Skip to content

chore(deps): bump ip-address and geoip-lite#2211

Open
dependabot[bot] wants to merge 1 commit into
developmentfrom
dependabot/npm_and_yarn/multi-637460c319
Open

chore(deps): bump ip-address and geoip-lite#2211
dependabot[bot] wants to merge 1 commit into
developmentfrom
dependabot/npm_and_yarn/multi-637460c319

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 12, 2026
edited
Loading

Bumps ip-address to 10.2.0 and updates ancestor dependency geoip-lite. These dependencies need to be updated together.

Updates ip-address from 10.1.0 to 10.2.0

Commits

Updates geoip-lite from 1.4.10 to 2.0.2

Release notes

Sourced from geoip-lite's releases.

v2.0.2

What's Changed

New Contributors

Full Changelog: geoip-lite/node-geoip@v2.0.1...v2.0.2

v2.0.1

What's Changed

Full Changelog: geoip-lite/node-geoip@v2.0.0...v2.0.1

v2.0.0

What's Changed

  • Bump mimimum node version from 10.3 to 24.0
  • Drop external dependencies on async and rimraf
  • Bump eslint from 5.12 to 10.0
  • Perf improvements
  • Fix: Support https-proxy-agent v7+ export format

New Contributors

Full Changelog: geoip-lite/node-geoip@v1.4.10...v2.0.0

Commits
  • 5125aa6 Bump ip-address to resolve vulnerability (#281)
  • 7c358e6 chore: align minimatch spec to 10.2.4 in lockfile
  • 0f73f4d style: restore package.json aligned formatting
  • 5fa6986 chore: bump version to 2.0.1
  • 6cf0c3f fix: resolve dependencies vulnerabilities (flatted, minimatch, yauzl)
  • 36f4aa2 Upgraded node, upgraded packages, dealt with vulnerabilities, addressed tests...
  • f7daeea Bump minimum minimatch version to 10.2.3 due to https://github.com/geoip-lite...
  • fee7531 responding to PR feedback
  • 1d736d4 Upgraded node, upgraded packages, dealt with vulnerabilities, addressed tests...
  • 4c0ce53 fix bug in aton6
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 12, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/multi-637460c319 branch 2 times, most recently from 97ecc29 to 7ab6845 Compare May 17, 2026 03:57
@dependabot
chore(deps): bump ip-address and geoip-lite
d34e271 
Bumps [ip-address](https://github.com/beaugunderson/ip-address) to 10.2.0 and updates ancestor dependency [geoip-lite](https://github.com/geoip-lite/node-geoip). These dependencies need to be updated together.


Updates `ip-address` from 10.1.0 to 10.2.0
- [Commits](https://github.com/beaugunderson/ip-address/commits)

Updates `geoip-lite` from 1.4.10 to 2.0.2
- [Release notes](https://github.com/geoip-lite/node-geoip/releases)
- [Commits](geoip-lite/node-geoip@v1.4.10...v2.0.2)

---
updated-dependencies:
- dependency-name: geoip-lite
  dependency-version: 2.0.2
  dependency-type: direct:production
- dependency-name: ip-address
  dependency-version: 10.2.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/multi-637460c319 branch from 7ab6845 to d34e271 Compare May 19, 2026 02:41
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented May 19, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants