Skip to content

Bump sharp from 0.31.3 to 0.32.3

Geoxor requested to merge dependabot/npm_and_yarn/sharp-0.32.3 into master

Created by: dependabot[bot]

Bumps sharp from 0.31.3 to 0.32.3.

Changelog

Sourced from sharp's changelog.

v0.32.3 - 14th July 2023

  • Expose preset option for WebP output. #3639

  • Ensure decoding remains sequential for all operations (regression in 0.32.2). #3725

v0.32.2 - 11th July 2023

  • Limit HEIF output dimensions to 16384x16384, matches libvips.

  • Ensure exceptions are not thrown when terminating. #3569

  • Ensure the same access method is used for all inputs (regression in 0.32.0). #3669

  • Improve detection of jp2 filename extensions. #3674 @​bianjunjie1981

  • Guard use of smartcrop premultiplied option to prevent warning (regression in 0.32.1). #3710

  • Prevent over-compute in affine-based rotate before resize. #3722

  • Allow sequential read for EXIF-based auto-orientation. #3725

v0.32.1 - 27th April 2023

  • Add experimental unflatten operation. #3461 @​antonmarsden

  • Ensure use of flip operation forces random access read (regression in 0.32.0). #3600

  • Ensure linear operation works with 16-bit input (regression in 0.31.3). #3605

  • Install: ensure proxy URLs are logged correctly. #3615 @​TomWis97

  • Ensure profile-less CMYK to CMYK roundtrip skips colourspace conversion. #3620

... (truncated)

Commits
  • a0e1c39 Release v0.32.3
  • 85b26da Expose preset option for WebP output #3639
  • 66f7cef Docs: fix a few typos
  • 863174f CI: FreeBSD: Use 13.2 stable, upgrade to Node.js 20
  • bcd865c Ensure decoding remains sequential for all ops #3725
  • 16ea04f Release v0.32.2
  • 9c547dc Use copy rather than cache to prevent affine overcompute
  • 5522060 Limit HEIF output dimensions to 16384x16384
  • d2f0fa8 Tests: loosen threshold for affine rotate then extract
  • 2bb3ea8 Bump deps
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Merge request reports