From c2a8bfa5b9aa4c975cd48bb9764074d652f8637b Mon Sep 17 00:00:00 2001 From: Dan Goslen Date: Mon, 26 Apr 2021 10:25:05 -0400 Subject: [PATCH] Releases/v2.2 (#104) --- .github/dependabot.yml | 8 +- .github/workflows/pull_request.yml | 64 ++++++++-------- .github/workflows/release.yml | 12 +-- CHANGELOG.md | 15 +++- README.md | 5 ++ dist/index.js | 43 +++++------ package-lock.json | 116 +++++++++-------------------- package.json | 13 ++-- 8 files changed, 125 insertions(+), 151 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index b7050416..5c64a5e7 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -6,18 +6,18 @@ updates: labels: - dependabot - javascript - - Skip-Changelog + - verified open-pull-requests-limit: 3 schedule: interval: "daily" - target-branch: "releases/v2.2" + target-branch: "releases/v2.3" - package-ecosystem: "github-actions" directory: "/" labels: - dependabot - github-actions - - Skip-Changelog + - verified open-pull-requests-limit: 3 schedule: interval: "daily" - target-branch: "releases/v2.2" \ No newline at end of file + target-branch: "releases/v2.3" \ No newline at end of file diff --git a/.github/workflows/pull_request.yml b/.github/workflows/pull_request.yml index 12424ce5..db48fcde 100644 --- a/.github/workflows/pull_request.yml +++ b/.github/workflows/pull_request.yml @@ -1,11 +1,24 @@ name: "Pull Request Workflow" on: - pull_request: + pull_request_target: types: [opened, synchronize, reopened, ready_for_review, labeled, unlabeled] jobs: + + # validates that the pull request is trusted + verify: + runs-on: ubuntu-latest + steps: + - run: | + VERIFIED_LABEL=${{ contains(github.event.pull_request.labels.*.name, 'verified') }} + if [[ ( $VERIFIED_LABEL == 'false' ) ]]; then + echo "Pull request is not from a trusted source!" + exit 1 + fi + # unit tests unit-tests: + needs: [ verify ] runs-on: ubuntu-latest steps: - uses: actions/checkout@v2 @@ -20,7 +33,6 @@ jobs: # test action works running from the graph enforce-changelog: - needs: unit-tests runs-on: ubuntu-latest steps: - uses: actions/checkout@v2 @@ -30,9 +42,11 @@ jobs: - id: read-version run: | echo "::set-output name=version::$(jq -r ".version" package.json)" + echo "::set-output name=tag::v$(jq -r ".version" package.json)" - uses: dangoslen/dependabot-changelog-helper@v0.3.2 with: + version: ${{ steps.read-version.outputs.tag }} activationLabel: 'dependabot' newVersionLineNumber: 4 @@ -43,7 +57,8 @@ jobs: - id: changelog-enforcer uses: ./ with: - expectedLatestVersion: "v${{ steps.read-version.outputs.version }}" + skipLabels: "skip-changelog" + expectedLatestVersion: ${{ steps.read-version.outputs.tag }} - if: failure() uses: unsplash/comment-on-pr@master @@ -58,42 +73,19 @@ jobs: ${{ steps.changelog-enforcer.outputs.errorMessage }} ``` - # test action works running from the graph - back compat - enforce-changelog-v1: - needs: unit-tests - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v1 - - uses: ./ - - preview-release: - runs-on: ubuntu-latest - needs: [enforce-changelog] - steps: - - uses: actions/checkout@v2 - - - name: read version - id: read_version - run: | - echo ::set-output name=version::$(jq -r ".version" package.json) - echo ::set-output name=tag::v$(jq -r ".version" package.json) - - - name: Get Changelog Entry - id: changelog_reader + - id: changelog_reader uses: mindsers/changelog-reader-action@v2 with: version: "${{ steps.read_version.outputs.tag }}" path: ./CHANGELOG.md - - name: Check for Release - id: check_release + - id: check_release run: | - TAG=$(git ls-remote --tags origin | grep ${{ steps.read_version.outputs.version }} || [[ $? == 1 ]] && echo '') + TAG=$(git ls-remote --tags origin | grep ${{ steps.read-version.outputs.tag }} || [[ $? == 1 ]] && echo '') MISSING=$([[ -z "$TAG" ]] && echo 'true' || echo 'false') echo ::set-output name=missing::$MISSING - - name: Preview Changelog - if: ${{ steps.check_release.outputs.missing }} + - if: ${{ steps.check_release.outputs.missing }} uses: unsplash/comment-on-pr@master env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} @@ -105,4 +97,14 @@ jobs: ${{ steps.changelog_reader.outputs.changes }} - \ No newline at end of file + + + # test action works running from the graph - back compat + enforce-changelog-v1: + needs: [ unit-tests ] + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v1 + - uses: ./ + with: + skipLabels: "skip-changelog" \ No newline at end of file diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 108e7979..949601bd 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -12,7 +12,7 @@ jobs: - uses: actions/checkout@v2 - name: read versions - id: read_version + id: read-version run: | echo ::set-output name=version::$(jq -r ".version" package.json) echo ::set-output name=tag::v$(jq -r ".version" package.json) @@ -22,13 +22,13 @@ jobs: id: changelog_reader uses: mindsers/changelog-reader-action@v2 with: - version: "${{ steps.read_version.outputs.tag }}" + version: "${{ steps.read-version.outputs.tag }}" path: ./CHANGELOG.md - name: check for existing release id: check_release run: | - TAG=$(git ls-remote --tags origin | grep ${{ steps.read_version.outputs.tag }} || [[ $? == 1 ]] && echo '') + TAG=$(git ls-remote --tags origin | grep ${{ steps.read-version.outputs.tag }} || [[ $? == 1 ]] && echo '') MISSING=$([[ -z "$TAG" ]] && echo 'true' || echo 'false') echo ::set-output name=missing::$MISSING @@ -39,8 +39,8 @@ jobs: env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: - tag_name: "${{ steps.read_version.outputs.tag }}" - release_name: Changelog Enforcer ${{ steps.read_version.outputs.version }} + tag_name: "${{ steps.read-version.outputs.tag }}" + release_name: Changelog Enforcer ${{ steps.read-version.outputs.version }} body: ${{ steps.changelog_reader.outputs.changes }} draft: false prerelease: false @@ -48,6 +48,6 @@ jobs: - name: update major version tag uses: richardsimko/update-tag@v1 with: - tag_name: "${{ steps.read_version.outputs.major_tag }}" + tag_name: "${{ steps.read-version.outputs.major_tag }}" env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} \ No newline at end of file diff --git a/CHANGELOG.md b/CHANGELOG.md index 02568a22..f618033b 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,6 +1,18 @@ # CHANGELOG Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) +## [v2.2.0] +### Changed +- The `pull_request` workflow now executes as a `pull_request_target` workflow to handle incoming pull requests from forked repos. + - This is needed because Dependabot now works as a [forked branch](https://github.blog/changelog/2021-02-19-github-actions-workflows-triggered-by-dependabot-prs-will-run-with-read-only-permissions/). The reasoning and ways to accomodate are listed in a [GitHub Security article](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/) + - The `verified` label is needed to allow the workflow to execute +### Dependencies +- Bumps `uglify-js` from 3.13.2 to 3.13.3 +- Bumps `y18n` from 4.0.1 to 5.0.8 +- Bumps `@vercel/ncc` from 0.27.0 to 0.28.2 +- Bumps `@actions/core` from 1.2.6 to 1.2.7 +- Bumps `eslint` from 7.23.0 to 7.25.0 + ## [v2.1.0] ### Deprecated - The input `versionPattern` is now deprecated. Starting in `v3.0.0` the Changelog Enforcer will only work with [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) for verifying the latest expected version. @@ -20,7 +32,6 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) ### Dependencies - Bump `eslint` from 7.17.0 to 7.20.0 - Bump `@vercel/ncc` from 0.26.1 to 0.27.0 - ### Changed - Now reads the version from `package.json` instead of from `VERSION` @@ -47,6 +58,7 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) - `eslint` from `7.14.0` to `7.15.0` - `uglify-js` from `2.6.0` to `3.12.1` - `jest` from `24.9.0` to `26.6.3` + ## [v1.5.1] ### Added - Improved GitHub actions workflow for testing and packaging @@ -56,6 +68,7 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) - `@actions/github` from `2.1.1` to `4.0.0` - `eslint` from `6.3.0` to `7.14.0` - `changelog-reader-action` from `v1` to `v2` + ## [v1.5.0] ### Added - New input parameter `expectedLatestVersion`. diff --git a/README.md b/README.md index 38df36da..e39310c0 100644 --- a/README.md +++ b/README.md @@ -69,3 +69,8 @@ Below are the properties allowed by the Changelog Enforcer. These properties are ### Creating Releases Automatically Using this Action and the [Changelog Reader](https://github.com/mindsers/changelog-reader-action), plus a few standard GitHub created Actions, we can keep the changelog of a project up to date and create a GitHub release automatically with contents from the changelog. See this project's [release.yml](./.github/workflows/release.yml) for how to set up a simple workflow to create a new release based on a `VERSION` file and a changelog. +### Support + +If you enjoy this GitHub action, show some support by staring this repo! Other ways include: + +[](https://www.buymeacoffee.com/dangoslen) \ No newline at end of file diff --git a/dist/index.js b/dist/index.js index 494e1c84..a00df9dd 100644 --- a/dist/index.js +++ b/dist/index.js @@ -1,22 +1,6 @@ -module.exports = /******/ (() => { // webpackBootstrap /******/ var __webpack_modules__ = ({ -/***/ 2932: -/***/ ((__unused_webpack_module, __unused_webpack_exports, __nccwpck_require__) => { - -const changelogEnforcer = __nccwpck_require__(9679) - -// Looks for a label with the name from -async function run() { - changelogEnforcer.enforce(); -} - -run() - - -/***/ }), - /***/ 7351: /***/ (function(__unused_webpack_module, exports, __nccwpck_require__) { @@ -213,6 +197,7 @@ exports.getInput = getInput; */ // eslint-disable-next-line @typescript-eslint/no-explicit-any function setOutput(name, value) { + process.stdout.write(os.EOL); command_1.issueCommand('set-output', { name }, value); } exports.setOutput = setOutput; @@ -7315,8 +7300,9 @@ module.exports = require("zlib");; /******/ // The require function /******/ function __nccwpck_require__(moduleId) { /******/ // Check if module is in cache -/******/ if(__webpack_module_cache__[moduleId]) { -/******/ return __webpack_module_cache__[moduleId].exports; +/******/ var cachedModule = __webpack_module_cache__[moduleId]; +/******/ if (cachedModule !== undefined) { +/******/ return cachedModule.exports; /******/ } /******/ // Create a new module (and put it into the cache) /******/ var module = __webpack_module_cache__[moduleId] = { @@ -7341,10 +7327,21 @@ module.exports = require("zlib");; /************************************************************************/ /******/ /* webpack/runtime/compat */ /******/ -/******/ __nccwpck_require__.ab = __dirname + "/";/************************************************************************/ -/******/ // module exports must be returned from runtime so entry inlining is disabled -/******/ // startup -/******/ // Load entry module and return exports -/******/ return __nccwpck_require__(2932); +/******/ if (typeof __nccwpck_require__ !== 'undefined') __nccwpck_require__.ab = __dirname + "/";/************************************************************************/ +var __webpack_exports__ = {}; +// This entry need to be wrapped in an IIFE because it need to be isolated against other modules in the chunk. +(() => { +const changelogEnforcer = __nccwpck_require__(9679) + +// Looks for a label with the name from +async function run() { + changelogEnforcer.enforce(); +} + +run() + +})(); + +module.exports = __webpack_exports__; /******/ })() ; \ No newline at end of file diff --git a/package-lock.json b/package-lock.json index 3a4b542a..401f4954 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,13 +1,13 @@ { "name": "changelog-enforcer", - "version": "2.1.0", + "version": "2.2.0", "lockfileVersion": 1, "requires": true, "dependencies": { "@actions/core": { - "version": "1.2.6", - "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.2.6.tgz", - "integrity": "sha512-ZQYitnqiyBc3D+k7LsgSBmMDVkOVidaagDG7j3fOym77jNunWRuYx7VSHa9GNfFZh+zh61xsCjRj4JxMZlDqTA==" + "version": "1.2.7", + "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.2.7.tgz", + "integrity": "sha512-kzLFD5BgEvq6ubcxdgPbRKGD2Qrgya/5j+wh4LZzqT915I0V3rED+MvjH6NXghbvk1MXknpNNQ3uKjXSEN00Ig==" }, "@actions/exec": { "version": "1.0.4", @@ -1207,9 +1207,9 @@ "dev": true }, "@vercel/ncc": { - "version": "0.27.0", - "resolved": "https://registry.npmjs.org/@vercel/ncc/-/ncc-0.27.0.tgz", - "integrity": "sha512-DllIJQapnU2YwewIhh/4dYesmMQw3h2cFtabECc/zSJHqUbNa0eJuEkRa6DXbZvh1YPWBtYQoPV17NlDpBw1Vw==", + "version": "0.28.2", + "resolved": "https://registry.npmjs.org/@vercel/ncc/-/ncc-0.28.2.tgz", + "integrity": "sha512-2ZBPviK9nFHzymu9POKGz50BRGGBIw7a8VcjgH73Xu2H4IvZx3KS0Qk/SS7S/N6iAalAGGxLSwFM1obeBGWXGg==", "dev": true }, "abab": { @@ -1644,16 +1644,6 @@ "unset-value": "^1.0.0" } }, - "call-bind": { - "version": "1.0.2", - "resolved": "https://registry.npmjs.org/call-bind/-/call-bind-1.0.2.tgz", - "integrity": "sha512-7O+FbCihrB5WGbFYesctwmTKae6rOiIzmz1icreWJ+0aA7LJfuqhEso2T9ncpcFtzMQtzXf2QGGueWJGTYsqrA==", - "dev": true, - "requires": { - "function-bind": "^1.1.1", - "get-intrinsic": "^1.0.2" - } - }, "callsites": { "version": "3.1.0", "resolved": "https://registry.npmjs.org/callsites/-/callsites-3.1.0.tgz", @@ -2134,9 +2124,9 @@ } }, "eslint": { - "version": "7.23.0", - "resolved": "https://registry.npmjs.org/eslint/-/eslint-7.23.0.tgz", - "integrity": "sha512-kqvNVbdkjzpFy0XOszNwjkKzZ+6TcwCQ/h+ozlcIWwaimBBuhlQ4nN6kbiM2L+OjDcznkTJxzYfRFH92sx4a0Q==", + "version": "7.25.0", + "resolved": "https://registry.npmjs.org/eslint/-/eslint-7.25.0.tgz", + "integrity": "sha512-TVpSovpvCNpLURIScDRB6g5CYu/ZFq9GfX2hLNIV4dSBKxIWojeDODvYl3t0k0VtMxYeR8OXPCFE5+oHMlGfhw==", "dev": true, "requires": { "@babel/code-frame": "7.12.11", @@ -2218,9 +2208,9 @@ } }, "chalk": { - "version": "4.1.0", - "resolved": "https://registry.npmjs.org/chalk/-/chalk-4.1.0.tgz", - "integrity": "sha512-qwx12AxXe2Q5xQ43Ac//I6v5aXTipYrSESdOgzrN+9XjgEpyjpKuvSGaN4qE93f7TQTlerQQ8S+EQ0EyDoVL1A==", + "version": "4.1.1", + "resolved": "https://registry.npmjs.org/chalk/-/chalk-4.1.1.tgz", + "integrity": "sha512-diHzdDKxcU+bAsUboHLPEDQiw0qEe0qd7SYUn3HgcFlWgbDcfLGswOHYeGrHKzG9z6UYf01d9VFMfZxPM1xZSg==", "dev": true, "requires": { "ansi-styles": "^4.1.0", @@ -2274,9 +2264,9 @@ } }, "globals": { - "version": "13.7.0", - "resolved": "https://registry.npmjs.org/globals/-/globals-13.7.0.tgz", - "integrity": "sha512-Aipsz6ZKRxa/xQkZhNg0qIWXT6x6rD46f6x/PCnBomlttdIyAPak4YD9jTmKpZ72uROSMU87qJtcgpgHaVchiA==", + "version": "13.8.0", + "resolved": "https://registry.npmjs.org/globals/-/globals-13.8.0.tgz", + "integrity": "sha512-rHtdA6+PDBIjeEvA91rpqzEvk/k3/i7EeNQiryiWuJH0Hw9cpyJMAt2jtbAwUaRdhD+573X4vWw6IcjKPasi9Q==", "dev": true, "requires": { "type-fest": "^0.20.2" @@ -2844,17 +2834,6 @@ "integrity": "sha512-DyFP3BM/3YHTQOCUL/w0OZHR0lpKeGrxotcHWcqNEdnltqFwXVfhEBQ94eIo34AfQpo0rGki4cyIiftY06h2Fg==", "dev": true }, - "get-intrinsic": { - "version": "1.1.1", - "resolved": "https://registry.npmjs.org/get-intrinsic/-/get-intrinsic-1.1.1.tgz", - "integrity": "sha512-kWZrnVM42QCiEA2Ig1bG8zjoIMOgxWwYCEeNdwY6Tv/cOSeGpcoX4pXHfKUxNKVoArnrEr2e9srnAxxGIraS9Q==", - "dev": true, - "requires": { - "function-bind": "^1.1.1", - "has": "^1.0.3", - "has-symbols": "^1.0.1" - } - }, "get-package-type": { "version": "0.1.0", "resolved": "https://registry.npmjs.org/get-package-type/-/get-package-type-0.1.0.tgz", @@ -2958,12 +2937,6 @@ "integrity": "sha1-tdRU3CGZriJWmfNGfloH87lVuv0=", "dev": true }, - "has-symbols": { - "version": "1.0.2", - "resolved": "https://registry.npmjs.org/has-symbols/-/has-symbols-1.0.2.tgz", - "integrity": "sha512-chXa79rL/UC2KlX17jo3vRGz0azaWEx5tGqZg5pO3NUyEJVB17dMruQlzCCOfUvElghKcm5194+BCRvi2Rv/Gw==", - "dev": true - }, "has-value": { "version": "1.0.0", "resolved": "https://registry.npmjs.org/has-value/-/has-value-1.0.0.tgz", @@ -3151,15 +3124,6 @@ "integrity": "sha1-d8mYQFJ6qOyxqLppe4BkWnqSap0=", "dev": true }, - "is-boolean-object": { - "version": "1.1.0", - "resolved": "https://registry.npmjs.org/is-boolean-object/-/is-boolean-object-1.1.0.tgz", - "integrity": "sha512-a7Uprx8UtD+HWdyYwnD1+ExtTgqQtD2k/1yJgtXP6wnMm8byhkoTZRl+95LLThpzNZJ5aEvi46cdH+ayMFRwmA==", - "dev": true, - "requires": { - "call-bind": "^1.0.0" - } - }, "is-buffer": { "version": "1.1.6", "resolved": "https://registry.npmjs.org/is-buffer/-/is-buffer-1.1.6.tgz", @@ -3269,12 +3233,6 @@ "integrity": "sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==", "dev": true }, - "is-number-object": { - "version": "1.0.4", - "resolved": "https://registry.npmjs.org/is-number-object/-/is-number-object-1.0.4.tgz", - "integrity": "sha512-zohwelOAur+5uXtk8O3GPQ1eAcu4ZX3UwxQhUlfFFMNpUd83gXgjbhJh6HmB6LUNV/ieOLQuDwJO3dWJosUeMw==", - "dev": true - }, "is-plain-object": { "version": "2.0.4", "resolved": "https://registry.npmjs.org/is-plain-object/-/is-plain-object-2.0.4.tgz", @@ -3296,12 +3254,6 @@ "integrity": "sha1-EtSj3U5o4Lec6428hBc66A2RykQ=", "dev": true }, - "is-string": { - "version": "1.0.5", - "resolved": "https://registry.npmjs.org/is-string/-/is-string-1.0.5.tgz", - "integrity": "sha512-buY6VNRjhQMiF1qWDouloZlQbRhDPCebwxSjxMjxgemYT46YMd2NR0/H+fBhEfWX4A/w9TBJ+ol+okqJKFE6vQ==", - "dev": true - }, "is-typedarray": { "version": "1.0.0", "resolved": "https://registry.npmjs.org/is-typedarray/-/is-typedarray-1.0.0.tgz", @@ -6325,26 +6277,24 @@ "dev": true }, "table": { - "version": "6.0.8", - "resolved": "https://registry.npmjs.org/table/-/table-6.0.8.tgz", - "integrity": "sha512-OBAdezyozae8IvjHGXBDHByVkLCcsmffXUSj8LXkNb0SluRd4ug3GFCjk6JynZONIPhOkyr0Nnvbq1rlIspXyQ==", + "version": "6.5.1", + "resolved": "https://registry.npmjs.org/table/-/table-6.5.1.tgz", + "integrity": "sha512-xGDXWTBJxahkzPQCsn1S9ESHEenU7TbMD5Iv4FeopXv/XwJyWatFjfbor+6ipI10/MNPXBYUamYukOrbPZ9L/w==", "dev": true, "requires": { "ajv": "^8.0.1", - "is-boolean-object": "^1.1.0", - "is-number-object": "^1.0.4", - "is-string": "^1.0.5", "lodash.clonedeep": "^4.5.0", "lodash.flatten": "^4.4.0", "lodash.truncate": "^4.4.2", "slice-ansi": "^4.0.0", - "string-width": "^4.2.0" + "string-width": "^4.2.0", + "strip-ansi": "^6.0.0" }, "dependencies": { "ajv": { - "version": "8.0.1", - "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.0.1.tgz", - "integrity": "sha512-46ZA4TalFcLLqX1dEU3dhdY38wAtDydJ4e7QQTVekLUTzXkb1LfqU6VOBXC/a9wiv4T094WURqJH6ZitF92Kqw==", + "version": "8.1.0", + "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.1.0.tgz", + "integrity": "sha512-B/Sk2Ix7A36fs/ZkuGLIR86EdjbgR6fsAcbx9lOP/QBSXujDNbVmIS/U4Itz5k8fPFDeVZl/zQ/gJW4Jrq6XjQ==", "dev": true, "requires": { "fast-deep-equal": "^3.1.1", @@ -6518,9 +6468,9 @@ } }, "uglify-js": { - "version": "3.13.2", - "resolved": "https://registry.npmjs.org/uglify-js/-/uglify-js-3.13.2.tgz", - "integrity": "sha512-SbMu4D2Vo95LMC/MetNaso1194M1htEA+JrqE9Hk+G2DhI+itfS9TRu9ZKeCahLDNa/J3n4MqUJ/fOHMzQpRWw==" + "version": "3.13.3", + "resolved": "https://registry.npmjs.org/uglify-js/-/uglify-js-3.13.3.tgz", + "integrity": "sha512-otIc7O9LyxpUcQoXzj2hL4LPWKklO6LJWoJUzNa8A17Xgi4fOeDC8FBDOLHnC/Slo1CQgsZMcM6as0M76BZaig==" }, "union-value": { "version": "1.0.1", @@ -6849,9 +6799,9 @@ "dev": true }, "y18n": { - "version": "4.0.0", - "resolved": "https://registry.npmjs.org/y18n/-/y18n-4.0.0.tgz", - "integrity": "sha512-r9S/ZyXu/Xu9q1tYlpsLIsa3EeLXXk0VwlxqTcFRfg9EhMW+17kbt9G0NrgCmhGb5vT2hyhJZLfDGx+7+5Uj/w==", + "version": "5.0.8", + "resolved": "https://registry.npmjs.org/y18n/-/y18n-5.0.8.tgz", + "integrity": "sha512-0pfFzegeDWJHJIAmTLRP2DwHjdF5s7jo9tuztdQxAhINCdvS+3nGINqPd00AphqJR/0LhANUS6/+7SCb98YOfA==", "dev": true }, "yallist": { @@ -6916,6 +6866,12 @@ "requires": { "ansi-regex": "^5.0.0" } + }, + "y18n": { + "version": "4.0.1", + "resolved": "https://registry.npmjs.org/y18n/-/y18n-4.0.1.tgz", + "integrity": "sha512-wNcy4NvjMYL8gogWWYAO7ZFWFfHcbdbE57tZO8e4cbpj8tfUcwrwqSl3ad8HxpYWCdXcJUCeKKZS62Av1affwQ==", + "dev": true } } }, diff --git a/package.json b/package.json index b90597dd..fd6cca31 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "changelog-enforcer", - "version": "2.1.0", + "version": "2.2.0", "description": "Enforces that a changelog is kept up-to-date", "main": "index.js", "scripts": { @@ -30,16 +30,17 @@ }, "homepage": "https://github.com/dangoslen/changelog-enforcer#readme", "dependencies": { - "@actions/core": "^1.2.6", + "@actions/core": "^1.2.7", "@actions/exec": "^1.0.3", "@actions/github": "^4.0.0", "dist": "^0.1.2", "make-coverage-badge": "^1.2.0", - "uglify-js": "^3.13.2" + "uglify-js": "^3.13.3" }, "devDependencies": { - "@vercel/ncc": "^0.27.0", - "eslint": "^7.23.0", - "jest": "^26.6.3" + "@vercel/ncc": "^0.28.2", + "eslint": "^7.25.0", + "jest": "^26.6.3", + "y18n": "^5.0.8" } }