mirror of
https://github.com/MichMich/MagicMirror.git
synced 2025-07-20 02:43:14 +00:00
f91340ceca
Bumps [helmet](https://github.com/helmetjs/helmet) from 7.1.0 to 8.0.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/helmetjs/helmet/blob/main/CHANGELOG.md">helmet's changelog</a>.</em></p> <blockquote> <h2>8.0.0</h2> <h3>Changed</h3> <ul> <li><strong>Breaking:</strong> <code>Strict-Transport-Security</code> now has a max-age of 365 days, up from 180</li> <li><strong>Breaking:</strong> <code>Content-Security-Policy</code> middleware now throws an error if a directive should have quotes but does not, such as <code>self</code> instead of <code>'self'</code>. See <a href="https://redirect.github.com/helmetjs/helmet/issues/454">#454</a></li> <li><strong>Breaking:</strong> <code>Content-Security-Policy</code>'s <code>getDefaultDirectives</code> now returns a deep copy. This only affects users who were mutating the result</li> <li><strong>Breaking:</strong> <code>Strict-Transport-Security</code> now throws an error when "includeSubDomains" option is misspelled. This was previously a warning</li> </ul> <h3>Removed</h3> <ul> <li><strong>Breaking:</strong> Drop support for Node 16 and 17. Node 18+ is now required</li> </ul> <h2>7.2.0 - 2024-09-28</h2> <h3>Changed</h3> <ul> <li><code>Content-Security-Policy</code> middleware now warns if a directive should have quotes but does not, such as <code>self</code> instead of <code>'self'</code>. This will be an error in future versions. See <a href="https://redirect.github.com/helmetjs/helmet/issues/454">#454</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="9a8e6d5322"><code>9a8e6d5</code></a> 8.0.0</li> <li><a href="6562cd7074"><code>6562cd7</code></a> CSP: speed up <code>getDefaultDirectives</code></li> <li><a href="a8befb3b9d"><code>a8befb3</code></a> <code>getDefaultDirectives</code> should do a deep copy</li> <li><a href="558ef2ce90"><code>558ef2c</code></a> HSTS: throw when misspelling "includeSubDomains" option</li> <li><a href="73e75952fe"><code>73e7595</code></a> Content-Security-Policy: throw if directive value lacks necessary quotes</li> <li><a href="76410e1093"><code>76410e1</code></a> Content-Security-Policy can now use Object.hasOwn</li> <li><a href="293bd18bf5"><code>293bd18</code></a> Strict-Transport-Security: increase max-age to 1 year</li> <li><a href="898cdc4c61"><code>898cdc4</code></a> Require Node 18+</li> <li><a href="7e2b06947f"><code>7e2b069</code></a> 7.2.0</li> <li><a href="7bea9158d4"><code>7bea915</code></a> Update changelog for 7.2.0 release</li> <li>Additional commits viewable in <a href="https://github.com/helmetjs/helmet/compare/v7.1.0...v8.0.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
107 lines
3.6 KiB
JSON
107 lines
3.6 KiB
JSON
{
|
|
"name": "magicmirror",
|
|
"version": "2.30.0-develop",
|
|
"description": "The open source modular smart mirror platform.",
|
|
"keywords": [
|
|
"magic mirror",
|
|
"magicmirror",
|
|
"smart mirror",
|
|
"mirror UI",
|
|
"modular"
|
|
],
|
|
"homepage": "https://magicmirror.builders",
|
|
"bugs": {
|
|
"url": "https://github.com/MagicMirrorOrg/MagicMirror/issues"
|
|
},
|
|
"repository": {
|
|
"type": "git",
|
|
"url": "https://github.com/MagicMirrorOrg/MagicMirror"
|
|
},
|
|
"license": "MIT",
|
|
"author": "Michael Teeuw",
|
|
"contributors": [
|
|
"https://github.com/MagicMirrorOrg/MagicMirror/graphs/contributors"
|
|
],
|
|
"main": "js/electron.js",
|
|
"scripts": {
|
|
"start": "DISPLAY=\"${DISPLAY:=:0}\" ./node_modules/.bin/electron js/electron.js",
|
|
"start:dev": "DISPLAY=\"${DISPLAY:=:0}\" ./node_modules/.bin/electron js/electron.js dev",
|
|
"server": "node ./serveronly",
|
|
"install-mm": "npm install --no-audit --no-fund --no-update-notifier --only=prod --omit=dev",
|
|
"install-mm:dev": "npm install --no-audit --no-fund --no-update-notifier",
|
|
"install-vendor": "echo \"Installing vendor files ...\n\" && cd vendor && npm install --loglevel=error --no-audit --no-fund --no-update-notifier",
|
|
"install-fonts": "echo \"Installing fonts ...\n\" && cd fonts && npm install --loglevel=error --no-audit --no-fund --no-update-notifier",
|
|
"postinstall": "npm run install-vendor && npm run install-fonts && echo \"MagicMirror² installation finished successfully! \n\"",
|
|
"test": "NODE_ENV=test jest -i --forceExit",
|
|
"test:coverage": "NODE_ENV=test jest --coverage -i --verbose false --forceExit",
|
|
"test:electron": "NODE_ENV=test jest --selectProjects electron -i --forceExit",
|
|
"test:e2e": "NODE_ENV=test jest --selectProjects e2e -i --forceExit",
|
|
"test:unit": "NODE_ENV=test jest --selectProjects unit",
|
|
"test:prettier": "prettier . --check",
|
|
"test:js": "eslint .",
|
|
"test:css": "stylelint 'css/main.css' 'fonts/*.css' 'modules/default/**/*.css' 'vendor/*.css' --config .stylelintrc.json",
|
|
"test:calendar": "node ./modules/default/calendar/debug.js",
|
|
"test:spelling": "cspell . --gitignore",
|
|
"config:check": "node js/check_config.js",
|
|
"lint:prettier": "prettier . --write",
|
|
"lint:js": "eslint . --fix",
|
|
"lint:css": "stylelint 'css/main.css' 'fonts/*.css' 'modules/default/**/*.css' 'vendor/*.css' --config .stylelintrc.json --fix",
|
|
"lint:staged": "lint-staged",
|
|
"prepare": "[ -f node_modules/.bin/husky ] && husky || echo no husky installed."
|
|
},
|
|
"lint-staged": {
|
|
"*": "prettier --write",
|
|
"*.js": "eslint --fix",
|
|
"*.css": "stylelint --fix"
|
|
},
|
|
"dependencies": {
|
|
"ajv": "^8.17.1",
|
|
"ansis": "^3.3.2",
|
|
"console-stamp": "^3.1.2",
|
|
"envsub": "^4.1.0",
|
|
"eslint": "^9.11.1",
|
|
"express": "^4.21.0",
|
|
"express-ipfilter": "^1.3.2",
|
|
"feedme": "^2.0.2",
|
|
"helmet": "^8.0.0",
|
|
"html-to-text": "^9.0.5",
|
|
"iconv-lite": "^0.6.3",
|
|
"module-alias": "^2.2.3",
|
|
"moment": "^2.30.1",
|
|
"node-ical": "0.18.0",
|
|
"pm2": "^5.4.2",
|
|
"socket.io": "^4.8.0",
|
|
"suncalc": "^1.9.0",
|
|
"systeminformation": "^5.23.5"
|
|
},
|
|
"devDependencies": {
|
|
"@eslint/js": "^9.11.1",
|
|
"@stylistic/eslint-plugin": "^2.8.0",
|
|
"cspell": "^8.14.4",
|
|
"eslint-plugin-jest": "^28.8.3",
|
|
"eslint-plugin-jsdoc": "^50.3.1",
|
|
"eslint-plugin-package-json": "^0.15.3",
|
|
"express-basic-auth": "^1.2.1",
|
|
"husky": "^9.1.6",
|
|
"jest": "^29.7.0",
|
|
"jsdom": "^25.0.1",
|
|
"lint-staged": "^15.2.10",
|
|
"playwright": "^1.47.2",
|
|
"prettier": "^3.3.3",
|
|
"sinon": "^19.0.2",
|
|
"stylelint": "^16.9.0",
|
|
"stylelint-config-standard": "^36.0.1",
|
|
"stylelint-prettier": "^5.0.2"
|
|
},
|
|
"optionalDependencies": {
|
|
"electron": "^31.6.0"
|
|
},
|
|
"engines": {
|
|
"node": ">=20.9.0 <21 || 22"
|
|
},
|
|
"_moduleAliases": {
|
|
"node_helper": "js/node_helper.js",
|
|
"logger": "js/logger.js"
|
|
}
|
|
}
|