[PR #2179] [CLOSED] chore(deps): bump quickjs-emscripten from 0.15.0 to 0.20.0 #3660

New issue

Closed

opened 2026-03-17 01:15:13 +03:00 by kerem · 0 comments

kerem commented

2026-03-17 01:15:13 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/hoppscotch/hoppscotch/pull/2179
Author: @dependabot[bot]
Created: 3/21/2022
Status: ❌ Closed

Base: main ← Head: dependabot/npm_and_yarn/quickjs-emscripten-0.20.0

📝 Commits (1)

16d89ca chore(deps): bump quickjs-emscripten from 0.15.0 to 0.20.0

📊 Changes

1 file changed (+1 additions, -1 deletions)

View changed files

📝 packages/hoppscotch-js-sandbox/package.json (+1 -1)

📄 Description

Bumps quickjs-emscripten from 0.15.0 to 0.20.0.

Changelog

Sourced from quickjs-emscripten's changelog.

v0.20.0

This is a large release! The summary is:

There are several breaking API changes to align our abstractions with the underlying QuickJS library.

There's a new build variant build with Emscripten's ASYNCIFY that allows synchronous code inside QuickJS to use asynchronous code running on the host.

Both build variants have basic support for loading and evaluating EcmaScript modules, but only the ASYNCIFY variant can asynchronously load EcmaScript code.

New features

This release introduces class QuickJSRuntime. This class wraps QuickJS's JSRuntime* type:

JSRuntime represents a Javascript runtime corresponding to an object heap. Several runtimes can exist at the same time but they cannot exchange objects. Inside a given runtime, no multi-threading is supported.

QuickJSRuntime.newContext creates a new context inside an existing runtime.

QuickJSRuntime.setModuleLoader enables EcmaScript module loading.

This release renames QuickJSVm to class QuickJSContext, and removes some methods. The new class wraps QuickJS's JSContext* type:

JSContext represents a Javascript context (or Realm). Each JSContext has its own global objects and system objects. There can be several JSContexts per JSRuntime [...], similar to frames of the same origin sharing Javascript objects in a web browser.

QuickJSContext replaces QuickJSVm as the main way to interact with the environment inside the QuickJS virtual machine.

QuickJSContext.runtime provides access to a context's parent runtime.

QuickJSContext.evalCode now takes an options argument to set eval mode to 'module'.

There are also Asyncified versions of both QuickJSRuntime (QuickJSRuntimeAsync) and QuickJSContext (QuickJSContextAsync). These variants trade some runtime performance for additional features.

QuickJSRuntimeAsync.setModuleLoader accepts module loaders that return Promise<string>.

QuickJSContextAsync.newAsyncifiedFunction allows creating async functions that act like sync functions inside the VM.

Breaking changes

class QuickJSVm is removed. Most functionality is available on QuickJSContext, with identical function signatures. Functionality related to

... (truncated)

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/hoppscotch/hoppscotch/pull/2179 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 3/21/2022 **Status:** ❌ Closed **Base:** `main` ← **Head:** `dependabot/npm_and_yarn/quickjs-emscripten-0.20.0` --- ### 📝 Commits (1) - [`16d89ca`](https://github.com/hoppscotch/hoppscotch/commit/16d89cad30fc3762798b7bec2a8c361a42f15d28) chore(deps): bump quickjs-emscripten from 0.15.0 to 0.20.0 ### 📊 Changes **1 file changed** (+1 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `packages/hoppscotch-js-sandbox/package.json` (+1 -1) </details> ### 📄 Description Bumps [quickjs-emscripten](https://github.com/justjake/quickjs-emscripten) from 0.15.0 to 0.20.0. <details> <summary>Changelog</summary> Sourced from <a href="https://github.com/justjake/quickjs-emscripten/blob/master/CHANGELOG.md">quickjs-emscripten's changelog</a>. <blockquote> <h2>v0.20.0</h2> This is a large release! The summary is: <ul> <li>There are several breaking API changes to align our abstractions with the underlying QuickJS library.</li> <li>There's a new build variant build with <a href="https://emscripten.org/docs/porting/asyncify.html">Emscripten's ASYNCIFY</a> that allows synchronous code inside QuickJS to use asynchronous code running on the host.</li> <li>Both build variants have basic support for loading and evaluating EcmaScript modules, but only the ASYNCIFY variant can asynchronously load EcmaScript code.</li> </ul> <h3>New features</h3> This release introduces <code>class QuickJSRuntime</code>. This class wraps QuickJS's <code>JSRuntime*</code> type: <blockquote> <code>JSRuntime</code> represents a Javascript runtime corresponding to an object heap. Several runtimes can exist at the same time but they cannot exchange objects. Inside a given runtime, no multi-threading is supported. </blockquote> <ul> <li><code>QuickJSRuntime.newContext</code> creates a new context inside an existing runtime.</li> <li><code>QuickJSRuntime.setModuleLoader</code> enables EcmaScript module loading.</li> </ul> This release renames <code>QuickJSVm</code> to <code>class QuickJSContext</code>, and removes some methods. The new class wraps QuickJS's <code>JSContext*</code> type: <blockquote> <code>JSContext</code> represents a Javascript context (or Realm). Each JSContext has its own global objects and system objects. There can be several JSContexts per JSRuntime [...], similar to frames of the same origin sharing Javascript objects in a web browser. </blockquote> <code>QuickJSContext</code> replaces <code>QuickJSVm</code> as the main way to interact with the environment inside the QuickJS virtual machine. <ul> <li><code>QuickJSContext.runtime</code> provides access to a context's parent runtime.</li> <li><code>QuickJSContext.evalCode</code> now takes an options argument to set eval mode to <code>'module'</code>.</li> </ul> There are also Asyncified versions of both <code>QuickJSRuntime</code> (<code>QuickJSRuntimeAsync</code>) and <code>QuickJSContext</code> (<code>QuickJSContextAsync</code>). These variants trade some runtime performance for additional features. <ul> <li><code>QuickJSRuntimeAsync.setModuleLoader</code> accepts module loaders that return <code>Promise<string></code>.</li> <li><code>QuickJSContextAsync.newAsyncifiedFunction</code> allows creating async functions that act like sync functions inside the VM.</li> </ul> <h3>Breaking changes</h3> <code>class QuickJSVm</code> is removed. Most functionality is available on <code>QuickJSContext</code>, with identical function signatures. Functionality related to  </blockquote> ... (truncated) </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/justjake/quickjs-emscripten/commits">compare view</a></li> </ul> </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=quickjs-emscripten&package-manager=npm_and_yarn&previous-version=0.15.0&new-version=0.20.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- 🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.