Skip to content

chore: update nx to v21.6.3 #788

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 6, 2025
Merged

chore: update nx to v21.6.3 #788

merged 1 commit into from
Oct 6, 2025

Conversation

taiga-family-bot
Copy link
Member

@taiga-family-bot taiga-family-bot commented Mar 16, 2025
edited
Loading

This PR contains the following updates:

Package Type Change
@nx/angular (source) devDependencies 21.5.1 -> 21.6.3
@nx/jest (source) devDependencies 21.5.1 -> 21.6.3
@nx/workspace (source) devDependencies 21.5.1 -> 21.6.3
nx (source) devDependencies 21.5.1 -> 21.6.3
  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@taiga-family-bot taiga-family-bot requested a review from a team as a code owner March 16, 2025 18:39
@taiga-family-bot taiga-family-bot requested review from MarsiBarsi, mdlufy, nsbarsukov, vladimirpotekhin and waterplea and removed request for a team March 16, 2025 18:39
@taiga-family-bot taiga-family-bot force-pushed the renovate/nx branch 2 times, most recently from 61ef3d3 to d5cc8d5 Compare March 17, 2025 09:35
@taiga-family-bot taiga-family-bot changed the title chore: update nx to v20.6.0 chore: update nx to v20.6.1 Mar 17, 2025
@taiga-family-bot taiga-family-bot force-pushed the renovate/nx branch 2 times, most recently from d9b5538 to 50c53a3 Compare March 19, 2025 14:33
@taiga-family-bot taiga-family-bot changed the title chore: update nx to v20.6.1 chore: update nx to v20.6.2 Mar 19, 2025
@taiga-family-bot taiga-family-bot force-pushed the renovate/nx branch 9 times, most recently from b159968 to 64cb08e Compare March 25, 2025 03:13
@taiga-family-bot taiga-family-bot changed the title chore: update nx to v20.6.2 chore: update nx to v20.6.3 Mar 25, 2025
@taiga-family-bot taiga-family-bot changed the title chore: update nx to v20.6.3 chore: update nx to v20.6.4 Mar 25, 2025
@taiga-family-bot taiga-family-bot force-pushed the renovate/nx branch 5 times, most recently from e65e7fd to 28bbbbb Compare March 31, 2025 10:34
@taiga-family-bot taiga-family-bot changed the title chore: update nx to v20.8.2 - autoclosed chore: update nx to v20.8.2 Sep 19, 2025
@taiga-family-bot taiga-family-bot force-pushed the renovate/nx branch 11 times, most recently from 9727f1e to aea30f6 Compare September 24, 2025 18:37
@taiga-family-bot taiga-family-bot force-pushed the renovate/nx branch 10 times, most recently from 1a76c6a to 0938bf9 Compare October 3, 2025 20:31
@taiga-family-bot taiga-family-bot changed the title chore: update nx to v20.8.2 chore: update nx to v21.6.3 Oct 6, 2025
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Oct 6, 2025

✅ NPM Audit Good

16 vulnerabilities (14 moderate, 2 high)

Show details 
# npm audit report

@angular/platform-server  19.0.0-next.0 - 19.2.14
Severity: high
Angular SSR: Global Platform Injector Race Condition Leads to Cross-Request Data Leakage - https://github.com/advisories/GHSA-68x2-mx4q-78m7
fix available via `npm audit fix --force`
Will install @angular/platform-server@19.2.15, which is outside the stated dependency range
node_modules/@angular/platform-server

@angular/ssr  19.0.0-next.0 - 19.2.15
Severity: high
Angular SSR: Global Platform Injector Race Condition Leads to Cross-Request Data Leakage - https://github.com/advisories/GHSA-68x2-mx4q-78m7
fix available via `npm audit fix --force`
Will install @angular/ssr@19.2.17, which is outside the stated dependency range
node_modules/@angular/ssr

@conventional-changelog/git-client  <lt;2.0.0
Severity: moderate
@conventional-changelog/git-client has Argument Injection vulnerability - https://github.com/advisories/GHSA-vh25-5764-9wcr
fix available via `npm audit fix --force`
Will install @taiga-ui/release-it-config@0.220.0, which is a breaking change
node_modules/conventional-changelog-core/node_modules/@conventional-changelog/git-client
node_modules/conventional-recommended-bump/node_modules/@conventional-changelog/git-client
node_modules/git-semver-tags/node_modules/@conventional-changelog/git-client
  conventional-recommended-bump  10.0.0
  Depends on vulnerable versions of @conventional-changelog/git-client
  node_modules/conventional-recommended-bump
    @release-it/conventional-changelog  >gt;=8.0.2-next.0
    Depends on vulnerable versions of conventional-changelog
    Depends on vulnerable versions of conventional-recommended-bump
    Depends on vulnerable versions of git-semver-tags
    node_modules/@release-it/conventional-changelog
      @taiga-ui/release-it-config  >gt;=0.221.0
      Depends on vulnerable versions of @release-it/conventional-changelog
      node_modules/@taiga-ui/release-it-config
  git-raw-commits  >gt;=5.0.0
  Depends on vulnerable versions of @conventional-changelog/git-client
  node_modules/conventional-changelog-core/node_modules/git-raw-commits
  git-semver-tags  >gt;=8.0.0
  Depends on vulnerable versions of @conventional-changelog/git-client
  node_modules/git-semver-tags
    conventional-changelog-core  >gt;=8.0.0
    Depends on vulnerable versions of git-raw-commits
    Depends on vulnerable versions of git-semver-tags
    node_modules/conventional-changelog-core
      conventional-changelog  6.0.0
      Depends on vulnerable versions of conventional-changelog-core
      node_modules/conventional-changelog

dompurify  <lt;3.2.4
Severity: moderate
DOMPurify allows Cross-site Scripting (XSS) - https://github.com/advisories/GHSA-vhxf-7vqr-mrjg
fix available via `npm audit fix --force`
Will install @taiga-ui/dompurify@5.0.1, which is a breaking change
node_modules/dompurify
  @taiga-ui/dompurify  4.1.10 - 4.1.11
  Depends on vulnerable versions of dompurify
  node_modules/@taiga-ui/dompurify

vite  6.0.0 - 6.3.5
Severity: moderate
Vite'#39;s server.fs.deny bypassed with /. for files under project root - https://github.com/advisories/GHSA-859w-5945-r5v3
Vite middleware may serve files starting with the same name with the public directory - https://github.com/advisories/GHSA-g4jq-h2w9-997c
Vite'#39;s `server.fs` settings were not applied to HTML files - https://github.com/advisories/GHSA-jqfw-vq24-v9c3
fix available via `npm audit fix --force`
Will install @angular-devkit/build-angular@19.2.17, which is outside the stated dependency range
node_modules/@angular/build/node_modules/vite
  @angular/build  19.2.1 - 19.2.9 || 20.0.0-next.0 - 20.0.0-rc.4
  Depends on vulnerable versions of vite
  node_modules/@angular/build
    @angular-devkit/build-angular  <lt;=18.2.19 || 19.0.0-next.0 - 19.2.14 || 20.0.0-next.0 - 20.0.0-rc.4
    Depends on vulnerable versions of @angular/build
    Depends on vulnerable versions of webpack-dev-server
    node_modules/@angular-devkit/build-angular

webpack-dev-server  <lt;=5.2.0
Severity: moderate
webpack-dev-server users'#39; source code may be stolen when they access a malicious web site with non-Chromium based browser - https://github.com/advisories/GHSA-9jgg-88mc-972h
webpack-dev-server users'#39; source code may be stolen when they access a malicious web site - https://github.com/advisories/GHSA-4v9v-hfq4-rm2v
fix available via `npm audit fix --force`
Will install @angular-devkit/build-angular@19.2.17, which is outside the stated dependency range
node_modules/webpack-dev-server

16 vulnerabilities (14 moderate, 2 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions[bot]
github-actions bot approved these changes Oct 6, 2025
View reviewed changes
Copy link
Contributor

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM (Automated approved)

taiga-family-approve-bot
taiga-family-approve-bot approved these changes Oct 6, 2025
View reviewed changes
Copy link
Collaborator

@taiga-family-approve-bot taiga-family-approve-bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM (Automated approved)

@taiga-family-bot taiga-family-bot merged commit aa5dbab into main Oct 6, 2025
4 of 5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@taiga-family-approve-bot taiga-family-approve-bot taiga-family-approve-bot approved these changes

@MarsiBarsi MarsiBarsi Awaiting requested review from MarsiBarsi MarsiBarsi is a code owner automatically assigned from taiga-family/core-team

@waterplea waterplea Awaiting requested review from waterplea waterplea is a code owner automatically assigned from taiga-family/core-team

@nsbarsukov nsbarsukov Awaiting requested review from nsbarsukov nsbarsukov is a code owner automatically assigned from taiga-family/core-team

@vladimirpotekhin vladimirpotekhin Awaiting requested review from vladimirpotekhin vladimirpotekhin is a code owner automatically assigned from taiga-family/core-team

@mdlufy mdlufy Awaiting requested review from mdlufy mdlufy is a code owner automatically assigned from taiga-family/core-team

Assignees

@taiga-family-bot taiga-family-bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@taiga-family-bot @taiga-family-approve-bot