From e158e11608198b5c9741262c568bacc39346565c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 7 Sep 2025 00:17:51 +0800
Subject: [PATCH] chore: bump sha.js from 2.4.11 to 2.4.12 (#13560)
Bumps [sha.js](https://github.com/crypto-browserify/sha.js) from 2.4.11
to 2.4.12.
Changelog
Sourced from sha.js's
changelog.
Commits
- [eslint] switch to eslint
7acadfb
- [meta] add
auto-changelog b46e711
- [eslint] fix package.json indentation
df9d521
- [Tests] migrate from travis to GHA
c43c64a
- [Fix] support multi-byte wide typed arrays
f2a258e
- [meta] reorder package.json
d8d77c0
- [meta] add
npmignore 35aec35
- [Tests] avoid console logs
73e33ae
- [Tests] fix tests run in batch
2629130
- [Tests] drop node requirement to 0.10
00c7f23
- [Dev Deps] update
buffer,
hash-test-vectors, standard,
tape, typedarray 92b5de5
- [Tests] drop node requirement to v3
9b5eca8
- [meta] set engines to
>= 4 807084c
- Only apps should have lockfiles
c72789c
- [Deps] update
inherits, safe-buffer 5428cfc
- [Dev Deps] update
@ljharb/eslint-config 2dbe0aa
- update README to reflect LICENSE
8938256
- [Dev Deps] add missing peer dep
d528896
- [Dev Deps] remove unused
buffer dep 94ca724
Commits
eb4ea2f
v2.4.12d8d77c0
[meta] reorder package.jsondf9d521
[eslint] fix package.json indentation35aec35
[meta] add npmignored528896
[Dev Deps] add missing peer depb46e711
[meta] add auto-changelog94ca724
[Dev Deps] remove unused buffer dep2dbe0aa
[Dev Deps] update @ljharb/eslint-config73e33ae
[Tests] avoid console logsf2a258e
[Fix] support multi-byte wide typed arrays- Additional commits viewable in compare
view
Maintainer changes
This version was pushed to npm by ljharb, a new releaser for
sha.js since your current version.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/toeverything/AFFiNE/network/alerts).
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
yarn.lock | 33 +++++++++++++++++++++++++++------
1 file changed, 27 insertions(+), 6 deletions(-)
diff --git a/yarn.lock b/yarn.lock
index ef58992c37..7e822d6dae 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -31909,14 +31909,15 @@ __metadata:
linkType: hard
"sha.js@npm:^2.4.11":
- version: 2.4.11
- resolution: "sha.js@npm:2.4.11"
+ version: 2.4.12
+ resolution: "sha.js@npm:2.4.12"
dependencies:
- inherits: "npm:^2.0.1"
- safe-buffer: "npm:^5.0.1"
+ inherits: "npm:^2.0.4"
+ safe-buffer: "npm:^5.2.1"
+ to-buffer: "npm:^1.2.0"
bin:
- sha.js: ./bin.js
- checksum: 10/d833bfa3e0a67579a6ce6e1bc95571f05246e0a441dd8c76e3057972f2a3e098465687a4369b07e83a0375a88703577f71b5b2e966809e67ebc340dbedb478c7
+ sha.js: bin.js
+ checksum: 10/39c0993592c2ab34eb2daae2199a2a1d502713765aecb611fd97c0c4ab7cd53e902d628e1962aaf384bafd28f55951fef46dcc78799069ce41d74b03aa13b5a7
languageName: node
linkType: hard
@@ -33643,6 +33644,17 @@ __metadata:
languageName: node
linkType: hard
+"to-buffer@npm:^1.2.0":
+ version: 1.2.1
+ resolution: "to-buffer@npm:1.2.1"
+ dependencies:
+ isarray: "npm:^2.0.5"
+ safe-buffer: "npm:^5.2.1"
+ typed-array-buffer: "npm:^1.0.3"
+ checksum: 10/f8d03f070b8567d9c949f1b59c8d47c83ed2e59b50b5449258f931df9a1fcb751aa8bb8756a9345adc529b6b1822521157c48e1a7d01779a47185060d7bf96d4
+ languageName: node
+ linkType: hard
+
"to-data-view@npm:^1.1.0":
version: 1.1.0
resolution: "to-data-view@npm:1.1.0"
@@ -33984,6 +33996,15 @@ __metadata:
languageName: node
linkType: hard
+"typed-array-buffer@npm:@nolyfill/typed-array-buffer@^1":
+ version: 1.0.44
+ resolution: "@nolyfill/typed-array-buffer@npm:1.0.44"
+ dependencies:
+ "@nolyfill/shared": "npm:1.0.44"
+ checksum: 10/712b97d7ef06b00205cd90d6c5a6bbd54b5381fc6f8deb9fb1a8ddd8e538a29178f9ddb267f13cfbf468096c6340f53706039f88ecd0c6d9277bd95114573e47
+ languageName: node
+ linkType: hard
+
"typedarray@npm:@nolyfill/typedarray@^1":
version: 1.0.44
resolution: "@nolyfill/typedarray@npm:1.0.44"