Skip to content

Comments

build(deps): bump matrix-js-sdk from 24.1.0 to 34.9.0#462

Closed
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot-npm_and_yarn-matrix-js-sdk-34.9.0
Closed

build(deps): bump matrix-js-sdk from 24.1.0 to 34.9.0#462
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot-npm_and_yarn-matrix-js-sdk-34.9.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 28, 2024
edited
Loading

Bumps matrix-js-sdk from 24.1.0 to 34.9.0.

Release notes

Sourced from matrix-js-sdk's releases.

v34.9.0

🦖 Deprecations

  • Deprecate the crypto events which are not used by the rust-crypto (#4442). Contributed by @​florianduros.

🐛 Bug Fixes

  • Fix the rust crypto import in esm environments. (#4445). Contributed by @​saul-jb.
  • Fix MatrixRTC sender key wrapping (#4441). Contributed by @​hughns.

v34.9.0-rc.0

🦖 Deprecations

  • Deprecate the crypto events which are not used by the rust-crypto (#4442). Contributed by @​florianduros.

🐛 Bug Fixes

  • Fix the rust crypto import in esm environments. (#4445). Contributed by @​saul-jb.
  • Fix MatrixRTC sender key wrapping (#4441). Contributed by @​hughns.

v34.8.0

This release removes insecure functionality, resolving CVE-2024-47080 / GHSA-4jf8-g8wp-cx7c.

v34.7.0

🦖 Deprecations

  • RTCSession cleanup: deprecate getKeysForParticipant() and getEncryption(); add emitEncryptionKeys() (#4427). Contributed by @​hughns.

✨ Features

  • Bump matrix-rust-sdk to 9.1.0 (#4435). Contributed by @​richvdh.
  • Rotate Matrix RTC media encryption key when a new member joins a call for Post Compromise Security (#4422). Contributed by @​hughns.
  • Update media event content types to include captions (#4403). Contributed by @​tulir.
  • Update OIDC registration types to match latest MSC2966 state (#4432). Contributed by @​t3chguy.
  • Add CryptoApi.pinCurrentUserIdentity and UserIdentity.needsUserApproval (#4415). Contributed by @​richvdh.

v34.7.0-rc.0

🦖 Deprecations

  • RTCSession cleanup: deprecate getKeysForParticipant() and getEncryption(); add emitEncryptionKeys() (#4427). Contributed by @​hughns.

✨ Features

  • Bump matrix-rust-sdk to 9.1.0 (#4435). Contributed by @​richvdh.
  • Rotate Matrix RTC media encryption key when a new member joins a call for Post Compromise Security (#4422). Contributed by @​hughns.
  • Update media event content types to include captions (#4403). Contributed by @​tulir.
  • Update OIDC registration types to match latest MSC2966 state (#4432). Contributed by @​t3chguy.
  • Add CryptoApi.pinCurrentUserIdentity and UserIdentity.needsUserApproval (#4415). Contributed by @​richvdh.

v34.6.0

... (truncated)

Changelog

Sourced from matrix-js-sdk's changelog.

Changes in 34.9.0 (2024-10-22)

🦖 Deprecations

  • Deprecate the crypto events which are not used by the rust-crypto (#4442). Contributed by @​florianduros.

🐛 Bug Fixes

  • Fix the rust crypto import in esm environments. (#4445). Contributed by @​saul-jb.
  • Fix MatrixRTC sender key wrapping (#4441). Contributed by @​hughns.

Changes in 34.8.0 (2024-10-15)

This release removes insecure functionality, resolving CVE-2024-47080 / GHSA-4jf8-g8wp-cx7c.

Changes in 34.7.0 (2024-10-08)

🦖 Deprecations

  • RTCSession cleanup: deprecate getKeysForParticipant() and getEncryption(); add emitEncryptionKeys() (#4427). Contributed by @​hughns.

✨ Features

  • Bump matrix-rust-sdk to 9.1.0 (#4435). Contributed by @​richvdh.
  • Rotate Matrix RTC media encryption key when a new member joins a call for Post Compromise Security (#4422). Contributed by @​hughns.
  • Update media event content types to include captions (#4403). Contributed by @​tulir.
  • Update OIDC registration types to match latest MSC2966 state (#4432). Contributed by @​t3chguy.
  • Add CryptoApi.pinCurrentUserIdentity and UserIdentity.needsUserApproval (#4415). Contributed by @​richvdh.

Changes in 34.6.0 (2024-09-24)

🦖 Deprecations

  • Element-R: Mark unsupported MatrixClient methods as deprecated (#4389). Contributed by @​richvdh.

✨ Features

  • Add crypto mode setting for invisible crypto, and apply it to decrypting events (#4407). Contributed by @​uhoreg.
  • Don't share full key history for RTC per-participant encryption (#4406). Contributed by @​hughns.
  • Export membership types (#4405). Contributed by @​Johennes.
  • Fix sending redacts in embedded (widget) mode (#4398). Contributed by @​toger5.
  • Expose the event ID of a call membership (#4395). Contributed by @​robintown.
  • MSC4133 - Extended profiles (#4391). Contributed by @​Half-Shot.

Changes in 34.5.0 (2024-09-10)

🦖 Deprecations

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 28, 2024
sourcery-ai[bot]
sourcery-ai bot reviewed Oct 28, 2024
View reviewed changes
Copy link
Contributor

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We have skipped reviewing this pull request. Here's why:

  • It seems to have been created by a bot (hey, dependabot[bot]!). We assume it knows what it's doing!
  • We don't review packaging changes - Let us know if you'd like us to change this.

@github-actions github-actions bot enabled auto-merge October 28, 2024 23:49
@dependabot dependabot bot force-pushed the dependabot-npm_and_yarn-matrix-js-sdk-34.9.0 branch 2 times, most recently from bfe6e4d to 0cf543f Compare November 4, 2024 13:05
@dependabot
build(deps): bump matrix-js-sdk from 24.1.0 to 34.9.0
cc86cf2 
Bumps [matrix-js-sdk](https://github.com/matrix-org/matrix-js-sdk) from 24.1.0 to 34.9.0.
- [Release notes](https://github.com/matrix-org/matrix-js-sdk/releases)
- [Changelog](https://github.com/matrix-org/matrix-js-sdk/blob/develop/CHANGELOG.md)
- [Commits](matrix-org/matrix-js-sdk@v24.1.0...v34.9.0)

---
updated-dependencies:
- dependency-name: matrix-js-sdk
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot-npm_and_yarn-matrix-js-sdk-34.9.0 branch from 0cf543f to cc86cf2 Compare November 4, 2024 23:52
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 11, 2024

Superseded by #473.

@dependabot dependabot bot closed this Nov 11, 2024
auto-merge was automatically disabled November 11, 2024 23:43

Pull request was closed

@dependabot dependabot bot deleted the dependabot-npm_and_yarn-matrix-js-sdk-34.9.0 branch November 11, 2024 23:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants