fix the example in readme to prevent "location" field displays wrong way when running as script with Node.js. (nested displayed as [Array]) by @zxkmm in NodeSecure/js-x-ray#185
This release use @nodesecure/types instead of @npm/types. This break type compatibility (V3 should be a more precise reflect of what the registry return).
The silent option was used to control whether @npmcli/run-script would write a banner via console.log. Now ouput will be emitted via an process.emit('output').
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the dependencies group with 6 updates in the / directory:
6.3.0
7.2.0
2.1.1
3.0.0
17.0.4
18.0.6
7.6.0
7.6.2
7.5.1
7.5.3
2.3.1
2.3.2
Updates
@nodesecure/js-x-ray
from 6.3.0 to 7.2.0Release notes
Sourced from
@nodesecure/js-x-ray
's releases.... (truncated)
Commits
96318de
7.2.05cc6031
Merge pull request #272 from NodeSecure/fix-entry-files-analyser777ed54
refactor(test): import from project entry file to avoid issues69272f6
fix(EntryFilesAnalyser): use fileURLToPath for Windows5fcd7a5
feat: enable initalize and finalize for AstAnalyser.analyseFile (#271)d02cf1b
feat: add intialize and finalize for AstAnalyser.analyze API (#269)12baaaf
7.1.1ed6ae3e
refactor: implement API exports & minimal docs (#264)c24938b
7.1.0583edff
docs: add sairuss7 as a contributor for code (#263)Updates
@nodesecure/npm-registry-sdk
from 2.1.1 to 3.0.0Release notes
Sourced from
@nodesecure/npm-registry-sdk
's releases.Commits
8cbc336
3.0.03680828
Merge pull request #144 from NodeSecure/nodesecure-types37e390d
fix: skip metadata tests because NPM registry interface is broken0fc5410
refactor: use@nodesecure/npm-types
b29922a
fix(packument): add missing properties for NPM provenance (#135)29d3a56
chore(deps): bump the dependencies group with 1 update (#134)3a43637
chore(deps-dev): bump the development-dependencies group with 1 update (#133)fa917a6
chore(deps): bump the github-actions group with 4 updates (#132)c2d219d
chore: using dependabot groups (#127)Updates
pacote
from 17.0.4 to 18.0.6Release notes
Sourced from pacote's releases.
... (truncated)
Changelog
Sourced from pacote's changelog.
... (truncated)
Commits
f54ea83
chore: release 18.0.6 (#370)79441a5
fix: clean up requires (#371)b19aacb
fix: isolate full and corgi packuments in packumentCache (#369)8b58a32
chore: release 18.0.5 (#367)5e75582
fix: dont set _contentLength if not in headers (#368)1b6950b
fix(refactor): symbol cleanup (#365)005d8a9
chore: release 18.0.4 (#364)5fd2c80
fix(linting): no-unused-varsa235f37
chore: postinstall for dependabot template-oss PRd867639
chore: bump@npmcli/template-oss
to 4.22.0Updates
semver
from 7.6.0 to 7.6.2Release notes
Sourced from semver's releases.
Changelog
Sourced from semver's changelog.
Commits
eb1380b
chore: release 7.6.2 (#714)6466ba9
fix(lru): use map.delete() directly (#713)d777418
chore: release 7.6.1 (#706)988a8de
deps: uninstalllru-cache
(#709)5feeb7f
chore: postinstall for dependabot template-oss PRdd09b60
chore: bump@npmcli/template-oss
to 4.22.0c570a34
fix(linting): no-unused-varsad8ff11
fix: use internal cache implementation3fabe4d
deps: remove lru-cacheec49cdc
chore: chore: chore: postinstall for dependabot template-oss PRUpdates
@npmcli/arborist
from 7.5.1 to 7.5.3Release notes
Sourced from
@npmcli/arborist
's releases.... (truncated)
Changelog
Sourced from
@npmcli/arborist
's changelog.Commits
Updates
itertools
from 2.3.1 to 2.3.2Release notes
Sourced from itertools's releases.
Changelog
Sourced from itertools's changelog.
Commits
7a46373
Release 2.3.2ab98597
Upgrade all dependencies (#1052)eb915be
Also add missingintersperse
top-level export2b80fa6
Ensure missing imports at the top-level would be caught in the futureddaee94
Fix missing [i]zipLongest3 exports (#1051)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show