-
Notifications
You must be signed in to change notification settings - Fork 14
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Remove the ability to customise classes across components #4
Comments
What's the ability to customise classes - got a short example or the calls used by the components which do support it? Is this like the |
🙈and 🤔
I think it would involve some work to break out modifiers and such, but we're trying to get a feel for the general consensus |
I'm in favour of removing this ability. Is there a particular use case it was introduced for? |
@dan-searle Not that's known to me. It might be useful for using a component to build a new component, but we can still provide mixins which include no classes, oNormaliseVisuallyHidden is a good example . |
I'm in favour of removing this too because it seems obtuse and is little, if ever, used. |
Had a quick chat with @wheresrhys on this, wondered whether he'd have some history. We came up with some potential reasons why you might do this:
Going to look through some old issues and commits to see if I can find the real reasons |
Good thoughts. That sounded like a compelling reason but actually doesn't really apply here as usually we only allow modifying the block portion of the class, not element or modifier portions. |
For the reasons above, we're decided to start removing the ability to customise the base class of Origami components. Thanks for your input everyone 👍 |
Also updates README and adds a migration guide ready for v3. Accepted proposal: Financial-Times/origami#4
* Remove the ability to customise the base class name `o-layout`. Also updates README and adds a migration guide ready for v3. Accepted proposal: Financial-Times/origami#4
Relates to proposal: Financial-Times/origami#4 And the major cascade project, where we are removing custom Sass classes: https://github.com/orgs/Financial-Times/projects/77
Relates to proposal: Financial-Times/origami#4 And the major cascade project, where we are removing custom Sass classes: https://github.com/orgs/Financial-Times/projects/77
* Remove custom class name variable from Sass boilerplate. Relates to proposal: Financial-Times/origami#4 And the major cascade project, where we are removing custom Sass classes: https://github.com/orgs/Financial-Times/projects/77 * Correct Sass boilerplate comment
This was done. No Origami maintained components allow class customisation in this way. I don't think it's something to specially spec against though, especially if we spec how we should customise components, and would like to close this issue. Thoughts @Financial-Times/origami-core? |
@notlee Agree, let's close this :-) |
This auto-generates component data when a new commit appears on master, only updating if the data has changed. This gets around the fact that Jekyll cannot access repo data directly. You can now access component versions in the markdown, e.g: ``` {{site.data.components.o-layout.version}} ```
Ensure pa11y demo exists to run tests against
* Add origami-version GitHub Action When this is merged, we can have automated releases by using the release-type labels "major"/"minor"/"patch" on a pull-request before merging the pull-request. * Update config.js * Update automatic-tag-and-release.yml * 2.0.0 * 2.0.1 * Move from CircleCI to GitHub Actions * Update publish-to-npm.yml * Update automatic-tag-and-release.yml * Update config.test.js * only run on prs * Initial commit. Rules taken from [origami-build-tools v10](https://github.com/Financial-Times/origami-build-tools/blob/a931d2d8c8617a5309484d6624a078016866b3db/config/.stylelintrc.json). * Plugins are dependencies, not devDependencies. * Allow function arguments to go on a new line. This should be valid: ```scss .argument-newline { @include baz( 'Lorem ipsum dolor sit amet consectetur adipisicing elit.', 'Lorem ipsum dolor sit amet consectetur adipisicing.' ); } ``` * Allow `@include oGridRespondTo` after declarations. The output of `oGridRespondTo` is a media query. * Allow newlines in declarations and in and round function arguments. This is useful for formatting functions with large arguments in a readable way: ```scss $some-very-very-very-large-conditional: true; $foreground-color: if( $some-very-very-very-large-conditional == true, "then each argument should go on a newline for readability", "otherwise each argument could be on the same line" ); ``` And for formatting declarations such as grid areas in a readable way: ```scss .foo-grid { grid-template-areas: "header header header" ". sidebar ." ". main ." "footer footer footer"; } ``` * Auto merge dependabot dev dependency PRs https://github.com/Financial-Times/origami/issues/55 * Bump stylelint-scss from 3.17.1 to 3.17.2 Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.1 to 3.17.2. - [Release notes](https://github.com/kristerkari/stylelint-scss/releases) - [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md) - [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.1...3.17.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Auto merge dependabot dev dependency PRs https://github.com/Financial-Times/origami/issues/55 * Bump @financial-times/origami-service-makefile from 6.0.1 to 7.0.3 Bumps [@financial-times/origami-service-makefile](https://github.com/Financial-Times/origami-service-makefile) from 6.0.1 to 7.0.3. - [Release notes](https://github.com/Financial-Times/origami-service-makefile/releases) - [Commits](https://github.com/Financial-Times/origami-service-makefile/compare/v6.0.1...v7.0.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 7.1.2 to 7.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 7.1.2 to 7.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.1.2...v7.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 4.0.1 to 7.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 4.0.1 to 7.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v4.0.1...v7.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add Github Action to auto approve dependabot So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55 * Add Github Action to auto approve dependabot So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55 * Bump proclaim from 3.5.0 to 3.6.0 Bumps [proclaim](https://github.com/rowanmanning/proclaim) from 3.5.0 to 3.6.0. - [Release notes](https://github.com/rowanmanning/proclaim/releases) - [Commits](https://github.com/rowanmanning/proclaim/compare/3.5.0...3.6.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add Github Action to apply Origami type label We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43 * Add Github Action to apply Origami type label We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43 * initial commit * Create npm-cit.yml * add origami .github files * Update README.md * Add Github Action to apply Origami type label (#1) * Add origami.json (#3) * Bump stylelint-order from 4.0.0 to 4.1.0 Bumps [stylelint-order](https://github.com/hudochenkov/stylelint-order) from 4.0.0 to 4.1.0. - [Release notes](https://github.com/hudochenkov/stylelint-order/releases) - [Changelog](https://github.com/hudochenkov/stylelint-order/blob/master/CHANGELOG.md) - [Commits](https://github.com/hudochenkov/stylelint-order/compare/4.0.0...4.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Rename package to remove -readme (#4) * Improve licence linting (#6) * Don't try to trim what is not there (#7) * Improve handling of ToC with heading (#8) * Bump mocha from 7.2.0 to 8.0.1 Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 7.2.0 to 8.0.1 Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump stylelint-scss from 3.17.2 to 3.18.0 Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.2 to 3.18.0. - [Release notes](https://github.com/kristerkari/stylelint-scss/releases) - [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md) - [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.2...3.18.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * make dependabot ignore snyk updates snyk does too many updates and it makes for too many pull-requests for origami to review * only run on merged pull-requests * add name to labels workflow * [Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * [Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * update weekly instead of live because live is too noisy * Expect to be in root when lint is run (#9) * Bump mocha from 8.0.1 to 8.1.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 8.0.1 to 8.1.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add some keywords to the origami.json * Bump mocha from 8.1.0 to 8.1.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 8.1.0 to 8.1.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add new rule `readme-has-general-usage`. Check for the presence of a link to general component usage documentation "https://origami.ft.com/docs/components". Relates to: https://github.com/Financial-Times/origami/issues/59 Fixes: https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/13 * Update test/invalid/invalid-missing-general-usage/README.md Co-authored-by: Jake Champion <me@jakechampion.name> * Update `rules/readme-has-general-usage.js` indent and quotes * Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63 * Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63 * Delete automerge.yml * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * add hack for vscode-remark-lint (#16) * remove stray slash * rewrite check for bower name existence * add a hack for remark-lint * Bump mocha from 8.1.1 to 8.1.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Update dependabot.yml * Delete config.yml * Create dependabot.yml * Create automerge.yml * add missing workflow files * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.1 to 8.1.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2) Signed-off-by: dependabot[bot] <support@github.com> * Create dependabot.yml * Create automerge.yml * Add auto-approve dependabot workflow * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v1 to v2.1.1 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v1 to v2.1.1. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v1...851e2594e44b5f0a0f44a4b807f10eaba91b31b2) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark from 12.0.0 to 12.0.1 Bumps [remark](https://github.com/remarkjs/remark) from 12.0.0 to 12.0.1. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/12.0.0...12.0.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark-cli from 8.0.0 to 8.0.1 Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.0 to 8.0.1. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.0...remark-cli@8.0.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.2 to 8.1.3 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.2 to 8.1.3 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3) Signed-off-by: dependabot[bot] <support@github.com> * Add linting rule to ensure relative imports always have a file extension * Make the import extension rule be a warning to make this a non-breaking change * Use word instead of number to mark the severity * use words instead of numbers to mark the severity for rules (#38) * Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 (#39) Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update `automatic-tag-and-release`, consistent with components. I'm wondering if it will somehow help this issue, though I don't see how it would. https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/24 Since `fetch-depth: 0` fetches all tags and branches, I wonder if the step is needed at all https://github.com/actions/checkout#fetch-all-history-for-all-tags-and-branches * only run automerge on dependabot prs * Make automerge only run on dependabot prs and not rebase anything * Make automerge only run on dependabot prs and not rebase anything * only run automerge on dependabot prs * only run automerge on dependabot prs * only run automerge on dependabot prs * only run automerge on dependabot prs * update to latest version of origami workflows * update to latest version of origami workflows * update to latest version of origami workflows * add note about origami-build-tools to the readme (#29) * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark-cli from 8.0.1 to 9.0.0 Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.1 to 9.0.0. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.1...remark-cli@9.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark from 12.0.1 to 13.0.0 Bumps [remark](https://github.com/remarkjs/remark) from 12.0.1 to 13.0.0. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/12.0.1...13.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.3 to 8.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.3 to 8.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf) Signed-off-by: dependabot[bot] <support@github.com> * Delete whitesource.config.json * make the example codeblock use the correct config name * Bump mocha from 8.2.0 to 8.2.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.0 to 8.2.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1) Signed-off-by: dependabot[bot] <support@github.com> * Set origamiType to config (#46) https://origami.ft.com/spec/v1/manifest/#origamitype * try breaking vscode and hopefully fixing github (#37) * Add tests to confirm our linting extectations. These tests will be usefull to confirm updating rules will not effect our linting in unexpected ways and also to help us migrate from stylelint in the future if we need to (the sasslint migration was a bit tricky). These tests were previously part of origami build tools: - File: https://github.com/Financial-Times/origami-build-tools/blob/a910eaae22e2e0aa47e2c64fe13eaf3d2a7a0c9a/test/unit/tasks/verify-sass.test.js#L87 - PR: https://github.com/Financial-Times/origami-build-tools/pull/727 * Bump execa from 4.1.0 to 5.0.0 Bumps [execa](https://github.com/sindresorhus/execa) from 4.1.0 to 5.0.0. - [Release notes](https://github.com/sindresorhus/execa/releases) - [Commits](https://github.com/sindresorhus/execa/compare/v4.1.0...v5.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * build(deps): npm audit fix Summary: - Updated packages: 1 - Added packages: 0 - Removed packages: 0 Fixed vulnerabilities: - ini: "Prototype Pollution" (https://npmjs.com/advisories/1589) * build(deps): npm audit fix Summary: - Updated packages: 1 - Added packages: 0 - Removed packages: 0 Fixed vulnerabilities: - ini: "Prototype Pollution" (https://npmjs.com/advisories/1589) * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Add publish to npm workflow The `automatic-tag-and-release` workflow creates a GitHub release based on which of our Github release labels have been applied to a merged PR, and comments on the PR to say the release has happened. However it does not actually do the publishing to npm. That means the last two releases of `remark-preset-lint-origami-component` were not published to npm but looked as if they were. Including this PR to try fixing the README name warning in Github: https://github.com/Financial-Times/remark-preset-lint-origami-component/pull/37 * Correct package.json version. This PR is really just to make a new release and hope the Github workflow `remark-preset-lint-origami-component` runs and updates this version number again. * Remove whitespace from action name * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * update the test workflow to use branch named `main` (#48) we changed the default branch of this project but missed this workflow during that work. * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.8.0 to 13.9.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.8.0 to 13.9.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.8.0...13.9.0) Signed-off-by: dependabot[bot] <support@github.com> * Add ability to publish prereleases with a different dist-tag Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag * Add ability to publish prereleases with a different dist-tag Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.1 to 8.3.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.1 to 8.3.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.9.0 to 13.10.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.9.0 to 13.10.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.9.0...13.10.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.10.0 to 13.11.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.10.0 to 13.11.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.11.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * use step level if statements as job level if is not working correctly * use step level if statements as job level if is not working correctly * use step level if statements as job level if is not working correctly * Bump mocha from 8.3.0 to 8.3.1 (#59) Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump mocha from 8.3.0 to 8.3.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.11.0 to 13.12.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.11.0 to 13.12.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.11.0...13.12.0) Signed-off-by: dependabot[bot] <support@github.com> * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * Bump mocha from 8.3.1 to 8.3.2 (#60) Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * use pull_request_target and not pull_request for the safe workflows (#63) use pull_request_target and not pull_request for the safe workflows * Bump mocha from 8.3.1 to 8.3.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2) Signed-off-by: dependabot[bot] <support@github.com> * Bump hmarr/auto-approve-action Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> * Bump hmarr/auto-approve-action (#64) Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump hmarr/auto-approve-action Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.12.0 to 13.13.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.12.0 to 13.13.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.12.0...13.13.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.13.0 to 13.13.1 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.13.0 to 13.13.1. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.13.0...13.13.1) Signed-off-by: dependabot[bot] <support@github.com> * We don't want to use dependabot to update dependencies anymore (#65) * We don't want to use dependabot to update dependencies anymore * We don't want to use dependabot to update dependencies anymore * Delete npm-audit-fix.yml * Delete npm-audit-fix.yml * Bump lodash from 4.17.19 to 4.17.21 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21) Signed-off-by: dependabot[bot] <support@github.com> * Bump hosted-git-info from 2.8.8 to 2.8.9 (#66) Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9. - [Release notes](https://github.com/npm/hosted-git-info/releases) - [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md) - [Commits](https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * allow single letter mixins If an origami component has a single letter name, then it's primary mixin would be a single letter E.G. The component `@financial-times/a` would have a primary mixin named `a`. I came across this when testing out a new version of `obt init` and I set the component name to `a`. I'm not sure if we want this functionality, maybe we want to disallow single letter component names instead? * Add integration test for single letter mixin * Bump trim-newlines from 3.0.0 to 3.0.1 Bumps [trim-newlines](https://github.com/sindresorhus/trim-newlines) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/sindresorhus/trim-newlines/releases) - [Commits](https://github.com/sindresorhus/trim-newlines/commits) --- updated-dependencies: - dependency-name: trim-newlines dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump glob-parent from 5.1.1 to 5.1.2 Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2. - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2) --- updated-dependencies: - dependency-name: glob-parent dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump glob-parent from 5.1.1 to 5.1.2 Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2. - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2) --- updated-dependencies: - dependency-name: glob-parent dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump postcss from 7.0.31 to 7.0.36 Bumps [postcss](https://github.com/postcss/postcss) from 7.0.31 to 7.0.36. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/7.0.31...7.0.36) --- updated-dependencies: - dependency-name: postcss dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * chore: bring linter presets into the monorepo * chore: regenerate config Co-authored-by: Jake Champion <me@jakechampion.name> Co-authored-by: Jake Champion <jakechampion.jake2@googlemail.com> Co-authored-by: notlee <lee.moody@ft.com> Co-authored-by: Lee Moody <notlee@users.noreply.github.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: JakeChampion <actions@github.com> Co-authored-by: Fox <origamiserviceuser@users.noreply.github.com>
* Add origami-version GitHub Action When this is merged, we can have automated releases by using the release-type labels "major"/"minor"/"patch" on a pull-request before merging the pull-request. * Update config.js * Update automatic-tag-and-release.yml * 2.0.0 * 2.0.1 * Move from CircleCI to GitHub Actions * Update publish-to-npm.yml * Update automatic-tag-and-release.yml * Update config.test.js * only run on prs * Initial commit. Rules taken from [origami-build-tools v10](https://github.com/Financial-Times/origami-build-tools/blob/a931d2d8c8617a5309484d6624a078016866b3db/config/.stylelintrc.json). * Plugins are dependencies, not devDependencies. * Allow function arguments to go on a new line. This should be valid: ```scss .argument-newline { @include baz( 'Lorem ipsum dolor sit amet consectetur adipisicing elit.', 'Lorem ipsum dolor sit amet consectetur adipisicing.' ); } ``` * Allow `@include oGridRespondTo` after declarations. The output of `oGridRespondTo` is a media query. * Allow newlines in declarations and in and round function arguments. This is useful for formatting functions with large arguments in a readable way: ```scss $some-very-very-very-large-conditional: true; $foreground-color: if( $some-very-very-very-large-conditional == true, "then each argument should go on a newline for readability", "otherwise each argument could be on the same line" ); ``` And for formatting declarations such as grid areas in a readable way: ```scss .foo-grid { grid-template-areas: "header header header" ". sidebar ." ". main ." "footer footer footer"; } ``` * Auto merge dependabot dev dependency PRs https://github.com/Financial-Times/origami/issues/55 * Bump stylelint-scss from 3.17.1 to 3.17.2 Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.1 to 3.17.2. - [Release notes](https://github.com/kristerkari/stylelint-scss/releases) - [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md) - [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.1...3.17.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Auto merge dependabot dev dependency PRs https://github.com/Financial-Times/origami/issues/55 * Bump @financial-times/origami-service-makefile from 6.0.1 to 7.0.3 Bumps [@financial-times/origami-service-makefile](https://github.com/Financial-Times/origami-service-makefile) from 6.0.1 to 7.0.3. - [Release notes](https://github.com/Financial-Times/origami-service-makefile/releases) - [Commits](https://github.com/Financial-Times/origami-service-makefile/compare/v6.0.1...v7.0.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 7.1.2 to 7.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 7.1.2 to 7.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.1.2...v7.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 4.0.1 to 7.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 4.0.1 to 7.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v4.0.1...v7.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add Github Action to auto approve dependabot So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55 * Add Github Action to auto approve dependabot So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55 * Bump proclaim from 3.5.0 to 3.6.0 Bumps [proclaim](https://github.com/rowanmanning/proclaim) from 3.5.0 to 3.6.0. - [Release notes](https://github.com/rowanmanning/proclaim/releases) - [Commits](https://github.com/rowanmanning/proclaim/compare/3.5.0...3.6.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add Github Action to apply Origami type label We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43 * Add Github Action to apply Origami type label We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43 * initial commit * Create npm-cit.yml * add origami .github files * Update README.md * Add Github Action to apply Origami type label (#1) * Add origami.json (#3) * Bump stylelint-order from 4.0.0 to 4.1.0 Bumps [stylelint-order](https://github.com/hudochenkov/stylelint-order) from 4.0.0 to 4.1.0. - [Release notes](https://github.com/hudochenkov/stylelint-order/releases) - [Changelog](https://github.com/hudochenkov/stylelint-order/blob/master/CHANGELOG.md) - [Commits](https://github.com/hudochenkov/stylelint-order/compare/4.0.0...4.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Rename package to remove -readme (#4) * Improve licence linting (#6) * Don't try to trim what is not there (#7) * Improve handling of ToC with heading (#8) * Bump mocha from 7.2.0 to 8.0.1 Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 7.2.0 to 8.0.1 Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump stylelint-scss from 3.17.2 to 3.18.0 Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.2 to 3.18.0. - [Release notes](https://github.com/kristerkari/stylelint-scss/releases) - [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md) - [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.2...3.18.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * make dependabot ignore snyk updates snyk does too many updates and it makes for too many pull-requests for origami to review * only run on merged pull-requests * add name to labels workflow * [Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * [Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * update weekly instead of live because live is too noisy * Expect to be in root when lint is run (#9) * Bump mocha from 8.0.1 to 8.1.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 8.0.1 to 8.1.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add some keywords to the origami.json * Bump mocha from 8.1.0 to 8.1.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 8.1.0 to 8.1.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add new rule `readme-has-general-usage`. Check for the presence of a link to general component usage documentation "https://origami.ft.com/docs/components". Relates to: https://github.com/Financial-Times/origami/issues/59 Fixes: https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/13 * Update test/invalid/invalid-missing-general-usage/README.md Co-authored-by: Jake Champion <me@jakechampion.name> * Update `rules/readme-has-general-usage.js` indent and quotes * Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63 * Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63 * Delete automerge.yml * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * add hack for vscode-remark-lint (#16) * remove stray slash * rewrite check for bower name existence * add a hack for remark-lint * Bump mocha from 8.1.1 to 8.1.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Update dependabot.yml * Delete config.yml * Create dependabot.yml * Create automerge.yml * add missing workflow files * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.1 to 8.1.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2) Signed-off-by: dependabot[bot] <support@github.com> * Create dependabot.yml * Create automerge.yml * Add auto-approve dependabot workflow * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v1 to v2.1.1 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v1 to v2.1.1. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v1...851e2594e44b5f0a0f44a4b807f10eaba91b31b2) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark from 12.0.0 to 12.0.1 Bumps [remark](https://github.com/remarkjs/remark) from 12.0.0 to 12.0.1. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/12.0.0...12.0.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark-cli from 8.0.0 to 8.0.1 Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.0 to 8.0.1. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.0...remark-cli@8.0.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.2 to 8.1.3 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.2 to 8.1.3 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3) Signed-off-by: dependabot[bot] <support@github.com> * Add linting rule to ensure relative imports always have a file extension * Make the import extension rule be a warning to make this a non-breaking change * Use word instead of number to mark the severity * use words instead of numbers to mark the severity for rules (#38) * Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 (#39) Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update `automatic-tag-and-release`, consistent with components. I'm wondering if it will somehow help this issue, though I don't see how it would. https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/24 Since `fetch-depth: 0` fetches all tags and branches, I wonder if the step is needed at all https://github.com/actions/checkout#fetch-all-history-for-all-tags-and-branches * only run automerge on dependabot prs * Make automerge only run on dependabot prs and not rebase anything * Make automerge only run on dependabot prs and not rebase anything * only run automerge on dependabot prs * only run automerge on dependabot prs * only run automerge on dependabot prs * only run automerge on dependabot prs * update to latest version of origami workflows * update to latest version of origami workflows * update to latest version of origami workflows * add note about origami-build-tools to the readme (#29) * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark-cli from 8.0.1 to 9.0.0 Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.1 to 9.0.0. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.1...remark-cli@9.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark from 12.0.1 to 13.0.0 Bumps [remark](https://github.com/remarkjs/remark) from 12.0.1 to 13.0.0. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/12.0.1...13.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.3 to 8.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.3 to 8.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf) Signed-off-by: dependabot[bot] <support@github.com> * Delete whitesource.config.json * make the example codeblock use the correct config name * Bump mocha from 8.2.0 to 8.2.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.0 to 8.2.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1) Signed-off-by: dependabot[bot] <support@github.com> * Set origamiType to config (#46) https://origami.ft.com/spec/v1/manifest/#origamitype * try breaking vscode and hopefully fixing github (#37) * Add tests to confirm our linting extectations. These tests will be usefull to confirm updating rules will not effect our linting in unexpected ways and also to help us migrate from stylelint in the future if we need to (the sasslint migration was a bit tricky). These tests were previously part of origami build tools: - File: https://github.com/Financial-Times/origami-build-tools/blob/a910eaae22e2e0aa47e2c64fe13eaf3d2a7a0c9a/test/unit/tasks/verify-sass.test.js#L87 - PR: https://github.com/Financial-Times/origami-build-tools/pull/727 * Bump execa from 4.1.0 to 5.0.0 Bumps [execa](https://github.com/sindresorhus/execa) from 4.1.0 to 5.0.0. - [Release notes](https://github.com/sindresorhus/execa/releases) - [Commits](https://github.com/sindresorhus/execa/compare/v4.1.0...v5.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * build(deps): npm audit fix Summary: - Updated packages: 1 - Added packages: 0 - Removed packages: 0 Fixed vulnerabilities: - ini: "Prototype Pollution" (https://npmjs.com/advisories/1589) * build(deps): npm audit fix Summary: - Updated packages: 1 - Added packages: 0 - Removed packages: 0 Fixed vulnerabilities: - ini: "Prototype Pollution" (https://npmjs.com/advisories/1589) * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Add publish to npm workflow The `automatic-tag-and-release` workflow creates a GitHub release based on which of our Github release labels have been applied to a merged PR, and comments on the PR to say the release has happened. However it does not actually do the publishing to npm. That means the last two releases of `remark-preset-lint-origami-component` were not published to npm but looked as if they were. Including this PR to try fixing the README name warning in Github: https://github.com/Financial-Times/remark-preset-lint-origami-component/pull/37 * Correct package.json version. This PR is really just to make a new release and hope the Github workflow `remark-preset-lint-origami-component` runs and updates this version number again. * Remove whitespace from action name * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * update the test workflow to use branch named `main` (#48) we changed the default branch of this project but missed this workflow during that work. * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.8.0 to 13.9.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.8.0 to 13.9.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.8.0...13.9.0) Signed-off-by: dependabot[bot] <support@github.com> * Add ability to publish prereleases with a different dist-tag Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag * Add ability to publish prereleases with a different dist-tag Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.1 to 8.3.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.1 to 8.3.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.9.0 to 13.10.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.9.0 to 13.10.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.9.0...13.10.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.10.0 to 13.11.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.10.0 to 13.11.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.11.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * use step level if statements as job level if is not working correctly * use step level if statements as job level if is not working correctly * use step level if statements as job level if is not working correctly * Bump mocha from 8.3.0 to 8.3.1 (#59) Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump mocha from 8.3.0 to 8.3.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.11.0 to 13.12.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.11.0 to 13.12.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.11.0...13.12.0) Signed-off-by: dependabot[bot] <support@github.com> * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * Bump mocha from 8.3.1 to 8.3.2 (#60) Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * use pull_request_target and not pull_request for the safe workflows (#63) use pull_request_target and not pull_request for the safe workflows * Bump mocha from 8.3.1 to 8.3.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2) Signed-off-by: dependabot[bot] <support@github.com> * Bump hmarr/auto-approve-action Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> * Bump hmarr/auto-approve-action (#64) Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump hmarr/auto-approve-action Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.12.0 to 13.13.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.12.0 to 13.13.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.12.0...13.13.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.13.0 to 13.13.1 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.13.0 to 13.13.1. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.13.0...13.13.1) Signed-off-by: dependabot[bot] <support@github.com> * We don't want to use dependabot to update dependencies anymore (#65) * We don't want to use dependabot to update dependencies anymore * We don't want to use dependabot to update dependencies anymore * Delete npm-audit-fix.yml * Delete npm-audit-fix.yml * Bump lodash from 4.17.19 to 4.17.21 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21) Signed-off-by: dependabot[bot] <support@github.com> * Bump hosted-git-info from 2.8.8 to 2.8.9 (#66) Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9. - [Release notes](https://github.com/npm/hosted-git-info/releases) - [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md) - [Commits](https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * allow single letter mixins If an origami component has a single letter name, then it's primary mixin would be a single letter E.G. The component `@financial-times/a` would have a primary mixin named `a`. I came across this when testing out a new version of `obt init` and I set the component name to `a`. I'm not sure if we want this functionality, maybe we want to disallow single letter component names instead? * Add integration test for single letter mixin * Bump trim-newlines from 3.0.0 to 3.0.1 Bumps [trim-newlines](https://github.com/sindresorhus/trim-newlines) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/sindresorhus/trim-newlines/releases) - [Commits](https://github.com/sindresorhus/trim-newlines/commits) --- updated-dependencies: - dependency-name: trim-newlines dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump glob-parent from 5.1.1 to 5.1.2 Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2. - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2) --- updated-dependencies: - dependency-name: glob-parent dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump glob-parent from 5.1.1 to 5.1.2 Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2. - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2) --- updated-dependencies: - dependency-name: glob-parent dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump postcss from 7.0.31 to 7.0.36 Bumps [postcss](https://github.com/postcss/postcss) from 7.0.31 to 7.0.36. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/7.0.31...7.0.36) --- updated-dependencies: - dependency-name: postcss dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * chore: bring linter presets into the monorepo * chore: regenerate config Co-authored-by: Jake Champion <me@jakechampion.name> Co-authored-by: Jake Champion <jakechampion.jake2@googlemail.com> Co-authored-by: notlee <lee.moody@ft.com> Co-authored-by: Lee Moody <notlee@users.noreply.github.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: JakeChampion <actions@github.com> Co-authored-by: Fox <origamiserviceuser@users.noreply.github.com>
* Add origami-version GitHub Action When this is merged, we can have automated releases by using the release-type labels "major"/"minor"/"patch" on a pull-request before merging the pull-request. * Update config.js * Update automatic-tag-and-release.yml * 2.0.0 * 2.0.1 * Move from CircleCI to GitHub Actions * Update publish-to-npm.yml * Update automatic-tag-and-release.yml * Update config.test.js * only run on prs * Initial commit. Rules taken from [origami-build-tools v10](https://github.com/Financial-Times/origami-build-tools/blob/a931d2d8c8617a5309484d6624a078016866b3db/config/.stylelintrc.json). * Plugins are dependencies, not devDependencies. * Allow function arguments to go on a new line. This should be valid: ```scss .argument-newline { @include baz( 'Lorem ipsum dolor sit amet consectetur adipisicing elit.', 'Lorem ipsum dolor sit amet consectetur adipisicing.' ); } ``` * Allow `@include oGridRespondTo` after declarations. The output of `oGridRespondTo` is a media query. * Allow newlines in declarations and in and round function arguments. This is useful for formatting functions with large arguments in a readable way: ```scss $some-very-very-very-large-conditional: true; $foreground-color: if( $some-very-very-very-large-conditional == true, "then each argument should go on a newline for readability", "otherwise each argument could be on the same line" ); ``` And for formatting declarations such as grid areas in a readable way: ```scss .foo-grid { grid-template-areas: "header header header" ". sidebar ." ". main ." "footer footer footer"; } ``` * Auto merge dependabot dev dependency PRs https://github.com/Financial-Times/origami/issues/55 * Bump stylelint-scss from 3.17.1 to 3.17.2 Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.1 to 3.17.2. - [Release notes](https://github.com/kristerkari/stylelint-scss/releases) - [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md) - [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.1...3.17.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Auto merge dependabot dev dependency PRs https://github.com/Financial-Times/origami/issues/55 * Bump @financial-times/origami-service-makefile from 6.0.1 to 7.0.3 Bumps [@financial-times/origami-service-makefile](https://github.com/Financial-Times/origami-service-makefile) from 6.0.1 to 7.0.3. - [Release notes](https://github.com/Financial-Times/origami-service-makefile/releases) - [Commits](https://github.com/Financial-Times/origami-service-makefile/compare/v6.0.1...v7.0.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 7.1.2 to 7.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 7.1.2 to 7.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.1.2...v7.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 4.0.1 to 7.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 4.0.1 to 7.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v4.0.1...v7.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add Github Action to auto approve dependabot So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55 * Add Github Action to auto approve dependabot So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55 * Bump proclaim from 3.5.0 to 3.6.0 Bumps [proclaim](https://github.com/rowanmanning/proclaim) from 3.5.0 to 3.6.0. - [Release notes](https://github.com/rowanmanning/proclaim/releases) - [Commits](https://github.com/rowanmanning/proclaim/compare/3.5.0...3.6.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add Github Action to apply Origami type label We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43 * Add Github Action to apply Origami type label We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43 * initial commit * Create npm-cit.yml * add origami .github files * Update README.md * Add Github Action to apply Origami type label (#1) * Add origami.json (#3) * Bump stylelint-order from 4.0.0 to 4.1.0 Bumps [stylelint-order](https://github.com/hudochenkov/stylelint-order) from 4.0.0 to 4.1.0. - [Release notes](https://github.com/hudochenkov/stylelint-order/releases) - [Changelog](https://github.com/hudochenkov/stylelint-order/blob/master/CHANGELOG.md) - [Commits](https://github.com/hudochenkov/stylelint-order/compare/4.0.0...4.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Rename package to remove -readme (#4) * Improve licence linting (#6) * Don't try to trim what is not there (#7) * Improve handling of ToC with heading (#8) * Bump mocha from 7.2.0 to 8.0.1 Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 7.2.0 to 8.0.1 Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump stylelint-scss from 3.17.2 to 3.18.0 Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.2 to 3.18.0. - [Release notes](https://github.com/kristerkari/stylelint-scss/releases) - [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md) - [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.2...3.18.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * make dependabot ignore snyk updates snyk does too many updates and it makes for too many pull-requests for origami to review * only run on merged pull-requests * add name to labels workflow * [Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * [Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * update weekly instead of live because live is too noisy * Expect to be in root when lint is run (#9) * Bump mocha from 8.0.1 to 8.1.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 8.0.1 to 8.1.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add some keywords to the origami.json * Bump mocha from 8.1.0 to 8.1.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Bump mocha from 8.1.0 to 8.1.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Add new rule `readme-has-general-usage`. Check for the presence of a link to general component usage documentation "https://origami.ft.com/docs/components". Relates to: https://github.com/Financial-Times/origami/issues/59 Fixes: https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/13 * Update test/invalid/invalid-missing-general-usage/README.md Co-authored-by: Jake Champion <me@jakechampion.name> * Update `rules/readme-has-general-usage.js` indent and quotes * Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63 * Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63 * Delete automerge.yml * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * add hack for vscode-remark-lint (#16) * remove stray slash * rewrite check for bower name existence * add a hack for remark-lint * Bump mocha from 8.1.1 to 8.1.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Update dependabot.yml * Delete config.yml * Create dependabot.yml * Create automerge.yml * add missing workflow files * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.1 to 8.1.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2) Signed-off-by: dependabot[bot] <support@github.com> * Create dependabot.yml * Create automerge.yml * Add auto-approve dependabot workflow * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v1 to v2.1.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v1 to v2.1.1 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v1 to v2.1.1. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v1...851e2594e44b5f0a0f44a4b807f10eaba91b31b2) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark from 12.0.0 to 12.0.1 Bumps [remark](https://github.com/remarkjs/remark) from 12.0.0 to 12.0.1. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/12.0.0...12.0.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark-cli from 8.0.0 to 8.0.1 Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.0 to 8.0.1. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.0...remark-cli@8.0.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.2 to 8.1.3 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.2 to 8.1.3 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3) Signed-off-by: dependabot[bot] <support@github.com> * Add linting rule to ensure relative imports always have a file extension * Make the import extension rule be a warning to make this a non-breaking change * Use word instead of number to mark the severity * use words instead of numbers to mark the severity for rules (#38) * Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 (#39) Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update `automatic-tag-and-release`, consistent with components. I'm wondering if it will somehow help this issue, though I don't see how it would. https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/24 Since `fetch-depth: 0` fetches all tags and branches, I wonder if the step is needed at all https://github.com/actions/checkout#fetch-all-history-for-all-tags-and-branches * only run automerge on dependabot prs * Make automerge only run on dependabot prs and not rebase anything * Make automerge only run on dependabot prs and not rebase anything * only run automerge on dependabot prs * only run automerge on dependabot prs * only run automerge on dependabot prs * only run automerge on dependabot prs * update to latest version of origami workflows * update to latest version of origami workflows * update to latest version of origami workflows * add note about origami-build-tools to the readme (#29) * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.10.0 to v0.11.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.1 to v2.1.2 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.11.0 to v0.12.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark-cli from 8.0.1 to 9.0.0 Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.1 to 9.0.0. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.1...remark-cli@9.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump remark from 12.0.1 to 13.0.0 Bumps [remark](https://github.com/remarkjs/remark) from 12.0.1 to 13.0.0. - [Release notes](https://github.com/remarkjs/remark/releases) - [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md) - [Commits](https://github.com/remarkjs/remark/compare/12.0.1...13.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.3 to 8.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.1.3 to 8.2.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf) Signed-off-by: dependabot[bot] <support@github.com> * Delete whitesource.config.json * make the example codeblock use the correct config name * Bump mocha from 8.2.0 to 8.2.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.0 to 8.2.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1) Signed-off-by: dependabot[bot] <support@github.com> * Set origamiType to config (#46) https://origami.ft.com/spec/v1/manifest/#origamitype * try breaking vscode and hopefully fixing github (#37) * Add tests to confirm our linting extectations. These tests will be usefull to confirm updating rules will not effect our linting in unexpected ways and also to help us migrate from stylelint in the future if we need to (the sasslint migration was a bit tricky). These tests were previously part of origami build tools: - File: https://github.com/Financial-Times/origami-build-tools/blob/a910eaae22e2e0aa47e2c64fe13eaf3d2a7a0c9a/test/unit/tasks/verify-sass.test.js#L87 - PR: https://github.com/Financial-Times/origami-build-tools/pull/727 * Bump execa from 4.1.0 to 5.0.0 Bumps [execa](https://github.com/sindresorhus/execa) from 4.1.0 to 5.0.0. - [Release notes](https://github.com/sindresorhus/execa/releases) - [Commits](https://github.com/sindresorhus/execa/compare/v4.1.0...v5.0.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.2 to v2.1.3 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9) Signed-off-by: dependabot[bot] <support@github.com> * build(deps): npm audit fix Summary: - Updated packages: 1 - Added packages: 0 - Removed packages: 0 Fixed vulnerabilities: - ini: "Prototype Pollution" (https://npmjs.com/advisories/1589) * build(deps): npm audit fix Summary: - Updated packages: 1 - Added packages: 0 - Removed packages: 0 Fixed vulnerabilities: - ini: "Prototype Pollution" (https://npmjs.com/advisories/1589) * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.3 to v2.1.4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e) Signed-off-by: dependabot[bot] <support@github.com> * Add publish to npm workflow The `automatic-tag-and-release` workflow creates a GitHub release based on which of our Github release labels have been applied to a merged PR, and comments on the PR to say the release has happened. However it does not actually do the publishing to npm. That means the last two releases of `remark-preset-lint-origami-component` were not published to npm but looked as if they were. Including this PR to try fixing the README name warning in Github: https://github.com/Financial-Times/remark-preset-lint-origami-component/pull/37 * Correct package.json version. This PR is really just to make a new release and hope the Github workflow `remark-preset-lint-origami-component` runs and updates this version number again. * Remove whitespace from action name * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.12.0 to v0.13.0 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3 Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3. - [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases) - [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e) Signed-off-by: dependabot[bot] <support@github.com> * update the test workflow to use branch named `main` (#48) we changed the default branch of this project but missed this workflow during that work. * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1 to v1.1.3 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.1.3 to v1.2.0 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.8.0 to 13.9.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.8.0 to 13.9.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.8.0...13.9.0) Signed-off-by: dependabot[bot] <support@github.com> * Add ability to publish prereleases with a different dist-tag Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag * Add ability to publish prereleases with a different dist-tag Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump Financial-Times/origami-version from v1.2.0 to v1.2.1 Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1. - [Release notes](https://github.com/Financial-Times/origami-version/releases) - [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.1 to 8.3.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump mocha from 8.2.1 to 8.3.0 Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump pascalgn/automerge-action from v0.13.0 to v0.13.1 Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1. - [Release notes](https://github.com/pascalgn/automerge-action/releases) - [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.9.0 to 13.10.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.9.0 to 13.10.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.9.0...13.10.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.10.0 to 13.11.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.10.0 to 13.11.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.11.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * Bump actions/setup-node from v2.1.4 to v2.1.5 Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea) Signed-off-by: dependabot[bot] <support@github.com> * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * simplify our dependabot auto-merge system This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality * use step level if statements as job level if is not working correctly * use step level if statements as job level if is not working correctly * use step level if statements as job level if is not working correctly * Bump mocha from 8.3.0 to 8.3.1 (#59) Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump mocha from 8.3.0 to 8.3.1 Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.11.0 to 13.12.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.11.0 to 13.12.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.11.0...13.12.0) Signed-off-by: dependabot[bot] <support@github.com> * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * Bump mocha from 8.3.1 to 8.3.2 (#60) Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * use pull_request_target and not pull_request for the safe workflows We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons. For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require. Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks. * use pull_request_target and not pull_request for the safe workflows (#63) use pull_request_target and not pull_request for the safe workflows * Bump mocha from 8.3.1 to 8.3.2 Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2. - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md) - [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2) Signed-off-by: dependabot[bot] <support@github.com> * Bump hmarr/auto-approve-action Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> * Bump hmarr/auto-approve-action (#64) Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump hmarr/auto-approve-action Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit. - [Release notes](https://github.com/hmarr/auto-approve-action/releases) - [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a) Signed-off-by: dependabot[bot] <support@github.com> * Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3 Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3. - [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases) - [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.12.0 to 13.13.0 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.12.0 to 13.13.0. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.12.0...13.13.0) Signed-off-by: dependabot[bot] <support@github.com> * Bump stylelint from 13.13.0 to 13.13.1 Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.13.0 to 13.13.1. - [Release notes](https://github.com/stylelint/stylelint/releases) - [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md) - [Commits](https://github.com/stylelint/stylelint/compare/13.13.0...13.13.1) Signed-off-by: dependabot[bot] <support@github.com> * We don't want to use dependabot to update dependencies anymore (#65) * We don't want to use dependabot to update dependencies anymore * We don't want to use dependabot to update dependencies anymore * Delete npm-audit-fix.yml * Delete npm-audit-fix.yml * Bump lodash from 4.17.19 to 4.17.21 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21) Signed-off-by: dependabot[bot] <support@github.com> * Bump hosted-git-info from 2.8.8 to 2.8.9 (#66) Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9. - [Release notes](https://github.com/npm/hosted-git-info/releases) - [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md) - [Commits](https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * allow single letter mixins If an origami component has a single letter name, then it's primary mixin would be a single letter E.G. The component `@financial-times/a` would have a primary mixin named `a`. I came across this when testing out a new version of `obt init` and I set the component name to `a`. I'm not sure if we want this functionality, maybe we want to disallow single letter component names instead? * Add integration test for single letter mixin * Bump trim-newlines from 3.0.0 to 3.0.1 Bumps [trim-newlines](https://github.com/sindresorhus/trim-newlines) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/sindresorhus/trim-newlines/releases) - [Commits](https://github.com/sindresorhus/trim-newlines/commits) --- updated-dependencies: - dependency-name: trim-newlines dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump glob-parent from 5.1.1 to 5.1.2 Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2. - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2) --- updated-dependencies: - dependency-name: glob-parent dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump glob-parent from 5.1.1 to 5.1.2 Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2. - [Release notes](https://github.com/gulpjs/glob-parent/releases) - [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md) - [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2) --- updated-dependencies: - dependency-name: glob-parent dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Bump postcss from 7.0.31 to 7.0.36 Bumps [postcss](https://github.com/postcss/postcss) from 7.0.31 to 7.0.36. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/7.0.31...7.0.36) --- updated-dependencies: - dependency-name: postcss dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * chore: bring linter presets into the monorepo * chore: regenerate config Co-authored-by: Jake Champion <me@jakechampion.name> Co-authored-by: Jake Champion <jakechampion.jake2@googlemail.com> Co-authored-by: notlee <lee.moody@ft.com> Co-authored-by: Lee Moody <notlee@users.noreply.github.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: JakeChampion <actions@github.com> Co-authored-by: Fox <origamiserviceuser@users.noreply.github.com>
What
The ability to customise classes has not been consistent across our components. We want to create consistency, so are opening this discussion to figure out whether we should remove the customisation, or add it to all components.
Currently we are leaning toward removing the ability to customise.
Why
The text was updated successfully, but these errors were encountered: