Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps-dev): bump the npm-development group across 1 directory with 3 updates #46

Closed

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 25, 2024

Bumps the npm-development group with 3 updates in the / directory: @vercel/ncc, eslint-plugin-github and typescript.

Updates @vercel/ncc from 0.38.2 to 0.38.3

Release notes

Sourced from @​vercel/ncc's releases.

0.38.3

0.38.3 (2024-11-15)

Bug Fixes

  • add missing --asset-builds to cli help message (#1228) (84f8c52)
Commits
  • 84f8c52 fix: add missing --asset-builds to cli help message (#1228)
  • 0ff93c6 chore(deps): Bump elliptic from 6.5.7 to 6.6.0 (#1223)
  • ae5bf16 chore(deps): Bump amannn/action-semantic-pull-request from 5.3.0 to 5.5.3 (#1...
  • 738a2bf chore(deps-dev): Bump axios from 0.21.4 to 1.7.7 (#1209)
  • See full diff in compare view

Updates eslint-plugin-github from 5.0.2 to 5.1.1

Release notes

Sourced from eslint-plugin-github's releases.

v5.1.1

What's Changed

Full Changelog: github/eslint-plugin-github@v5.1.0...v5.1.1

v5.1.0

In this release we're supporting ESLint's new flat config and still maintaining legacy configs for backwards compatibility. We've created flat configs via getFlatConfigs():

Usage

import github from 'eslint-plugin-github'
export default [
github.getFlatConfigs().browser,
github.getFlatConfigs().recommended,
github.getFlatConfigs().react,
...github.getFlatConfigs().typescript,
{
files: ['**/*.{js,mjs,cjs,jsx,mjsx,ts,tsx,mtsx}'],
ignores: ['eslint.config.mjs'],
rules: {
'github/array-foreach': 'error',
'github/async-preventdefault': 'warn',
'github/no-then': 'error',
'github/no-blur': 'error',
},
},
]

What's Changed

New Contributors

... (truncated)

Commits
  • 491ca33 Merge pull request #577 from github/gracepark-patch-legacy-config
  • bfeb02e Update package.json
  • 2a16854 chore(deps): bump the all-dependencies group across 1 directory with 4 update...
  • 3c52370 Merge pull request #571 from github/gracepark-support-flat-config
  • 8d79189 remove s
  • 47c24b5 update readme
  • 88a304a update to getFlatConfigs
  • f179dc0 update typescript tests
  • b815887 update filenames key
  • 3cf39da update to latest to compat for filenames fix
  • Additional commits viewable in compare view

Updates typescript from 5.6.3 to 5.7.2

Release notes

Sourced from typescript's releases.

TypeScript 5.7

For release notes, check out the release announcement.

Downloads are available on:

TypeScript 5.7 RC

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

Downloads are available on:

TypeScript 5.7 Beta

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

Downloads are available on:

Commits
  • d701d90 Bump version to 5.7.2 and LKG
  • 0503a63 🤖 Pick PR #60450 (Move to file: fix detection of refe...) into release-5.7 (#...
  • 3140dbb 🤖 Pick PR #60488 (Stub out copilotRelated command) into release-5.7 (#60495)
  • c1216de Update LKG
  • 3ee2b95 🤖 Pick PR #60415 (Fix false positive rewriteRelativeI...) into release-5.7 (#...
  • 44bd3f2 Bump version to 5.7.1-rc and LKG
  • 5925c81 Update LKG
  • 84d58cf Merge remote-tracking branch 'origin/main' into release-5.7
  • 0ec4d30 Fixing exception on unsaved file (#60362)
  • 11b2930 Add compatible overloads that accept ArrayBuffer to BigInt64Array/BigUint64Ar...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…th 3 updates

Bumps the npm-development group with 3 updates in the / directory: [@vercel/ncc](https://github.com/vercel/ncc), [eslint-plugin-github](https://github.com/github/eslint-plugin-github) and [typescript](https://github.com/microsoft/TypeScript).


Updates `@vercel/ncc` from 0.38.2 to 0.38.3
- [Release notes](https://github.com/vercel/ncc/releases)
- [Commits](vercel/ncc@0.38.2...0.38.3)

Updates `eslint-plugin-github` from 5.0.2 to 5.1.1
- [Release notes](https://github.com/github/eslint-plugin-github/releases)
- [Commits](github/eslint-plugin-github@v5.0.2...v5.1.1)

Updates `typescript` from 5.6.3 to 5.7.2
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml)
- [Commits](microsoft/TypeScript@v5.6.3...v5.7.2)

---
updated-dependencies:
- dependency-name: "@vercel/ncc"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-development
- dependency-name: eslint-plugin-github
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-development
- dependency-name: typescript
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added javascript Pull requests that update Javascript code Mend: dependency security vulnerability Security vulnerability detected by Mend labels Nov 25, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 2, 2024

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 9, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 9, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/npm-development-e0a49f0384 branch December 9, 2024 00:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
javascript Pull requests that update Javascript code Mend: dependency security vulnerability Security vulnerability detected by Mend
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants