bluehost / endurance-page-cache

Other
24 stars 11 forks source link

Bump simple-git and @wordpress/env #115

Closed dependabot[bot] closed 7 months ago

dependabot[bot] commented 1 year ago

Bumps simple-git to 3.16.0 and updates ancestor dependency @wordpress/env. These dependencies need to be updated together.

Updates simple-git from 2.48.0 to 3.16.0

Release notes

Sourced from simple-git's releases.

simple-git@3.16.0

Minor Changes

  • 97fde2c: Support the use of -B in place of the default -b in checkout methods
  • 0a623e5: Adds vulnerability detection to prevent use of --upload-pack and --receive-pack without explicitly opting in.

Patch Changes

  • ec97a39: Include restricting the use of git push --exec with other allowUnsafePack exclusions, thanks to @​stsewd for the suggestion.

simple-git@3.15.1

Patch Changes

  • de570ac: Resolves an issue whereby non-strings can be passed into the config switch detector.

simple-git@3.15.0

Minor Changes

  • 7746480: Disables the use of inline configuration arguments to prevent unitentionally allowing non-standard remote protocols without explicitly opting in to this practice with the new allowUnsafeProtocolOverride property having been enabled.

Patch Changes

  • 7746480: - Upgrade repo dependencies - lerna and jest
    • Include node@19 in the test matrix

simple-git@3.14.1

Patch Changes

  • 5a2e7e4: Add version parsing support for non-numeric patches (including "built from source" style 1.11.GIT)

simple-git@3.14.0

Minor Changes

  • 19029fc: Create the abort plugin to allow cancelling all pending and future tasks.
  • 4259b26: Add .version to return git version information, including whether the git binary is installed.

simple-git@3.13.0

Minor Changes

  • 87b0d75: Increase the level of deprecation notices for use of simple-git/promise, which will be fully removed in the next major
  • d0dceda: Allow supplying just one of to/from in the options supplied to git.log

Patch Changes

  • 6b3e05c: Use shared test utilities bundle in simple-git tests, to enable consistent testing across packages in the future

simple-git@3.12.0

Minor Changes

  • bfd652b: Add a new configuration option to enable trimming white-space from the response to git.raw

... (truncated)

Changelog

Sourced from simple-git's changelog.

3.16.0

Minor Changes

  • 97fde2c: Support the use of -B in place of the default -b in checkout methods
  • 0a623e5: Adds vulnerability detection to prevent use of --upload-pack and --receive-pack without explicitly opting in.

Patch Changes

  • ec97a39: Include restricting the use of git push --exec with other allowUnsafePack exclusions, thanks to @​stsewd for the suggestion.

3.15.1

Patch Changes

  • de570ac: Resolves an issue whereby non-strings can be passed into the config switch detector.

3.15.0

Minor Changes

  • 7746480: Disables the use of inline configuration arguments to prevent unitentionally allowing non-standard remote protocols without explicitly opting in to this practice with the new allowUnsafeProtocolOverride property having been enabled.

Patch Changes

  • 7746480: - Upgrade repo dependencies - lerna and jest
    • Include node@19 in the test matrix

3.14.1

Patch Changes

  • 5a2e7e4: Add version parsing support for non-numeric patches (including "built from source" style 1.11.GIT)

3.14.0

Minor Changes

  • 19029fc: Create the abort plugin to allow cancelling all pending and future tasks.
  • 4259b26: Add .version to return git version information, including whether the git binary is installed.

3.13.0

Minor Changes

  • 87b0d75: Increase the level of deprecation notices for use of simple-git/promise, which will be fully removed in the next major
  • d0dceda: Allow supplying just one of to/from in the options supplied to git.log

Patch Changes

... (truncated)

Commits
  • 1a12952 Version Packages
  • ec97a39 Block unsafe pack (push --exec) (#882)
  • 0a623e5 Feat/unsafe pack (#881)
  • 97fde2c Add support for using the -B modifier instead of the default -b when usin...
  • edfd459 Update readme.md
  • c9fc61f Version Packages
  • de570ac Fix/non strings (#867)
  • d4764bf Version Packages
  • 7746480 Chore: bump lerna, jest and create prettier workflow (#862)
  • 6b3c631 Create the unsafe plugin to configure how simple-git treats known potenti...
  • Additional commits viewable in compare view


Updates @wordpress/env from 4.1.3 to 4.9.0

Changelog

Sourced from @​wordpress/env's changelog.

Unreleased

Bug fix

  • PHP 7.3 and 7.4 must use PHPUnit 9.

Enhancement

  • It's now possible to run PHPUnit tests on PHP 8.1 and 8.2.

5.10.0 (2023-01-11)

5.9.0 (2023-01-02)

5.8.0 (2022-12-14)

5.7.0 (2022-11-16)

5.6.0 (2022-11-02)

5.5.0 (2022-10-19)

5.4.0 (2022-10-05)

5.3.0 (2022-09-21)

5.2.0 (2022-08-16)

Enhancement

  • Query parameters can now be used in .zip source URLs.

5.1.1 (2022-08-16)

Bug Fix

  • Fix a crash when "core" was set to null in a .wp-env.json file. We now use the latest stable WordPress version in that case. This also restores the previous behavior of "core": null in .wp-env.override.json, which was to use the latest stable WordPress version.

5.1.0 (2022-08-10)

Enhancement

  • Previously, wp-env used the WordPress version provided by Docker in the WordPress image for installations which don't specify a WordPress version. Now, wp-env will find the latest stable version on WordPress.org and check out the https://github.com/WordPress/WordPress repository at the tag matching that version. In most cases, this will match what Docker provides. The benefit is that wp-env (and WordPress.org) now controls the default WordPress version rather than Docker.

Bug Fix

  • Downloading a default WordPress version also resolves a bug where the wrong WordPress test files were used if no core source was specified in wp-env.json. The current trunk test files were downloaded rather than the stable version. Now, the test files will match the default stable version.

5.0.0 (2022-07-27)

Breaking Changes

  • Removed the WP_PHPUNIT__TESTS_CONFIG environment variable from the phpunit container. This removes automatic support for the wp-phpunit/wp-phpunit Composer package. To continue using the package, set the following two environment variables in your phpunit.xml file or similar: WP_TESTS_DIR="" and WP_PHPUNIT__TESTS_CONFIG="/wordpress-phpunit/wp-tests-config.php".

... (truncated)

Commits
  • 48d5f37 chore(release): publish
  • e829160 Merge changes published in the Gutenberg plugin "release/13.5" branch
  • a3e0b62 chore(release): publish
  • 6b12253 Update changelog files
  • a7415a8 Merge changes published in the Gutenberg plugin "release/13.4" branch
  • 198fa12 chore(release): publish
  • 2ca3bcb Update changelog files
  • a5f2846 Merge changes published in the Gutenberg plugin "release/13.3" branch
  • 1ba5231 chore(release): publish
  • 9ad1f9d Merge changes published in the Gutenberg plugin "release/13.1" branch
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by gutenbergplugin, a new releaser for @​wordpress/env since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bluehost/endurance-page-cache/network/alerts).
wpscholar commented 7 months ago

@dependabot rebase

dependabot[bot] commented 7 months ago

Superseded by #122.