Skip to content
This repository has been archived by the owner on May 5, 2022. It is now read-only.

chore(deps-dev): bump semantic-release from 17.4.7 to 19.0.2 #212

Open
wants to merge 16 commits into
base: main
Choose a base branch
from
Open

chore(deps-dev): bump semantic-release from 17.4.7 to 19.0.2 #212

wants to merge 16 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 24, 2022
edited
Loading

Bumps semantic-release from 17.4.7 to 19.0.2.

Release notes

Sourced from semantic-release's releases.

v19.0.2

19.0.2 (2022-01-18)

Bug Fixes

  • npm-plugin: upgraded to the stable version (0eca144)

v19.0.1

19.0.1 (2022-01-18)

Bug Fixes

  • npm-plugin: upgraded to the latest beta version (8097afb)

v19.0.0

19.0.0 (2022-01-18)

Bug Fixes

  • npm-plugin: upgraded to the beta, which upgrades npm to v8 (f634b8c)
  • upgrade marked to resolve ReDos vulnerability (#2330) (d9e5bc0)

BREAKING CHANGES

  • npm-plugin: @semantic-release/npm has also dropped support for node v15
  • node v15 has been removed from our defined supported versions of node. this was done to upgrade to compatible versions of marked and marked-terminal that resolved the ReDoS vulnerability. removal of support of this node version should be low since it was not an LTS version and has been EOL for several months already.

v19.0.0-beta.2

19.0.0-beta.2 (2022-01-17)

Bug Fixes

  • npm-plugin: upgraded to the beta, which upgrades npm to v8 (f634b8c)

BREAKING CHANGES

  • npm-plugin: @semantic-release/npm has also dropped support for node v15

v19.0.0-beta.1

19.0.0-beta.1 (2022-01-17)

... (truncated)

Commits
  • 0eca144 fix(npm-plugin): upgraded to the stable version
  • 8097afb fix(npm-plugin): upgraded to the latest beta version
  • 95af1e4 Merge pull request #2332 from semantic-release/beta
  • f634b8c fix(npm-plugin): upgraded to the beta, which upgrades npm to v8
  • d9e5bc0 fix: upgrade marked to resolve ReDos vulnerability (#2330)
  • dd7d664 docs: fix a broken link (#2318)
  • cd6136d docs: wrong prerelease example (#2307)
  • e62c83d docs: remove repeated 'with' word (#2289)
  • 5d78fa4 docs(breaking-change): highlighted the need for BREAKING CHANGE: to be in ...
  • b64855f docs(badge): mentioned referencing the commit convention (#2269)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot-preview bot and others added 15 commits May 11, 2020 09:27
@dependabot-preview
chore(deps-dev): bump eslint from 6.8.0 to 7.0.0 (#168)
1d1059a 
Bumps [eslint](https://github.com/eslint/eslint) from 6.8.0 to 7.0.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md)
- [Commits](eslint/eslint@v6.8.0...v7.0.0)

Signed-off-by: dependabot-preview[bot] <[email protected]>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Nick Woodward <[email protected]>
@dependabot-preview
chore(deps-dev): bump eslint-plugin-mocha from 6.3.0 to 7.0.0 (#169)
b2eab83
@dependabot-preview
chore(deps-dev): bump mocha from 7.2.0 to 8.0.1 (#170)
93c0397
@dependabot-preview
chore(deps-dev): bump eslint-plugin-mocha from 7.0.1 to 8.0.0 (#171)
06c2fd9
@dependabot-preview
chore(deps-dev): bump webpack-cli from 3.3.12 to 4.0.0 (#172)
38ca49d
@dependabot-preview
chore(deps-dev): bump karma from 5.2.3 to 6.0.1 (#174)
3086397
@dependabot-preview
chore(deps-dev): bump husky from 4.3.8 to 5.0.9 (#175)
0236784
@dependabot-preview
chore(deps-dev): bump husky from 5.2.0 to 6.0.0 (#180)
9bb24e9
@dependabot-preview
chore(deps-dev): bump eslint-plugin-mocha from 8.2.0 to 9.0.0 (#190)
3ba7e7b
@dependabot-preview
chore(deps-dev): bump mocha from 8.4.0 to 9.0.0 (#192)
dc4c317
@dependabot-preview
Upgrade to GitHub-native Dependabot (#186)
e401dc7 
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
@cecilia-sanare
fix: migrate to github actions
8aa5e63
@dependabot
chore(deps-dev): bump husky from 6.0.0 to 7.0.0 (#197)
4983f0a 
Bumps [husky](https://github.com/typicode/husky) from 6.0.0 to 7.0.0.
- [Release notes](https://github.com/typicode/husky/releases)
- [Commits](typicode/husky@v6.0.0...v7.0.0)

---
updated-dependencies:
- dependency-name: husky
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@cecilia-sanare
chore: add semantic-release config
49368f2
@cecilia-sanare
chore: update ci.yml to point to main
7cdc763
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jan 24, 2022
@dependabot dependabot bot mentioned this pull request Jan 24, 2022
Closed
@coveralls
Copy link

coveralls commented Jan 24, 2022
edited
Loading

Coverage Status

Coverage remained the same at 100.0% when pulling 6f99765 on dependabot/npm_and_yarn/semantic-release-19.0.2 into 7cdc763 on main.

@cecilia-sanare cecilia-sanare force-pushed the main branch 2 times, most recently from 7d26c4d to 7cdc763 Compare May 4, 2022 20:04
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/semantic-release-19.0.2 branch from 9f51cbc to 6f99765 Compare May 4, 2022 20:07
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@coveralls @cecilia-sanare