TRIMM / plugin-dependencytrack

Plugin for retrieving Dependencytrack metrics in Backstage
Apache License 2.0
16 stars 2 forks source link

chore(deps-dev): bump cross-fetch from 3.1.8 to 4.0.0 #92

Open dependabot[bot] opened 5 months ago

dependabot[bot] commented 5 months ago

Bumps cross-fetch from 3.1.8 to 4.0.0.

Release notes

Sourced from cross-fetch's releases.

v4.0.0

What's Changed

BREAKING CHANGES

  • Dropped support for Node 10 and 12. (Note: cross-fetch will likely continue working on those versions, but specs tests are not running on those Node versions and no support will be provided if issues come up.)
  • Please check implementation conflicts in the Fetch API tests.

FEATURES

  • Added support for Node 18 and 20.
  • Added support for Service and Cloudflare Workers (Fixes #69, #78, #148) by prioritizing native code over third-party implementation. Fetch API test suite now running against node-fetch, whatwg-fetch, native browser and native node fetch.
  • Upgraded whatwg-fetch to 3.6.2. Please refer to whatwg-fetch release notes between 3.0.0 and 3.6.2 for features and bug fixes.
  • fetch.ponyfill is set to true when custom implementation is used. This improves debuggability.
Changelog

Sourced from cross-fetch's changelog.

4.0.0 (2023-07-03)

Commits
  • 748a312 chore(release): 4.0.0
  • dc7a7e8 chore: improved inline comment on publish script
  • a89e3ce chore: renamed release target to version
  • 058c8ff chore: updated dev dependencies minor versions
  • 71bd113 chore: updated dev dependencies patch versions
  • 5b8eee6 chore: dedupped make release target
  • 762ae72 chore: restored caret range on node-fetch dependency
  • b6c073a chore: fixed README's Table of Content
  • 30581ca chore: added workers feature support on README
  • 3594c29 chore: renamed bin/release to bin/publish
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)