SolidOS / solidos

The operating system for Solid
https://solidos.solidcommunity.net/
MIT License
127 stars 19 forks source link

Bump glob-parent and lerna #192

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps glob-parent to 6.0.2 and updates ancestor dependency lerna. These dependencies need to be updated together.

Updates glob-parent from 3.1.0 to 6.0.2

Release notes

Sourced from glob-parent's releases.

glob-parent v6.0.2

Bug Fixes

glob-parent v6.0.1

Bug Fixes

  • Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

glob-parent v6.0.0

⚠ BREAKING CHANGES

  • Correct mishandled escaped path separators (#34)
  • upgrade scaffold, dropping node <10 support

Bug Fixes

  • Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

  • upgrade scaffold, dropping node <10 support (e83d0c5)

v5.1.2

Bug Fixes

v5.1.1

Bug Fixes

v5.1.0

Features

... (truncated)

Changelog

Sourced from glob-parent's changelog.

6.0.2 (2021-09-29)

Bug Fixes

6.0.1 (2021-07-20)

Bug Fixes

  • Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

6.0.0 (2021-05-03)

⚠ BREAKING CHANGES

  • Correct mishandled escaped path separators (#34)
  • upgrade scaffold, dropping node <10 support

Bug Fixes

  • Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

  • upgrade scaffold, dropping node <10 support (e83d0c5)

5.1.1 (2021-01-27)

Bug Fixes

5.1.0 (2021-01-27)

Features

  • add flipBackslashes option to disable auto conversion of slashes (closes #24) (#25) (eecf91d)

5.0.0 (2021-01-27)

⚠ BREAKING CHANGES

  • Drop support for node <6 & bump dependencies

Miscellaneous Chores

  • Drop support for node <6 & bump dependencies (896c0c0)

4.0.0 (2021-01-27)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by phated, a new releaser for glob-parent since your current version.


Updates lerna from 3.22.1 to 6.0.3

Release notes

Sourced from lerna's releases.

v6.0.3

6.0.3 (2022-11-07)

Bug Fixes

  • publish: support inconsistent workspace prefix usage (#3413) (da2274b)
  • version: only apply prettier if it was explicitly installed (#3406) (0161bbe)

v6.0.2

6.0.2 (2022-11-02)

Bug Fixes

  • publish: remove workspace prefix on publish (#3397) (1f0e546)

v6.0.1

6.0.1 (2022-10-14)

Bug Fixes

  • run: allow for loading of env files to be skipped (#3375) (5dbd904)

v6.0.0

6.0.0 (2022-10-12)

Super fast, modern task-runner implementation for lerna run

As of version 6.0.0, Lerna will now delegate the implementation details of the lerna run command to the super fast, modern task-runner (powered by Nx) by default.

If for some reason you wish to opt in to the legacy task-runner implementation details (powered by p-map and p-queue), you can do so by setting "useNx": false in your lerna.json. (Please let us know via a Github issue if you feel the need to do that, however, as in general the new task-runner should just work how you expect it to as a lerna user).

Interactive configurtion for lerna run caching and task pipelines via the new lerna add-caching command

When using the modern task-runner implementation described above, the way to get the most out of it is to tell it about the outputs of your various scripts, and also any relationships that exist between them (such as needing to run the build script before the test, for example).

Simply run lerna add-caching and follow the instructions in order to generate all the relevant configuration for your workspace.

You can learn more about the configuration it generates here: https://lerna.js.org/docs/concepts/task-pipeline-configuration

Automatic loading of .env files in lerna run with the new task-runner implementation

By default the modern task runner powered by Nx will automatically load .env files for you. You can set --load-env-files to false if you want to disable this behavior for any reason.

For more details about what .env files will be loaded by default please see: https://nx.dev/recipes/environment-variables/define-environment-variables

Obselete options in lerna run with the new task-runner implementation

... (truncated)

Changelog

Sourced from lerna's changelog.

6.0.3 (2022-11-07)

Note: Version bump only for package lerna

6.0.2 (2022-11-02)

Note: Version bump only for package lerna

6.0.1 (2022-10-14)

Bug Fixes

  • run: allow for loading of env files to be skipped (#3375) (5dbd904)

6.0.0 (2022-10-12)

Note: Version bump only for package lerna

6.0.0-alpha.2 (2022-10-12)

Bug Fixes

6.0.0-alpha.1 (2022-10-09)

6.0.0-alpha.0 (2022-10-07)

Note: Version bump only for package lerna

5.6.2 (2022-10-09)

Note: Version bump only for package lerna

5.6.1 (2022-09-30)

Bug Fixes

  • add-caching: ensure lerna.json is configured automatically (9677cda)

5.6.0 (2022-09-29)

Features

5.5.4 (2022-09-28)

Note: Version bump only for package lerna

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by jameshenry, a new releaser for lerna since your current version.


You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/SolidOS/solidos/network/alerts).

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.