Skip to content

build: Release #2752

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 49 commits into from
Oct 14, 2025
Merged

build: Release #2752

merged 49 commits into from
Oct 14, 2025

Conversation

@parseplatformorg
Copy link
Contributor

@parseplatformorg parseplatformorg commented Oct 14, 2025

Release

This pull request was created automatically according to the release cycle.

Warning

Only use Merge Commit to merge this pull request. Do not use Rebase and Merge or Squash and Merge.

dependabot bot added 30 commits July 4, 2025 00:14
@dependabot
refactor: Bump babel-jest from 29.5.0 to 30.0.4 (#2669)
fe7d317
@dependabot
refactor: Bump @semantic-release/npm from 12.0.1 to 12.0.2 (#2664)
01e45f0
@dependabot
refactor: Bump semantic-release from 24.2.5 to 24.2.6 (#2672)
78a84b8
@dependabot
refactor: Bump ws from 8.18.2 to 8.18.3 (#2670)
21b012c
@dependabot
refactor: Bump @babel/plugin-transform-runtime from 7.27.4 to 7.28.0 (#…
79f7df6 
…2671)
@dependabot
refactor: Bump eslint-plugin-jsdoc from 50.7.1 to 51.3.3 (#2673)
cfbe239
@dependabot
refactor: Bump jest-environment-jsdom from 29.7.0 to 30.0.4 (#2666)
48a6897
@dependabot
refactor: Bump core-js from 3.43.0 to 3.44.0 (#2678)
a0fe9fb
@dependabot
refactor: Bump eslint-plugin-jsdoc from 51.3.3 to 51.3.4 (#2676)
37a3dd7
@dependabot
refactor: Bump @babel/runtime-corejs3 from 7.27.6 to 7.28.0 (#2677)
5329078
@dependabot
refactor: Bump typescript-eslint from 8.35.0 to 8.36.0 (#2680)
bcb9070
@dependabot
refactor: Bump vite-plugin-node-polyfills from 0.23.0 to 0.24.0 (#2684)
9f454b3
@dependabot
refactor: Bump @babel/core from 7.27.4 to 7.28.0 (#2683)
ae21850
@dependabot
refactor: Bump mongodb-runner from 5.8.3 to 5.9.2 (#2675)
b2bbdb6
@dependabot
refactor: Bump @eslint/js from 9.29.0 to 9.30.1 (#2681)
c6100fa
@dependabot
refactor: Bump puppeteer from 24.10.0 to 24.12.1 (#2686)
34d5ac9
@dependabot
refactor: Bump parse-server from 8.2.1 to 8.2.2 (#2685)
ff30891
@dependabot
refactor: Bump eslint from 9.29.0 to 9.30.1 (#2688)
f40324f
@dependabot
refactor: Bump puppeteer from 24.12.1 to 24.13.0 (#2692)
7a4e681
@dependabot
refactor: Bump typescript-eslint from 8.36.0 to 8.37.0 (#2691)
eaa2d4d
@dependabot
refactor: Bump eslint-plugin-jsdoc from 51.3.4 to 51.4.1 (#2693)
c2038f1
@dependabot
refactor: Bump @eslint/js from 9.30.1 to 9.31.0 (#2690)
edca494 
L
@dependabot
refactor: Bump semantic-release from 24.2.6 to 24.2.7 (#2689)
5aa45b1
@dependabot
refactor: Bump puppeteer from 24.13.0 to 24.14.0 (#2696)
91988b3
@dependabot
refactor: Bump jasmine from 5.8.0 to 5.9.0 (#2697)
8b8433c
@dependabot
refactor: Bump jest-environment-jsdom from 30.0.4 to 30.0.5 (#2698)
c9d487b
@dependabot
refactor: Bump typescript-eslint from 8.37.0 to 8.39.0 (#2705)
f956d35
@dependabot
refactor: Bump eslint from 9.31.0 to 9.33.0 (#2710)
eab04fe
@dependabot
refactor: Bump sha.js from 2.4.11 to 2.4.12 (#2715)
6941012
@dependabot
refactor: Bump babel-jest from 30.0.4 to 30.2.0 (#2729)
24852fb
dependabot bot and others added 18 commits September 30, 2025 00:54
@dependabot
refactor: Bump tar-fs from 3.1.0 to 3.1.1 (#2728)
3b79c44
@dependabot
refactor: Bump mongodb-runner from 5.9.2 to 5.10.0 (#2731)
17e2a77
@dependabot
refactor: Bump @semantic-release/github from 11.0.3 to 11.0.6 (#2732)
6ccdfe4
@dependabot
refactor: Bump @babel/runtime-corejs3 from 7.28.0 to 7.28.4 (#2736)
f306c8b
@dependabot
refactor: Bump cross-env from 7.0.2 to 10.1.0 (#2733)
7d3d2d9
@dependabot
refactor: Bump lint-staged from 16.1.2 to 16.2.3 (#2739)
cad6902
@swittk
fix: Incorrect type in ParseObject.fetch parameter options (#2726)
dc78419
@dependabot
refactor: Bump typescript-eslint from 8.39.0 to 8.45.0 (#2740)
35b0ebf
@dependabot
refactor: Bump semantic-release from 24.2.7 to 24.2.9 (#2742)
63b0afb
@dependabot
refactor: Bump @semantic-release/release-notes-generator from 14.0.3 …
95d3790 
…to 14.1.0 (#2741)
@dependabot
refactor: Bump jasmine from 5.9.0 to 5.12.0 (#2744)
6335d57
@dependabot
refactor: Bump eslint from 9.33.0 to 9.37.0 (#2743)
4a47f65
@Moumouls
fix: Prototype Pollution vulnerability in `SingleInstanceStateControl…
9e7c1ba 
…ler`; fixes security vulnerability [GHSA-9g8m-v378-pcg3](GHSA-9g8m-v378-pcg3) (#2745)
@Moumouls
fix: Prototype pollution in Parse.Object and internal APIs; fixes s…
0097398 
…ecurity vulnerability [GHSA-9f2h-7v79-mxw](GHSA-9f2h-7v79-mxw3) (#2749)
@mtrezza
ci: Fix auto-release (#2750)
a7aa6ee
@mtrezza
ci: Fix auto-release (#2751)
7e5aa69
@semantic-release-bot
chore(release): 7.0.0-alpha.1 [skip ci]
7a5f2ff 
# [7.0.0-alpha.1](6.2.0-alpha.3...7.0.0-alpha.1) (2025-10-14)

### Bug Fixes

*  Prototype Pollution vulnerability in `SingleInstanceStateController`; fixes security vulnerability [GHSA-9g8m-v378-pcg3](GHSA-9g8m-v378-pcg3) ([#2745](#2745)) ([9e7c1ba](9e7c1ba))
* HTTP status code 3XX redirection for Parse Server URL not handled properly ([#2608](#2608)) ([58e7f58](58e7f58))
* Incorrect type in `ParseObject.fetch` parameter `options` ([#2726](#2726)) ([dc78419](dc78419))
* Prototype pollution in `Parse.Object` and internal APIs; fixes security vulnerability [GHSA-9f2h-7v79-mxw](GHSA-9f2h-7v79-mxw3) ([#2749](#2749)) ([0097398](0097398))
* Unhandled exception when calling `Parse.Cloud.run` with option value `null` ([#2622](#2622)) ([#2623](#2623)) ([2818ed9](2818ed9))

### Features

* Add `Parse.File` upload and download progress in browser and Node environments ([#2503](#2503)) ([d3ca465](d3ca465))
* Add option `Parse.nodeLogging` to fully log `Parse.Object` in Node.js environments ([#1594](#1594)) ([de9d057](de9d057))
* Remove `Parse.serverAuthType`, `Parse.serverAuthToken` infavor of CoreManager `REQUEST_HEADERS` config ([#2639](#2639)) ([ddc66a1](ddc66a1))

### BREAKING CHANGES

* The methods `Parse.serverAuthType()` and `Parse.serverAuthToken()` have been removed; use the CoreManager `REQUEST_HEADER` config to set authorization headers instead. ([ddc66a1](ddc66a1))
@github-actions
empty commit to trigger CI
ab7bc7a
@parse-github-assistant
Copy link

parse-github-assistant bot commented Oct 14, 2025

🚀 Thanks for opening this pull request!

@parseplatformorg
Copy link
Contributor Author

parseplatformorg commented Oct 14, 2025
edited
Loading

Snyk checks have passed. No issues have been found so far.

Status Scanner Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@coderabbitai
Copy link

coderabbitai bot commented Oct 14, 2025

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch build/release-20251014

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@codecov
Copy link

codecov bot commented Oct 14, 2025
edited
Loading

Codecov Report

❌ Patch coverage is 86.00000% with 7 lines in your changes missing coverage. Please review.
✅ Project coverage is 99.88%. Comparing base (d793946) to head (1a9049a).
⚠️ Report is 51 commits behind head on release.

Files with missing lines Patch % Lines
src/ObjectStateMutations.ts 73.07% 7 Missing ⚠️
Additional details and impacted files 
@@             Coverage Diff             @@
##           release    #2752      +/-   ##
===========================================
- Coverage   100.00%   99.88%   -0.12%     
===========================================
  Files           63       64       +1     
  Lines         6185     6219      +34     
  Branches      1472     1472              
===========================================
+ Hits          6185     6212      +27     
- Misses           0        7       +7

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@mtrezza mtrezza merged commit db2766f into release Oct 14, 2025
11 of 13 checks passed
@mtrezza mtrezza deleted the build/release-20251014 branch October 14, 2025 19:46
@parseplatformorg
Copy link
Contributor Author

parseplatformorg commented Oct 14, 2025

🎉 This change has been released in version 7.0.0

@parseplatformorg parseplatformorg added the state:released Released as stable version label Oct 14, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

state:released Released as stable version

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@parseplatformorg @mtrezza @swittk @Moumouls @semantic-release-bot