Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump npm-lockfile from 2.0.2 to 2.0.5 #24

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump npm-lockfile from 2.0.2 to 2.0.5 #24

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Mar 8, 2022

Bumps npm-lockfile from 2.0.2 to 2.0.5.

Changelog

Sourced from npm-lockfile's changelog.

v2.0.5 - 2022-03-01

Commits

  • [Refactor] switch from chalk to colors cdd2e35
  • [Dev Deps] update eslint, @ljharb/eslint-config, aud, auto-changelog, tape 38f99c3
  • [Fix] reject invalid only values bfdb848
  • [Deps] update object-inspect d96f582
  • [Fix] pin colors 57c2eeb

v2.0.4 - 2021-12-09

Commits

  • [actions] reuse common workflows 4f74157
  • [Tests] migrate tests to Github Actions de09912
  • [meta] do not publish workflow files da561c4
  • [Dev Deps] update eslint, @ljharb/eslint-config, safe-publish-latest, tape 0323b72
  • [readme] update badges f6fa0d4
  • [actions] update workflows 72fa023
  • [actions] use node/install instead of node/run; use codecov action 8d2a972
  • [Tests] run nyc on tests by default 6aff286
  • [Dev Deps] update eslint, @ljharb/eslint-config, aud, auto-changelog, tape b82a93b
  • [Dev Deps] update eslint, @ljharb/eslint-config, tape 1f3a704
  • [Dev Deps] update aud, auto-changelog, eslint e73a237
  • [actions] update codecov uploader 90b099c
  • [Deps] update object-inspect, util.promisify 790ab2f
  • [Deps] update object-inspect 91cb808
  • [Fix] getLockfile: use --ignore-scripts when generating a lockfile 0587433
  • [Tests] use the parsed JSON instead 3c90cb7
  • [Deps] update object-inspect 9362fa5
  • [Dev Deps] update eslint eea1019
  • [meta] add audit-level afe1dac

v2.0.3 - 2020-09-08

Commits

  • [Tests] use shared travis-ci configs bd131e4
  • [meta] reformat package.json ef89f2a
  • [meta] add funding field 7a98be5
  • [Dev Deps] update eslint, @ljharb/eslint-config, aud, auto-changelog, tape 12e8eaa
  • [meta] update auto-changelog config 06c2012
  • [Dev Deps] update @ljharb/eslint-config, tape; add safe-publish-latest f207db2
  • [Fix] getLockfile: inherit NODE_ENV env variable for npm install a0a597c
  • [actions] add automatic rebasing / merge commit blocking 1ab7f55
  • [actions] add "Allow Edits" workflow d3b9dfd
  • [Deps] update object-inspect, rimraf, semver 7e0db68
  • [Deps] update rimraf, util.promisify, yargs 7256f27
  • [Dev Deps] update eslint, @ljharb/eslint-config, tape 4ae68d0

... (truncated)

Commits
  • 571e21a v2.0.5
  • bfdb848 [Fix] reject invalid only values
  • 38f99c3 [Dev Deps] update eslint, @ljharb/eslint-config, aud, auto-changelog,...
  • d96f582 [Deps] update object-inspect
  • 57c2eeb [Fix] pin colors
  • cdd2e35 [Refactor] switch from chalk to colors
  • 99f676d v2.0.4
  • da561c4 [meta] do not publish workflow files
  • 4f74157 [actions] reuse common workflows
  • afe1dac [meta] add audit-level
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump npm-lockfile from 2.0.2 to 2.0.5
3e329da 
Bumps [npm-lockfile](https://github.com/ljharb/npm-lockfile) from 2.0.2 to 2.0.5.
- [Release notes](https://github.com/ljharb/npm-lockfile/releases)
- [Changelog](https://github.com/ljharb/npm-lockfile/blob/v2.0.5/CHANGELOG.md)
- [Commits](ljharb/npm-lockfile@v2.0.2...v2.0.5)

---
updated-dependencies:
- dependency-name: npm-lockfile
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ljharb ljharb ljharb approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@ljharb