Skip to content
This repository has been archived by the owner on Jul 24, 2024. It is now read-only.

build(deps): bump glob from 7.2.0 to 8.0.1 #3256

Closed
wants to merge 1 commit into from
Closed

build(deps): bump glob from 7.2.0 to 8.0.1 #3256

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 18, 2022

Bumps glob from 7.2.0 to 8.0.1.

Changelog

Sourced from glob's changelog.

8.0

  • Only support node v12 and higher

7.2

  • Add fs option to allow passing virtual filesystem

7.1

  • Ignore stat errors that are not ENOENT to work around Windows issues.
  • Support using root and absolute options together
  • Bring back lumpy space princess
  • force 'en' locale in string sorting

7.0

  • Raise error if options.cwd is specified, and not a directory

6.0

  • Remove comment and negation pattern support
  • Ignore patterns are always in dot:true mode

5.0

  • Deprecate comment and negation patterns
  • Fix regression in mark and nodir options from making all cache keys absolute path.
  • Abort if fs.readdir returns an error that's unexpected
  • Don't emit match events for ignored items
  • Treat ENOTSUP like ENOTDIR in readdir

4.5

  • Add options.follow to always follow directory symlinks in globstar
  • Add options.realpath to call fs.realpath on all results
  • Always cache based on absolute path

4.4

  • Add options.ignore
  • Fix handling of broken symlinks

4.3

  • Bump minimatch to 2.x
  • Pass all tests on Windows

4.2

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump glob from 7.2.0 to 8.0.1
f930a3c 
Bumps [glob](https://github.com/isaacs/node-glob) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/isaacs/node-glob/releases)
- [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md)
- [Commits](isaacs/node-glob@v7.2.0...v8.0.1)

---
updated-dependencies:
- dependency-name: glob
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 18, 2022
@nschonni
Copy link
Contributor

seems like this is still breaking on Windows, so closing to see if there is another release

@nschonni nschonni closed this Apr 19, 2022
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Apr 19, 2022

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/npm_and_yarn/glob-8.0.1 branch April 19, 2022 02:00
Friendly-users referenced this pull request in Friendly-users/node-sass Jul 9, 2024
@Friendly-users
No politics or offense in public code.
75139ea 
-----
It is inappropriate to include political and offensive content in public code repositories.

Public code repositories should be neutral spaces for collaboration and community, free from personal or political views that could alienate or discriminate against others. Political content, especially that which targets or disparages minority groups, can be harmful and divisive. It can make people feel unwelcome and unsafe, and it can create a hostile work environment.

Please refrain from adding such content to public code repositories.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@nschonni