search

aquiladev / ipfs-action

GitHub Action for upload to IPFS. Supports Pinata, Infura pinning service as well as direct upload.
https://dapps-delivery-guide.readthedocs.io/
MIT License
177 stars 46 forks source link

Bump shelljs and release-it #58

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps shelljs to 0.8.5 and updates ancestor dependency release-it. These dependencies need to be updated together.

Updates shelljs from 0.8.4 to 0.8.5

Release notes

Sourced from shelljs's releases.

v0.8.5

This was a small security fix for #1058.

Commits


Updates release-it from 14.8.0 to 14.14.3

Release notes

Sourced from release-it's releases.

Release 14.14.3

  • Remove .only test (dd249c6)
  • Temporarily(?) ignore docs.gihub.com links (returning 403) (ec3e4db)
  • Improve docs re. git.tagMatch (93c583c)
  • Replace "resources" at the bottom with link to license, order examples (e9c6b8d)
  • Update docs.github.com links (2fe93fd)
  • Add test for git.tagMatch + changelog behavior (5e843f1)
  • Improve documentatiion, mainly re. git.tagMatch (751e171)
  • Remove xlink namespace from svg (9ce7501)
  • Remove duplicate test and wrap up proxy fix (f1e8843)
  • Fixes github.proxy not working (#863) (#893) (1fe1afa)

Release 14.14.2

NOTE This is the latest release still supporting Node.js v10. Major issues reported in release-it v14 might still receive bug fixes and patch releases, but no new features.

  • Strict Node.js v10 support (#892) (43d74fe)

Release 14.14.1

  • Update dependencies (still supporting Node.js v10) (7018194)
  • Add note about using Inquirer.js in hooks (closes #821) (2f10cc4)
  • Add comment re. quoting CLI hook arguments (closes #865) (ea11a0d)
  • Also transfer tagMatch to release plugins (fixes #885) (0e0ad33)
  • Downgrade mock-fs and install polyfill for Promise.allSettled (to support Node v10) (56f1ec7)
  • test: fix CI test for different Node versions (#888) (e8a57cc)
  • chore(deps): downgrade inquirer from 8.2.2 to 8.2.0 to avoid dropping Node 10 support (#887) (2a9a31c)

Release 14.14.0

  • Update dependencies (c61c780)
  • Minor edits to new gitlab milestones feature (63869b8)
  • Add gitlab.milestones option to associate milestones with a release (#883) (af0882f)
  • More consistently use example.org in docs, links and even tests (3ccdef0)
  • Clarify the github.host config option (#875) (6d7c3f2)

Release 14.13.1

  • Take latestTag from config context (allowing any value) (9fe82ed)
  • Saleor project was moved to dedicated GitHub organization (#873) (1e0f8f7)

Release 14.13.0

  • Allow wildcards for required branch(es) (closes #877) (fb8622b)
  • Fix/add tests and wrap up npm.allowSameVersion (739f6f6)
  • Allow running npm version with arg --allow-same-version (#878) (2a7565d)

Release 14.12.5

  • Fix body when auto-generating release notes (and updating) GitHub releases (2c42a8e)
  • Fix spec for different version of Git (c20d9d0)
  • Remove deprecated ref from docs (5e0d4c0)

Release 14.12.4

  • Update node-fetch (security issue in transitive dep, closes #862) (d9aaa6c)
  • Remove the unused deprecated feature itself (d80beaf)

... (truncated)

Commits
  • dd5e161 Release 14.14.3
  • dd249c6 Remove .only test
  • ec3e4db Temporarily(?) ignore docs.gihub.com links (returning 403)
  • 93c583c Improve docs re. git.tagMatch
  • e9c6b8d Replace "resources" at the bottom with link to license, order examples
  • 2fe93fd Update docs.github.com links
  • 5e843f1 Add test for git.tagMatch + changelog behavior
  • 751e171 Improve documentatiion, mainly re. git.tagMatch
  • 9ce7501 Remove xlink namespace from svg
  • f1e8843 Remove duplicate test and wrap up proxy fix
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aquiladev/ipfs-action/network/alerts).