[PR #215] [MERGED] fix(deps): bump dotenv from 16.1.4 to 16.3.1 in /web #262

New issue

Closed

opened 2026-03-03 16:37:33 +03:00 by kerem · 0 comments

kerem commented

2026-03-03 16:37:33 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/NdoleStudio/httpsms/pull/215
Author: @dependabot[bot]
Created: 6/19/2023
Status: ✅ Merged
Merged: 6/19/2023
Merged by: @AchoArnold

Base: main ← Head: dependabot/npm_and_yarn/web/dotenv-16.3.1

📝 Commits (1)

e9521a8 fix(deps): bump dotenv from 16.1.4 to 16.3.1 in /web

📊 Changes

3 files changed (+40 additions, -15 deletions)

View changed files

📝 web/package-lock.json (+35 -10)
📝 web/package.json (+1 -1)
📝 web/yarn.lock (+4 -4)

📄 Description

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps dotenv from 16.1.4 to 16.3.1.

Changelog

Sourced from dotenv's changelog.

16.3.1 (2023-06-17)

Added

Add missing type definitions for processEnv and DOTENV_KEY options. #756

16.3.0 (2023-06-16)

Added

Optionally pass DOTENV_KEY to options rather than relying on process.env.DOTENV_KEY. Defaults to process.env.DOTENV_KEY #754

16.2.0 (2023-06-15)

Added

Optionally write to your own target object rather than process.env. Defaults to process.env. #753

Add import type URL to types file #751

Commits

b13ca7b 16.3.1
9bcc2e7 Merge pull request #756 from motdotla/type-fix
80fff4b Add type definition for DOTENV_KEY
50163a1 update type file
5c7d7f5 Add example demonstrating setting DOTENV_KEY
76d3682 16.3.0
80219ae Merge pull request #754 from motdotla/dotenv-key-option
dacd450 Add DOTENV_KEY to cli config and environment config options
f20e646 Add options.DOTENV_KEY
5861f6a Add failing test demonstrating need for DOTENV_KEY option
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/NdoleStudio/httpsms/pull/215 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 6/19/2023 **Status:** ✅ Merged **Merged:** 6/19/2023 **Merged by:** [@AchoArnold](https://github.com/AchoArnold) **Base:** `main` ← **Head:** `dependabot/npm_and_yarn/web/dotenv-16.3.1` --- ### 📝 Commits (1) - [`e9521a8`](https://github.com/NdoleStudio/httpsms/commit/e9521a88b134f2d8da1ddc1e66e75923799e31fa) fix(deps): bump dotenv from 16.1.4 to 16.3.1 in /web ### 📊 Changes **3 files changed** (+40 additions, -15 deletions) <details> <summary>View changed files</summary> 📝 `web/package-lock.json` (+35 -10) 📝 `web/package.json` (+1 -1) 📝 `web/yarn.lock` (+4 -4) </details> ### 📄 Description [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.1.4 to 16.3.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/motdotla/dotenv/compare/v16.3.0...v16.3.1">16.3.1</a> (2023-06-17)</h2> <h3>Added</h3> <ul> <li>Add missing type definitions for <code>processEnv</code> and <code>DOTENV_KEY</code> options. <a href="https://redirect.github.com/motdotla/dotenv/pull/756">#756</a></li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v16.2.0...v16.3.0">16.3.0</a> (2023-06-16)</h2> <h3>Added</h3> <ul> <li>Optionally pass <code>DOTENV_KEY</code> to options rather than relying on <code>process.env.DOTENV_KEY</code>. Defaults to <code>process.env.DOTENV_KEY</code> <a href="https://redirect.github.com/motdotla/dotenv/pull/754">#754</a></li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v16.1.4...v16.2.0">16.2.0</a> (2023-06-15)</h2> <h3>Added</h3> <ul> <li>Optionally write to your own target object rather than <code>process.env</code>. Defaults to <code>process.env</code>. <a href="https://redirect.github.com/motdotla/dotenv/pull/753">#753</a></li> <li>Add import type URL to types file <a href="https://redirect.github.com/motdotla/dotenv/pull/751">#751</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/motdotla/dotenv/commit/b13ca7bbdae868e2565db1188a033761ff59cb47"><code>b13ca7b</code></a> 16.3.1</li> <li><a href="https://github.com/motdotla/dotenv/commit/9bcc2e716c5dc6c9aa00efdd95f60e5fdf316623"><code>9bcc2e7</code></a> Merge pull request <a href="https://redirect.github.com/motdotla/dotenv/issues/756">#756</a> from motdotla/type-fix</li> <li><a href="https://github.com/motdotla/dotenv/commit/80fff4bbf052c68e51b7a3efcca6e9322621202a"><code>80fff4b</code></a> Add type definition for DOTENV_KEY</li> <li><a href="https://github.com/motdotla/dotenv/commit/50163a1de9ae392fef03600350fef7d043e26361"><code>50163a1</code></a> update type file</li> <li><a href="https://github.com/motdotla/dotenv/commit/5c7d7f5f3ffa7b130a9630ff9b9639c0dea1ca77"><code>5c7d7f5</code></a> Add example demonstrating setting DOTENV_KEY</li> <li><a href="https://github.com/motdotla/dotenv/commit/76d3682e104f10440c8c6085fe27556f828cb48e"><code>76d3682</code></a> 16.3.0</li> <li><a href="https://github.com/motdotla/dotenv/commit/80219ae50e64443f1bc21e87c6eeb74d639a297c"><code>80219ae</code></a> Merge pull request <a href="https://redirect.github.com/motdotla/dotenv/issues/754">#754</a> from motdotla/dotenv-key-option</li> <li><a href="https://github.com/motdotla/dotenv/commit/dacd4501580e3830ee6298cc6556a33ba88a94d4"><code>dacd450</code></a> Add DOTENV_KEY to cli config and environment config options</li> <li><a href="https://github.com/motdotla/dotenv/commit/f20e646603bfe11d0444529774be5afce31a3089"><code>f20e646</code></a> Add options.DOTENV_KEY</li> <li><a href="https://github.com/motdotla/dotenv/commit/5861f6a94abceddb6746f4b459919c548db95f47"><code>5861f6a</code></a> Add failing test demonstrating need for DOTENV_KEY option</li> <li>Additional commits viewable in <a href="https://github.com/motdotla/dotenv/compare/v16.1.4...v16.3.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dotenv&package-manager=npm_and_yarn&previous-version=16.1.4&new-version=16.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>