The Bureau Onbekende Zaken is a laravel project meant to compete with mainstream CMS applications and finetune to the specific needs of Bureau Onbekende Zaken.

Overview

Bureau Onbeperkte Zaken

Main Staging
CircleCI CircleCI

This repository contains the "Bureau Onbeperkte Zaken" laravel project. This project is meant to compete with the current WordPress installation and serves as a means to create pages, upload projects and maintain information.

Developer manual

Installing

Before being able to contribute to this project, make sure to take the following steps.

  1. Install PHP 8.x and composer
  2. Clone this repository
  3. Open the repository location in a terminal window
  4. Run "composer install"
  5. Copy ./.env.example to ./.env
  6. Run "php artisan key:generate"
  7. Run "php serve"

Updating

Updating your project is as easy as pulling all new changes from the remote branch, and then updating composer with "composer update".

CI/CD

All branches are tested after every push to guarantee a working version of the project. Without passing tests the branch will not be able to be pulled into development or main.

graph TD
    A[Push to branch] --> B[Test with CircleCI];
    B --> C{Branch is main branch};
    C --> |Yes| D[Deploy branch to production server];
    C --> |No| E{Branch is development branch};
    E --> |Yes| F[Deploy branch to staging server];
    E --> |No| G[Do not deploy];

    click B "https://app.circleci.com/pipelines/github/Pixel-Null/BureauOnbeperkteZaken" "Open CircleCI app" _blank;
    click D "https://boz.avametix.xyz" "Open production server" _blank;
    click F "https://staging.boz.avametix.xyz" "Open staging server" _blank;

Contributing

Contributions to this project are only done by the following users. Make sure to write tests, and test your branch thoroughly.

Name Student number
Roël Couwenberg 2165296
Kjell Geerlings 2167089
Ray Nelemans 2155127
Devon Thomassen 2168516
Jente van der Hoek 2161933
Sven van der Zwet 2165077
Comments
  • Bump loader-utils and resolve-url-loader

    Bump loader-utils and resolve-url-loader

    Bumps loader-utils to 2.0.3 and updates ancestor dependencies loader-utils, loader-utils and resolve-url-loader. These dependencies need to be updated together.

    Updates loader-utils from 2.0.2 to 2.0.3

    Release notes

    Sourced from loader-utils's releases.

    v2.0.3

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Changelog

    Sourced from loader-utils's changelog.

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Commits

    Updates loader-utils from 1.4.0 to 2.0.3

    Release notes

    Sourced from loader-utils's releases.

    v2.0.3

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Changelog

    Sourced from loader-utils's changelog.

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Commits

    Updates resolve-url-loader from 3.1.4 to 5.0.0

    Release notes

    Sourced from resolve-url-loader's releases.

    5.0.0

    Breaking changes

    • Require node>=12.
    • Support only webpack>=4.
    • Update to postcss@^8.
    • Remove rework engine (which was deprecated in V4).

    Bugfixes

    • Fix log messages not correctly normalising absolute paths to posix style on Windows platform
    • Fixes to end-to-end tests and test framework.

    5.0.0-beta.1

    Breaking changes

    • Require node>=12.
    • Support only webpack>=4.
    • Update to postcss@^8.
    • Remove rework engine (which was deprecated in V4).

    Bugfixes

    • Fix log messages not correctly normalising absolute paths to posix style on Windows platform
    • Fixes to end-to-end tests and test framework.

    5.0.0-alpha.1

    Breaking changes

    • Require node>=12.
    • Support only webpack>=4.
    • Update to postcss@^8.
    • Remove rework engine (which was deprecated in V4).

    Bugfixes

    • Fix log messages not correctly normalising absolute paths to posix style on Windows platform

    4.0.0

    Features

    • Better resolution of the original source location - You can more successfully use url() in variables and mixins.
    • Dependencies now accept a wider range and explicit dependency on rework and rework-visit has been removed.

    Breaking Changes

    • The engine option is deprecated which means the old rework engine is deprecated.
    • The keepQuery behaviour is now the default, the keepQuery option has been removed.
    • The removeCR option defaults to true when executing on Windows OS.
    • The absolute option has been removed.
    • The join option has changed.

    Migrating

    See the changlog.

    ... (truncated)

    Changelog

    Sourced from resolve-url-loader's changelog.

    resolve-url-loader

    Version 5

    Features

    • Update postcss and completely remove rework parser.

    Breaking Changes

    • Require node@>=12.
    • Support webpack@>=4 (no longer tested for earlier versions).
    • The engine option has been removed.

    Migrating

    Remove the engine option if you are using it.

    Version 4

    Features

    • Better resolution of the original source location - You can more successfully use url() in variables and mixins.
    • Dependencies now accept a wider range and explicit dependency on rework and rework-visit has been removed.

    Breaking Changes

    • The engine option is deprecated which means the old rework engine is deprecated.
    • The keepQuery behaviour is now the default, the keepQuery option has been removed.
    • The removeCR option defaults to true when executing on Windows OS.
    • The absolute option has been removed.
    • The join option has changed.

    Migrating

    Remove the engine option if you are using it - the default "postcss" engine is much more reliable. The "rework" engine will still work for now but will be removed in the next major version.

    Remove the keepQuery option if you are using it.

    Remove the absolute option, webpack should work fine without it. If you have a specific need to rebase url() then you should use a separate loader.

    If you use a custom join function then you will need to refactor it to the new API. Refer to the advanced usage documentation.

    If you wish to still use engine: "rework" then note that rework and rework-visit packages are now peerDependencies that must be explicitly installed by you.

    Version 3

    Features

    • Use postcss parser by default. This is long overdue as the old rework parser doesn't cope with modern css.

    ... (truncated)

    Commits
    • bf01da9 5.0.0
    • 78393f6 update branch references to v5
    • 6787839 github actions for CI
    • 1457038 update changelog and readme
    • a01faf9 5.0.0-beta.1
    • fb09fae remove the engine option harder, ensure deprecation warning is tested
    • 5654fa4 remove the engine option and related tests, use getOptions from loader where ...
    • 10f9cdb 5.0.0-alpha.1
    • b168dd3 adjust deprecation message for engine option
    • 29e142a normalise windows absolute paths to posix format in log messages
    • Additional commits viewable in compare view

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 1
  • Bump async from 2.6.3 to 2.6.4

    Bump async from 2.6.3 to 2.6.4

    Bumps async from 2.6.3 to 2.6.4.

    Changelog

    Sourced from async's changelog.

    v2.6.4

    • Fix potential prototype pollution exploit (#1828)
    Commits
    Maintainer changes

    This version was pushed to npm by hargasinski, a new releaser for async since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies javascript 
    opened by dependabot[bot] 1
  • Bump minimist from 1.2.5 to 1.2.6

    Bump minimist from 1.2.5 to 1.2.6

    Bumps minimist from 1.2.5 to 1.2.6.

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies javascript 
    opened by dependabot[bot] 1
  • Bump guzzlehttp/psr7 from 2.1.0 to 2.2.1

    Bump guzzlehttp/psr7 from 2.1.0 to 2.2.1

    Bumps guzzlehttp/psr7 from 2.1.0 to 2.2.1.

    Release notes

    Sourced from guzzlehttp/psr7's releases.

    2.2.1

    See change log for changes.

    2.2.0

    See change log for changes.

    2.1.2

    See change log for changes.

    2.1.1

    See change log for changes.

    Changelog

    Sourced from guzzlehttp/psr7's changelog.

    2.2.1 - 2022-03-20

    Fixed

    • Correct header value validation

    2.2.0 - 2022-03-20

    Added

    • A more compressive list of mime types
    • Add JsonSerializable to Uri
    • Missing return types

    Fixed

    • Bug MultipartStream no uri metadata
    • Bug MultipartStream with filename for data:// streams
    • Fixed new line handling in MultipartStream
    • Reduced RAM usage when copying streams
    • Updated parsing in Header::normalize()

    2.1.1 - 2022-03-20

    Fixed

    • Validate header values properly
    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies php 
    opened by dependabot[bot] 1
  • Bump url-parse from 1.5.7 to 1.5.10

    Bump url-parse from 1.5.7 to 1.5.10

    Bumps url-parse from 1.5.7 to 1.5.10.

    Commits
    • 8cd4c6c 1.5.10
    • ce7a01f [fix] Improve handling of empty port
    • 0071490 [doc] Update JSDoc comment
    • a7044e3 [minor] Use more descriptive variable name
    • d547792 [security] Add credits for CVE-2022-0691
    • ad23357 1.5.9
    • 0e3fb54 [fix] Strip all control characters from the beginning of the URL
    • 61864a8 [security] Add credits for CVE-2022-0686
    • bb0104d 1.5.8
    • d5c6479 [fix] Handle the case where the port is specified but empty
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 1
  • Huilen

    Huilen

    Wat is er veranderd?

    Geef een korte beschrijving van de veranderingen

    .JPG naar .jpg

    Checklist vóór een review aangevraagd wordt

    • [ ] Relevante issues zijn gelinked
    • [ ] Juiste labels zijn vastgemaakt
    • [ ] Maker is als assignee toegevoegd

    DOD:

    • [ ] Alle code voldoet aan de opgestelde coding conventies
    • [ ] Alle taken van de user story zijn afgerond
    • [ ] De user story is voorzien van context-gevoelige help die de gebruiker in staat stelt de user story succesvol af te ronden
    • [ ] Elke user story moet voldoen aan de acceptatiecriteria
    • [ ] Alle acceptatiecriteria zijn gedekt door minimaal één geautomatiseerde test waar relevant 7
    • [ ] Alle bestaande tests zijn succesvol afgerond
    • [ ] De functionaliteit werkt zoals in de user story beschreven staan
    • [ ] Code heeft het reviewproces 3 succesvol doorlopen
    • [ ] Het gemaakte onderdeel is toegankelijk 1 mits deze voor bezoekers te zien is
    • [ ] De knoppen in de sidebar voor makers is afhankelijk van de pagina waar relevant 5
    • [ ] Het gemaakte onderdeel de component package 2
    • [ ] De website is te gebruiken zonder IT kennis 4
    • [ ] Vóór het einde van elke sprint wordt het project opgeschoond 6
    • [ ] Alle pagina’s die te zien zijn door gebruikers zijn leesbaar, zonder onbedoelde verplaatsing van onderdelen, op een schermbreedte van 375 pixels of groter

    1 Toegankelijk: Het onderdeel is voorzien van alt tekst wanneer deze bestaat uit een plaatje, video of ander onduidelijk gelabeld element zodat deze door een screenreader voor te lezen is en de gebruiker precies weet wat de functie is. De (tekst-)grootte van het onderdeel moet aanpasbaar zijn zonder dat het onderdeel op een niet bedoelde manier verspringt, vergroot, verkleind of verandert. Het onderdeel voldoet aan de WCAG AA 2.1 standaard

    2 Component package: Stylesheets Componenten Templates

    3 Reviewproces: Twee teamleden hebben een peer review gegeven De feedback van de reviews is verwerkt De code is getest door minimaal twee teamleden

    4 Zonder IT kennis: De gebruiker kan een browser bedienen

    5 Afhankelijk van de pagina waar relevant De knoppen passen zich aan op de pagina, zodat zij relevant zijn voor de content van de pagina.

    6 Het project bevat geen onnodige code, comments voldoen aan de gekozen stijl, alle attributen hebben een uniforme naamgeving en de website bevat geen placeholder text.

    7 Relevant. Acceptatiecriteria die eisen aan een functionaliteit beschrijven moeten gedekt worden door een geautomatiseerde test, wanneer het toegevoegde waarde naar mening van het team als een geheel.

    opened by PixNyb 0
  • Bump decode-uri-component from 0.2.0 to 0.2.2

    Bump decode-uri-component from 0.2.0 to 0.2.2

    Bumps decode-uri-component from 0.2.0 to 0.2.2.

    Release notes

    Sourced from decode-uri-component's releases.

    v0.2.2

    • Prevent overwriting previously decoded tokens 980e0bf

    https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2

    v0.2.1

    • Switch to GitHub workflows 76abc93
    • Fix issue where decode throws - fixes #6 746ca5d
    • Update license (#1) 486d7e2
    • Tidelift tasks a650457
    • Meta tweaks 66e1c28

    https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump loader-utils and resolve-url-loader

    Bump loader-utils and resolve-url-loader

    Bumps loader-utils to 2.0.4 and updates ancestor dependencies loader-utils, loader-utils and resolve-url-loader. These dependencies need to be updated together.

    Updates loader-utils from 2.0.2 to 2.0.4

    Release notes

    Sourced from loader-utils's releases.

    v2.0.4

    2.0.4 (2022-11-11)

    Bug Fixes

    v2.0.3

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Changelog

    Sourced from loader-utils's changelog.

    2.0.4 (2022-11-11)

    Bug Fixes

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Commits

    Updates loader-utils from 1.4.0 to 2.0.4

    Release notes

    Sourced from loader-utils's releases.

    v2.0.4

    2.0.4 (2022-11-11)

    Bug Fixes

    v2.0.3

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Changelog

    Sourced from loader-utils's changelog.

    2.0.4 (2022-11-11)

    Bug Fixes

    2.0.3 (2022-10-20)

    Bug Fixes

    • security: prototype pollution exploit (#217) (a93cf6f)
    Commits

    Updates resolve-url-loader from 3.1.4 to 5.0.0

    Release notes

    Sourced from resolve-url-loader's releases.

    5.0.0

    Breaking changes

    • Require node>=12.
    • Support only webpack>=4.
    • Update to postcss@^8.
    • Remove rework engine (which was deprecated in V4).

    Bugfixes

    • Fix log messages not correctly normalising absolute paths to posix style on Windows platform
    • Fixes to end-to-end tests and test framework.

    5.0.0-beta.1

    Breaking changes

    • Require node>=12.
    • Support only webpack>=4.
    • Update to postcss@^8.
    • Remove rework engine (which was deprecated in V4).

    Bugfixes

    • Fix log messages not correctly normalising absolute paths to posix style on Windows platform
    • Fixes to end-to-end tests and test framework.

    5.0.0-alpha.1

    Breaking changes

    • Require node>=12.
    • Support only webpack>=4.
    • Update to postcss@^8.
    • Remove rework engine (which was deprecated in V4).

    Bugfixes

    • Fix log messages not correctly normalising absolute paths to posix style on Windows platform

    4.0.0

    Features

    • Better resolution of the original source location - You can more successfully use url() in variables and mixins.
    • Dependencies now accept a wider range and explicit dependency on rework and rework-visit has been removed.

    Breaking Changes

    • The engine option is deprecated which means the old rework engine is deprecated.
    • The keepQuery behaviour is now the default, the keepQuery option has been removed.
    • The removeCR option defaults to true when executing on Windows OS.
    • The absolute option has been removed.
    • The join option has changed.

    Migrating

    See the changlog.

    ... (truncated)

    Changelog

    Sourced from resolve-url-loader's changelog.

    resolve-url-loader

    Version 5

    Features

    • Update postcss and completely remove rework parser.

    Breaking Changes

    • Require node@>=12.
    • Support webpack@>=4 (no longer tested for earlier versions).
    • The engine option has been removed.

    Migrating

    Remove the engine option if you are using it.

    Version 4

    Features

    • Better resolution of the original source location - You can more successfully use url() in variables and mixins.
    • Dependencies now accept a wider range and explicit dependency on rework and rework-visit has been removed.

    Breaking Changes

    • The engine option is deprecated which means the old rework engine is deprecated.
    • The keepQuery behaviour is now the default, the keepQuery option has been removed.
    • The removeCR option defaults to true when executing on Windows OS.
    • The absolute option has been removed.
    • The join option has changed.

    Migrating

    Remove the engine option if you are using it - the default "postcss" engine is much more reliable. The "rework" engine will still work for now but will be removed in the next major version.

    Remove the keepQuery option if you are using it.

    Remove the absolute option, webpack should work fine without it. If you have a specific need to rebase url() then you should use a separate loader.

    If you use a custom join function then you will need to refactor it to the new API. Refer to the advanced usage documentation.

    If you wish to still use engine: "rework" then note that rework and rework-visit packages are now peerDependencies that must be explicitly installed by you.

    Version 3

    Features

    • Use postcss parser by default. This is long overdue as the old rework parser doesn't cope with modern css.

    ... (truncated)

    Commits
    • bf01da9 5.0.0
    • 78393f6 update branch references to v5
    • 6787839 github actions for CI
    • 1457038 update changelog and readme
    • a01faf9 5.0.0-beta.1
    • fb09fae remove the engine option harder, ensure deprecation warning is tested
    • 5654fa4 remove the engine option and related tests, use getOptions from loader where ...
    • 10f9cdb 5.0.0-alpha.1
    • b168dd3 adjust deprecation message for engine option
    • 29e142a normalise windows absolute paths to posix format in log messages
    • Additional commits viewable in compare view

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump terser from 4.8.0 to 4.8.1

    Bump terser from 4.8.0 to 4.8.1

    Bumps terser from 4.8.0 to 4.8.1.

    Changelog

    Sourced from terser's changelog.

    v4.8.1 (backport)

    • Security fix for RegExps that should not be evaluated (regexp DDOS)
    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
Owner
Roël Couwenberg
I'm a versatile and adaptive programmer and designer based in 's-Hertogenbosch, The Netherlands.
Roël Couwenberg
A @laravel based RAD platform for back-office applications, admin/user panels, and dashboards.

For the full documentation, visit orchid.software. Introduction Orchid is a free Laravel package that abstracts standard business logic and allows cod

Laravel Orchid 3.4k Jan 1, 2023
LaraAdmin is a Open source Laravel Admin Panel / CMS which can be used as Admin Backend, Data Management Tool or CRM boilerplate for Laravel with features like Advanced CRUD Generation, Module Manager, Backups and many more.

LaraAdmin 1.0 LaraAdmin is a Open source CRM for quick-start Admin based applications with features like Advanced CRUD Generation, Schema Manager and

Dwij IT Solutions 1.5k Dec 29, 2022
:computer: :octocat: A hackathon/MVP boilerplate for laravel web applications. Start your hackathons without hassle.

Laravel Hackathon Starter - SUSUMU 進 If you have attended any hackathons in the past, then you know how much time it takes to get a project started: d

Prosper Otemuyiwa 1.6k Dec 17, 2022
Laravel CRUD Generator This Generator package provides various generators like CRUD, API, Controller, Model, Migration, View for your painless development of your applications.

Laravel CRUD Generator This Generator package provides various generators like CRUD, API, Controller, Model, Migration, View for your painless develop

AppzCoder 1.3k Jan 2, 2023
A package for building Admin-Interfaces that help maintaining the data of your applications

A package for building Admin-Interfaces that help maintaining the data of your applications. It provides an intuitive interface and the tools needed to manage your project's Users, Models and free Forms for Pages, Settings etc.

null 808 Dec 31, 2022
A skeleton for creating applications with CakePHP 4.x.

CakePHP Application Skeleton A skeleton for creating applications with CakePHP 4.x. The framework source code can be found here: cakephp/cakephp. Inst

Fabiano Araujo 1 Oct 13, 2021
project with laravel 9 and php 8 and vuejs 3(modular) in both multi page and single page application

About Project Since Laravel 9 was recently released, it supports PHP 8 and above. So I decided to implement a prototype project using Laravel 9 + PHP

ali ahmadi 10 Sep 7, 2022
Web Sekolah yang dibuat diatas CMS Popoji dengan base Laravel 6. Web Sekolah ini sudah diintegrasikan dengan template semesta-front.

Web Sekolah yang dibuat diatas CMS Popoji dengan base Laravel 6. Web Sekolah ini sudah diintegrasikan dengan template semesta-front.

Muhamad Ramdani Hidayatullah 1 Feb 6, 2022
A seamless django like admin panel setup for Laravel. Simple, non-cms table manager for admins.

Seamless Admin Panel A seamless Django-like admin panel setup for Laravel. Simple, non-cms table manager for admins. Installation steps Require the Pa

Advaith A J 15 Jan 2, 2023
Base Laravel project with React and Laravel Sanctum authentication

About this project This is a base Laravel project with ReactJS frontend and Laravel Sanctum API authentication. You could read more about here. Instal

David Toth 8 Oct 25, 2022
Textpattern-plugin-template - A template for building plugins for Textpattern CMS.

Plugin template for Textpattern CMS Developer documentation Refer to the Textpattern plugin development documentation, and notably the Plugin template

Textpattern CMS 17 Apr 17, 2022
Symfony React Blank is a blank symfony and react project, use this template to start your app using Symfony as an backend api and React as a frontend library.

Symfony React Blank Symfony React Blank is a blank symfony and react project, use this template to start your app using Symfony as an backend api and

Antoine Kingue 2 Nov 5, 2021
A simple and clean boilerplate to start a new SPA project with authentication and more features from fortify

A simple and clean boilerplate to start a new SPA project with authentication and more features from fortify. Its like the little sister of Jetstream, but as SPA.

Tobias Schulz 11 Dec 30, 2022
A script to help setup Laravel project with common packages and configurations

About Snap Snap allow developer to create scaffold Laravel project. Installation Clone this repository in your user home directory. cd ~ git clone htt

Nasrul Hazim Bin Mohamad 3 Jan 4, 2022
This is a Starter Laravel 8 project with Vue 3 and Bootstrap 5 installed for you.

Laravel8-Vue3-Bootstrap5 This is a Starter Laravel 8 project with Vue 3 and Bootstrap 5. Instalation Guide: As always you need to: composer install Th

Mohamed Hafidi 7 Oct 19, 2022
Quick Start - Project With Laravel 8.x and AdminLTE 3

Quick Start - Project With Laravel 8.x and AdminLTE 3 (feat. Docker) Cursos de Laravel - PT-BR Step by step Clone this Repository git clone https://gi

EspecializaTi 3 May 24, 2022
Dockerized Laravel project with authentication and car brand crud functionalities.

About Laravel Laravel is a web application framework with expressive, elegant syntax. We believe development must be an enjoyable and creative experie

Legendary 4 Oct 16, 2021
The Laravel Boilerplate Project - https://laravel-boilerplate.com

Laravel Boilerplate (Current: Laravel 8.*) (Demo) Demo Credentials Admin: [email protected] Password: secret User: [email protected] Password: secret Offici

Anthony Rappa 5.4k Jan 4, 2023
Code for database forms and Drupal module for the Lobbywatch.ch project

Lobbywatch.ch Lobbywatch.ch - the platform for transparent politics. Lobbywatch.ch maintains a database with links of politicians and lobby groups. Th

Lobbywatch 29 Dec 1, 2022