Bump json5 and @angular-eslint/schematics in /v2/ui

[dependabot]

Bumps json5 to 2.2.3 and updates ancestor dependencies json5, json5 and @angular-eslint/schematics. These dependencies need to be updated together.

Updates json5 from 2.1.3 to 2.2.3

Release notes

Sourced from json5's releases.

v2.2.3

• Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

Changelog

Sourced from json5's changelog.

v2.2.3 [code, diff]

• Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

Commits

• c3a7524 2.2.3
• 94fd06d docs: update CHANGELOG for v2.2.3
• 3b8cebf docs(security): use GitHub security advisories
• f0fd9e1 docs: publish a security policy
• 6a91a05 docs(template): bug -> bug report
• 14f8cb1 2.2.2
• 10cc7ca docs: update CHANGELOG for v2.2.2
• 7774c10 fix: add proto to objects and arrays
• edde30a Readme: slight tweak to intro
• 97286f8 Improve example in readme
• Additional commits viewable in compare view

Updates json5 from 1.0.1 to 2.2.3

Release notes

Sourced from json5's releases.

v2.2.3

• Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

Changelog

Sourced from json5's changelog.

v2.2.3 [code, diff]

• Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

Commits

• c3a7524 2.2.3
• 94fd06d docs: update CHANGELOG for v2.2.3
• 3b8cebf docs(security): use GitHub security advisories
• f0fd9e1 docs: publish a security policy
• 6a91a05 docs(template): bug -> bug report
• 14f8cb1 2.2.2
• 10cc7ca docs: update CHANGELOG for v2.2.2
• 7774c10 fix: add proto to objects and arrays
• edde30a Readme: slight tweak to intro
• 97286f8 Improve example in readme
• Additional commits viewable in compare view

Updates @angular-eslint/schematics from 0.8.0-beta.5 to 15.1.0

Release notes

Sourced from @​angular-eslint/schematics's releases.

v15.1.0

15.1.0 (2022-11-24)

Bug Fixes

• eslint-plugin-template: [accessibility-valid-aria] use Number() to parse numeric values (#1218) (6fe40d6)
• eslint-plugin-template: [i18n] allow more attributes by default (#1220) (4232b1c)
• eslint-plugin: [no-input-rename] do not report on directive composition API (#1231) (119fba7)
• update dependency @​angular/compiler to v15.0.1 (#1223) (7b7bd76)
• update typescript-eslint packages to v5.44.0 (#1222) (5750e3a)

Features

• eslint-plugin-template: [no-call-expression] add allowList option (#1217) (a69c809)

v15.0.0

15.0.0 (2022-11-20)

As always we recommend that you update your existing workspaces by using ng update as we provide some helpful schematics to help migrate your workspaces to the latest and greatest. Running the following will update Angular, the Angular CLI and angular-eslint together:

ng update @angular/core @angular/cli @angular-eslint/schematics

Bug Fixes

• schematics: ensure scoped project names have correct eslint extends (7b3f736)

Features

• bump minimum supported eslint version to 7.20.0 (56ad69f), closes #662
• eslint-plugin: remove no-conflicting-lifecycle from recommended config (19dd177), closes #502
• fast linting by default, set eslint and typescript-eslint recommended (#1212) (1a53ef9), closes #1174
• schematics: ng update migration to preserve v14 parserOptions.project for existing workspaces (1d45914)

BREAKING CHANGES

• Your installed version of ESLint must be version 7.20.0 or later (naturally we recommend the latest v8 of ESLint if possible)
• eslint-plugin: no-conflicting-lifecycle is no longer included as part of the recommended config and if you wish to continue using it you will need to enable it yourself in your eslint config rules
• New projects will not include parserOptions.project configuration in .eslintrc.json files by default, see the new guide here https://github.com/angular-eslint/angular-eslint/tree/HEAD/packages/schematics/blob/HEAD/docs/RULES_REQUIRING_TYPE_INFORMATION.md

v14.4.0

14.4.0 (2022-11-20)

Features

• utils: export template parser services (#1211) (34a62d2)

... (truncated)

Changelog

Sourced from @​angular-eslint/schematics's changelog.

15.1.0 (2022-11-24)

Bug Fixes

• update typescript-eslint packages to v5.44.0 (#1222) (5750e3a)

15.0.0 (2022-11-20)

Note: Version bump only for package @​angular-eslint/schematics

14.4.0 (2022-11-20)

Note: Version bump only for package @​angular-eslint/schematics

14.3.1 (2022-11-20)

Bug Fixes

• update dependency eslint to v8.28.0 (#1210) (c671e74)

14.3.0 (2022-11-17)

Note: Version bump only for package @​angular-eslint/schematics

14.2.0 (2022-11-15)

Bug Fixes

• update dependency eslint to v8.27.0 (#1189) (d2ae95a)
• update typescript-eslint packages to v5.38.1 (#1152) (8f6d0ef)
• update typescript-eslint packages to v5.43.0 (#1190) (2a4716a)

Features

• update dependency eslint to v8.24.0 (#1148) (5f30b2d)
• update typescript-eslint packages to v5.38.0 (#1140) (85b4b47)

14.1.2 (2022-09-21)

Note: Version bump only for package @​angular-eslint/schematics

14.1.1 (2022-09-18)

Note: Version bump only for package @​angular-eslint/schematics

14.1.0 (2022-09-18)

Features

• update dependency eslint to v8.23.1 (#1137) (9c9f28b)

... (truncated)

Commits

• ff9c1bc chore: publish v15.1.0
• 5750e3a fix: update typescript-eslint packages to v5.44.0 (#1222)
• 465fabe chore: publish v15.0.0
• fed3640 v15.0.0-alpha.5
• df25423 v15.0.0-alpha.4
• 7b3f736 fix(schematics): ensure scoped project names have correct eslint extends
• 6abcc3a Merge branch 'main' into next-major-release/v15
• 2541da9 chore: publish v14.4.0
• 76e5c72 v15.0.0-alpha.3
• f5bc05e Merge branch 'main' into next-major-release/v15
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.