Bump the npm group with 5 updates by dependabot[bot] · Pull Request #2291 · github/codeql-action

dependabot · 2024-05-13T18:19:11Z

Bumps the npm group with 5 updates:

Package	From	To
@octokit/types	`13.4.1`	`13.5.0`
semver	`7.6.0`	`7.6.2`
@ava/typescript	`4.1.0`	`5.0.0`
@typescript-eslint/eslint-plugin	`7.8.0`	`7.9.0`
@typescript-eslint/parser	`7.8.0`	`7.9.0`

Updates @octokit/types from 13.4.1 to 13.5.0

Release notes

Sourced from @octokit/types's releases.

v13.5.0

13.5.0 (2024-04-29)

Features

add Copilot operations, bump openapi-types version (#638) (69c7f34)

Commits

69c7f34 feat: add Copilot operations, bump openapi-types version (#638)
e1d788a ci(action): update actions/checkout digest to 0ad4b8f (#637)
29884bd chore(deps): update dependency json-schema-to-typescript to v14 (#634)
52aaab7 build(deps): lock file maintenance
27d52a8 ci(action): update actions/checkout digest to 1d96c77 (#636)
See full diff in compare view

Updates semver from 7.6.0 to 7.6.2

Release notes

Sourced from semver's releases.

v7.6.2

7.6.2 (2024-05-09)

Bug Fixes

6466ba9 #713 lru: use map.delete() directly (#713) (@negezor, @lukekarrys)

v7.6.1

7.6.1 (2024-05-04)

Bug Fixes

c570a34 #704 linting: no-unused-vars (@wraithgar)

ad8ff11 #704 use internal cache implementation (@mbtools)

ac9b357 #682 typo in compareBuild debug message (#682) (@mbtools)

Dependencies

988a8de #709 uninstall lru-cache (#709)

3fabe4d #704 remove lru-cache

Chores

dd09b60 #705 bump @npmcli/template-oss to 4.22.0 (@lukekarrys)

ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

b236c3d #696 add benchmarks (#696) (@H4ad)

692451b #688 various improvements to README (#688) (@mbtools)

5feeb7f #705 postinstall for dependabot template-oss PR (@lukekarrys)

074156f #701 bump @npmcli/template-oss from 4.21.3 to 4.21.4 (@dependabot[bot])

Changelog

Sourced from semver's changelog.

7.6.2 (2024-05-09)

Bug Fixes

6466ba9 #713 lru: use map.delete() directly (#713) (@negezor, @lukekarrys)

7.6.1 (2024-05-04)

Bug Fixes

c570a34 #704 linting: no-unused-vars (@wraithgar)

ad8ff11 #704 use internal cache implementation (@mbtools)

ac9b357 #682 typo in compareBuild debug message (#682) (@mbtools)

Dependencies

988a8de #709 uninstall lru-cache (#709)

3fabe4d #704 remove lru-cache

Chores

dd09b60 #705 bump @npmcli/template-oss to 4.22.0 (@lukekarrys)

ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

b236c3d #696 add benchmarks (#696) (@H4ad)

692451b #688 various improvements to README (#688) (@mbtools)

5feeb7f #705 postinstall for dependabot template-oss PR (@lukekarrys)

074156f #701 bump @npmcli/template-oss from 4.21.3 to 4.21.4 (@dependabot[bot])

Commits

eb1380b chore: release 7.6.2 (#714)
6466ba9 fix(lru): use map.delete() directly (#713)
d777418 chore: release 7.6.1 (#706)
988a8de deps: uninstall lru-cache (#709)
5feeb7f chore: postinstall for dependabot template-oss PR
dd09b60 chore: bump @npmcli/template-oss to 4.22.0
c570a34 fix(linting): no-unused-vars
ad8ff11 fix: use internal cache implementation
3fabe4d deps: remove lru-cache
ec49cdc chore: chore: chore: postinstall for dependabot template-oss PR
Additional commits viewable in compare view

Updates @ava/typescript from 4.1.0 to 5.0.0

Release notes

Sourced from @ava/typescript's releases.

v5.0.0

What's Changed

Restrict compatibility to AVA 6 by @novemberborn in avajs/typescript#54

Include Node.js 21 in supported engines by @rien in avajs/typescript#52

Include Node.js 22 in supported engines by @lenovouser in avajs/typescript#53

New Contributors

@rien made their first contribution in avajs/typescript#52

@lenovouser made their first contribution in avajs/typescript#53

Full Changelog: avajs/typescript@v4.1.0...v5.0.0

Commits

851ecc3 5.0.0
55472d8 Include Node.js 22 in supported engines and test matrix
672714f Update dependencies
56e3b15 Upgrade XO and apply fixes
1ae15b2 Restrict compatibility to AVA 6
41d8c6b Upgrade actions
bfd7dfa Target same Node.js versions as AVA 6
c3d1833 Include Node.js 21 in supported engines and test matrix
See full diff in compare view

Updates @typescript-eslint/eslint-plugin from 7.8.0 to 7.9.0

Release notes

Sourced from @typescript-eslint/eslint-plugin's releases.

v7.9.0

7.9.0 (2024-05-13)

🚀 Features

rule-tester: check for missing placeholder data in the message (#9039)

🩹 Fixes

do not pass tsconfig canonical file name to typescript API to get program details for config file (#9042)

eslint-plugin: [explicit-function-return-types] fix false positive on default parameters (#9045)

❤️ Thank You

Kirk Waiblinger

Sheetal Nandi

Vinccool96

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @typescript-eslint/eslint-plugin's changelog.

7.9.0 (2024-05-13)

🩹 Fixes

eslint-plugin: [explicit-function-return-types] fix false positive on default parameters

❤️ Thank You

Kirk Waiblinger

Sheetal Nandi

Vinccool96

You can read about our versioning strategy and releases on our website.

Commits

77fc366 chore(release): publish 7.9.0
f53fece chore: add knip (#8192)
8acb8d4 fix(eslint-plugin): [explicit-function-return-types] fix false positive on de...
d696ea2 docs(eslint-plugin): fix several 404 URLs (#9064)
37a41d9 docs: fix broken link to import/no-duplicates on no-duplicate-imports pag...
ab92621 docs: correct its/it's spelling (#9048)
f248e68 docs: [no-floating-promises] remove ugly commas (#9034)
6e1241b docs: fix no-unnecessary-boolean-literal-compare example (#8981)
See full diff in compare view

Updates @typescript-eslint/parser from 7.8.0 to 7.9.0

Release notes

Sourced from @typescript-eslint/parser's releases.

v7.9.0

7.9.0 (2024-05-13)

🚀 Features

rule-tester: check for missing placeholder data in the message (#9039)

🩹 Fixes

do not pass tsconfig canonical file name to typescript API to get program details for config file (#9042)

eslint-plugin: [explicit-function-return-types] fix false positive on default parameters (#9045)

❤️ Thank You

Kirk Waiblinger

Sheetal Nandi

Vinccool96

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @typescript-eslint/parser's changelog.

7.9.0 (2024-05-13)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

77fc366 chore(release): publish 7.9.0
f53fece chore: add knip (#8192)
See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
@octokit/types	[< 7, > 6.21.1]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

github-actions · 2024-05-13T18:20:31Z

Pushed a commit to update the checked-in dependencies. Please mark the PR as ready for review to trigger PR checks.

angelapwen · 2024-05-13T20:10:52Z

It looks like we have some ava compatibility issues here: cc @nickfyson as 🛡️ if you have time to look into this 😄

github-actions · 2024-05-14T08:54:45Z

Pushed a commit to update the checked-in dependencies. Please mark the PR as ready for review to trigger PR checks.

nickfyson · 2024-05-14T09:44:02Z

@dependabot ignore @ava/typescript major version

nickfyson · 2024-05-14T09:51:40Z

@dependabot recreate

dependabot · 2024-05-14T09:55:09Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

dependabot · 2024-05-14T10:59:39Z

OK, I won't notify you about version 5.x.x of @ava/typescript again, unless you unignore it.

henrymercer · 2024-05-14T12:30:41Z

@dependabot recreate

dependabot · 2024-05-14T12:37:43Z

Looks like this PR is closed. If you re-open it I'll rebase it as long as no-one else has edited it (you can use @dependabot reopen if the branch has been deleted).

dependabot · 2024-05-14T12:40:55Z

Looks like this PR is closed. If you re-open it I'll rebase it as long as no-one else has edited it (you can use @dependabot reopen if the branch has been deleted).

nickfyson · 2024-05-14T13:23:55Z

@dependabot reopen

dependabot · 2024-05-14T13:23:59Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

nickfyson · 2024-05-14T13:24:08Z

@dependabot reopen

Bumps the npm group with 5 updates: | Package | From | To | | --- | --- | --- | | [@octokit/types](https://github.com/octokit/types.ts) | `13.4.1` | `13.5.0` | | [semver](https://github.com/npm/node-semver) | `7.6.0` | `7.6.2` | | [@ava/typescript](https://github.com/avajs/typescript) | `4.1.0` | `5.0.0` | | [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `7.8.0` | `7.9.0` | | [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `7.8.0` | `7.9.0` | Updates `@octokit/types` from 13.4.1 to 13.5.0 - [Release notes](https://github.com/octokit/types.ts/releases) - [Commits](octokit/types.ts@v13.4.1...v13.5.0) Updates `semver` from 7.6.0 to 7.6.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v7.6.0...v7.6.2) Updates `@ava/typescript` from 4.1.0 to 5.0.0 - [Release notes](https://github.com/avajs/typescript/releases) - [Commits](avajs/typescript@v4.1.0...v5.0.0) Updates `@typescript-eslint/eslint-plugin` from 7.8.0 to 7.9.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.9.0/packages/eslint-plugin) Updates `@typescript-eslint/parser` from 7.8.0 to 7.9.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.9.0/packages/parser) --- updated-dependencies: - dependency-name: "@octokit/types" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm - dependency-name: semver dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm - dependency-name: "@ava/typescript" dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm - dependency-name: "@typescript-eslint/eslint-plugin" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm - dependency-name: "@typescript-eslint/parser" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com>

henrymercer · 2024-05-15T08:44:36Z

@dependabot ignore @ava/typescript major version

dependabot · 2024-05-15T08:44:38Z

OK, I won't notify you about version 5.x.x of @ava/typescript again, unless you unignore it.

henrymercer · 2024-05-15T08:51:10Z

Can't upgrade @ava/typescript to v5 until CodeQL Action v2 is end of life and we can drop support for Node 16.

dependabot · 2024-05-15T09:36:51Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot Bot requested a review from a team as a code owner May 13, 2024 18:19

dependabot Bot added the Update dependencies Trigger PR workflow to update dependencies label May 13, 2024

dependabot Bot requested a review from a team May 13, 2024 18:19

github-actions Bot removed the Update dependencies Trigger PR workflow to update dependencies label May 13, 2024

github-actions Bot marked this pull request as draft May 13, 2024 18:20

angelapwen marked this pull request as ready for review May 13, 2024 19:25

nickfyson added the Update dependencies Trigger PR workflow to update dependencies label May 14, 2024

github-actions Bot removed the Update dependencies Trigger PR workflow to update dependencies label May 14, 2024

github-actions Bot marked this pull request as draft May 14, 2024 08:54

nickfyson marked this pull request as ready for review May 14, 2024 08:54

nickfyson force-pushed the dependabot/npm_and_yarn/npm-a479b9ddf1 branch from fdc9f7e to d268acd Compare May 14, 2024 09:42

henrymercer closed this May 14, 2024

dependabot Bot deleted the dependabot/npm_and_yarn/npm-a479b9ddf1 branch May 14, 2024 11:13

nickfyson restored the dependabot/npm_and_yarn/npm-a479b9ddf1 branch May 14, 2024 12:45

nickfyson reopened this May 14, 2024

nickfyson closed this May 14, 2024

nickfyson deleted the dependabot/npm_and_yarn/npm-a479b9ddf1 branch May 14, 2024 13:23

dependabot Bot restored the dependabot/npm_and_yarn/npm-a479b9ddf1 branch May 14, 2024 15:32

dependabot Bot reopened this May 14, 2024

dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-a479b9ddf1 branch from d268acd to af9b4aa Compare May 14, 2024 17:43

dependabot Bot closed this May 15, 2024

dependabot Bot deleted the dependabot/npm_and_yarn/npm-a479b9ddf1 branch May 15, 2024 09:36

Uh oh!

Conversation

dependabot Bot commented on behalf of github May 13, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v13.5.0

13.5.0 (2024-04-29)

Features

v7.6.2

7.6.2 (2024-05-09)

Bug Fixes

v7.6.1

7.6.1 (2024-05-04)

Bug Fixes

Dependencies

Chores

7.6.2 (2024-05-09)

Bug Fixes

7.6.1 (2024-05-04)

Bug Fixes

Dependencies

Chores

v5.0.0

What's Changed

New Contributors

v7.9.0

7.9.0 (2024-05-13)

🚀 Features

🩹 Fixes

❤️ Thank You

7.9.0 (2024-05-13)

🩹 Fixes

❤️ Thank You

v7.9.0

7.9.0 (2024-05-13)

🚀 Features

🩹 Fixes

❤️ Thank You

7.9.0 (2024-05-13)

Uh oh!

github-actions Bot commented May 13, 2024

Uh oh!

angelapwen commented May 13, 2024

Uh oh!

github-actions Bot commented May 14, 2024

Uh oh!

nickfyson commented May 14, 2024

Uh oh!

nickfyson commented May 14, 2024

Uh oh!

dependabot Bot commented on behalf of github May 14, 2024

Uh oh!

dependabot Bot commented on behalf of github May 14, 2024

Uh oh!

henrymercer commented May 14, 2024

Uh oh!

dependabot Bot commented on behalf of github May 14, 2024

Uh oh!

dependabot Bot commented on behalf of github May 14, 2024

Uh oh!

nickfyson commented May 14, 2024

Uh oh!

dependabot Bot commented on behalf of github May 14, 2024

Uh oh!

nickfyson commented May 14, 2024

Uh oh!

henrymercer commented May 15, 2024

Uh oh!

dependabot Bot commented on behalf of github May 15, 2024

Uh oh!

henrymercer commented May 15, 2024

Uh oh!

dependabot Bot commented on behalf of github May 15, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

dependabot Bot commented on behalf of github May 13, 2024 •

edited

Loading