afs commented on PR #2043: URL: https://github.com/apache/jena/pull/2043#issuecomment-1770389435
Thanks for the explanation and background. I've tried just updating the yarn.lock file for this PR and it builds 😃. As this one is critical, let's do this. This ought to be in 4.10.0. Then get dependabot to recreate the postcss one. Hopefully, that'll be OK but the need there is less. It's development related. Then there are two security items related to cypress so that's development only. The other is related to nodemon (test/build) having an older dependency on semver which is blocking upgrade in product dependencies elsewhere - the code dependencies are upgradable. I think that's what's happening - this one is complicated. Reading the issue description, it isn't clear it has much effect on FusekiUI that gets to the browser. Separately, not required for 4.10.0, update dependencies. I'll enable into in dependabot.yml and we can see what happens. That might be bumpy at first because of big jumps. It's not like that we have that many direct dependencies! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
