Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps-dev): bump @stylistic/eslint-plugin-js from 2.12.1 to 2.13.0 #73

Merged
merged 1 commit into from
Jan 13, 2025
Merged

chore(deps-dev): bump @stylistic/eslint-plugin-js from 2.12.1 to 2.13.0 #73

merged 1 commit into from
Jan 13, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 13, 2025
edited by sourcery-ai bot
Loading

PR-73 Powered by Pull Request Badge

Bumps @stylistic/eslint-plugin-js from 2.12.1 to 2.13.0.

Release notes

Sourced from @​stylistic/eslint-plugin-js's releases.

v2.13.0

2.13.0 (2025-01-13)

Features

  • key-spacing: add ignoredNodes option (#640) (33ae1f6)
  • no-extra-parens: introduce nestedConditionalExpressions option (#657) (bf63800)
  • padded-blocks: add start and end options (#655) (cf49939)

Bug Fixes

  • indent-binary-ops: correctly handle TypeAliasDeclaration (#647) (ca2aabc)
  • indent-binary-ops: indent on multiline assignment (#644) (d708587)

Documentation

Chores

  • replace deprecated isSpaceBetweenTokens with isSpaceBetween (#646) (6da7c42)
Changelog

Sourced from @​stylistic/eslint-plugin-js's changelog.

2.13.0 (2025-01-13)

Features

  • key-spacing: add ignoredNodes option (#640) (33ae1f6)
  • no-extra-parens: introduce nestedConditionalExpressions option (#657) (bf63800)
  • padded-blocks: add start and end options (#655) (cf49939)

Bug Fixes

  • indent-binary-ops: correctly handle TypeAliasDeclaration (#647) (ca2aabc)
  • indent-binary-ops: indent on multiline assignment (#644) (d708587)

Documentation

Chores

  • replace deprecated isSpaceBetweenTokens with isSpaceBetween (#646) (6da7c42)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by Sourcery

更新 @stylistic/eslint-plugin-js 从 2.12.1 到 2.13.0。

Original summary in English

Summary by Sourcery

Update @stylistic/eslint-plugin-js from 2.12.1 to 2.13.0.

@dependabot
chore(deps-dev): bump @stylistic/eslint-plugin-js from 2.12.1 to 2.13.0
3f5a206 
Bumps [@stylistic/eslint-plugin-js](https://github.com/eslint-stylistic/eslint-stylistic/tree/HEAD/packages/eslint-plugin-js) from 2.12.1 to 2.13.0.
- [Release notes](https://github.com/eslint-stylistic/eslint-stylistic/releases)
- [Changelog](https://github.com/eslint-stylistic/eslint-stylistic/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint-stylistic/eslint-stylistic/commits/v2.13.0/packages/eslint-plugin-js)

---
updated-dependencies:
- dependency-name: "@stylistic/eslint-plugin-js"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 13, 2025
@cloudflare-workers-and-pages Cloudflare Workers and Pages
Copy link

cloudflare-workers-and-pages bot commented Jan 13, 2025
edited
Loading

Deploying qinwuyuan with  Cloudflare Pages  Cloudflare Pages

Latest commit: 3f5a206
Status: ✅  Deploy successful!
Preview URL: https://e8014031.qinwuyuan.pages.dev
Branch Preview URL: https://dependabot-npm-and-yarn-styl.qinwuyuan.pages.dev

View logs

@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Jan 13, 2025

⚠️ No Changeset found

Latest commit: 3f5a206

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@pr-code-reviewer PR Code Reviewer
Copy link

pr-code-reviewer bot commented Jan 13, 2025
edited
Loading

👋 Hi there!

Everything looks good!


Automatically generated with the help of gpt-3.5-turbo.
Feedback? Please don't hesitate to drop me an email at [email protected].

@labels-and-badges labels-and-badges bot added NO JIRA This PR does not have a Jira Ticket PR:size/S Denotes a Pull Request that changes 10-29 lines. release This PR is a release labels Jan 13, 2025
@github-actions GitHub Actions
Copy link
Contributor

@dependabot[bot] 你好,人民的勤务员将尽快审查合并此次请求!🚀 [自动回复,请勿跟帖]

@instapr InstaPR
Copy link

instapr bot commented Jan 13, 2025

Feedback on PR

  • Code changes look good.
  • Updated @stylistic/eslint-plugin-js from 2.12.1 to 2.13.0.
  • Release notes, changelog, and commits have been reviewed.
  • Package-lock.json and package.json are updated correctly.

Overall, looks good! 👍🏼

@github-actions github-actions bot requested a review from ChinaGodMan January 13, 2025 18:19
@sourcery-ai Sourcery AI
Copy link

sourcery-ai bot commented Jan 13, 2025
edited
Loading

审阅者指南 by Sourcery

此 PR 将 @stylistic/eslint-plugin-js 开发依赖从版本 2.12.1 升级到 2.13.0。此更改引入了新功能、错误修复、文档改进和一些日常维护工作。

显示更新的 ESLint 插件功能的类图

classDiagram
    class StylisticESLintPlugin {
      +keySpacing
      +noExtraParens
      +paddedBlocks
      +indentBinaryOps
    }

    class KeySpacing {
      +ignoredNodes
      note for KeySpacing "新增选项"
    }

    class NoExtraParens {
      +nestedConditionalExpressions
      note for NoExtraParens "新增选项"
    }

    class PaddedBlocks {
      +start
      +end
      note for PaddedBlocks "新增选项"
    }

    class IndentBinaryOps {
      +TypeAliasDeclaration
      +multilineAssignment
      note for IndentBinaryOps "应用了错误修复"
    }

    StylisticESLintPlugin --> KeySpacing
    StylisticESLintPlugin --> NoExtraParens
    StylisticESLintPlugin --> PaddedBlocks
    StylisticESLintPlugin --> IndentBinaryOps
Loading

文件级别变更

变更 详情 文件
更新依赖版本
  • package.jsonpackage-lock.json 文件中,@stylistic/eslint-plugin-js 的版本从 2.12.1 更新到 2.13.0。
 package.json
package-lock.json
提示和命令

与 Sourcery 交互

  • 触发新的审阅: 在拉取请求中评论 @sourcery-ai review
  • 继续讨论: 直接回复 Sourcery 的审阅评论。
  • 从审阅评论生成 GitHub 问题: 通过回复评论,要求 Sourcery 从审阅评论创建问题。
  • 生成拉取请求标题: 在拉取请求标题的任何位置写 @sourcery-ai 以随时生成标题。
  • 生成拉取请求摘要: 在拉取请求正文的任何位置写 @sourcery-ai summary 以随时生成 PR 摘要。您还可以使用此命令指定摘要的插入位置。

自定义您的体验

访问您的仪表板以:

  • 启用或禁用审阅功能,如 Sourcery 生成的拉取请求摘要、审阅者指南等。
  • 更改审阅语言。
  • 添加、删除或编辑自定义审阅说明。
  • 调整其他审阅设置。

获取帮助

Original review guide in English

Reviewer's Guide by Sourcery

This PR bumps the @stylistic/eslint-plugin-js dev dependency from version 2.12.1 to 2.13.0. This change introduces new features, bug fixes, documentation improvements, and some chores.

Class diagram showing updated ESLint plugin features

classDiagram
    class StylisticESLintPlugin {
      +keySpacing
      +noExtraParens
      +paddedBlocks
      +indentBinaryOps
    }

    class KeySpacing {
      +ignoredNodes
      note for KeySpacing "New option added"
    }

    class NoExtraParens {
      +nestedConditionalExpressions
      note for NoExtraParens "New option added"
    }

    class PaddedBlocks {
      +start
      +end
      note for PaddedBlocks "New options added"
    }

    class IndentBinaryOps {
      +TypeAliasDeclaration
      +multilineAssignment
      note for IndentBinaryOps "Bug fixes applied"
    }

    StylisticESLintPlugin --> KeySpacing
    StylisticESLintPlugin --> NoExtraParens
    StylisticESLintPlugin --> PaddedBlocks
    StylisticESLintPlugin --> IndentBinaryOps
Loading

File-Level Changes

Change Details Files
Update dependency version
  • The version of @stylistic/eslint-plugin-js was updated from 2.12.1 to 2.13.0 in the package.json and package-lock.json files.
 package.json
package-lock.json
Tips and commands

Interacting with Sourcery

  • Trigger a new review: Comment @sourcery-ai review on the pull request.
  • Continue discussions: Reply directly to Sourcery's review comments.
  • Generate a GitHub issue from a review comment: Ask Sourcery to create an
    issue from a review comment by replying to it.
  • Generate a pull request title: Write @sourcery-ai anywhere in the pull
    request title to generate a title at any time.
  • Generate a pull request summary: Write @sourcery-ai summary anywhere in
    the pull request body to generate a PR summary at any time. You can also use
    this command to specify where the summary should be inserted.

Customizing Your Experience

Access your dashboard to:

  • Enable or disable review features such as the Sourcery-generated pull request
    summary, the reviewer's guide, and others.
  • Change the review language.
  • Add, remove or edit custom review instructions.
  • Adjust other review settings.

Getting Help

sourcery-ai[bot]
sourcery-ai bot reviewed Jan 13, 2025
View reviewed changes
Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

我们跳过了对这个拉取请求的审查。看起来这是由机器人创建的(嘿,dependabot[bot]!)。我们假设它知道自己在做什么!

Original comment in English

We have skipped reviewing this pull request. It seems to have been created by a bot (hey, dependabot[bot]!). We assume it knows what it's doing!

@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

llamapreview[bot]
llamapreview bot reviewed Jan 13, 2025
View reviewed changes
Copy link

@llamapreview llamapreview bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Auto Pull Request Review from LlamaPReview

Review Status: Automated Review Skipped

Dear contributor,

Thank you for your Pull Request. LlamaPReview has analyzed your changes and determined that this PR does not require an automated code review.

Analysis Result:

PR contains only dependency version updates and generated files, requiring no automated code review

We're continuously improving our PR analysis capabilities. Have thoughts on when and how LlamaPReview should perform automated reviews? Share your insights in our GitHub Discussions.

Best regards,
LlamaPReview Team

@codethreat-sast-cloud CodeThreat SAST Cloud
Copy link

🚀 CodeThreat Security Scan Completed for UserScripts

Hello Team,

Great news! We've just completed a thorough security scan for UserScripts, and here's what we found:

Quick Overview

  • Duration: 00:02:13
  • Risk Score: F (This reflects the overall security posture based on the identified issues.)
  • Issues Fixed: 0 (The number of vulnerabilities resolved during this scan.)

🛠 Detailed Vulnerability Analysis

We've identified vulnerabilities across the codebase. Here's a detailed look:

Weakness Name Severity Count
Insecure Random Number Generator High 2
Detect Potential Xss In Template Literals Medium 39
Dynamic Code Execution Alert Critical 10
Redirection Input Validation Medium 1
Missing Timeout In Http Request Calls Low 3

🔗 Software Composition Analysis (SCA) Insights

package-lock.json

Severity Summary: Critical: 0 High: 0 Medium: 0 Low: 0

📈 Next Steps & Full Report

To dive deeper, click here to view the full report. It's essential to review these findings and plan the necessary fixes. If any of the critical/high issues need more discussion, let's set up a quick meeting to strategize our next steps.

🔒 Security isn't just a feature; it's a responsibility. Let's keep our codebase rock solid!

@ChinaGodMan ChinaGodMan merged commit 3baded2 into main Jan 13, 2025
23 of 25 checks passed
@ChinaGodMan ChinaGodMan deleted the dependabot/npm_and_yarn/stylistic/eslint-plugin-js-2.13.0 branch January 13, 2025 23:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@llamapreview llamapreview[bot] llamapreview[bot] left review comments

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

@ChinaGodMan ChinaGodMan Awaiting requested review from ChinaGodMan

Assignees

@ChinaGodMan ChinaGodMan

Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code NO JIRA This PR does not have a Jira Ticket PR:size/S Denotes a Pull Request that changes 10-29 lines. release This PR is a release size/XS
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ChinaGodMan