search

ForestAdmin / forest-express

🧱 Dependency of Express Lianas for Forest Admin
GNU General Public License v3.0
72 stars 21 forks source link

chore(deps-dev): bump simple-git from 2.3.0 to 3.7.0 #880

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps simple-git from 2.3.0 to 3.7.0.

Release notes

Sourced from simple-git's releases.

simple-git@3.7.0

Minor Changes

  • fa2c7f7: Enable the use of types when loading with module-resolution

Patch Changes

  • 3805f6b: Timeout plugin no longer keeps short lived processes alive until timeout is hit

simple-git@3.6.0

Minor Changes

  • f2fc5c9: Show full commit hash in a CommitResult, prior to this change git.commit would result in a partial hash in the commit property if core.abbrev is unset or has a value under 40. Following this change the commit property will contain the full commit hash.

Patch Changes

  • c4a2a13: chore(deps): bump minimist from 1.2.5 to 1.2.6

simple-git@3.5.0

Minor Changes

  • 2040de6: Resolves potential command injection vulnerability by preventing use of --upload-pack in git.clone

simple-git@3.4.0

Minor Changes

  • ed412ef: Use null separators in git.status to allow for non-ascii file names

simple-git@3.3.0

Minor Changes

  • d119ec4: Resolves potential command injection vulnerability by preventing use of --upload-pack in git.fetch

simple-git@3.2.6

Patch Changes

  • 80651d5: Resolve issue in prePublish script

simple-git@3.2.4

Patch Changes

  • d35987b: Release with changesets

simple-git simple-git-v3.1.1

Bug Fixes

  • specify repository with directory identifier to be discoverable within monorepo (655e23c)

... (truncated)

Changelog

Sourced from simple-git's changelog.

3.7.0

Minor Changes

  • fa2c7f7: Enable the use of types when loading with module-resolution

Patch Changes

  • 3805f6b: Timeout plugin no longer keeps short lived processes alive until timeout is hit

3.6.0

Minor Changes

  • f2fc5c9: Show full commit hash in a CommitResult, prior to this change git.commit would result in a partial hash in the commit property if core.abbrev is unset or has a value under 40. Following this change the commit property will contain the full commit hash.

Patch Changes

  • c4a2a13: chore(deps): bump minimist from 1.2.5 to 1.2.6

3.5.0

Minor Changes

  • 2040de6: Resolves potential command injection vulnerability by preventing use of --upload-pack in git.clone

3.4.0

Minor Changes

  • ed412ef: Use null separators in git.status to allow for non-ascii file names

3.3.0

Minor Changes

  • d119ec4: Resolves potential command injection vulnerability by preventing use of --upload-pack in git.fetch

3.2.6

Patch Changes

  • 80651d5: Resolve issue in prePublish script

3.2.5

Patch Changes

  • ac4f38f: Show readme in published package.

... (truncated)

Commits
  • 39abae0 Version Packages
  • 2182af4 Merge pull request #787 from steveukx/feat/export-types
  • fa2c7f7 Add Typescript types to the simple-git exports, for use when importing thro...
  • 463e193 Clear timeout upon stop to avoid hanging the process
  • c8f2251 Update CHANGELOG.md
  • 25667fe Version Packages
  • c88703d Use import type annotations in the executors.
  • f2fc5c9 Override local configuration for git.commit to show full commit hashes when...
  • 4fc3747 Version Packages
  • 2040de6 Prevent use of --upload-pack as a command in git.clone to avoid potential...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codeclimate[bot] commented 2 years ago

Code Climate has analyzed commit 8891a3f5 and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (70% is the threshold).

This pull request will bring the total coverage in the repository to 60.0% (0.0% change).

View more on Code Climate.

dependabot[bot] commented 2 years ago

Superseded by #883.