Skip to content
This repository has been archived by the owner on Sep 30, 2024. It is now read-only.

Bump the npm-dependencies group with 5 updates #501

Closed

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2024

Bumps the npm-dependencies group with 5 updates:

Package From To
cssnano 6.0.5 6.1.2
d3 7.8.5 7.9.0
postcss-import 16.0.1 16.1.0
rollup 4.12.0 4.13.2
stylelint 16.2.1 16.3.1

Updates cssnano from 6.0.5 to 6.1.2

Release notes

Sourced from cssnano's releases.

v6.1.2

Bug Fixes

  • preserve correct order of gap and column-gap properties

Patch Changes

  • update autoprefixer

v6.1.1

Patch changes

  • update selector parser
  • in the minify font plugin, you can pass a function to determine whether a css variable is one of font, font-family, and font-weight to determine whether the variable needs to remove quotes.

v6.1.0

This release contains a lot of fixes to Browserslist support thanks to @​colinrotherham

Features

  • support Browserslist options in more plugins
  • support overriding autoprefixer options

Additionally, this release includes improved TypeScript types.

Commits
  • 760ba29 Publish cssnano 6.1.2
  • 0ffe067 Update css-declaration-sorter to 7.2.0
  • 0b9ce45 Merge pull request #1589 from cssnano/update-autoprefixer
  • 2f3fb50 chore(cssnano-preset-advanced): update autoprefixer
  • 3282447 Merge pull request #1587 from cssnano/update-dev-deps
  • 0857e15 chore: update development dependencies
  • 7a1cfe3 Merge pull request #1586 from cssnano/update-website
  • 32eebd5 docs: update website dependencies
  • 18206e6 Merge pull request #1585 from cssnano/release-611
  • d7b4d2b Publish cssnano 6.1.1
  • Additional commits viewable in compare view

Updates d3 from 7.8.5 to 7.9.0

Release notes

Sourced from d3's releases.

v7.9.0

Commits

Updates postcss-import from 16.0.1 to 16.1.0

Changelog

Sourced from postcss-import's changelog.

16.1.0 / 2024-03-20

  • Allow bundling URLs with fragments (useful for Vite users) (#560, #561)
Commits

Updates rollup from 4.12.0 to 4.13.2

Release notes

Sourced from rollup's releases.

v4.13.2

4.13.2

2024-03-28

Bug Fixes

  • Ensure accessing module info is cached after the build phase for improved performance (#5438)
  • Support powerpc64le CPUs (#5350)

Pull Requests

v4.13.1

4.13.1

2024-03-27

Bug Fixes

  • Add new linux-s390x-gnu native binary package (#5346)

Pull Requests

v4.13.0

4.13.0

2024-03-12

Features

  • Ensure that the location of parse errors and other logs is encoded in the error message as well (#5424)

Pull Requests

v4.12.1

... (truncated)

Changelog

Sourced from rollup's changelog.

4.13.2

2024-03-28

Bug Fixes

  • Ensure accessing module info is cached after the build phase for improved performance (#5438)
  • Support powerpc64le CPUs (#5350)

Pull Requests

4.13.1

2024-03-27

Bug Fixes

  • Add new linux-s390x-gnu native binary package (#5346)

Pull Requests

4.13.0

2024-03-12

Features

  • Ensure that the location of parse errors and other logs is encoded in the error message as well (#5424)

Pull Requests

4.12.1

2024-03-06

... (truncated)

Commits

Updates stylelint from 16.2.1 to 16.3.1

Release notes

Sourced from stylelint's releases.

16.3.1

16.3.0

Changelog

Sourced from stylelint's changelog.

16.3.1

16.3.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the npm-dependencies group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [cssnano](https://github.com/cssnano/cssnano) | `6.0.5` | `6.1.2` |
| [d3](https://github.com/d3/d3) | `7.8.5` | `7.9.0` |
| [postcss-import](https://github.com/postcss/postcss-import) | `16.0.1` | `16.1.0` |
| [rollup](https://github.com/rollup/rollup) | `4.12.0` | `4.13.2` |
| [stylelint](https://github.com/stylelint/stylelint) | `16.2.1` | `16.3.1` |


Updates `cssnano` from 6.0.5 to 6.1.2
- [Release notes](https://github.com/cssnano/cssnano/releases)
- [Commits](https://github.com/cssnano/cssnano/compare/cssnano@6.0.5...cssnano@6.1.2)

Updates `d3` from 7.8.5 to 7.9.0
- [Release notes](https://github.com/d3/d3/releases)
- [Changelog](https://github.com/d3/d3/blob/main/CHANGES.md)
- [Commits](d3/d3@v7.8.5...v7.9.0)

Updates `postcss-import` from 16.0.1 to 16.1.0
- [Release notes](https://github.com/postcss/postcss-import/releases)
- [Changelog](https://github.com/postcss/postcss-import/blob/master/CHANGELOG.md)
- [Commits](postcss/postcss-import@16.0.1...16.1.0)

Updates `rollup` from 4.12.0 to 4.13.2
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](rollup/rollup@v4.12.0...v4.13.2)

Updates `stylelint` from 16.2.1 to 16.3.1
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md)
- [Commits](stylelint/stylelint@16.2.1...16.3.1)

---
updated-dependencies:
- dependency-name: cssnano
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: d3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: postcss-import
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: stylelint
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 1, 2024
@ian-noaa
Copy link
Collaborator

@dependabot rebase

Copy link
Contributor Author

dependabot bot commented on behalf of github Apr 26, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Apr 26, 2024
@dependabot dependabot bot deleted the dependabot-npm_and_yarn-npm-dependencies-7291b1e01e branch April 26, 2024 18:47
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant