Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade bancos-brasileiros from 6.0.51 to 6.0.62 #537

Merged
merged 1 commit into from
Sep 17, 2024
Merged

Upgrade bancos-brasileiros from 6.0.51 to 6.0.62 #537

merged 1 commit into from
Sep 17, 2024

Conversation

guibranco
Copy link
Owner

@guibranco guibranco commented Sep 17, 2024
edited by coderabbitai bot
Loading

User description

snyk-top-banner

Snyk has created this PR to upgrade bancos-brasileiros from 6.0.51 to 6.0.62.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 8 versions ahead of your current version.

  • The recommended version was released on 21 days ago.

Release notes
Package name: bancos-brasileiros
  • 6.0.62 - 2024-08-27

    Release of Bancos Brasileiros - v6.0.62

    • Added 1 bank
      • 651 - PAGARE IP S.A. - 25.104.230/0001-21
  • 6.0.61 - 2024-08-24

    Release of Bancos Brasileiros - v6.0.61

    • Added 1 bank
      • 651 - PAGARE IP S.A. - 25.104.230/0001-21
  • 6.0.59 - 2024-08-22

    Release of Bancos Brasileiros - v6.0.59

    • Added 1 bank
      • 651 - PAGARE IP S.A. - 25.104.230/0001-21
  • 6.0.56 - 2024-08-19

    Release of Bancos Brasileiros - v6.0.56

    • Updated 1 bank
      • 520 - SOMAPAY SCD S.A. - 44.705.774/0001-93
        • PixType (SPI): Null -> IDRT
        • DatePixStarted (SPI): Null -> 2024-08-13 09:27:38
  • 6.0.55 - 2024-08-19

    Release of Bancos Brasileiros - v6.0.55

    • Updated 1 bank
      • 520 - SOMAPAY SCD S.A. - 44.705.774/0001-93
        • PixType (SPI): Null -> IDRT
        • DatePixStarted (SPI): Null -> 2024-08-13 09:27:38
  • 6.0.54 - 2024-08-19

    Release of Bancos Brasileiros - v6.0.54

    • Updated 1 bank
      • 520 - SOMAPAY SCD S.A. - 44.705.774/0001-93
        • PixType (SPI): Null -> IDRT
        • DatePixStarted (SPI): Null -> 2024-08-13 09:27:38
  • 6.0.53 - 2024-08-19

    Release of Bancos Brasileiros - v6.0.53

    • Updated 1 bank
      • 520 - SOMAPAY SCD S.A. - 44.705.774/0001-93
        • PixType (SPI): Null -> IDRT
        • DatePixStarted (SPI): Null -> 2024-08-13 09:27:38
  • 6.0.52 - 2024-08-14

    Release of Bancos Brasileiros - v6.0.52

    • Updated 1 bank
      • 520 - SOMAPAY SCD S.A. - 44.705.774/0001-93
        • PixType (SPI): Null -> IDRT
        • DatePixStarted (SPI): Null -> 2024-08-13 09:27:38
  • 6.0.51 - 2024-08-13

    Release of Bancos Brasileiros - v6.0.51

    • Updated 1 bank
      • 348 - BCO XP S.A. - 33.264.668/0001-03
        • SalaryPortability (PCPS): Banco folha e Destinatrio -> Destinatrio
from bancos-brasileiros GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Description

  • Upgraded bancos-brasileiros dependency from version 6.0.51 to 6.0.62.
  • This upgrade includes the addition of a new bank.
  • Keeping dependencies up-to-date helps in fixing vulnerabilities.

Changes walkthrough 📝

Relevant files
Dependencies
package-lock.json
Upgrade bancos-brasileiros dependency in package-lock.json

examples/emberjs/package-lock.json

  • Updated bancos-brasileiros version from 6.0.51 to 6.0.62.
  • Updated integrity hash for the new version.
    		•  +7/-7     
    package.json
    Upgrade bancos-brasileiros dependency in package.json       

    examples/emberjs/package.json

    • Updated bancos-brasileiros version from 6.0.51 to 6.0.62.
    		 +1/-1     

    Summary by CodeRabbit

    • New Features

      • Updated the bancos-brasileiros dependency to the latest version, potentially introducing new features and improvements.

    • Bug Fixes

      • The update may include various bug fixes and performance enhancements from the previous version.

    @snyk-bot
    fix: upgrade bancos-brasileiros from 6.0.51 to 6.0.62
    1dfc6d5 
    Snyk has created this PR to upgrade bancos-brasileiros from 6.0.51 to 6.0.62.

See this package in npm:
bancos-brasileiros

See this project in Snyk:
https://app.snyk.io/org/guibranco/project/337dc2ee-ac4c-4ec7-8f33-7fddb26040de?utm_source=github&utm_medium=referral&page=upgrade-pr
    @gstraccini gstraccini bot added the ☑️ auto-merge Automatic merging of pull requests (gstraccini-bot) label Sep 17, 2024
    @coderabbitai coderabbitai
    Copy link

    coderabbitai bot commented Sep 17, 2024
    edited
    Loading

    Walkthrough

    The pull request updates the bancos-brasileiros dependency in the package.json file of an Ember.js project. The version has been upgraded from ^6.0.51 to ^6.0.62, indicating a transition to a newer release that may contain various improvements or enhancements. Specific details regarding the changes in functionality or fixes between the two versions are not provided.

    Changes

    File Change Summary
    examples/emberjs/package.json Updated bancos-brasileiros from ^6.0.51 to ^6.0.62

    Sequence Diagram(s)

    (No sequence diagrams generated as the changes are too simple.)

    Poem

    In the garden where rabbits play,
    A package updated, hip-hip-hooray!
    From six-oh-fifty-one to sixty-two,
    New features await, oh what a view!
    With hops of joy, we leap and cheer,
    For every change brings us near! 🐰✨

    Recent review details

    Configuration used: CodeRabbit UI
    Review profile: CHILL

    Commits

    Files that changed from the base of the PR and between 0fb1f62 and 1dfc6d5.

    Files ignored due to path filters (1)
    • examples/emberjs/package-lock.json is excluded by !**/package-lock.json
    Files selected for processing (1)
    • examples/emberjs/package.json (1 hunks)
    Additional comments not posted (1)
    examples/emberjs/package.json (1)

    70-70: Upgrade looks good, but ensure thorough testing!

    The version update for the bancos-brasileiros dependency follows semantic versioning and should be backwards compatible. The PR objectives also provide valuable context on the specific changes included in the newer versions.

    However, it's crucial to thoroughly test the changes to ensure compatibility with the project and verify that no breaking changes are introduced. I recommend reviewing the detailed release notes provided in the PR description for any breaking changes, deprecations, or other important updates that might require adjustments in the codebase.

    Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

    Share
    Tips

    Chat

    There are 3 ways to chat with CodeRabbit:

    • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
      -- I pushed a fix in commit <commit_id>, please review it.
      -- Generate unit testing code for this file.
      • Open a follow-up GitHub issue for this discussion.
    • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
      -- @coderabbitai generate unit testing code for this file.
      -- @coderabbitai modularize this function.
    • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
      -- @coderabbitai generate interesting stats about this repository and render them as a table.
      -- @coderabbitai read src/utils.ts and generate unit testing code.
      -- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
      -- @coderabbitai help me debug CodeRabbit configuration file.

    Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

    CodeRabbit Commands (Invoked using PR comments)

    • @coderabbitai pause to pause the reviews on a PR.
    • @coderabbitai resume to resume the paused reviews.
    • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
    • @coderabbitai full review to do a full review from scratch and review all the files again.
    • @coderabbitai summary to regenerate the summary of the PR.
    • @coderabbitai resolve resolve all the CodeRabbit review comments.
    • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
    • @coderabbitai help to get help.

    Other keywords and placeholders

    • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
    • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
    • Add @coderabbitai anywhere in the PR title to generate the title automatically.

    CodeRabbit Configuration File (.coderabbit.yaml)

    • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
    • Please see the configuration documentation for more information.
    • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

    Documentation and Community

    • Visit our Documentation for detailed information on how to use CodeRabbit.
    • Join our Discord Community to get help, request features, and share feedback.
    • Follow us on X/Twitter for updates and announcements.

    @penify-dev penify-dev bot added the enhancement A enhancement to the project label Sep 17, 2024
    @github-actions github-actions bot added the size/S Denotes a PR that changes 10-29 lines, ignoring generated files. label Sep 17, 2024
    @penify-dev penify-dev bot changed the title [Snyk] Upgrade bancos-brasileiros from 6.0.51 to 6.0.62 Upgrade bancos-brasileiros from 6.0.51 to 6.0.62 Sep 17, 2024
    @penify-dev Penify.dev
    Copy link
    Contributor

    penify-dev bot commented Sep 17, 2024

    PR Review 🔍

    ⏱️ Estimated effort to review [1-5]

    1, because the changes are straightforward dependency updates with no complex logic or significant alterations.

    🧪 Relevant tests

    No

    ⚡ Possible issues

    No

    🔒 Security concerns

    No

    @penify-dev Penify.dev
    Copy link
    Contributor

    penify-dev bot commented Sep 17, 2024

    PR Code Suggestions ✨

    CategorySuggestion                                                                                                                                    Score
    Maintainability
    Confirm that the version is consistent across all relevant files

    Ensure that the new version of bancos-brasileiros is reflected in all relevant files,
    including package.json.

    examples/emberjs/package.json [70]

    -"bancos-brasileiros": "^6.0.62"
+"bancos-brasileiros": "^6.0.62" // Confirm version consistency
    Suggestion importance[1-10]: 9

    Why: This suggestion addresses the consistency of the version across files, which is important for maintainability, and is directly relevant to the changes made in the PR.

    		9
    Security
    Verify the integrity hash of the package for security

    Check the integrity hash for bancos-brasileiros to ensure that the package has not been
    tampered with.

    examples/emberjs/package-lock.json [4885]

    -"integrity": "sha512-viFkmnpZXNEP2QNvc7ounPDuLQ1AbgbCQSVAKZ2UvTXGZquyyiS/tSkSw+j4yX54/Fay6GVgT2to3nObVX0t3g=="
+"integrity": "sha512-viFkmnpZXNEP2QNvc7ounPDuLQ1AbgbCQSVAKZ2UvTXGZquyyiS/tSkSw+j4yX54/Fay6GVgT2to3nObVX0t3g==" // Verify integrity
    Suggestion importance[1-10]: 8

    Why: Verifying the integrity hash is crucial for security, and this suggestion directly relates to the new code introduced in the PR.

    		8
    Compatibility
    Verify compatibility of the new version with the existing project

    Ensure that the new version of bancos-brasileiros is compatible with your project and does
    not introduce breaking changes.

    examples/emberjs/package-lock.json [12]

    -"bancos-brasileiros": "^6.0.62"
+"bancos-brasileiros": "^6.0.62" // Ensure compatibility
    Suggestion importance[1-10]: 7

    Why: While ensuring compatibility is important, this suggestion does not directly address a specific code issue and is more of a general best practice.

    		7
    Testing
    Run tests to confirm that the upgrade does not break functionality

    Consider running tests after upgrading bancos-brasileiros to ensure that the new version
    does not break existing functionality.

    examples/emberjs/package-lock.json [12]

    -"bancos-brasileiros": "^6.0.62"
+"bancos-brasileiros": "^6.0.62" // Run tests after upgrade
    Suggestion importance[1-10]: 7

    Why: This suggestion is relevant as it emphasizes the importance of testing after an upgrade, but it lacks specificity regarding the code changes made.

    		7

    @github-actions GitHub Actions
    Copy link
    Contributor

    Summary

    Status Count
    🔍 Total 467
    ✅ Successful 360
    ⏳ Timeouts 0
    🔀 Redirected 0
    👻 Excluded 95
    ❓ Unknown 0
    🚫 Errors 12

    Errors per input

    Errors in ./data/bancos.md

    Errors in ./CHANGELOG.md

    @github-actions GitHub Actions
    Copy link
    Contributor

    Infisical secrets check: ✅ No secrets leaked!

    💻 Scan logs 
    1:20AM INF scanning for exposed secrets...
1:20AM INF 962 commits scanned.
1:20AM INF scan completed in 2.51s
1:20AM INF no leaks found

    @socket-security Socket Security
    Copy link

    New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

    Package New capabilities Transitives Size Publisher
    npm/bancos-brasileiros@6.0.62 None 0 312 kB guibranco

    🚮 Removed packages: npm/bancos-brasileiros@6.0.51

    View full report↗︎

    @sonarqubecloud SonarQubeCloud
    Copy link

    Quality Gate Passed Quality Gate passed

    Issues
    0 New issues
    0 Accepted issues

    Measures
    0 Security Hotspots
    0.0% Coverage on New Code
    0.0% Duplication on New Code

    See analysis details on SonarCloud

    @guibranco guibranco merged commit 8f78d3e into main Sep 17, 2024
    45 checks passed
    @guibranco guibranco deleted the snyk-upgrade-e58d2d23ec9cbd1c0792acedc6c4cb0f branch September 17, 2024 09:27
    This was referenced Sep 24, 2024
    Merged
    Merged
    @coderabbitai coderabbitai bot mentioned this pull request Oct 8, 2024
    Merged
    @guibranco guibranco mentioned this pull request Oct 15, 2024
    Merged
    Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
    Reviewers

    @gstraccini gstraccini[bot] gstraccini[bot] approved these changes

    Assignees

    @guibranco guibranco

    Labels
    ☑️ auto-merge Automatic merging of pull requests (gstraccini-bot) enhancement A enhancement to the project Review effort [1-5]: 1 size/S Denotes a PR that changes 10-29 lines, ignoring generated files.
    Projects
    None yet
    Milestone
    No milestone
    Development

    Successfully merging this pull request may close these issues.
    2 participants
    @guibranco @snyk-bot