Closed dependabot[bot] closed 1 month ago
New and removed dependencies detected. Learn more about Socket for GitHub โ๏ธ
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/tap@21.0.0 | Transitive: environment, filesystem, network, shell, unsafe | +281 |
49.8 MB | isaacs |
๐ฎ Removed packages: npm/tap@16.3.10
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
โ EDITORCONFIG | editorconfig-checker | 2 | 0 | 0.01s | |
โ JSON | jsonlint | 2 | 0 | 0.2s | |
โ JSON | npm-package-json-lint | yes | no | 0.48s | |
โ JSON | v8r | 2 | 0 | 13.71s | |
โ REPOSITORY | checkov | yes | no | 11.5s | |
โ REPOSITORY | gitleaks | yes | no | 1.87s | |
โ REPOSITORY | git_diff | yes | no | 0.01s | |
โ REPOSITORY | grype | yes | no | 11.92s | |
โ REPOSITORY | secretlint | yes | 1 | 1.37s | |
โ REPOSITORY | trivy-sbom | yes | no | 1.01s | |
โ SPELL | lychee | 2 | 1 | 2.94s |
See detailed report in MegaLinter reports
_Set VALIDATE_ALL_CODEBASE: true
in mega-linter.yml to validate all sources, not only the diff_
Superseded by #173.
Bumps tap from 16.3.10 to 21.0.0.
Release notes
Sourced from tap's releases.
... (truncated)
Commits
f4c46d4
update versionsbf403c1
Drop nodes before 20, update all deps161ff8a
update versionscd17ec3
fully uninstall installed plugins, reduce noise3a4f8ae
core: do not run prepare if src not present85d100c
test: set plugin package.json, link to@โtapjs/core
a528863
test: link tests's core into the plugins, to avoid duality issuesb0400de
update versions412c644
trivial: prevent dupe array creation in plugin addfa107ce
clock: remove unneeded guardDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show