The GitHub Actions job "npm_and_yarn in /frontend for form-data - Update #1417462719" on texera.git/main has failed. Run started by GitHub user dependabot[bot] (triggered by dependabot[bot]).
Head commit for run: cb30970bcfb915a19338d8a49e3cad3bd37796b8 / dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> chore(deps): bump @angular/core from 21.2.10 to 21.2.17 in /frontend (#5732) Bumps [@angular/core](https://github.com/angular/angular/tree/HEAD/packages/core) from 21.2.10 to 21.2.17. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/angular/angular/releases";>@angular/core's releases</a>.</em></p> <blockquote> <h2>21.2.17</h2> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/86a56dc279e71159d09a073a3cb138f49131995b";><img src="https://img.shields.io/badge/86a56dc279-fix-green"; alt="fix - 86a56dc279" /></a></td> <td>Limits date format string length</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/d846326b071e0a4ab090e068d934b182926c6b15";><img src="https://img.shields.io/badge/d846326b07-fix-green"; alt="fix - d846326b07" /></a></td> <td>skip transfer cache for uncacheable HTTP traffic</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/bc55749698ce3917160cd8e9f7108f3c5d1c0b32";><img src="https://img.shields.io/badge/bc55749698-fix-green"; alt="fix - bc55749698" /></a></td> <td>use cryptographically secure SHA-256 for transfer cache key generation</td> </tr> </tbody> </table> <h3>compiler</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/dc9c99636d3471ed5a3c5cda54b95f604cd2b9a4";><img src="https://img.shields.io/badge/dc9c99636d-fix-green"; alt="fix - dc9c99636d" /></a></td> <td>sanitize two-way properties</td> </tr> </tbody> </table> <h3>core</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/152306113760e13196653699b42046d9f4129a37";><img src="https://img.shields.io/badge/1523061137-fix-green"; alt="fix - 1523061137" /></a></td> <td>harden TransferState restoration against DOM clobbering</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/88832c84f8a3cd88d80adcde539a6f91a1f30b74";><img src="https://img.shields.io/badge/88832c84f8-fix-green"; alt="fix - 88832c84f8" /></a></td> <td>validate lowercase SVG animation attribute names (<a href="https://github.com/angular/angular/tree/HEAD/packages/core/issues/69269";>#69269</a>)</td> </tr> </tbody> </table> <h3>http</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/bcb1b7ea2575b140f7bf202ad4f779e402cd6094";><img src="https://img.shields.io/badge/bcb1b7ea25-fix-green"; alt="fix - bcb1b7ea25" /></a></td> <td>preserve empty referrer option in HttpRequest</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/a810a319d10a8254307eb8f0598e7a888ce09ec0";><img src="https://img.shields.io/badge/a810a319d1-fix-green"; alt="fix - a810a319d1" /></a></td> <td>Rejects non-HTTP(S) URLs in JSONP requests</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/e245d40c4d05665ab4814c594b8e0849b6e88a2d";><img src="https://img.shields.io/badge/e245d40c4d-fix-green"; alt="fix - e245d40c4d" /></a></td> <td>skip transfer cache for fetch credentialed requests</td> </tr> </tbody> </table> <h3>platform-server</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/35510746b7d6b5c3de41de04c0586fc286c9e748";><img src="https://img.shields.io/badge/35510746b7-fix-green"; alt="fix - 35510746b7" /></a></td> <td>harden platform location origin validation during SSR</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/13fb0afe93b45e3c2383969f70d3ee1f0146ecfb";><img src="https://img.shields.io/badge/13fb0afe93-refactor-yellow"; alt="refactor - 13fb0afe93" /></a></td> <td>deprecate ServerXhr (<a href="https://github.com/angular/angular/tree/HEAD/packages/core/issues/69255";>#69255</a>)</td> </tr> </tbody> </table> <h3>service-worker</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/b9d29381bb4442164b19d9b7e0baa147a7b25629";><img src="https://img.shields.io/badge/b9d29381bb-fix-green"; alt="fix - b9d29381bb" /></a></td> <td>Strips sensitive headers on cross-origin redirects</td> </tr> </tbody> </table> <h2>Deprecations</h2> <h3>platform-server</h3> <ul> <li>XHR support in <code>@angular/platform-server</code> is deprecated. Use standard <code>fetch</code> APIs instead.</li> </ul> <h2>21.2.16</h2> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/f6d8e642b0b215d2f9dbf1060abd24348c6cbf66";><img src="https://img.shields.io/badge/f6d8e642b0-fix-green"; alt="fix - f6d8e642b0" /></a></td> <td>only strip a literal /index.html suffix from URLs</td> </tr> </tbody> </table> <h3>compiler</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/ae1c8a1f7a7f1d4832da3b22e3763864fa5ff098";><img src="https://img.shields.io/badge/ae1c8a1f7a-fix-green"; alt="fix - ae1c8a1f7a" /></a></td> <td>move projection attributes into constants</td> </tr> </tbody> </table> <h3>core</h3> <table> <thead> <tr> <th>Commit</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/3fd6897a67fd6acdc01fcde0452a98c3e0f81e21";><img src="https://img.shields.io/badge/3fd6897a67-fix-green"; alt="fix - 3fd6897a67" /></a></td> <td>harden inherit definition feature against polluted prototypes</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/7e38336dc73e14d98cc6465f54e1b7d6271facb2";><img src="https://img.shields.io/badge/7e38336dc7-fix-green"; alt="fix - 7e38336dc7" /></a></td> <td>use Object.create(null) for LOCALE_DATA as a hardening measure</td> </tr> </tbody> </table> <h3>platform-server</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/angular/angular/blob/main/CHANGELOG.md";>@angular/core's changelog</a>.</em></p> <blockquote> <h1>21.2.17 (2026-06-10)</h1> <h2>Deprecations</h2> <h3>platform-server</h3> <ul> <li>XHR support in <code>@angular/platform-server</code> is deprecated. Use standard <code>fetch</code> APIs instead.</li> </ul> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/86a56dc279e71159d09a073a3cb138f49131995b";>86a56dc279</a></td> <td>fix</td> <td>Limits date format string length</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/d846326b071e0a4ab090e068d934b182926c6b15";>d846326b07</a></td> <td>fix</td> <td>skip transfer cache for uncacheable HTTP traffic</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/bc55749698ce3917160cd8e9f7108f3c5d1c0b32";>bc55749698</a></td> <td>fix</td> <td>use cryptographically secure SHA-256 for transfer cache key generation</td> </tr> </tbody> </table> <h3>compiler</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/dc9c99636d3471ed5a3c5cda54b95f604cd2b9a4";>dc9c99636d</a></td> <td>fix</td> <td>sanitize two-way properties</td> </tr> </tbody> </table> <h3>core</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/152306113760e13196653699b42046d9f4129a37";>1523061137</a></td> <td>fix</td> <td>harden TransferState restoration against DOM clobbering</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/88832c84f8a3cd88d80adcde539a6f91a1f30b74";>88832c84f8</a></td> <td>fix</td> <td>validate lowercase SVG animation attribute names (<a href="https://redirect.github.com/angular/angular/pull/69269";>#69269</a>)</td> </tr> </tbody> </table> <h3>http</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/bcb1b7ea2575b140f7bf202ad4f779e402cd6094";>bcb1b7ea25</a></td> <td>fix</td> <td>preserve empty referrer option in HttpRequest</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/a810a319d10a8254307eb8f0598e7a888ce09ec0";>a810a319d1</a></td> <td>fix</td> <td>Rejects non-HTTP(S) URLs in JSONP requests</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/e245d40c4d05665ab4814c594b8e0849b6e88a2d";>e245d40c4d</a></td> <td>fix</td> <td>skip transfer cache for fetch credentialed requests</td> </tr> </tbody> </table> <h3>platform-server</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/35510746b7d6b5c3de41de04c0586fc286c9e748";>35510746b7</a></td> <td>fix</td> <td>harden platform location origin validation during SSR</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/13fb0afe93b45e3c2383969f70d3ee1f0146ecfb";>13fb0afe93</a></td> <td>refactor</td> <td>deprecate ServerXhr (<a href="https://redirect.github.com/angular/angular/pull/69255";>#69255</a>)</td> </tr> </tbody> </table> <h3>service-worker</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/b9d29381bb4442164b19d9b7e0baa147a7b25629";>b9d29381bb</a></td> <td>fix</td> <td>Strips sensitive headers on cross-origin redirects</td> </tr> </tbody> </table> <!-- raw HTML omitted --> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h1>20.3.25 (2026-06-10)</h1> <h2>Deprecations</h2> <h3>platform-server</h3> <ul> <li>XHR support in <code>@angular/platform-server</code> is deprecated. Use standard <code>fetch</code> APIs instead.</li> </ul> <h3>common</h3> <table> <thead> <tr> <th>Commit</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><a href="https://github.com/angular/angular/commit/9f443bc24c79dca998c9434d1e235dc19dc29bba";>9f443bc24c</a></td> <td>fix</td> <td>Limits date format string length</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/566ad05f20732c38855353c3e73771ef9a34dadc";>566ad05f20</a></td> <td>fix</td> <td>skip transfer cache for uncacheable HTTP traffic</td> </tr> <tr> <td><a href="https://github.com/angular/angular/commit/1a62130a6bb313e4441f005e480768a360c71be5";>1a62130a6b</a></td> <td>fix</td> <td>use cryptographically secure SHA-256 for transfer cache key generation</td> </tr> </tbody> </table> <h3>compiler</h3> <p>| Commit | Type | Description |</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/angular/angular/commit/88832c84f8a3cd88d80adcde539a6f91a1f30b74";><code>88832c8</code></a> fix(core): validate lowercase SVG animation attribute names (<a href="https://github.com/angular/angular/tree/HEAD/packages/core/issues/69269";>#69269</a>)</li> <li><a href="https://github.com/angular/angular/commit/35510746b7d6b5c3de41de04c0586fc286c9e748";><code>3551074</code></a> fix(platform-server): harden platform location origin validation during SSR</li> <li><a href="https://github.com/angular/angular/commit/bc55749698ce3917160cd8e9f7108f3c5d1c0b32";><code>bc55749</code></a> fix(common): use cryptographically secure SHA-256 for transfer cache key gene...</li> <li><a href="https://github.com/angular/angular/commit/d846326b071e0a4ab090e068d934b182926c6b15";><code>d846326</code></a> fix(common): skip transfer cache for uncacheable HTTP traffic</li> <li><a href="https://github.com/angular/angular/commit/e245d40c4d05665ab4814c594b8e0849b6e88a2d";><code>e245d40</code></a> fix(http): skip transfer cache for fetch credentialed requests</li> <li><a href="https://github.com/angular/angular/commit/152306113760e13196653699b42046d9f4129a37";><code>1523061</code></a> fix(core): harden TransferState restoration against DOM clobbering</li> <li><a href="https://github.com/angular/angular/commit/736c4ab7e6d9168dedd4cc08b4802ec0af40edee";><code>736c4ab</code></a> refactor(core): fix broken unit test.</li> <li><a href="https://github.com/angular/angular/commit/3fd6897a67fd6acdc01fcde0452a98c3e0f81e21";><code>3fd6897</code></a> fix(core): harden inherit definition feature against polluted prototypes</li> <li><a href="https://github.com/angular/angular/commit/7e38336dc73e14d98cc6465f54e1b7d6271facb2";><code>7e38336</code></a> fix(core): use Object.create(null) for LOCALE_DATA as a hardening measure</li> <li><a href="https://github.com/angular/angular/commit/29ceeffd40a2250eb51ac34af22d49e85b878922";><code>29ceeff</code></a> docs: fix typos in source code comments</li> <li>Additional commits viewable in <a href="https://github.com/angular/angular/commits/v21.2.17/packages/core";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/texera/network/alerts). </details> --------- Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Yicong Huang <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Yicong Huang <[email protected]> Report URL: https://github.com/apache/texera/actions/runs/27652883374 With regards, GitHub Actions via GitBox
