updates `socket.io-parser` from 2.3.1 to 4.2.4
- [Release notes](https://github.com/Automattic/socket.io-parser/releases)
- [Changelog](https://github.com/socketio/socket.io-parser/blob/4.2.4/CHANGELOG.md)
- [Commits](https://github.com/Automattic/socket.io-parser/compare/2.3.1...4.2.4)

Updates `karma` from 1.7.0 to 6.4.4
- [Release notes](https://github.com/karma-runner/karma/releases)
- [Changelog](https://github.com/karma-runner/karma/blob/master/CHANGELOG.md)
- [Commits](https://github.com/karma-runner/karma/compare/v1.7.0...v6.4.4)

---
updated-dependencies:
- dependency-name: socket.io-parser
  dependency-type: indirect
- dependency-name: karma
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-26 12:44:23 -04:00
dependabot[bot]
71b9ab58db build(deps-dev): bump express from 4.18.2 to 4.19.2 (#2800) 
Bumps [express](https://github.com/expressjs/express) from 4.18.2 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.18.2...4.19.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:06:45 +02:00
Daniel Messer
40bcd1f141 ui: allow for regular expressions to be used in search (PROJQUAY-6597) (#2611) 
allow regex search and simplify search input

---------

Signed-off-by: dmesser <dmesser@redhat.com>
 2024-01-22 21:11:44 +01:00
Jeff Puzzo
033bcf6772 ui: Upgrade to PatternFly v5 (PROJQUAY-6085) (#2281) 
Upgrade to PatternFly v5
 2023-10-06 14:11:36 +00:00
dependabot[bot]
42f46c93c1 build(deps): bump express from 4.17.1 to 4.18.2 (#1664) 
Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.18.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.1...4.18.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-12-15 10:33:16 -05:00
dependabot[bot]
6473166d0e build(deps): bump decode-uri-component from 0.2.0 to 0.2.2 (#1656) 
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2)

---
updated-dependencies:
- dependency-name: decode-uri-component
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-12-07 15:29:34 -05:00
Kenny Lee Sin Cheong
5e43a5f93e Revert UI package update (#1461) 
* Revert "build(deps): bump angular and @types/angular (#1451)"

This reverts commit 9a1de19f97.

* Revert "build(deps): bump terser from 4.3.4 to 4.8.1 (#1452)"

This reverts commit 0c62c0ee02.
 2022-07-28 12:57:52 -04:00
dependabot[bot]
9a1de19f97 build(deps): bump angular and @types/angular (#1451) 
Bumps [angular](https://github.com/angular/angular.js) and [@types/angular](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/angular). These dependencies needed to be updated together.

Updates `angular` from 1.6.2 to 1.8.3
- [Release notes](https://github.com/angular/angular.js/releases)
- [Changelog](https://github.com/angular/angular.js/blob/master/CHANGELOG.md)
- [Commits](https://github.com/angular/angular.js/compare/v1.6.2...v1.8.3)

Updates `@types/angular` from 1.6.2 to 1.8.4
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/angular)

---
updated-dependencies:
- dependency-name: angular
  dependency-type: direct:production
- dependency-name: "@types/angular"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-07-27 09:58:02 -04:00
dependabot[bot]
0c62c0ee02 build(deps): bump terser from 4.3.4 to 4.8.1 (#1452) 
Bumps [terser](https://github.com/terser/terser) from 4.3.4 to 4.8.1.
- [Release notes](https://github.com/terser/terser/releases)
- [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md)
- [Commits](https://github.com/terser/terser/commits)

---
updated-dependencies:
- dependency-name: terser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-07-27 09:53:33 -04:00
dependabot[bot]
0f2ebdafc5 build(deps): bump moment from 2.29.2 to 2.29.4 (#1442) 
Bumps [moment](https://github.com/moment/moment) from 2.29.2 to 2.29.4.
- [Release notes](https://github.com/moment/moment/releases)
- [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/moment/moment/compare/2.29.2...2.29.4)

---
updated-dependencies:
- dependency-name: moment
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-07-14 15:49:16 -04:00
dependabot[bot]
4ee715c9e8 build(deps): bump is-my-json-valid from 2.16.0 to 2.20.6 (#1058) 
Bumps [is-my-json-valid](https://github.com/mafintosh/is-my-json-valid) from 2.16.0 to 2.20.6.
- [Release notes](https://github.com/mafintosh/is-my-json-valid/releases)
- [Commits](https://github.com/mafintosh/is-my-json-valid/compare/v2.16.0...v2.20.6)

---
updated-dependencies:
- dependency-name: is-my-json-valid
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-19 11:26:48 -04:00
dependabot[bot]
b009590c4f build(deps): bump ajv from 6.10.2 to 6.12.6 (#1112) 
Bumps [ajv](https://github.com/ajv-validator/ajv) from 6.10.2 to 6.12.6.
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](https://github.com/ajv-validator/ajv/compare/v6.10.2...v6.12.6)

---
updated-dependencies:
- dependency-name: ajv
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-14 10:38:50 -04:00
dependabot[bot]
4176c498f5 build(deps): bump moment from 2.17.1 to 2.29.2 (#1236) 
Bumps [moment](https://github.com/moment/moment) from 2.17.1 to 2.29.2.
- [Release notes](https://github.com/moment/moment/releases)
- [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/moment/moment/compare/2.17.1...2.29.2)

---
updated-dependencies:
- dependency-name: moment
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-11 10:43:04 -04:00
dependabot[bot]
723fd59918 build(deps): bump url-parse from 1.5.8 to 1.5.9 (#1168) 
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.5.8 to 1.5.9.
- [Release notes](https://github.com/unshiftio/url-parse/releases)
- [Commits](https://github.com/unshiftio/url-parse/compare/1.5.8...1.5.9)

---
updated-dependencies:
- dependency-name: url-parse
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-03-04 14:49:47 -05:00
dependabot[bot]
4b4f16e1b4 build(deps): bump url-parse from 1.5.6 to 1.5.8 (#1151) 
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.5.6 to 1.5.8.
- [Release notes](https://github.com/unshiftio/url-parse/releases)
- [Commits](https://github.com/unshiftio/url-parse/compare/1.5.6...1.5.8)

---
updated-dependencies:
- dependency-name: url-parse
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-02-28 10:57:06 -05:00
dependabot[bot]
49c56aa1c5 build(deps): bump url-parse from 1.5.2 to 1.5.6 (#1125) 
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.5.2 to 1.5.6.
- [Release notes](https://github.com/unshiftio/url-parse/releases)
- [Commits](https://github.com/unshiftio/url-parse/compare/1.5.2...1.5.6)

---
updated-dependencies:
- dependency-name: url-parse
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-02-22 11:21:27 -05:00
dependabot[bot]
e7e093b0a6 build(deps): bump qs from 6.3.1 to 6.3.3 (#1086) 
Bumps [qs](https://github.com/ljharb/qs) from 6.3.1 to 6.3.3.
- [Release notes](https://github.com/ljharb/qs/releases)
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/compare/v6.3.1...v6.3.3)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-02-04 10:59:23 -05:00
dependabot[bot]
889566305b build(deps): bump y18n from 3.2.1 to 3.2.2 (#1080) 
Bumps [y18n](https://github.com/yargs/y18n) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md)
- [Commits](https://github.com/yargs/y18n/commits)

---
updated-dependencies:
- dependency-name: y18n
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-02-04 09:20:11 -05:00
dependabot[bot]
663730203b build(deps): bump url-parse from 1.4.0 to 1.5.2 (#873) 
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.4.0 to 1.5.2.
- [Release notes](https://github.com/unshiftio/url-parse/releases)
- [Commits](https://github.com/unshiftio/url-parse/compare/1.4.0...1.5.2)

---
updated-dependencies:
- dependency-name: url-parse
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-09-27 16:48:57 -04:00
dependabot[bot]
b649534394 build(deps): bump path-parse from 1.0.5 to 1.0.7 (#870) 
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.5 to 1.0.7.
- [Release notes](https://github.com/jbgutierrez/path-parse/releases)
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7)

---
updated-dependencies:
- dependency-name: path-parse
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-08-16 15:32:01 -04:00
dependabot[bot]
c5488aa3b5 build(deps): bump ssri from 6.0.1 to 6.0.2 (#818) 
Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/npm/ssri/releases)
- [Changelog](https://github.com/npm/ssri/blob/v6.0.2/CHANGELOG.md)
- [Commits](https://github.com/npm/ssri/compare/v6.0.1...v6.0.2)

---
updated-dependencies:
- dependency-name: ssri
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-13 11:10:42 -04:00
thomasmckay
1d63cfa255 build: update package-lock.json (PROJQUAY-1749) (#821) 
update node package-lock.json
 2021-07-07 08:21:25 -04:00
thomasmckay
9c8e3f1f48 build: remove unused node modules (PROJQUAY-1667) (#805) 
Running 'depcheck' indicates some listed node modules are unused. These can lead to false CVE being reported against the image.
 2021-07-02 11:46:43 -04:00
thomasmckay
653dc021fe build: update node url-parse to 1.4.3 (PROJQUAY-1749) (#797) 
Bump url-parse version to 1.4.3
 2021-06-14 15:03:30 -04:00
Kenny Lee Sin Cheong
e7704d0a18 Update package.json && package-lock.json for frontend dependencies (#682) 2021-03-01 13:30:33 -05:00
Jonathan King
a9ee2dc4ec new config-tool (#566) 2020-10-07 16:17:45 -04:00
thomasmckay
fc3eeaba11 PROJQUAY-927 - use npm instead of yarn (#540) 2020-09-10 14:45:37 -04:00