Skip to content
This repository was archived by the owner on Nov 8, 2024. It is now read-only.

chore(deps-dev): bump lerna from 3.15.0 to 3.16.1 #305

Merged
merged 1 commit into from
Jul 22, 2019
Merged

chore(deps-dev): bump lerna from 3.15.0 to 3.16.1 #305

merged 1 commit into from
Jul 22, 2019

Conversation

@dependabot-preview
Copy link
Contributor

@dependabot-preview dependabot-preview bot commented Jul 20, 2019
edited
Loading

Bumps lerna from 3.15.0 to 3.16.1.

Release notes

Sourced from lerna's releases.

v3.16.1

3.16.1 (2019-07-19)

Bug Fixes

  • deps: Pin exact npm-lifecycle@3.0.0 to avoid Windows regression in >=3.1.0 (af0569d), closes #2189

v3.16.0

3.16.0 (2019-07-18)

Bug Fixes

  • command: Bump minimum range of lodash, silence dumb 'security' warning (c405871)
  • conventional-commits: Hard-pin lodash.template dependency to silence 'helpful' security warning (c54ad68)
  • deps: Bump @evocateur/pacote (03e4797)
  • deps: Update forked npm libs (4d67426)
  • npm-conf: OTP should default to undefined, figgy pudding is very strict (2fa02a8)
  • pack-directory: Bump npm-packlist + tar dependencies (59ebd19)
  • package-graph: Flatten cycles to avoid skipping packages (#2185) (b335763)
  • project: Ensure deprecated githubRelease config is also remapped from command.publish namespace (a3d264e), closes #2177
  • publish: Add --graph-type option to control packages included in topological sort (#2152) (ae87669), closes #1437
  • publish: Allow --no-verify-access to prevent checking for account-level 2FA (ce58d8f)
  • publish: OTP cache should be seeded from conf value, not CLI directly (cf56622)
  • publish: Propagate root license into custom publish directories (d410a58), closes #2157

Features

  • bootstrap: Add --strict option to enable throwing when --hoist warns (#2140) (91437b5)
  • deps: @octokit/plugin-enterprise-rest@^3.6.1 (74a3890)
  • deps: @octokit/rest@^16.28.4 (5f09f50)
  • deps: byte-size@^5.0.1 (ed51ddd)
  • deps: conventional-recommended-bump@^5.0.0 (2a0ed60)
  • deps: fs-extra@^8.1.0 (313287f)
  • deps: get-port@^4.2.0 (778ae6a)
  • deps: glob-parent@^5.0.0 (c6bc218)
  • deps: globby@^9.2.0 (d9aa249)
  • deps: import-local@^2.0.0 (14d2c66)
  • deps: is-ci@^2.0.0 (ab2ad83)
  • deps: load-json-file@^5.3.0 (3718cc9)
  • deps: multimatch@^3.0.0 (968b0d7)
  • deps: p-map@^2.1.0 (9e58394)
  • deps: pify@^4.0.1 (f8ee7e6)
  • deps: semver@^6.2.0 (d8016d9)
  • deps: slash@^2.0.0 (bedd6af)
  • deps: write-json-file@^3.2.0 (4fa7dea)
  • listable: Output JSON adjacency list with --graph (9457a21), closes #1970
  • otplease: Expose getOneTimePassword() helper (44b9f70)
... (truncated)
Changelog

Sourced from lerna's changelog.

3.16.1 (2019-07-19)

Note: Version bump only for package lerna

3.16.0 (2019-07-18)

Features

  • deps: import-local@^2.0.0 (14d2c66)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it). To ignore the version in this PR you can just close it
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

@dependabot-preview dependabot-preview bot added the dependencies Pull requests that update a dependency file label Jul 20, 2019
@dependabot-preview dependabot-preview bot force-pushed the dependabot/npm_and_yarn/lerna-3.16.1 branch from c4ad833 to 895e162 Compare July 22, 2019 09:54
@pksunkara pksunkara merged commit f3be3d0 into master Jul 22, 2019
@pksunkara pksunkara deleted the dependabot/npm_and_yarn/lerna-3.16.1 branch July 22, 2019 10:08
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@pksunkara pksunkara pksunkara approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@pksunkara