chore(deps): update npm to v7

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
npm (source)	>=6.9.0 <7.0.0 -> >=6.9.0 <8.0.0

---

Release Notes

npm/cli

v7.18.1

Compare Source

v7.18.1 (2021-06-17)

BUG FIXES

• fce30e423 #​3435 fix(docs): rebuild config docs (@​wraithgar)

v7.18.0

Compare Source

v7.17.0

Compare Source

v7.16.0

Compare Source

v7.15.1

Compare Source

BUG FIXES

• 598a17a26
  #​3329
  fix(libnpmexec): don't detach output from npm
  (@​wraithgar)

DEPENDENCIES

• c4fc03e9e
@npmcli/arborist@2.6.1
  • fixes reifying deps with mismatching version ranges between
    actual and virtual trees
• 9159fa62a
libnpmexec@1.2.0

v7.15.0

Compare Source

FEATURES

• 399ff8cbc
  #​3312
  feat(link): add workspace support
  (@​isaacs)

BUG FIXES

• 46a9bcbcb
  #​3282
  fix(docs): proper postinstall script file name
  (@​KevinFCormier)
• 83590d40f
  #​3272
  fix(ls): show relative paths from root
  (@​isaacs)
• a574b518a
  #​3304
  fix(completion): restore IFS even if npm completion returns error
  (@​NariyasuHeseri)
• 554e8a5cd
  #​3311
  set audit exit code properly
  (@​isaacs)
• 4a4fbe33c
  #​3268
  #​3285
  fix(publish): skip private workspaces
  (@​ruyadorno)

DOCUMENTATION

• 3c53d631f
  #​3307
  fix(docs): typo in package-lock.json docs
  (@​rethab)
• 96367f93f
  rebuild npm-pack doc
  (@​isaacs)
• 64b13dd10
  #​3313
  Drop stale Python 3<->node-gyp remark
  (@​spencerwilson)

DEPENDENCIES

• 7b56bfdf3
cacache@15.2.0:
  • feat: allow fully deleting indices
  • feat: add a validateEntry option to compact
  • chore: lint
  • chore: use standard npm style release scripts
• dbbc151a3
npm-audit-report@2.1.5:
  • fix(exit-code): account for null auditLevel default (#​46)
• 5b2604507
  chore(package-lock): update devDependencies
  (@​Gar)

AUTOMATION

• 3d5df0082
  #​3294
  chore(ci): move node release PR workflow to cli repo
  (@​gimli01)

v7.14.0

Compare Source

FEATURES

• 0d1a9d787
  #​3227
  feat(install): add workspaces support to npm install commands
  (@​isaacs)
• c18626f04
  #​3250
  feat(ls): add workspaces support
  (@​ruyadorno)
• 41099d395
  #​3265
  feat(explain): add workspaces support
  (@​ruyadorno)
• fde354669
  #​3251
  feat(unpublish): add workspace/dry-run support
  (@​wraithgar)
• 83df3666c
  #​3260
  feat(outdated): add workspaces support
  (@​ruyadorno)
• 63a7635f7
  #​3217
  feat(pack): add support to json config/output
  (@​mrmlnc)

BUG FIXES

• faa12ccc2
  #​3253
  fix search description typos
  (@​juanpicado)
• 2f5c28a68
  #​3243
  fix(docs): autogenerate config docs for commands
  (@​isaacs)

DEPENDENCIES

• ec256a14a
@npmcli/arborist@2.6.0
• 5f15aba86
cacache@15.1.0
• b3add87e6
  #​3262
  npm-registry-client@10.1.2:
  • fixed sso login token

v7.13.0

Compare Source

FEATURES

• 076420c14
  #​3231
  feat(publish): add workspace support
  (@​wraithgar)
• 370b36a36
  #​3241
  feat(fund): add workspaces support
  (@​ruyadorno)

DEPENDENCIES

• 0c18e4f77
@npmcli/arborist@2.5.0
• b551c6811
libnpmfund@1.1.0

v7.12.1

Compare Source

BUG FIXES

• de49f58f5
  #​3216
  fix(contributing): link to proper cli repo
  (@​mrmlnc)
• 1d092144e
  #​3203
  fix(packages): locale-agnostic string sorting
  (@​isaacs)
• 0696fca13
  #​3209
  fix(view): fix non-registry specs
  (@​wraithgar)
• 71ac93597
  #​3206
  chore(github): Convert md issue template to yaml
  (@​lukehefson)
• 6fb386d3b
  #​3201
  fix(tests): increase test fuzziness
  (@​wraithgar)
• f3a662fcd
  #​3211
  fix(tests): use config defaults
  (@​wraithgar)

DEPENDENCIES

• 285976fd1
@npmcli/arborist@2.4.4
  • fix(reify): properly save spec if prerelease
• f9f24d17c
libnpmexec@1.1.1
  • fix(add): Specify 'en' locale to String.localeCompare
• cb9f17499
glob@7.1.7
  • force 'en' locale in string sorting
• 24b4e4a41
ignore-walk@3.0.4
  • Avoid locale-specific sorting issues
• 1eb7e5c7d
@npmcli/arborist@2.4.3
  • guard against locale-specific sorting
• a6a826067
npm-packlist@2.2.2:
  • fix(sort): avoid locale-dependent sorting issues

v7.12.0

Compare Source

FEATURES

• 701627c51
  #​3098
  feat(cache): Allow add to accept multiple specs
  (@​mjsir911)
• 59171f030
  #​3187
  feat(config): add workspaces boolean to user-agent
  (@​nlf)

BUG FIXES

• 2c9b8713c
  #​3182
  fix(docs): fix broken links
  (@​wangsai)
• 88cbc8c44
  #​3198
  fix(tests): reflect new libnpmexec logic

DEPENDENCIES

• d01ce5e13
libnpmexec@1.1.0:
  • feat: add walk up dir lookup to satisfy local bins
• 81c1dfaaa
@npmcli/arborist@2.4.2:
  • fix(add): save packages in the right place
  • fix(reify): do not clean up nodes with no parent
  • fix(audit): support alias specs & root package names
• 87c2303ea
@npmcli/git@2.0.9:
  • fix(clone): Do not allow git replacement objects by default
• 99ff40dff
npm-packlist@2.2.0:
  • feat(npmignore): Do not force include history, changelogs, notice
  • fix(package.json): add missing bin/index.js to files

v7.11.2

Compare Source

BUG FIXES

• c371f183e
  #​3137
  #​3140
  fix(ls): do not warn on missing optional deps
  (@​isaacs)
• 861f606c7
  #​3156
  fix(build): make prune rule work on case-sensitive file systems
  (@​lpinca)

DEPENDENCIES

• fb79d89a0
tap@15.0.6
• ce3820043
@npmcli/arborist@2.4.1
  • fix: prevent and eliminate unnecessary duplicates
  • fix: support resolvable partial intersecting peerSets

DOCUMENTATION

• e479f1dac
  #​3146
  mention directories.bin in bin
  (@​felipecrs)

v7.11.1

Compare Source

DEPENDENCIES

• 7925cca24
pacote@11.3.3:
  • fix(registry): normalize manfest
• b61eac693
  #​3130
  @npmcli/config@2.2.0
• c74e67fc6
  #​3130
  npm-registry-fetch@10.1.1

DOCUMENTATION

• efdd7dd44
  Remove unused and incorrectly documented --always-auth config definition
  (@​isaacs)

v7.11.0

Compare Source

FEATURES

• 4c1f16d2c
  #​3095
  feat(init): add workspaces support
  (@​ruyadorno)

BUG FIXES

• 42ca59eee
  #​3086
  fix(ls): do not exit with error when all problems are extraneous deps
  (@​nlf)
• 2aecec591
  #​2724
  #​3119
  fix(ls): make --long work when missing deps
  (@​ruyadorno)
• 42e0587a9
  #​3115
  fix(pack): refuse to pack invalid packument
  (@​wraithgar)
• 1c4eff7b5
  #​3126
  fix(logout): use isBasicAuth attribute
  (@​wraithgar)

DOCUMENTATION

• c93f1c39e
  #​3101
  chore(docs): update view docs
  (@​wraithgar)
• c4ff4bc11
  npm/statusboard#​313
  #​3109
  fix(usage): fix refs to ws shorthand
  (@​ruyadorno)

DEPENDENCIES

• 83166ebcc
npm-registry-fetch@10.1.0
  • feat(auth): set isBasicAuth
• e02bda6da
npm-registry-fetch@10.0.0
  • feat(auth) load/send based on URI, not registry
• a0382deba
@npmcli/run-script@1.8.5
  • fix: windows ComSpec env variable name
• 7f82ef5a8
pacote@11.3.2
• 35e49b94f
@npmcli/arborist@2.4.0
• 95faf8ce6
libnpmaccess@4.0.2
• 17fffc0e4
libnpmhook@6.0.2
• 1b5a213aa
libnpmorg@2.0.2
• 9f83e6484
libnpmpublish@4.0.1
• 251f788c5
libnpmsearch@3.1.1
• 35873a989
libnpmteam@2.0.3
• 23e12b4d8
npm-profile@5.0.3

v7.10.0

Compare Source

FEATURES

• f9b639eb6
  #​3052
  feat(bugs): fall back to email if provided
  (@​Yash-Singh1)
• 8c9e24778
  #​3055
  feat(version): add workspace support
  (@​wraithgar)

DEPENDENCIES

• f1e6743a6
libnpmversion@1.2.0
  • feat(retrieve-tag): retrieve unannotated git tags
  • fix(retrieve-tag): use semver to look for semver
• 3b476a24c
@npmcl/git@2.0.8
  • fix(git): do not use shell when calling git
• dfcd0c1e2
  #​3069
  tap@15.0.2

DOCUMENTATION

• 90b61eda9
  #​3053
  fix(contributing.md): explicitely outline dep updates
  (@​darcyclarke)

v7.9.0

Compare Source

FEATURES

• 1f3e88eba
  #​3032
  feat(dist-tag): add workspace support
  (@​nlf)
• 6e31df4e7
  #​3033
  feat(pack): add workspace support
  (@​wraithgar)

DEPENDENCIES

• ba4f7fea8
licensee@8.2.0

v7.8.0

Compare Source

FEATURES

• 8bcc5d73f
  #​2972
  feat(workspaces): add repo and docs
  (@​wraithgar)
• ec520ce32
  #​2998
  feat(set-script): implement workspaces
• 32717a60e
  #​3001
  feat(view): add workspace support
  (@​wraithgar)
• 7b177e43f
  #​3014
  feat(config): add 'envExport' flag
  (@​isaacs)

BUG FIXES

• 4c4252348
  #​3016
  fix(usage): specify the key each time for multiples
  (@​isaacs)
• 9237d375b
  #​3013
  fix(docs): add workspaces configuration
  (@​wraithgar)
• cb6eb0d20
  #​3015
  fix(ERESOLVE): better errors when current is missing
  (@​isaacs)

DEPENDENCIES

• 61da39beb
@npmcli/config@2.1.0
  • feat(config): add support for envExport:false
• fb095a708
@npmcli/arborist@2.3.0:
  • #​2896 Provide currentEdge in
    ERESOLVE if known, and address self-linking edge case.
  • Add/remove dependencies to/from workspaces when set, not root project
  • Only reify the portions of the dependency graph identified by the
    workspace configuration value.
  • Do not recursively chown the project root path.

v7.7.6

Compare Source

BUG FIXES

• 9dd2ed518
  fix empty newline printed to stderr
  (@​ruyadorno)
• 9d391462a
  #​2973
  fix spelling in workspaces.md file
  (@​sethomas)
• 4b100249a
  #​2979
  change 'maxsockets' default value back to 15
  (@​wallrat)

DEPENDENCIES

• a28f89572
libnpmversion@1.1.0
  • fix reading script-shell config on npm version lifecycle scripts
• 03734c29e
npm-packlist@2.1.5
  • fix packaging bundledDependencies
• 80ce2a019
@npmcli/metavuln-calculator@1.1.1
  • fix error auditing package documents with missing dependencies

v7.7.5

Compare Source

BUG FIXES

• 95ba87622
  #​2949
  fix handling manual indexes in npm help
  (@​dmchurch)
• 59cf37962
  #​2958
  always set npm.command to canonical command name
  (@​isaacs)
• 1415b4bde
  #​2964
  fix(config): properly translate user-agent
  (@​wraithgar)
• 59271936d
  #​2965
  fix(config): tie save-exact/save-prefix together
  (@​wraithgar)

TESTS

• 97b415287
  #​2959
  add smoke tests
  (@​ruyadorno)

v7.7.4

Compare Source

BUG FIXES

• 200bee74b
  #​2951
  fix(config): accept explicit production=false
  (@​wraithgar)
• 7b45e9df6
  #​2950
  warn if using workspaces config options in npm config
  (@​ruyadorno)

v7.7.3

Compare Source

BUG FIXES

• c76f04ac2
  #​2925
  fix(set-script): add completion
  (@​Yash-Singh1)
• 0379eab69
  #​2929
  fix(install): ignore auditLevel
  npm install should not be affected by the auditLevel config, as the
  results of audit do not change its exit status.
  (@​wraithgar)
• 98efadeb4
  #​2923
  fix(audit-level): add info audit level
  This is a valid level but wasn't configured to be allowed.
  Also added this param to the usage output for npm audit
  (@​wraithgar)
• e8d2adcf4
  #​2945
  config should not error when workspaces are configured
  (@​nlf)
• aba2bc623
  #​2944
  fix(progress): re-add progress bar to reify
  The logger was no longer in flatOptions, we pass it in explicitly now
  (@​wraithgar)
• 877b4ed29
  #​2946
  fix(flatOptions): re-add _auth
  This was not being added to flatOptions, and things like
  npm-registry-fetch are looking for it.
  (@​wraithgar)

v7.7.2

Compare Source

BUG FIXES

• a4df2b98d
  #​2942
  Restore --dev flag, unify --omit flatteners
  (@​isaacs)

DEPENDENCIES

• 2cbfaac0e
hosted-git-info@4.0.2
  • #​83 Do not parse
    urls for gitlab
    (@​nlf)

v7.7.1

Compare Source

BUG FIXES

• 543b0e39b
  #​2930
  fix(uninstall): use correct local prefix
  (@​jameschensmith)
• dce4960ef
  #​2932
  fix(config): flatten savePrefix properly
  (@​wraithgar)

v7.7.0

Compare Source

FEATURES

• 33c4189f9
  #​2864
  add npm run-script workspaces support
  (@​ruyadorno)
• e1b3b318f
  #​2886
  add npm exec workspaces support
  (@​ruyadorno)
• 41facf643
  #​2859
  expanded "Did you mean?" suggestions for missing cmds and scripts
  (@​wraithgar)

BUG FIXES

• 8cce4282f
  #​2865
  npm publish: handle case where multiple config list is present
  (@​kenrick95)
• 6598bfe86
  mark deprecated configs
  (@​isaacs)
• 8a38afe77
  #​2881
  docs(package-json): document default main behavior
  (@​klausbayrhammer)
• 93a061d73
  #​2917
  add action items to npm run error output
  (@​wraithgar)

DOCUMENTATION

• ad65bd910
  #​2860
  fix link in configuring-npm
  (@​varmakarthik12)
• b419bfb02
  #​2876
  fix test-coverage command in contributing guide
  (@​chowkapow)

DEPENDENCIES

• 7b5606b93
@npmcli/arborist@2.2.9
  • #​254 Honor explicit
    prefix when saving dependencies
    (@​jameschensmith)
  • #​255 Never save to
    bundleDependencies when saving a peer or peerOptional
    dependency. (@​isaacs)
• f76e7c21f
pacote@11.3.1
  • increases tarball compression level
• 4928512bc
semver@7.3.5
  • fix handling prereleases/ANY ranges in subset
• 1924eb457
libnpmversion@1.0.12
  • fix removing undescored-prefixed package.json properties in npm version
• 916623056
@npmcli/run-script@1.8.4
  • fix expanding windows-style environment variables
• a8d0751e4
npm-pick-manifest@6.1.1
  • fix running packages with a single executable binary with npm exec
• af7eaac50
hosted-git-info@4.0.1
• f52c51db1
@npmcli/config@2.0.0

v7.6.3

Compare Source

DOCUMENTATION

• 8c44e999b
  #​2855
  Correct "npm COMMAND help" to "npm help COMMAND"
  (@​dwardu)

DEPENDENCIES

• 57ed390d6
@npmcli/arborist@2.2.8
  • Respect link deps when calculating peerDep sets

v7.6.2

Compare Source

BUG FIXES

• e0a3a5218
  #​2831
  Fix cb() never called in search with --json option
  (@​fraqe)
• 85a8694dd
  #​2795
  fix(npm.output): make output go through npm.output
  (@​wraithgar)
• 9fe0df5b5
  #​2821
  fix(usage): clean up usage declarations
  (@​wraithgar)

DEPENDENCIES

• 7f470b5c2
@npmcli/arborist@2.2.7
  • fix(install): Do not revert a file: dep to version on bare name re-install
• e9b7fc275
libnpmdiff@2.0.4
  • fix(diff): Gracefully handle packages with prepare script
• c7314aa62
byte-size@7.0.1
• 864f48d43
pacote@11.3.0

v7.6.1

Compare Source

BUG FIXES

• 3c9a589b0
  #​2807
  npm explain show when an edge is a bundled edge
  (@​kumavis)
• b33c760ce
  #​2766
  unused arguments cleanup
  (@​sandersn)
• 4a5dd3a5a
  #​2772
  fix(npm) pass npm context everywhere
  (@​wraithgar)
• e69be2ac5
  #​2789
  fix npm prefix on all Windows unix shells
  (@​isaacs)
• 2d682e4ca
  #​2803
  fix(search): don't pass unused args
  (@​wraithgar)
• b3e7dd19b
  #​2822
  fix(diff): set option "where" for pacote
  (@​ruyadorno)
• 96006640b
  #​2824
  fix(repo, auth.sso): don't promisify open-url
  (@​wraithgar)

DOCUMENTATION

• c8b73db82
  #​2690
  fix(docs): update scripts docs
  (@​wraithgar)
• 5d922394b
  #​2809
  update republish timeout after unpublish
  (@​BAJ-)

DEPENDENCIES

• 2d4ae598f
@npmcli/arborist@2.2.6

v7.6.0

Compare Source

FEATURES

• 983d218f7
  #​2750
  feat(explain): mark when dependency is bundled
  (@​kumavis)

DEPENDENCIES

• b9fa7e32a
  chore(package-lock): resetdeps and eslint@7.20.0
  (@​wraithgar)
• 28d036ae9
arborist@2.2.5
  • fix: hidden lockfiles were not respected on Node v10.0-10.12

DOCUMENTATION

• ba1adef42
  #​2760
  chore(docs): capitalize all Instaces of "package"
  (@​MrBrain295)
• 8bfa05fa1
  #​2775
  chore(docs): add navigation configuration
  (@​ethomson)
• 238e474a4
  #​2778
  chore(docs):update unpublish cooldown
  (@​christoflemke)

v7.5.6

Compare Source

BUG FIXES

• 4e58274ed
  #​2742
  Do not print error banner for shell proxy commands
  (@​isaacs)

DOCS

• 3c72ab441
  #​2749
  Capitalize Package in a Heading
  (@​MrBrain295)

DEPENDENCIES

• f3ae6ed0d
read-package-json@3.0.1, read-package-json-fast@2.0.2
• 9b311fe52
  #​2736 @npmcli/arborist@2.2.4:
  • Do not rely on underscore fields in package.json files
  • Do not remove global packages when updating by name
  • Keep yarn.lock and package-lock.json more in sync

v7.5.5

Compare Source

BUG FIXES

• 49c95375a
  #​2688
  fix shrinkwrap in node v10.0
  (@​ljharb)
• 00afa3161
  #​2718
  restore the prefix on output from npm version <inc>
  (@​nlf)
• 69e0c4e8c
  #​2716
  throw an error when trying to dedupe in global mode
  (@​nlf)
• b018eb842
  #​2719
  obey silent loglevel in run-script
  (@​wraithgar)

DEPENDENCIES

• 8c36697df
@npmcli/arborist@2.2.3
  • #​1875
    arborist#​230
    Set default advisory severity/vulnerable_range when missing from audit endpoint data
    (@​isaacs)
  • npm/arborist#​231
    skip optional deps with mismatched platform or engine
    (@​nlf)
  • #​2251
    Unpack shrinkwrapped deps not already unpacked
    (@​isaacs,
    @​nlf)
  • #​2714
    Do not write package.json if nothing changed
    (@​isaacs)
  • npm/rfcs#​324
    Prefer peer over prod dep, if both specified
    (@​isaacs)
  • npm/arborist#​236
    Fix additional peerOptional conflict cases
    (@​isaacs)
• d865b101f
libnpmpack@2.0.1
  • respect silent loglevel
• e606953e5
libnpmversion@1.0.11
  • respect silent loglevel
• 9c51005a1
npm-package-arg@8.1.1
  • do a better job of detecting git specifiers like git@github.com:npm/cli
• 8b6bf0db4
pacote@11.2.7
  • respect silent loglevel
  • fix INVALID_URL errors for certain git dependencies

TESTS

• 80c2ac995
  #​2717
  refactor publish tests
  (@​wraithgar)
• 9d81e0ceb
  #​2729
  fix typo in shrinkwrap tests
  (@​eltociear)

DOCUMENTATION

• e3de7befb
  #​2685
  docs(readme): add note back about branding/origin
  (@​darcyclarke)
• 38d87e7c2
  #​2698
  mention nodenv in README.md
  (@​RA80533)
• af4422cdb
  #​2711
  validate that the docs can be parsed by mdx
  (@​ethomson)

v7.5.4

Compare Source

BUG FIXES

• ef687f545
  #​2655
  fix(env): Do not clobber defined 'env' script
  (@​isaacs)
• 868954a72
  #​2654
  [fix] node v10.0 lacks fs.promises
  (@​ljharb)

DEPENDENCIES

• 14dd93853
  fix(package.json): resetdeps
  (@​wraithgar)
• 39e4a6401
graceful-fs@4.2.6
• 96dffab98
eslint-plugin-promise@4.3.1
• 9a6e9d38a
@npmcli/run-script@1.8.3
  • fix fs.promises reference to run in node v10.0
• 584b746a2
@npmcli/git@2.0.5
• 6305ebde4
make-fetch-happen@8.0.14
• e99881117
libnpmversion@1.0.10
• 554d91cdf
  chore(package-lock): rebuild package-lock
  (@​wraithgar)
• 37e8cc507
@npmcli/arborist@2.2.2
  • #​2505 properly install
    dependenciess of linked dependencies
    (@​ruyadorno)
  • #​2504 Allow --force to
    override conflicted optional peerDependencies
    (@​isaacs)
  • Ensure correct flags on shrinkwrapped module deps
    (@​isaacs)
  • Correct relative paths for global packages installed from tarball files
    (nlf)
• 7788ce47b
@npmcli/map-workspaces@1.0.3

TESTS

• 3a159d27e
  #​2681
  fix(tests): rewrite doctor tests
  (@​ljharb)
• abcc96a20
  #​2682
  [tests] separate tests from linting and license validation
  (@​ljharb)

DOCUMENTATION

• 7e1e84181
  #​2662
  fix(docs): fix angle brackets in npm diff docs
  (@​ethomson)

v7.5.3

Compare Source

BUG FIXES

• df596bf4c
  fix(publish): follow all configs for registry auth check
  #​2602
  (@​wraithgar)
• 6d7afb03c
  #​2613
  install script: pass -q to curl calls to disable user .curlrc files
  (@​nlf)

DEPENDENCIES

• 3294fed6f
pacote@11.2.5
  • prevent infinite recursion in git dep preparation
• 0f7a3a87c
read-package-json-fast@2.0.1
  • avoid duplicating optionalDependencies as dependencies in package.json
• 6f46b0f7f
init-package-json@2.0.2
• df4f65acc
@npmcli/arborist@2.2.0
• 7038c2ff4
@npmcli/run-script@1.8.2
• 54cd4c87a
libnpmversion@1.0.8
• 9ab36aae4
graceful-fs@4.2.5
• e1822cf27
@npmcli/installed-package-contents@1.0.7

v7.5.2

Compare Source

BUG FIXES

• 37613e4e6
  #​2395
  #​2329
  fix(exec): use latest version when possible
  (@​wraithgar)
• 567c9bd03
  fix(lib/npm): do not clobber config.execPath
  (@​wraithgar)

DEPENDENCIES

• 643709706
@npmcli/config@1.2.9 (@​isaacs)
  • 4c6be4a Restore npm v6 behavior with INIT_CWD
  • bbebc66 Do not set the PREFIX environment variable

v7.5.1

Compare Source

BUG FIXES

• 0ea134e41
  #​2587
  pass all settings through to pacote.packument, fixes #​2060
  (@​nlf)
• 8c5ca2f51
  Add test for npm-usage.js, and fix 'npm --long' output
  (@​isaacs)

DEPENDENCIES

• 7e4e88e93
@npmcli/arborist@2.1.1, pacote@11.2.4
  • Properly raise ERESOLVE errors on root dev dependencies
  • Ignore ERESOLVE errors when performing git dep 'prepare' scripts
  • Always reinstall packages that are explicitly requested
  • fix global update all so it actually updates things
  • Install bins properly when global root is a link
    (@​isaacs)

DOCUMENTATION

• 23dac2fef
  #​2557
  npm team revamp
  (@​ruyadorno)
• dd05ba0c0
  #​2572
  add note about --force overriding peer dependencies
  (@​isaacs)
• e27639780
  #​2584
  Fixed the spelling of contributor as it was written as conributor
  (@​pavanbellamkonda)
• 13a5e3178
  #​2502
  elaborate that npm help uses browser
  (@​ariccio)

v7.5.0

Compare Source

FEATURES

• d011266b7
  [#​1319](https:

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

[rpl]

the green light from the CI jobs may seem tempting, but this PR doesn't upgrade the lockfileVersion and so at the moment if we do merge this we would very likely just trigger #2145 again (which we just fixed, exactly by specifying in the package.json the supported npm version range to be strictly < v7).

We are going to leave this open but unmerged (and tagged with a state: do not merge label) until we are sure that we would not trigger that same issue.

[wagnerand]

@rpl I believe the inconsistencies come from the fact that our CI uses npm v6 which understands lock files v1 only, and renovate was using npm v7 (which creates lock files v2). Restricting npm.engine in package.json was the right fix as per https://docs.renovatebot.com/node/#configuring-which-version-of-npm-renovate-uses.

So, in order to unblock this PR, we need to make sure CI uses npm v7 first.

[codecov]

Codecov Report

Merging #2146 (497a1ea) into master (c866678) will not change coverage.
The diff coverage is n/a.

❗ Current head 497a1ea differs from pull request most recent head 5bff970. Consider uploading reports for the commit 5bff970 to get more accurate results

@@           Coverage Diff           @@
##           master    #2146   +/-   ##
=======================================
  Coverage   99.88%   99.88%           
=======================================
  Files          32       32           
  Lines        1699     1699           
=======================================
  Hits         1697     1697           
  Misses          2        2           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update c866678...5bff970. Read the comment docs.