martin

mirror of https://github.com/maplibre/martin.git synced 2024-12-19 12:51:37 +03:00

Author	SHA1	Message	Date
Yuri Astrakhan	6d17c1e2b6	Demo: Migrate to yarn (#770 ) `npm install` is having some weird issues, while `yarn` seem to work well. Also, bumped almost all dependencies.	2023-07-17 14:27:09 -04:00
Yuri Astrakhan	81bb9582ed	Cleaning up mdbook (#697 ) A lot of book content cleanup, making it a bit shorter and "logical" (whatever that even means) To try, run `just mdbook`	2023-06-02 01:16:41 -04:00
Birk Skyum	a8f7c30eef	Simplify demo - remove nginx (#692 ) This uses the webserver built into vitejs instead of configuring an entirely new nginx server with an additional docker image.	2023-05-31 00:56:11 +02:00
dependabot[bot]	8bf3bd078d	chore(deps): Bump json5 from 1.0.1 to 1.0.2 in /demo/frontend (#688 ) Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/json5/json5/releases">json5's releases</a>.</em></p> <blockquote> <h2>v1.0.2</h2> <ul> <li>Fix: Properties with the name <code>__proto__</code> are added to objects and arrays. (<a href="https://redirect.github.com/json5/json5/issues/199">#199</a>) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (<a href="https://redirect.github.com/json5/json5/issues/295">#295</a>). This has been backported to v1. (<a href="https://redirect.github.com/json5/json5/issues/298">#298</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/json5/json5/blob/main/CHANGELOG.md">json5's changelog</a>.</em></p> <blockquote> <h3>Unreleased [<a href="https://github.com/json5/json5/tree/main">code</a>, <a href="https://github.com/json5/json5/compare/v2.2.3...HEAD">diff</a>]</h3> <h3>v2.2.3 [<a href="https://github.com/json5/json5/tree/v2.2.3">code</a>, <a href="https://github.com/json5/json5/compare/v2.2.2...v2.2.3">diff</a>]</h3> <ul> <li>Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (<a href="https://redirect.github.com/json5/json5/issues/299">#299</a>)</li> </ul> <h3>v2.2.2 [<a href="https://github.com/json5/json5/tree/v2.2.2">code</a>, <a href="https://github.com/json5/json5/compare/v2.2.1...v2.2.2">diff</a>]</h3> <ul> <li>Fix: Properties with the name <code>__proto__</code> are added to objects and arrays. (<a href="https://redirect.github.com/json5/json5/issues/199">#199</a>) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (<a href="https://redirect.github.com/json5/json5/issues/295">#295</a>).</li> </ul> <h3>v2.2.1 [<a href="https://github.com/json5/json5/tree/v2.2.1">code</a>, <a href="https://github.com/json5/json5/compare/v2.2.0...v2.2.1">diff</a>]</h3> <ul> <li>Fix: Removed dependence on minimist to patch CVE-2021-44906. (<a href="https://redirect.github.com/json5/json5/issues/266">#266</a>)</li> </ul> <h3>v2.2.0 [<a href="https://github.com/json5/json5/tree/v2.2.0">code</a>, <a href="https://github.com/json5/json5/compare/v2.1.3...v2.2.0">diff</a>]</h3> <ul> <li>New: Accurate and documented TypeScript declarations are now included. There is no need to install <code>@types/json5</code>. (<a href="https://redirect.github.com/json5/json5/issues/236">#236</a>, <a href="https://redirect.github.com/json5/json5/issues/244">#244</a>)</li> </ul> <h3>v2.1.3 [<a href="https://github.com/json5/json5/tree/v2.1.3">code</a>, <a href="https://github.com/json5/json5/compare/v2.1.2...v2.1.3">diff</a>]</h3> <ul> <li>Fix: An out of memory bug when parsing numbers has been fixed. (<a href="https://redirect.github.com/json5/json5/issues/228">#228</a>, <a href="https://redirect.github.com/json5/json5/issues/229">#229</a>)</li> </ul> <h3>v2.1.2 [<a href="https://github.com/json5/json5/tree/v2.1.2">code</a>, <a href="https://github.com/json5/json5/compare/v2.1.1...v2.1.2">diff</a>]</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="`a62db1e51e`"><code>a62db1e</code></a> 1.0.2</li> <li><a href="`e0c23fe458`"><code>e0c23fe</code></a> docs: update CHANGELOG for v1.0.2</li> <li><a href="`62a6540840`"><code>62a6540</code></a> fix: add <strong>proto</strong> to objects and arrays</li> <li>See full diff in <a href="https://github.com/json5/json5/compare/v1.0.1...v1.0.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=json5&package-manager=npm_and_yarn&previous-version=1.0.1&new-version=1.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/martin/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-05-30 01:19:47 +00:00
dependabot[bot]	2bc7a40929	chore(deps): Bump lodash from 4.17.11 to 4.17.21 in /demo/frontend (#687 ) Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.21. <details> <summary>Commits</summary> <ul> <li><a href="`f299b52f39`"><code>f299b52</code></a> Bump to v4.17.21</li> <li><a href="`c4847ebe7d`"><code>c4847eb</code></a> Improve performance of <code>toNumber</code>, <code>trim</code> and <code>trimEnd</code> on large input strings</li> <li><a href="`3469357cff`"><code>3469357</code></a> Prevent command injection through <code>_.template</code>'s <code>variable</code> option</li> <li><a href="`ded9bc6658`"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="`63150ef764`"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="`00f0f62a97`"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="`846e434c7a`"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="`5d046f39cb`"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="`aa816b36d4`"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li><a href="`d7fbc52ee0`"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.11...4.17.21">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=lodash&package-manager=npm_and_yarn&previous-version=4.17.11&new-version=4.17.21)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/martin/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-05-30 01:11:12 +00:00
dependabot[bot]	196c878f00	chore(deps): Bump kind-of from 6.0.2 to 6.0.3 in /demo/frontend (#686 ) Bumps [kind-of](https://github.com/jonschlinkert/kind-of) from 6.0.2 to 6.0.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/jonschlinkert/kind-of/blob/master/CHANGELOG.md">kind-of's changelog</a>.</em></p> <blockquote> <h2>[6.0.3] - 2020-01-16</h2> <ul> <li>Merge pull request <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/31">#31</a> for issue <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/30">#30</a></li> </ul> <h2>[6.0.0] - 2017-10-13</h2> <ul> <li>refactor code to be more performant</li> <li>refactor benchmarks</li> </ul> <h2>[5.1.0] - 2017-10-13</h2> <p><strong>Added</strong></p> <ul> <li>Merge pull request <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/15">#15</a> from aretecode/patch-1</li> <li>adds support and tests for string & array iterators</li> </ul> <p><strong>Changed</strong></p> <ul> <li>updates benchmarks</li> </ul> <h2>[5.0.2] - 2017-08-02</h2> <ul> <li>Merge pull request <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/14">#14</a> from struct78/master</li> <li>Added <code>undefined</code> check</li> </ul> <h2>[5.0.0] - 2017-06-21</h2> <ul> <li>Merge pull request <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/12">#12</a> from aretecode/iterator</li> <li>Set Iterator + Map Iterator</li> <li>streamline <code>isbuffer</code>, minor edits</li> </ul> <h2>[4.0.0] - 2017-05-19</h2> <ul> <li>Merge pull request <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/8">#8</a> from tunnckoCore/master</li> <li>update deps</li> </ul> <h2>[3.2.2] - 2017-05-16</h2> <ul> <li>fix version</li> </ul> <h2>[3.2.1] - 2017-05-16</h2> <ul> <li>add browserify</li> </ul> <h2>[3.2.0] - 2017-04-25</h2> <ul> <li>Merge pull request <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/10">#10</a> from ksheedlo/unrequire-buffer</li> <li>add <code>promise</code> support and tests</li> <li>Remove unnecessary <code>Buffer</code> check</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="`abab085d65`"><code>abab085</code></a> 6.0.3</li> <li><a href="`a18459cd92`"><code>a18459c</code></a> run verb to generate README documentation</li> <li><a href="`dc6bea5c4e`"><code>dc6bea5</code></a> only need to check <code>typeof val.constructor</code></li> <li><a href="`1df992ce6d`"><code>1df992c</code></a> Merge pull request <a href="https://redirect.github.com/jonschlinkert/kind-of/issues/31">#31</a> from xiaofen9/master</li> <li><a href="`975c13a7cf`"><code>975c13a</code></a> fix type checking vul in ctorName</li> <li><a href="`4da96c0047`"><code>4da96c0</code></a> Delete FUNDING.yml</li> <li><a href="`28266f233a`"><code>28266f2</code></a> Create FUNDING.yml</li> <li>See full diff in <a href="https://github.com/jonschlinkert/kind-of/compare/6.0.2...6.0.3">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~doowb">doowb</a>, a new releaser for kind-of since your current version.</p> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=kind-of&package-manager=npm_and_yarn&previous-version=6.0.2&new-version=6.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/martin/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-05-30 01:07:52 +00:00
Kaloyan Petrov	9449ad1f70	readme: add last usable martin version	2023-05-29 20:51:10 -04:00
Yuri Astrakhan	8f32d1b29b	Move files to demo/	2023-05-29 20:36:24 -04:00

8 Commits