From 493915bc8d489e301e6d9f218b8f8da27e0f5909 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 25 Jan 2022 03:36:36 -0800
Subject: [PATCH] Bump dotenv from 8.2.0 to 14.2.0 in /desktop (#3344)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Summary:
Bumps [dotenv](https://github.com/motdotla/dotenv) from 8.2.0 to 14.2.0.
Changelog
Sourced from dotenv's changelog.
14.2.0 (2022-01-17)
Added
- Add
dotenv_config_override cli option
- Add
DOTENV_CONFIG_OVERRIDE command line env option
14.1.1 (2022-01-17)
Added
- Add React gotcha to FAQ on README
14.1.0 (2022-01-17)
Added
14.0.1 (2022-01-16)
Added
14.0.0 (2022-01-16)
Added
13.0.1 (2022-01-16)
Changed
13.0.0 (2022-01-16)
Added
12.0.4 (2022-01-16)
Changed
- README updates
- Minor order adjustment to package json format
... (truncated)
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Pull Request resolved: https://github.com/facebook/flipper/pull/3344
Reviewed By: aigoncharov
Differential Revision: D33741763
Pulled By: lblasa
fbshipit-source-id: 7188e804d6230ec7504c8ff43a70463c7959d130
---
desktop/scripts/package.json | 2 +-
desktop/yarn.lock | 8 ++++----
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/desktop/scripts/package.json b/desktop/scripts/package.json
index bc42c1e3e..33ab34a35 100644
--- a/desktop/scripts/package.json
+++ b/desktop/scripts/package.json
@@ -18,7 +18,7 @@
"app-builder-lib": "22.14.12",
"chalk": "^4.1.2",
"detect-port": "^1.1.1",
- "dotenv": "^8.2.0",
+ "dotenv": "^14.2.0",
"electron-builder": "22.11.7",
"express": "^4.17.2",
"fb-watchman": "^2.0.1",
diff --git a/desktop/yarn.lock b/desktop/yarn.lock
index 95e7218a5..72f2a8a29 100644
--- a/desktop/yarn.lock
+++ b/desktop/yarn.lock
@@ -5261,10 +5261,10 @@ dotenv-expand@^5.1.0:
resolved "https://registry.yarnpkg.com/dotenv-expand/-/dotenv-expand-5.1.0.tgz#3fbaf020bfd794884072ea26b1e9791d45a629f0"
integrity sha512-YXQl1DSa4/PQyRfgrv6aoNjhasp/p4qs9FjJ4q4cQk+8m4r6k4ZSiEyytKG8f8W9gi8WsQtIObNmKd+tMzNTmA==
-dotenv@^8.2.0:
- version "8.2.0"
- resolved "https://registry.yarnpkg.com/dotenv/-/dotenv-8.2.0.tgz#97e619259ada750eea3e4ea3e26bceea5424b16a"
- integrity sha512-8sJ78ElpbDJBHNeBzUbUVLsqKdccaa/BXF1uPTw3GrvQTBgrQrtObr2mUrE38vzYd8cEv+m/JBfDLioYcfXoaw==
+dotenv@^14.2.0:
+ version "14.2.0"
+ resolved "https://registry.yarnpkg.com/dotenv/-/dotenv-14.2.0.tgz#7e77fd5dd6cff5942c4496e1acf2d0f37a9e67aa"
+ integrity sha512-05POuPJyPpO6jqzTNweQFfAyMSD4qa4lvsMOWyTRTdpHKy6nnnN+IYWaXF+lHivhBH/ufDKlR4IWCAN3oPnHuw==
dotenv@^9.0.2:
version "9.0.2"