Closed dependabot[bot] closed 2 weeks ago
✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.
Package | Version | Score | Details | ||||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
npm/update-notifier | 7.2.0 | :green_circle: 4.5 | Details
|
Issues
0 New issues
0 Accepted issues
Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code
cli-boxes/index.js:import cliBoxes from './boxes.json' with {type: 'json'};
This causes:
(node:16193) ExperimentalWarning: Importing JSON modules is an experimental feature and might change at any time
$ npm why cli-boxes
cli-boxes@4.0.0
node_modules/cli-boxes
cli-boxes@"^4.0.0" from boxen@8.0.0
node_modules/update-notifier/node_modules/boxen
boxen@"^8.0.0" from update-notifier@7.2.0
node_modules/update-notifier
update-notifier@"7.2.0" from the root project
Related: sindresorhus/cli-boxes#11
Superseded by #2006.
Bumps update-notifier from 7.1.0 to 7.2.0.
Release notes
Sourced from update-notifier's releases.
Commits
2f885b4
7.2.0ad04288
Update dependenciesDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show