Closed dependabot[bot] closed 7 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
🚮 Removed packages: npm/@npmcli/git@5.0.3, npm/@npmcli/promise-spawn@7.0.0, npm/@npmcli/run-script@7.0.2, npm/@sigstore/bundle@2.1.0, npm/@sigstore/sign@2.2.0, npm/@sigstore/tuf@2.2.0, npm/@tapjs/after-each@1.1.17, npm/@tapjs/after@1.1.17, npm/@tapjs/asserts@1.1.17, npm/@tapjs/before-each@1.1.17, npm/@tapjs/before@1.1.17, npm/@tapjs/config@2.4.14, npm/@tapjs/core@1.4.6, npm/@tapjs/filter@1.2.17, npm/@tapjs/fixture@1.2.17, npm/@tapjs/intercept@1.2.17, npm/@tapjs/mock@1.2.15, npm/@tapjs/node-serialize@1.2.6, npm/@tapjs/reporter@1.3.15, npm/@tapjs/run@1.4.16, npm/@tapjs/snapshot@1.2.17, npm/@tapjs/spawn@1.1.17, npm/@tapjs/stdin@1.1.17, npm/@tapjs/test@1.3.17, npm/@tapjs/typescript@1.3.6, npm/@tapjs/worker@1.1.17, npm/acorn-walk@8.3.0, npm/acorn@8.11.2, npm/cacache@18.0.0, npm/ignore-walk@6.0.3, npm/json-parse-even-better-errors@3.0.0, npm/lru-cache@10.0.2, npm/minipass-collect@1.0.2, npm/npm-packlist@8.0.0, npm/pacote@17.0.4, npm/sigstore@2.1.0, npm/spdx-exceptions@2.3.0, npm/tap@18.6.1, npm/tshy@1.8.0, npm/tuf-js@2.1.0, npm/v8-to-istanbul@9.1.3, npm/ws@8.14.2
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
✅ EDITORCONFIG | editorconfig-checker | 1 | 0 | 0.01s | |
✅ JSON | eslint-plugin-jsonc | 1 | 0 | 1.87s | |
✅ JSON | jsonlint | 1 | 0 | 0.23s | |
✅ JSON | npm-package-json-lint | yes | no | 0.6s | |
✅ JSON | v8r | 1 | 0 | 1.73s | |
✅ REPOSITORY | checkov | yes | no | 9.45s | |
✅ REPOSITORY | gitleaks | yes | no | 0.46s | |
✅ REPOSITORY | git_diff | yes | no | 0.02s | |
✅ REPOSITORY | grype | yes | no | 11.89s | |
✅ REPOSITORY | secretlint | yes | no | 0.77s | |
✅ REPOSITORY | trivy-sbom | yes | no | 1.32s | |
✅ REPOSITORY | trufflehog | yes | no | 6.6s | |
❌ SPELL | lychee | 1 | 3 | 0.62s |
See detailed report in MegaLinter reports
_Set VALIDATE_ALL_CODEBASE: true
in mega-linter.yml to validate all sources, not only the diff_
Superseded by #269.
Bumps tap from 18.6.1 to 18.7.0.
Commits
5187113
update versions5bb7ca8
remove shell:true from publish script2f9abd3
changelog 18.7f105701
late-bind t.context, so it can be set in before()ae2deb7
always initializet.context
e906d21
tcompare: update test to strip out node version specific cruftdc8dadd
ci: node 20 and 21 only0768324
remove windows from CI5063b46
chore: use --loader in bootstrap51e8a31
bootstrap: run nx in --verbose modeMost Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | tap | [>= 15.a, < 16] |Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show