Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps-dev): bump the non-major-node-dev-dependencies group across 1 directory with 7 updates #223

Closed
wants to merge 2 commits into from
Closed

build(deps-dev): bump the non-major-node-dev-dependencies group across 1 directory with 7 updates #223

wants to merge 2 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 22, 2024
edited
Loading

Bumps the non-major-node-dev-dependencies group with 7 updates in the / directory:

Package From To
@types/node 20.14.8 20.14.11
dependency-cruiser 16.3.3 16.3.9
husky 9.0.11 9.1.1
prettier 3.3.2 3.3.3
tsx 4.15.7 4.16.2
typescript 5.5.2 5.5.3
watskeburt 4.0.2 4.1.0

Updates @types/node from 20.14.8 to 20.14.11

Commits

Updates dependency-cruiser from 16.3.3 to 16.3.9

Release notes

Sourced from dependency-cruiser's releases.

v16.3.9

✨ features

  • 72373ea9 feat: support svelte 4 (#948) - thanks to @​kubotak-is for both doing the research and making the pull request that made this work!

👷 maintenance

  • 30b51482 build(npm): updates external dependencies
  • 1ee4e42d chore: removes some additional references to/ uses of lodash
  • 615134ac fix(ci): runs release & prelease on node 22.4.x instead of 22.x to circumvent issue with 22.5 + npm 10.8.2, where npm clean-install bought the farm

v16.3.8

Skipped because of a bug with node 22.5.0 + npm 10.82 + npm clean-install that blocked the release script see npm/cli#7657 .

16.3.9 contains the contents of what would have been this release though.

v16.3.7

👷 maintenance

  • daa550ce build(npm): updates external dependencies
  • dc4f1836 chore(npm): removes unused devDependency shx
  • 6e618ce3 refactor: removes 3rd party dependency 'wrap-ansi' (#946)

v16.3.6

👷 maintenance

  • 78810cec refactor: replaces chalk with picocolors (#945)
  • 03c34a6b refactor: replaces lodash' flattenDeep, isEmpty, reject, omit, merge with native alternatives (#944)
  • d6884ae0 build(npm): updates external dependencies

v16.3.5

🐛 fixes

  • 8196c9e5 fix(extract/transpile): transpile script setup with vue 2 (#942) (thanks to @​ferdynator for the clear & complete pull request!)

v16.3.4

This release is one in a series of efforts to reduce the number dependency-cruiser's 3rd party dependencies where it reduces maintenance, decreases total download size and/ or increases run speed.

👷 maintenance

  • f6b6d192 refactor: removes 3rd party dependency 'semver-try-require' (#939)
  • c8f7fa14 refactor: removes 3rd party dependency 'indent-string' (#940)
  • 838b3e85 refactor: removes 3rd party dependency 'figures' (#941)
  • af275359 build(npm): updates external dependencies
  • eac0d63d refactor(init): replaces runtime wordwrap on feedback with a static wordwrap
  • bbd3abba chore: removes accidentally committed file
Commits
  • 0e5a831 16.3.9
  • 615134a fix(ci): runs release & prelease on node 22.4.x instead of 22.x to circumvent...
  • 97941d0 16.3.8
  • 30b5148 build(npm): updates external dependencies
  • 1ee4e42 chore: removes some additional references to/ uses of lodash
  • 72373ea feat: support svelte 4 (#948)
  • 8e9a6cd 16.3.7
  • daa550c build(npm): updates external dependencies
  • dc4f183 chore(npm): removes unused devDependency shx
  • 6e618ce refactor: removes 3rd party dependency 'wrap-ansi' (#946)
  • Additional commits viewable in compare view

Updates husky from 9.0.11 to 9.1.1

Release notes

Sourced from husky's releases.

v9.1.1

Super saiyan god dog! It's over 9.0.0!

What's new

You can now run package commands directly, no need for npx or equivalents. It makes writing hooks more intuitive and is also slightly faster 🐺⚡️

# .husky/pre-commit
- npx jest
+ jest # ~0.2s faster

A new recipe has been added to the docs. Lint staged files without external dependencies (inspired by Prettier docs). Feel free to modify it.

# .husky/pre-commit
prettier $(git diff --cached --name-only --diff-filter=ACMR | sed 's| |\\ |g') --write --ignore-unknown
git update-index --again

For more advanced use cases, see lint-staged.

Fixes

  • bunx husky init command
  • Workaround for some hooks implementation on Windows

Deprecations

  • #!/usr/bin/env sh and . "$(dirname -- "$0")/_/husky.sh" are deprecated. husky command will automatically remove them, no action required.
  • If you're having code in ~/.huskyrc please move it to .config/husky/init.sh

Support for these will be removed in v10.

Friendly reminder

If Git hooks don't fit your workflow, you can disable Husky globally. Just add export HUSKY=0 to .config/husky/init.sh.

I've seen some confusion about this on X, so just a heads-up!

Sponsoring

Husky is downloaded over 45M times per month and used by ~1.5M projects. If your company wants to sponsor, you can do so here: GitHub Sponsors.

... (truncated)

Commits

Updates prettier from 3.3.2 to 3.3.3

Release notes

Sourced from prettier's releases.

3.3.3

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.3.3

diff

Add parentheses for nullish coalescing in ternary (#16391 by @​cdignam-segment)

This change adds clarity to operator precedence.

// Input
foo ? bar ?? foo : baz;
foo ?? bar ? a : b;
a ? b : foo ?? bar;
// Prettier 3.3.2
foo ? bar ?? foo : baz;
foo ?? bar ? a : b;
a ? b : foo ?? bar;
// Prettier 3.3.3
foo ? (bar ?? foo) : baz;
(foo ?? bar) ? a : b;
a ? b : (foo ?? bar);

Add parentheses for decorator expressions (#16458 by @​y-schneider)

Prevent parentheses around member expressions or tagged template literals from being removed to follow the stricter parsing rules of TypeScript 5.5.

// Input
@(foo`tagged template`)
class X {}
// Prettier 3.3.2
@​footagged template
class X {}
// Prettier 3.3.3
@(footagged template)
class X {}

Support @let declaration syntax (#16474 by @​sosukesuzuki)

Adds support for Angular v18 @let declaration syntax.

Please see the following code example. The @let declaration allows you to define local variables within the template:

... (truncated)

Commits

Updates tsx from 4.15.7 to 4.16.2

Release notes

Sourced from tsx's releases.

v4.16.2

4.16.2 (2024-07-03)

Bug Fixes

This release is also available on:

v4.16.1

4.16.1 (2024-07-03)

Bug Fixes

  • cjs: isolate implicit resolver enhancement (#59) (143a5bd)
  • cjs: namespace filter to preserve file path (6ef949c)
  • esm: implicit resolution with tsconfig paths (a74aa58), closes #607

This release is also available on:

v4.16.0

4.16.0 (2024-06-29)

Bug Fixes

  • cjs: tsx.require to support core modules (f748e19)

Features

  • cjs: improve compatibility with other loaders (3e1e546)

This release is also available on:

... (truncated)

Commits
  • 042be03 fix: isolated cts import in Node v18 (#61)
  • a74aa58 fix(esm): implicit resolution with tsconfig paths
  • 1603c66 refactor(cjs): cjs lexer detection
  • c6d5203 refactor(cjs): always inherit query from parent (#60)
  • aa3f2a1 test: scoped cts loading in Node v18
  • 8c61236 refactor(types): improve CJS module types
  • 23ebe7e refactor: preserve resolveFilename args accurately
  • e0b581c test: assert package can be loaded relative to data url
  • 143a5bd fix(cjs): isolate implicit resolver enhancement (#59)
  • 6ef949c fix(cjs): namespace filter to preserve file path
  • Additional commits viewable in compare view

Updates typescript from 5.5.2 to 5.5.3

Release notes

Sourced from typescript's releases.

TypeScript 5.5.3

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

Downloads are available on:

Commits

Updates watskeburt from 4.0.2 to 4.1.0

Release notes

Sourced from watskeburt's releases.

v4.1.0

✨ features

  • bec7cb2 feat(cli): enables passing extensions to the (regex) reporter (#47)

👷 maintenance

  • d2438ef. 805ed4a/ fac91b5/ bd0fc56 build(npm): updates external devDependencies
  • 93850d9 chore(ci): also run on node 22
Commits
  • 611cd9b 4.1.0
  • bec7cb2 feat(cli): enables passing extensions to the (regex) reporter(s) (#47)
  • bd0fc56 build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#48)
  • fac91b5 build(npm): updates external devDependencies
  • 805ed4a build(npm): updates external devDependencies
  • 7a6ffbd Revert "chore: replaces c8 with node native coverage (#46)"
  • d2438ef build(npm): updates external devDependencies
  • fdbe28e chore: replaces c8 with node native coverage (#46)
  • 93850d9 chore(ci): also run on node 22
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

sverweij and others added 2 commits June 24, 2024 20:27
@sverweij
Up'em just updated these outdated dependencies in package.json:
76fd108 
@types/node  20.14.2   -> 20.14.8  devDependencies   (policy: latest)
c8           9.1.0     -> 10.1.2   devDependencies   (policy: latest)
lint-staged  15.2.5    -> 15.2.7   devDependencies   (policy: latest)
prettier     3.3.1     -> 3.3.2    devDependencies   (policy: latest)
tsx          4.15.1    -> 4.15.7   devDependencies   (policy: latest)
typescript   5.4.5     -> 5.5.2    devDependencies   (policy: latest)

build(npm): updates external devDependencies
@dependabot
build(deps-dev): bump the non-major-node-dev-dependencies group acros…
f616fe2 
…s 1 directory with 7 updates

Bumps the non-major-node-dev-dependencies group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `20.14.8` | `20.14.11` |
| [dependency-cruiser](https://github.com/sverweij/dependency-cruiser) | `16.3.3` | `16.3.9` |
| [husky](https://github.com/typicode/husky) | `9.0.11` | `9.1.1` |
| [prettier](https://github.com/prettier/prettier) | `3.3.2` | `3.3.3` |
| [tsx](https://github.com/privatenumber/tsx) | `4.15.7` | `4.16.2` |
| [typescript](https://github.com/Microsoft/TypeScript) | `5.5.2` | `5.5.3` |
| [watskeburt](https://github.com/sverweij/watskeburt) | `4.0.2` | `4.1.0` |



Updates `@types/node` from 20.14.8 to 20.14.11
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `dependency-cruiser` from 16.3.3 to 16.3.9
- [Release notes](https://github.com/sverweij/dependency-cruiser/releases)
- [Changelog](https://github.com/sverweij/dependency-cruiser/blob/main/CHANGELOG.md)
- [Commits](sverweij/dependency-cruiser@v16.3.3...v16.3.9)

Updates `husky` from 9.0.11 to 9.1.1
- [Release notes](https://github.com/typicode/husky/releases)
- [Commits](typicode/husky@v9.0.11...v9.1.1)

Updates `prettier` from 3.3.2 to 3.3.3
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.3.2...3.3.3)

Updates `tsx` from 4.15.7 to 4.16.2
- [Release notes](https://github.com/privatenumber/tsx/releases)
- [Changelog](https://github.com/privatenumber/tsx/blob/master/release.config.cjs)
- [Commits](privatenumber/tsx@v4.15.7...v4.16.2)

Updates `typescript` from 5.5.2 to 5.5.3
- [Release notes](https://github.com/Microsoft/TypeScript/releases)
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml)
- [Commits](microsoft/TypeScript@v5.5.2...v5.5.3)

Updates `watskeburt` from 4.0.2 to 4.1.0
- [Release notes](https://github.com/sverweij/watskeburt/releases)
- [Commits](sverweij/watskeburt@v4.0.2...v4.1.0)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-node-dev-dependencies
- dependency-name: dependency-cruiser
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-node-dev-dependencies
- dependency-name: husky
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: non-major-node-dev-dependencies
- dependency-name: prettier
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-node-dev-dependencies
- dependency-name: tsx
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: non-major-node-dev-dependencies
- dependency-name: typescript
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-node-dev-dependencies
- dependency-name: watskeburt
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: non-major-node-dev-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from sverweij as a code owner July 22, 2024 00:12
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 22, 2024
@github-actions github-actions bot added the vco label Jul 22, 2024
@socket-security Socket Security
Copy link

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@types/[email protected] None +1 2.16 MB types
npm/[email protected] Transitive: environment, eval, filesystem, unsafe +49 6.43 MB sverweij
npm/[email protected] environment, filesystem, shell 0 4.21 kB typicode
npm/[email protected] environment, filesystem, unsafe 0 7.7 MB prettier-bot
npm/[email protected] Transitive: environment, filesystem, network, shell, unsafe +27 227 MB hirokiosame
npm/[email protected] None 0 21.9 MB typescript-bot
npm/[email protected] environment 0 16 kB sverweij

🚮 Removed packages: npm/@types/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 24, 2024

Looks like these dependencies are no longer updatable, so this is no longer needed.

@dependabot dependabot bot closed this Jul 24, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/non-major-node-dev-dependencies-354c590b2f branch July 24, 2024 18:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sverweij sverweij Awaiting requested review from sverweij sverweij is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code vco
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@sverweij