chore(deps): update npm to v7.20.4

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
npm (source)	7.20.1 -> 7.20.4

---

Release Notes

npm/cli

v7.20.4

Compare Source

BUG FIXES

• 6a8086e25
  #​3463
  fix(tests): move more tests to use real npm
  (@​wraithgar)

DEPENDENCIES

• 15fae4941
tar@6.1.6:
  • fix: properly handle top-level files when using strip
  • Avoid an unlikely but theoretically possible redos
  • WriteEntry backpressure
  • fix(unpack): always resume parsing after an entry error
  • fix(unpack): fix hang on large file on open() fail
  • fix: properly prefix hard links
• 745326de0
libnpmexec@2.0.1:
  • Clear progress bar which overlays confirm prompt
• e82bcd4e8
graceful-fs@4.2.7:
  • fix: start retrying immediately, stop after 10 attempts

v7.20.3

Compare Source

BUG FIXES

• 66dc5f94d
  #​3588
  update eresolve explanations for new arborist data provided
• 99575acab
  #​3591
  fix(node_modules): remove duplicated file
  (@​wraithgar)

DEPENDENCIES

• 97cb5ec31
@npmcli/arborist@2.8.0:
  • Refactor ideal tree building to handle more complicated
    peerDependencies use cases.
  • Do not modify ideal tree while checking if a peerSet can be placed.
• 7db1a0a26
  chore(deps): mime-types@1.49.0 mime-db@1.49.0

v7.20.2

Compare Source

DEPENDENCIES

• f5aab1f88
tar@6.1.1
  • fix: strip absolute paths more comprehensively
• ce8fb0f69
tar@6.1.2
  • fix: Remove paths from dirCache when no longer dirs
• ced85087a
gauge@3.0.1
  • add missing dependency to package.json

v7.20.1

Compare Source

BUG FIXES

• 009ad1e68
  #​3561
  fix(exit-handler): always warn if not called
  (@​wraithgar)
• eb67054c8
  #​3563
  fix(config): consolidate use of npm.color
  (@​wraithgar)

DOCUMENTATION

• a014f3d28
  #​3562
  fix(docs): typo in npm cmd docs
  (@​wraithgar)
• 1fe1c9b74
  #​3523
  fix(docs): updated policy urls
  (@​DemiraDimitrova)

DEPENDENCIES

• d7f29e8c9
read-package-json-fast@2.0.3:
  • feat: load directories.bin as a bin object
• b1fefa73d
npmlog@5.0.0
  • Drop support for node 6 and 8
• b6e09971a
  remove ignored files from node_modules
  ([@​Ruy Adorno](https://github.com/Ruy Adorno))
• cf737c505
debug@4.3.2

v7.20.0

Compare Source

FEATURES

• f17aca5cd
  #​3487
  feat: add npm pkg command
  (@​ruyadorno)
• 98905ae37
  #​3471
  feat(config): introduce location parameter
  (@​nlf)

BUG FIXES

• 4755b0728
  #​3498
  friendlier errors for ERR_SOCKET_TIMEOUT
  (@​nlf)
• 3ecf19cdc
  #​3508
  fix(config): fix noproxy
  (@​wraithgar)
• c3bd10e46
  #​3499
  fix(update-notifier): don't force black background
  (@​wraithgar)
• 89483e888
  #​3497
  fix(usage): better audit/boolean flag usage output
  (@​wraithgar)
• feeb8e42a
  #​3495
  fix(publish): obey --ignore-scripts flag
  (@​wraithgar)
• 103c8c3ef
  #​3479
  chore(exit): log any un-ended timings
  (@​wraithgar)
• efc4313c2
  #​3482
  chore(refactor): refactor exit handler and tests
  (@​wraithgar)
• d8eb49b70
  #​3540
  fix(bundle-and-ignore): case sensitivity cleanup
  (@​wraithgar)

DOCUMENTATION

• 339145f64
  #​3491
  fix(docs): clarify what install type gets .bin
  (@​wraithgar)
• 74c99755e
  #​3494
  fix(docs): add npm update example
  (@​wraithgar)
• 801a52330
  #​3542
  fix(docs): correct Node.js JavaScript stylings
  (@​relrelb)
• 791416713
  #​3546
  fix(docs): how to see background script output
  (@​cinderblock)

DEPENDENCIES

• 691816f3d
@npmcli/arborist@2.7.1
  • fixes running prepare scripts for workspaces on reify
  • ensure pacote always compares correct integrity values
• b9597e944
make-fetch-happen@9.0.4
  • fix: retry socket timeout failures
  • fix: clean up invalid indexes and content after cacache read errors
• f573e7c56
minipass-fetch@1.3.4
  • fix: correctly handle error events that happen after response events
• 2d5797ea0
pacote@11.3.5
  • fix: show more actionable messages for git pathspec errors
  • fix: include all dep types when building for prepare
  • fix: do not set mtime when unpacking

v7.19.1

Compare Source

BUG FIXES

• 013f0262d
  #​3469
  fix(exitHandler): write code to logfile
  (@​wraithgar)
• 0dd0341ac
  #​3474
  fix(ping): make "npm ping" echo a right time
  (@​aluneed)
• d2e298f3c
  #​3484
  fix(deprecate): add undeprecate support
  (@​wraithgar)

DOCUMENTATION

• 9dd32d08e
  #​3485
  fix(docs): remove npm package config override
  (@​wraithgar)
• a4e095618
  #​3486
  fix(docs): remove .hooks scripts
  (@​wraithgar)

TESTING

• 5f8ccccef
  #​3483
  chore(tests): clean snapshot for lib/view.js tests
  (@​wraithgar)

v7.19.0

Compare Source

FEATURES

• 23ce3af19
  #​3460
  feat(ls): report why something is invalid
  (@​isaacs)

BUG FIXES

• 53f81af31
  #​3450
  fix(docs): Improve phrasing of workspace example
  (@​lumaxis)
• 78da60ffe
  #​3454
  chore(linting): add bin and clean up lib/ls.js
• 54eae3063
  #​3416
  chore(errorHandler): rename to exit handler
  (@​wraithgar)
• d0f50b156
  #​3451
  chore(refactor): async npm.load
  (@​wraithgar)
• 87f67d9ef
  #​3458
  chore(tests): expose real mock npm object
  (@​wraithgar)
• f3dce0917
  #​3459
  chore(config): snapshot config descriptions
  (@​wraithgar)
• 6254b6f72
  #​3234
  #​3455
  @​npmcli/package-json refactor
  (@​ruyadorno)

DEPENDENCIES

• fe4138381
@npmcli/arborist@2.6.4:
  • bin: allow turning off timer display with --timers=false
  • fix: do not try to inflate a fresh lockfile
  • fix(diff): walk target children if root is a link
  • chore: @​npmcli/package-json refactor

v7.18.1

Compare Source

v7.18.0

Compare Source

v7.17.0

Compare Source

v7.16.0

Compare Source

v7.15.1

Compare Source

BUG FIXES

• 598a17a26
  #​3329
  fix(libnpmexec): don't detach output from npm
  (@​wraithgar)

DEPENDENCIES

• c4fc03e9e
@npmcli/arborist@2.6.1
  • fixes reifying deps with mismatching version ranges between
    actual and virtual trees
• 9159fa62a
libnpmexec@1.2.0

v7.15.0

Compare Source

FEATURES

• 399ff8cbc
  #​3312
  feat(link): add workspace support
  (@​isaacs)

BUG FIXES

• 46a9bcbcb
  #​3282
  fix(docs): proper postinstall script file name
  (@​KevinFCormier)
• 83590d40f
  #​3272
  fix(ls): show relative paths from root
  (@​isaacs)
• a574b518a
  #​3304
  fix(completion): restore IFS even if npm completion returns error
  (@​NariyasuHeseri)
• 554e8a5cd
  #​3311
  set audit exit code properly
  (@​isaacs)
• 4a4fbe33c
  #​3268
  #​3285
  fix(publish): skip private workspaces
  (@​ruyadorno)

DOCUMENTATION

• 3c53d631f
  #​3307
  fix(docs): typo in package-lock.json docs
  (@​rethab)
• 96367f93f
  rebuild npm-pack doc
  (@​isaacs)
• 64b13dd10
  #​3313
  Drop stale Python 3<->node-gyp remark
  (@​spencerwilson)

DEPENDENCIES

• 7b56bfdf3
cacache@15.2.0:
  • feat: allow fully deleting indices
  • feat: add a validateEntry option to compact
  • chore: lint
  • chore: use standard npm style release scripts
• dbbc151a3
npm-audit-report@2.1.5:
  • fix(exit-code): account for null auditLevel default (#​46)
• 5b2604507
  chore(package-lock): update devDependencies
  (@​Gar)

AUTOMATION

• 3d5df0082
  #​3294
  chore(ci): move node release PR workflow to cli repo
  (@​gimli01)

v7.14.0

Compare Source

FEATURES

• 0d1a9d787
  #​3227
  feat(install): add workspaces support to npm install commands
  (@​isaacs)
• c18626f04
  #​3250
  feat(ls): add workspaces support
  (@​ruyadorno)
• 41099d395
  #​3265
  feat(explain): add workspaces support
  (@​ruyadorno)
• fde354669
  #​3251
  feat(unpublish): add workspace/dry-run support
  (@​wraithgar)
• 83df3666c
  #​3260
  feat(outdated): add workspaces support
  (@​ruyadorno)
• 63a7635f7
  #​3217
  feat(pack): add support to json config/output
  (@​mrmlnc)

BUG FIXES

• faa12ccc2
  #​3253
  fix search description typos
  (@​juanpicado)
• 2f5c28a68
  #​3243
  fix(docs): autogenerate config docs for commands
  (@​isaacs)

DEPENDENCIES

• ec256a14a
@npmcli/arborist@2.6.0
• 5f15aba86
cacache@15.1.0
• b3add87e6
  #​3262
  npm-registry-client@10.1.2:
  • fixed sso login token

v7.13.0

Compare Source

FEATURES

• 076420c14
  #​3231
  feat(publish): add workspace support
  (@​wraithgar)
• 370b36a36
  #​3241
  feat(fund): add workspaces support
  (@​ruyadorno)

DEPENDENCIES

• 0c18e4f77
@npmcli/arborist@2.5.0
• b551c6811
libnpmfund@1.1.0

v7.12.1

Compare Source

BUG FIXES

• de49f58f5
  #​3216
  fix(contributing): link to proper cli repo
  (@​mrmlnc)
• 1d092144e
  #​3203
  fix(packages): locale-agnostic string sorting
  (@​isaacs)
• 0696fca13
  #​3209
  fix(view): fix non-registry specs
  (@​wraithgar)
• 71ac93597
  #​3206
  chore(github): Convert md issue template to yaml
  (@​lukehefson)
• 6fb386d3b
  #​3201
  fix(tests): increase test fuzziness
  (@​wraithgar)
• f3a662fcd
  #​3211
  fix(tests): use config defaults
  (@​wraithgar)

DEPENDENCIES

• 285976fd1
@npmcli/arborist@2.4.4
  • fix(reify): properly save spec if prerelease
• f9f24d17c
libnpmexec@1.1.1
  • fix(add): Specify 'en' locale to String.localeCompare
• cb9f17499
glob@7.1.7
  • force 'en' locale in string sorting
• 24b4e4a41
ignore-walk@3.0.4
  • Avoid locale-specific sorting issues
• 1eb7e5c7d
@npmcli/arborist@2.4.3
  • guard against locale-specific sorting
• a6a826067
npm-packlist@2.2.2:
  • fix(sort): avoid locale-dependent sorting issues

v7.12.0

Compare Source

FEATURES

• 701627c51
  #​3098
  feat(cache): Allow add to accept multiple specs
  (@​mjsir911)
• 59171f030
  #​3187
  feat(config): add workspaces boolean to user-agent
  (@​nlf)

BUG FIXES

• 2c9b8713c
  #​3182
  fix(docs): fix broken links
  (@​wangsai)
• 88cbc8c44
  #​3198
  fix(tests): reflect new libnpmexec logic

DEPENDENCIES

• d01ce5e13
libnpmexec@1.1.0:
  • feat: add walk up dir lookup to satisfy local bins
• 81c1dfaaa
@npmcli/arborist@2.4.2:
  • fix(add): save packages in the right place
  • fix(reify): do not clean up nodes with no parent
  • fix(audit): support alias specs & root package names
• 87c2303ea
@npmcli/git@2.0.9:
  • fix(clone): Do not allow git replacement objects by default
• 99ff40dff
npm-packlist@2.2.0:
  • feat(npmignore): Do not force include history, changelogs, notice
  • fix(package.json): add missing bin/index.js to files

v7.11.2

Compare Source

BUG FIXES

• c371f183e
  #​3137
  #​3140
  fix(ls): do not warn on missing optional deps
  (@​isaacs)
• 861f606c7
  #​3156
  fix(build): make prune rule work on case-sensitive file systems
  (@​lpinca)

DEPENDENCIES

• fb79d89a0
tap@15.0.6
• ce3820043
@npmcli/arborist@2.4.1
  • fix: prevent and eliminate unnecessary duplicates
  • fix: support resolvable partial intersecting peerSets

DOCUMENTATION

• e479f1dac
  #​3146
  mention directories.bin in bin
  (@​felipecrs)

v7.11.1

Compare Source

DEPENDENCIES

• 7925cca24
pacote@11.3.3:
  • fix(registry): normalize manfest
• b61eac693
  #​3130
  @npmcli/config@2.2.0
• c74e67fc6
  #​3130
  npm-registry-fetch@10.1.1

DOCUMENTATION

• efdd7dd44
  Remove unused and incorrectly documented --always-auth config definition
  (@​isaacs)

v7.11.0

Compare Source

FEATURES

• 4c1f16d2c
  #​3095
  feat(init): add workspaces support
  (@​ruyadorno)

BUG FIXES

• 42ca59eee
  #​3086
  fix(ls): do not exit with error when all problems are extraneous deps
  (@​nlf)
• 2aecec591
  #​2724
  #​3119
  fix(ls): make --long work when missing deps
  (@​ruyadorno)
• 42e0587a9
  #​3115
  fix(pack): refuse to pack invalid packument
  (@​wraithgar)
• 1c4eff7b5
  #​3126
  fix(logout): use isBasicAuth attribute
  (@​wraithgar)

DOCUMENTATION

• c93f1c39e
  #​3101
  chore(docs): update view docs
  (@​wraithgar)
• c4ff4bc11
  npm/statusboard#​313
  #​3109
  fix(usage): fix refs to ws shorthand
  (@​ruyadorno)

DEPENDENCIES

• 83166ebcc
npm-registry-fetch@10.1.0
  • feat(auth): set isBasicAuth
• e02bda6da
npm-registry-fetch@10.0.0
  • feat(auth) load/send based on URI, not registry
• a0382deba
@npmcli/run-script@1.8.5
  • fix: windows ComSpec env variable name
• 7f82ef5a8
pacote@11.3.2
• 35e49b94f
@npmcli/arborist@2.4.0
• 95faf8ce6
libnpmaccess@4.0.2
• 17fffc0e4
libnpmhook@6.0.2
• 1b5a213aa
libnpmorg@2.0.2
• 9f83e6484
libnpmpublish@4.0.1
• 251f788c5
libnpmsearch@3.1.1
• 35873a989
libnpmteam@2.0.3
• 23e12b4d8
npm-profile@5.0.3

v7.10.0

Compare Source

FEATURES

• f9b639eb6
  #​3052
  feat(bugs): fall back to email if provided
  (@​Yash-Singh1)
• 8c9e24778
  #​3055
  feat(version): add workspace support
  (@​wraithgar)

DEPENDENCIES

• f1e6743a6
libnpmversion@1.2.0
  • feat(retrieve-tag): retrieve unannotated git tags
  • fix(retrieve-tag): use semver to look for semver
• 3b476a24c
@npmcl/git@2.0.8
  • fix(git): do not use shell when calling git
• dfcd0c1e2
  #​3069
  tap@15.0.2

DOCUMENTATION

• 90b61eda9
  #​3053
  fix(contributing.md): explicitely outline dep updates
  (@​darcyclarke)

---

Configuration

📅 Schedule: "after 1pm on Monday" in timezone Europe/Zurich.

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

[codecov]

Codecov Report

Merging #55 (e04a3d4) into master (618e164) will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##            master       #55   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            1         1           
  Lines           37        37           
  Branches         6         6           
=========================================
  Hits            37        37           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 618e164...e04a3d4. Read the comment docs.

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information