dependabot-preview[bot]
commented
5 years ago Superseded by #137.
Closed dependabot-preview[bot] closed 5 years ago
dependabot-preview[bot]
commented
5 years ago Superseded by #137.
Bumps npm from 6.1.0 to 6.9.2.
Release notes
*Sourced from [npm's releases](https://github.com/npm/cli/releases).* > ## v6.9.2 > This release is identical to v6.9.1, but we had to publish a new version due to [a .git directory in the release](https://npm.community/t/8454). > > ## v6.9.1 > ### BUGFIXES > > * [`6b1a9da0e`](https://github.com/npm/cli/commit/6b1a9da0e0f5c295cdaf4dea4b73bd221d778611) [#165](https://github-redirect.dependabot.com/npm/cli/pull/165) Update `knownBroken` version. ([@ljharb](https://github.com/ljharb)) > * [`d07547154`](https://github.com/npm/cli/commit/d07547154eb8a88aa4fde8a37e128e1e3272adc1) [npm.community#5929](https://npm.community/t/npm-outdated-throw-an-error-cannot-read-property-length-of-undefined/5929) Fix `outdated` rendering for global dependencies. ([@zkat](https://github.com/zkat)) > * [`e4a1f1745`](https://github.com/npm/cli/commit/e4a1f174514a57580fd5e0fa33eee0f42bba77fc) [npm.community#6259](https://npm.community/t/npm-token-create-doesnt-work-in-6-6-0-6-9-0/6259) Fix OTP for token create and remove. ([@zkat](https://github.com/zkat)) > > ### DEPENDENCIES > > * [`a163a9c35`](https://github.com/npm/cli/commit/a163a9c35f6f341de343562368056258bba5d7dc) `sha@3.0.0` ([@aeschright](https://github.com/aeschright)) > * [`47b08b3b9`](https://github.com/npm/cli/commit/47b08b3b9860438b416efb438e975a628ec2eed5) `query-string@6.4.0` ([@aeschright](https://github.com/aeschright)) > * [`d6a956cff`](https://github.com/npm/cli/commit/d6a956cff6357e6de431848e578c391768685a64) `readable-stream@3.2.0` ([@aeschright](https://github.com/aeschright)) > * [`10b8bed2b`](https://github.com/npm/cli/commit/10b8bed2bb0afac5451164e87f25924cc1ac6f2e) `tacks@1.3.0` ([@aeschright](https://github.com/aeschright)) > * [`e7483704d`](https://github.com/npm/cli/commit/e7483704dda1acffc8c6b8c165c14c8a7512f3c8) `tap@12.6.0` ([@aeschright](https://github.com/aeschright)) > * [`3242fe698`](https://github.com/npm/cli/commit/3242fe698ead46a9cda94e1a4d489cd84a85d7e3) `tar-stream@2.0.1` ([@aeschright](https://github.com/aeschright)) > > ## v6.9.1-next.0 > ## v6.9.1 (2019-03-20): > > ### BUGFIXES > > * [`6b1a9da0e`](https://github.com/npm/cli/commit/6b1a9da0e0f5c295cdaf4dea4b73bd221d778611) [#165](https://github-redirect.dependabot.com/npm/cli/pull/165) Update `knownBroken` version. ([@ljharb](https://github.com/ljharb)) > * [`d07547154`](https://github.com/npm/cli/commit/d07547154eb8a88aa4fde8a37e128e1e3272adc1) [npm.community#5929](https://npm.community/t/npm-outdated-throw-an-error-cannot-read-property-length-of-undefined/5929) Fix `outdated` rendering for global dependencies. ([@zkat](https://github.com/zkat)) > * [`e4a1f1745`](https://github.com/npm/cli/commit/e4a1f174514a57580fd5e0fa33eee0f42bba77fc) [npm.community#6259](https://npm.community/t/npm-token-create-doesnt-work-in-6-6-0-6-9-0/6259) Fix OTP for token create and remove. ([@zkat](https://github.com/zkat)) > > ### DEPENDENCIES > > * [`a163a9c35`](https://github.com/npm/cli/commit/a163a9c35f6f341de343562368056258bba5d7dc) `sha@3.0.0` ([@aeschright](https://github.com/aeschright)) > * [`47b08b3b9`](https://github.com/npm/cli/commit/47b08b3b9860438b416efb438e975a628ec2eed5) `query-string@6.4.0` ([@aeschright](https://github.com/aeschright)) > * [`d6a956cff`](https://github.com/npm/cli/commit/d6a956cff6357e6de431848e578c391768685a64) `readable-stream@3.2.0` ([@aeschright](https://github.com/aeschright)) > * [`10b8bed2b`](https://github.com/npm/cli/commit/10b8bed2bb0afac5451164e87f25924cc1ac6f2e) `tacks@1.3.0` ([@aeschright](https://github.com/aeschright)) > * [`e7483704d`](https://github.com/npm/cli/commit/e7483704dda1acffc8c6b8c165c14c8a7512f3c8) `tap@12.6.0` ([@aeschright](https://github.com/aeschright)) > * [`3242fe698`](https://github.com/npm/cli/commit/3242fe698ead46a9cda94e1a4d489cd84a85d7e3) `tar-stream@2.0.1` ([@aeschright](https://github.com/aeschright)) > > ## v6.9.0 > ### FEATURES > > * [`2ba3a0f67`](https://github.com/npm/cli/commit/2ba3a0f6721f6d5a16775aebce6012965634fc7c) [#90](https://github-redirect.dependabot.com/npm/cli/pull/90) Time traveling installs using the `--before` flag. ([@zkat](https://github.com/zkat)) > * [`b7b54f2d1`](https://github.com/npm/cli/commit/b7b54f2d18e2d8d65ec67c850b21ae9f01c60e7e) [#3](https://github-redirect.dependabot.com/npm/cli/pull/3) Add support for package aliases. This allows packages to be installed under a different directory than the package name listed in `package.json`, and adds a new dependency type to allow this to be done for registry dependencies. ([@zkat](https://github.com/zkat)) > * [`684bccf06`](https://github.com/npm/cli/commit/684bccf061dfc97bb759121bc0ad635e01c65868) [#146](https://github-redirect.dependabot.com/npm/cli/pull/146) Always save `package-lock.json` when using `--package-lock-only`. ([@aeschright](https://github.com/aeschright)) > * [`b8b8afd40`](https://github.com/npm/cli/commit/b8b8afd4048b4ba1181e00ba2ac49ced43936ce0) [#139](https://github-redirect.dependabot.com/npm/cli/pull/139) Make empty-string run-scripts run successfully as a no-op. ([@vlasy](https://github.com/vlasy)) > * [`8047b19b1`](https://github.com/npm/cli/commit/8047b19b1b994fd4b4e7b5c91d7cc4e0384bd5e4) [npm.community#3784](https://npm.community/t/3784) Match git semver ranges when flattening the tree. ([@larsgw](https://github.com/larsgw)) > * [`e135c2bb3`](https://github.com/npm/cli/commit/e135c2bb360dcf00ecee34a95985afec21ba3655) [npm.community#1725](https://npm.community/t/1725?u=larsgw) Re-enable updating local packages. ([@larsgw](https://github.com/larsgw)) > > ### BUGFIXES > > * [`cf09fbaed`](https://github.com/npm/cli/commit/cf09fbaed489d908e9b551382cc5f61bdabe99a9) [#153](https://github-redirect.dependabot.com/npm/cli/pull/153) Set modified to undefined in `npm view` when `time` is not available. This fixes a bug where `npm view` would crash on certain third-party registries. ([@simonua](https://github.com/simonua)) > ... (truncated)Changelog
*Sourced from [npm's changelog](https://github.com/npm/cli/blob/latest/CHANGELOG.md).* > ## v6.9.2 (2019-06-27): > > This release is identical to v6.9.1, but we had to publish a new version due to [a .git directory in the release](https://npm.community/t/8454). > > ## v6.9.1 (2019-06-26): > > ### BUGFIXES > > * [`6b1a9da0e`](https://github.com/npm/cli/commit/6b1a9da0e0f5c295cdaf4dea4b73bd221d778611) > [#165](https://github-redirect.dependabot.com/npm/cli/pull/165) > Update `knownBroken` version. > ([@ljharb](https://github.com/ljharb)) > * [`d07547154`](https://github.com/npm/cli/commit/d07547154eb8a88aa4fde8a37e128e1e3272adc1) > [npm.community#5929](https://npm.community/t/npm-outdated-throw-an-error-cannot-read-property-length-of-undefined/5929) > Fix `outdated` rendering for global dependencies. > ([@zkat](https://github.com/zkat)) > * [`e4a1f1745`](https://github.com/npm/cli/commit/e4a1f174514a57580fd5e0fa33eee0f42bba77fc) > [npm.community#6259](https://npm.community/t/npm-token-create-doesnt-work-in-6-6-0-6-9-0/6259) > Fix OTP for token create and remove. > ([@zkat](https://github.com/zkat)) > > ### DEPENDENCIES > > * [`a163a9c35`](https://github.com/npm/cli/commit/a163a9c35f6f341de343562368056258bba5d7dc) > `sha@3.0.0` > ([@aeschright](https://github.com/aeschright)) > * [`47b08b3b9`](https://github.com/npm/cli/commit/47b08b3b9860438b416efb438e975a628ec2eed5) > `query-string@6.4.0` > ([@aeschright](https://github.com/aeschright)) > * [`d6a956cff`](https://github.com/npm/cli/commit/d6a956cff6357e6de431848e578c391768685a64) > `readable-stream@3.2.0` > ([@aeschright](https://github.com/aeschright)) > * [`10b8bed2b`](https://github.com/npm/cli/commit/10b8bed2bb0afac5451164e87f25924cc1ac6f2e) > `tacks@1.3.0` > ([@aeschright](https://github.com/aeschright)) > * [`e7483704d`](https://github.com/npm/cli/commit/e7483704dda1acffc8c6b8c165c14c8a7512f3c8) > `tap@12.6.0` > ([@aeschright](https://github.com/aeschright)) > * [`3242fe698`](https://github.com/npm/cli/commit/3242fe698ead46a9cda94e1a4d489cd84a85d7e3) > `tar-stream@2.0.1` > ([@aeschright](https://github.com/aeschright)) > > ## v6.9.0 (2019-02-20): > > ### FEATURES > > * [`2ba3a0f67`](https://github.com/npm/cli/commit/2ba3a0f6721f6d5a16775aebce6012965634fc7c) > [#90](https://github-redirect.dependabot.com/npm/cli/pull/90) > Time traveling installs using the `--before` flag. > ([@zkat](https://github.com/zkat)) > ... (truncated)Commits
- [`31718e7`](https://github.com/npm/cli/commit/31718e72cb5a03cee7127fc36843e4b55c868d93) 6.9.2 - [`21eef31`](https://github.com/npm/cli/commit/21eef31147194d0ef963857177651ce91f898085) doc: update changelog for npm@6.9.2 - [`43cb258`](https://github.com/npm/cli/commit/43cb2580d7869d798ff44705aa25a0adac49950d) 6.9.1 - [`199c970`](https://github.com/npm/cli/commit/199c9705aa2c67829509b42082fad6da148f787a) 6.9.1-next.0 - [`dcc759c`](https://github.com/npm/cli/commit/dcc759c894459d46950d110f5fbdcef4fed3e9e6) doc: update changelog for npm@6.9.1 - [`3242fe6`](https://github.com/npm/cli/commit/3242fe698ead46a9cda94e1a4d489cd84a85d7e3) tar-stream@2.0.1 - [`e748370`](https://github.com/npm/cli/commit/e7483704dda1acffc8c6b8c165c14c8a7512f3c8) tap@12.6.0 - [`10b8bed`](https://github.com/npm/cli/commit/10b8bed2bb0afac5451164e87f25924cc1ac6f2e) tacks@1.3.0 - [`d6a956c`](https://github.com/npm/cli/commit/d6a956cff6357e6de431848e578c391768685a64) readable-stream@3.2.0 - [`47b08b3`](https://github.com/npm/cli/commit/47b08b3b9860438b416efb438e975a628ec2eed5) query-string@6.4.0 - Additional commits viewable in [compare view](https://github.com/npm/cli/compare/v6.1.0...v6.9.2)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.