![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?v=4)
Bumps [async](https://github.com/caolan/async) from 1.5.2 to 2.6.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/caolan/async/releases">async's releases</a>.</em></p> <blockquote> <h2>v2.3.0</h2> <ul> <li>Added support for ES2017 <code>async</code> functions. Wherever you can pass a Node-style/CPS function that uses a callback, you can also pass an <code>async</code> function. Previously, you had to wrap <code>async</code> functions with <code>asyncify</code>. The caveat is that it will only work if <code>async</code> functions are supported natively in your environment, transpiled implementations can't be detected. (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1386">#1386</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1390">#1390</a>)</li> </ul> <h2>v2.2.0</h2> <ul> <li>Added <code>groupBy</code>, and the <code>Series</code>/<code>Limit</code> equivalents, analogous to <a href="http://lodash.com/docs#groupBy"><code>_.groupBy</code></a> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1364">#1364</a>)</li> <li>Fixed <code>transform</code> bug when <code>callback</code> was not passed (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1381">#1381</a>)</li> </ul> <h2>v2.1.5</h2> <ul> <li>Fix <code>auto</code> bug when function names collided with Array.prototype (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1358">#1358</a>)</li> <li>Improve some error messages (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1349">#1349</a>)</li> <li>Avoid stack overflow case in queue</li> <li>Fixed an issue in <code>some</code>, <code>every</code> and <code>find</code> where processing would continue after the result was determined.</li> <li>Cleanup implementations of <code>some</code>, <code>every</code> and <code>find</code></li> </ul> <h2>v2.1.3</h2> <ul> <li>Make bundle size smaller</li> <li>Create optimized hotpath for <code>filter</code> in array case.</li> </ul> <h2>v2.1.2</h2> <ul> <li>Fixed a stackoverflow bug with <code>detect</code>, <code>some</code>, <code>every</code> on large inputs (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1293">#1293</a>).</li> </ul> <h2>v2.1.0</h2> <ul> <li><code>retry</code> and <code>retryable</code> now support an optional <code>errorFilter</code> function that determines if the <code>task</code> should retry on the error (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1256">#1256</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1261">#1261</a>)</li> <li>Optimized array iteration in <code>race</code>, <code>cargo</code>, <code>queue</code>, and <code>priorityQueue</code> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1253">#1253</a>)</li> </ul> <h2>v2.0.0</h2> <p>Lots of changes here!</p> <p>First and foremost, we have a slick new <a href="https://caolan.github.io/async/">site for docs</a>. Special thanks to <a href="https://github.com/hargasinski"><strong><code>@hargasinski</code></strong></a> for his work converting our old docs to <code>jsdoc</code> format and implementing the new website. Also huge ups to <a href="https://github.com/ivanseidel"><strong><code>@ivanseidel</code></strong></a> for designing our new logo. It was a long process for both of these tasks, but I think these changes turned out extraordinary well.</p> <p>The biggest feature is modularization. You can now <code>require("async/series")</code> to only require the <code>series</code> function. Every Async library function is available this way. You still can <code>require("async")</code> to require the entire library, like you could do before.</p> <p>We also provide Async as a collection of ES2015 modules. You can now <code>import {each} from 'async-es'</code> or <code>import waterfall from 'async-es/waterfall'</code>. If you are using only a few Async functions, and are using a ES bundler such as Rollup, this can significantly lower your build size.</p> <p>Major thanks to <a href="https://github.com/caolan/async/blob/HEAD/github.com/Kikobeats"><strong><code>@Kikobeats</code></strong></a>, <a href="https://github.com/caolan/async/blob/HEAD/github.com/aearly"><strong><code>@aearly</code></strong></a> and <a href="https://github.com/caolan/async/blob/HEAD/github.com/megawac"><strong><code>@megawac</code></strong></a> for doing the majority of the modularization work, as well as <a href="https://github.com/caolan/async/blob/HEAD/github.com/jdalton"><strong><code>@jdalton</code></strong></a> and <a href="https://github.com/caolan/async/blob/HEAD/github.com/Rich-Harris"><strong><code>@Rich-Harris</code></strong></a> for advisory work on the general modularization strategy.</p> <p>Another one of the general themes of the 2.0 release is standardization of what an "async" function is. We are now more strictly following the node-style continuation passing style. That is, an async function is a function that:</p> <ol> <li>Takes a variable number of arguments</li> <li>The last argument is always a callback</li> <li>The callback can accept any number of arguments</li> <li>The first argument passed to the callback will be treated as an error result, if the argument is truthy</li> <li>Any number of result arguments can be passed after the "error" argument</li> <li>The callback is called once and exactly once, either on the same tick or later tick of the JavaScript event loop.</li> </ol> <p>There were several cases where Async accepted some functions that did not strictly have these properties, most notably <code>auto</code>, <code>every</code>, <code>some</code>, and <code>filter</code>.</p> <p>Another theme is performance. We have eliminated internal deferrals in all cases where they make sense. For example, in <code>waterfall</code> and <code>auto</code>, there was a <code>setImmediate</code> between each task -- these deferrals have been removed. A <code>setImmediate</code> call can add up to 1ms of delay. This might not seem like a lot, but it can add up if you are using many Async functions in the course of processing a HTTP request, for example. Nearly all asynchronous functions that do I/O already have some sort of deferral built in, so the extra deferral is unnecessary. The trade-off of this change is removing our built-in stack-overflow defense. Many synchronous callback calls in series can quickly overflow the JS call stack. If you do have a function that is sometimes synchronous (calling its callback on the same tick), and are running into stack overflows, wrap it with <code>async.ensureAsync()</code>.</p> <p>Another big performance win has been re-implementing <code>queue</code>, <code>cargo</code>, and <code>priorityQueue</code> with <a href="https://en.wikipedia.org/wiki/Doubly_linked_list">doubly linked lists</a> instead of arrays. This has lead to queues being an order of <a href="https://github-redirect.dependabot.com/caolan/async/pull/1205">magnitude faster on large sets of tasks</a>.</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md">async's changelog</a>.</em></p> <blockquote> <h1>v2.6.4</h1> <ul> <li>Fix potential prototype pollution exploit (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1828">#1828</a>)</li> </ul> <h1>v2.6.3</h1> <ul> <li>Updated lodash to squelch a security warning (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1675">#1675</a>)</li> </ul> <h1>v2.6.2</h1> <ul> <li>Updated lodash to squelch a security warning (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1620">#1620</a>)</li> </ul> <h1>v2.6.1</h1> <ul> <li>Updated lodash to prevent <code>npm audit</code> warnings. (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1532">#1532</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1533">#1533</a>)</li> <li>Made <code>async-es</code> more optimized for webpack users (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1517">#1517</a>)</li> <li>Fixed a stack overflow with large collections and a synchronous iterator (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1514">#1514</a>)</li> <li>Various small fixes/chores (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1505">#1505</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1511">#1511</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1527">#1527</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1530">#1530</a>)</li> </ul> <h1>v2.6.0</h1> <ul> <li>Added missing aliases for many methods. Previously, you could not (e.g.) <code>require('async/find')</code> or use <code>async.anyLimit</code>. (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1483">#1483</a>)</li> <li>Improved <code>queue</code> performance. (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1448">#1448</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1454">#1454</a>)</li> <li>Add missing sourcemap (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1452">#1452</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1453">#1453</a>)</li> <li>Various doc updates (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1448">#1448</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1471">#1471</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1483">#1483</a>)</li> </ul> <h1>v2.5.0</h1> <ul> <li>Added <code>concatLimit</code>, the <code>Limit</code> equivalent of <a href="https://caolan.github.io/async/docs.html#concat"><code>concat</code></a> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1426">#1426</a>, <a href="https://github-redirect.dependabot.com/caolan/async/pull/1430">#1430</a>)</li> <li><code>concat</code> improvements: it now preserves order, handles falsy values and the <code>iteratee</code> callback takes a variable number of arguments (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1437">#1437</a>, <a href="https://github-redirect.dependabot.com/caolan/async/pull/1436">#1436</a>)</li> <li>Fixed an issue in <code>queue</code> where there was a size discrepancy between <code>workersList().length</code> and <code>running()</code> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1428">#1428</a>, <a href="https://github-redirect.dependabot.com/caolan/async/pull/1429">#1429</a>)</li> <li>Various doc fixes (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1422">#1422</a>, <a href="https://github-redirect.dependabot.com/caolan/async/pull/1424">#1424</a>)</li> </ul> <h1>v2.4.1</h1> <ul> <li>Fixed a bug preventing functions wrapped with <code>timeout()</code> from being re-used. (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1418">#1418</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1419">#1419</a>)</li> </ul> <h1>v2.4.0</h1> <ul> <li>Added <code>tryEach</code>, for running async functions in parallel, where you only expect one to succeed. (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1365">#1365</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/687">#687</a>)</li> <li>Improved performance, most notably in <code>parallel</code> and <code>waterfall</code> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1395">#1395</a>)</li> <li>Added <code>queue.remove()</code>, for removing items in a <code>queue</code> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1397">#1397</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1391">#1391</a>)</li> <li>Fixed using <code>eval</code>, preventing Async from running in pages with Content Security Policy (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1404">#1404</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1403">#1403</a>)</li> <li>Fixed errors thrown in an <code>asyncify</code>ed function's callback being caught by the underlying Promise (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1408">#1408</a>)</li> <li>Fixed timing of <code>queue.empty()</code> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1367">#1367</a>)</li> <li>Various doc fixes (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1314">#1314</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1394">#1394</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1412">#1412</a>)</li> </ul> <h1>v2.3.0</h1> <ul> <li>Added support for ES2017 <code>async</code> functions. Wherever you can pass a Node-style/CPS function that uses a callback, you can also pass an <code>async</code> function. Previously, you had to wrap <code>async</code> functions with <code>asyncify</code>. The caveat is that it will only work if <code>async</code> functions are supported natively in your environment, transpiled implementations can't be detected. (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1386">#1386</a>, <a href="https://github-redirect.dependabot.com/caolan/async/issues/1390">#1390</a>)</li> <li>Small doc fix (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1392">#1392</a>)</li> </ul> <h1>v2.2.0</h1> <ul> <li>Added <code>groupBy</code>, and the <code>Series</code>/<code>Limit</code> equivalents, analogous to <a href="http://lodash.com/docs#groupBy"><code>_.groupBy</code></a> (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1364">#1364</a>)</li> <li>Fixed <code>transform</code> bug when <code>callback</code> was not passed (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1381">#1381</a>)</li> <li>Added note about <code>reflect</code> to <code>parallel</code> docs (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1385">#1385</a>)</li> </ul> <h1>v2.1.5</h1> <ul> <li>Fix <code>auto</code> bug when function names collided with Array.prototype (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1358">#1358</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/caolan/async/commit/c6bdaca4f9175c14fc655d3783c6af6a883e6514"><code>c6bdaca</code></a> Version 2.6.4</li> <li><a href="https://github.com/caolan/async/commit/8870da9d5022bab310413041b4079e10db3980b7"><code>8870da9</code></a> Update built files</li> <li><a href="https://github.com/caolan/async/commit/4df6754ef4e96a742956df8782fee27242a2ea12"><code>4df6754</code></a> update changelog</li> <li><a href="https://github.com/caolan/async/commit/8f7f90342a6571ba1c197d747ebed30c368096d2"><code>8f7f903</code></a> Fix prototype pollution vulnerability (<a href="https://github-redirect.dependabot.com/caolan/async/issues/1828">#1828</a>)</li> <li><a href="https://github.com/caolan/async/commit/f1d8383bb118366f652f26a5096f106b88344ceb"><code>f1d8383</code></a> Version 2.6.3</li> <li><a href="https://github.com/caolan/async/commit/2b674c198962e6716b5b9974f79456faa03a0d95"><code>2b674c1</code></a> update changelog</li> <li><a href="https://github.com/caolan/async/commit/eab740f7bd2c8a065b5d7c886bf678873a356103"><code>eab740f</code></a> fix: udpate lodash. closes <a href="https://github-redirect.dependabot.com/caolan/async/issues/1675">#1675</a></li> <li><a href="https://github.com/caolan/async/commit/eaf32be0e94f62fddc83d8550814e30a4be66a3c"><code>eaf32be</code></a> Version 2.6.2</li> <li><a href="https://github.com/caolan/async/commit/684b42e695222de079029f52dcc1afe69751e5f4"><code>684b42e</code></a> Update built files</li> <li><a href="https://github.com/caolan/async/commit/e1bd3da9e644d5a09e553f9b913cc4f029733bff"><code>e1bd3da</code></a> update changelog</li> <li>Additional commits viewable in <a href="https://github.com/caolan/async/compare/v1.5.2...v2.6.4">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~hargasinski">hargasinski</a>, a new releaser for async since your current version.</p> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/liamqma/beanstalkify/network/alerts). </details>
AI Analysis
This issue appears to be discussing a feature request or bug report related to the repository. Based on the content, it seems to be still under discussion. The issue was opened by dependabot[bot] and has received 0 comments.
Add a comment
Comment form would go here