From 06cf4afe93440429da36529c151afbdaf2bda32f Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Mon, 14 Dec 2020 13:08:06 +0000 Subject: [PATCH 1/3] [Security] Bump ini from 1.3.5 to 1.3.8 Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8. **This update includes a security fix.** - [Release notes](https://github.com/isaacs/ini/releases) - [Commits](https://github.com/isaacs/ini/compare/v1.3.5...v1.3.8) Signed-off-by: dependabot-preview[bot] --- package-lock.json | 12 +++--------- 1 file changed, 3 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index dd7b349..2b78d6a 100644 --- a/package-lock.json +++ b/package-lock.json @@ -4509,12 +4509,6 @@ "dev": true, "optional": true }, - "ini": { - "version": "1.3.5", - "bundled": true, - "dev": true, - "optional": true - }, "is-fullwidth-code-point": { "version": "1.0.0", "bundled": true, @@ -5561,9 +5555,9 @@ "dev": true }, "ini": { - "version": "1.3.5", - "resolved": "https://registry.npmjs.org/ini/-/ini-1.3.5.tgz", - "integrity": "sha512-RZY5huIKCMRWDUqZlEi72f/lmXKMvuszcMBduliQ3nnWbx9X/ZBQO7DijMEYS9EhHBb2qacRUMtC7svLwe0lcw==", + "version": "1.3.8", + "resolved": "https://registry.npmjs.org/ini/-/ini-1.3.8.tgz", + "integrity": "sha512-JV/yugV2uzW5iMRSiZAyDtQd+nxtUnjeLt0acNdw98kKLrvuRVyB80tsREOE7yvGVgalhZ6RNXCmEHkUKBKxew==", "dev": true }, "inline-source-map": { From 1ea8ff64458219ce1bab200356de9d423688fc39 Mon Sep 17 00:00:00 2001 From: Jonathan Putney <42720634+jcputney@users.noreply.github.com> Date: Mon, 14 Dec 2020 08:27:09 -0500 Subject: [PATCH 2/3] Create dependabot.yml --- .github/dependabot.yml | 11 +++++++++++ 1 file changed, 11 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..8abca40 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,11 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates + +version: 2 +updates: + - package-ecosystem: "npm" # See documentation for possible values + directory: "/" # Location of package manifests + schedule: + interval: "daily" From 19b6da4f7cf8792ecb39a200a99f9169f79e98f2 Mon Sep 17 00:00:00 2001 From: Jonathan Putney <42720634+jcputney@users.noreply.github.com> Date: Mon, 14 Dec 2020 09:04:15 -0500 Subject: [PATCH 3/3] Update README.md --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index d7679ba..284e8ec 100644 --- a/README.md +++ b/README.md @@ -6,7 +6,7 @@ This project was created to modernize the SCORM JavaScript runtime, and to provi ### What is this not and what doesn't it do? 1. This is not an LMS 1. This does not handle the uploading and verification of SCORM/AICC modules -1. This project does not **currently** support the TinCan/xAPI runtime, but is it something I am considering in the very near future. +1. This project does not **currently** support TinCan/xAPI/CMI5, and I'm not sure if I will ever get around to it. However, I would welcome merge requests to add support for any additional specifications. 1. This library does not setup communication between an external AICC module and an LMS. 1. This project is not complete! I'm still working on AICC testing, and continuing to write proper test cases for all APIs